Get a FREE Quote
Get a FREE Quote

WebUniter – International
Websites for entrepreneurs. Forward together!

* Change website to LIGHT or DARK theme

"Success is not about ideas. It’s about making ideas happen." Scott Belsky

"Good things start with great music" – Let the sound inspire You!

0:00 / 0:00

GDPR
(General Data Protection Regulation)

Effective Date: 2025

At WebUniter (“we,” “our,” or “us”), protecting your personal data is a fundamental priority and responsibility. This GDPR Compliance Policy has been carefully designed to provide transparency about how we collect, process, use, and safeguard your personal data in strict compliance with the General Data Protection Regulation (GDPR), the ePrivacy Directive (Directive 2002/58/EC), and Slovak Act No. 18/2018 Coll. on Personal Data Protection, as amended.

 

This policy applies to all individuals (“data subjects”) interacting with our services, whether as customers, visitors to our website, or users of our products. By engaging with our services, you acknowledge that you have read and understood this policy and consent to the practices described herein, to the extent permitted by applicable laws.

 

Our primary objective is to ensure that all personal data is processed lawfully, fairly, and transparently, respecting your rights as a data subject. This includes:

  • Maintaining accountability in how we handle personal data.
  • Implementing technical and organizational measures to ensure the security of personal data.
  • Clearly defining your rights under GDPR and how you can exercise them.

We acknowledge the importance of trust when handling your data and have implemented safeguards to minimize risks, such as unauthorized access, data breaches, or misuse. This policy outlines the scope of data protection measures we take, including for third-party interactions, international data transfers, and the retention of personal data.

 

If you do not agree with this policy or any of its provisions, we advise that you immediately cease using our services or website. Any questions or concerns regarding this policy should be directed to our designated contact channels listed herein.

 

This GDPR Compliance Policy is binding on all users of our services and supersedes any prior agreements or understandings regarding data protection practices. It forms an integral part of our commitment to compliance with Slovak and EU data protection laws, providing a robust framework for ensuring your privacy is respected and safeguarded.

 

1. Data Controller Information

We are the data controller responsible for the collection, processing, and safeguarding of your personal data obtained through this website or any services provided by us. As the data controller, we bear the primary responsibility for ensuring that all personal data is processed lawfully, fairly, and transparently, in accordance with the General Data Protection Regulation (GDPR), the ePrivacy Directive, and applicable Slovak laws, including Act No. 18/2018 Coll. on Personal Data Protection, as amended.

Who We Are

  • Controller Name: WebUniter
  • Contact Email: [email protected]
  • Contact Phone: +421 911 88 44 15

 

Our Responsibilities

As the data controller, we are responsible for:

  1. Determining the purposes and legal basis for the processing of your personal data.
  2. Ensuring that appropriate technical and organizational measures are in place to protect personal data against unauthorized access, alteration, disclosure, or destruction.
  3. Monitoring compliance with GDPR and Slovak data protection laws in all aspects of our operations.
  4. Providing clear and transparent information about your rights as a data subject and how you can exercise them.

Data Protection Officer (if applicable)

While a dedicated Data Protection Officer (DPO) is not required for every organization, if we designate one in the future, their contact details will be updated in this section. Currently, please contact us directly using the above details for all data protection-related inquiries.

How We Protect Your Rights

  • We ensure that your personal data is processed only for lawful purposes, such as contractual necessity, legal obligations, or legitimate interests, as outlined in this policy.
  • We do not process sensitive personal data (e.g., health data, political opinions) unless explicitly provided by you with clear consent.
  • We implement robust security measures to protect data, including encryption, access controls, and regular risk assessments.

How You Can Contact Us

If you have any questions about how we handle your personal data, or if you wish to exercise your rights as a data subject under GDPR, such as accessing, correcting, or deleting your personal data, please contact us:

For unresolved issues, you also have the right to contact the Slovak Data Protection Authority (Úrad na ochranu osobných údajov SR):

By providing clear and accessible contact details, we ensure compliance with GDPR Article 13(1)(a), empowering you to hold us accountable for our data protection practices.

 

2. Personal Data We Collect

We are committed to collecting and processing only the personal data necessary for specific and lawful purposes. The types of personal data we collect may include, but are not limited to, the following categories:

Categories of Data We Collect

  1. Identity Information:
    • Name, email address, phone number.
    • Collected to identify and communicate with you for the provision of our services, including quotes, inquiries, and customer support.
  2. Technical Information:
    • IP address, browser type, device information, operating system, and geolocation data.
    • Collected to ensure the secure and optimal functioning of our website, analyze traffic, and improve the user experience.
  3. Transaction Information:
    • Payment details (e.g., credit card information), billing address, and transaction history.
    • Collected to facilitate payments, issue invoices, and comply with legal obligations, such as tax regulations.
  4. Communication Data:
    • Messages, inquiries, feedback, or data voluntarily provided through contact forms or direct communication.
    • Collected to respond to your inquiries, manage customer support, and improve our services.
  5. Usage Data:
    • Information on how you interact with our website, such as pages viewed, time spent, clicks, and navigation behavior.
    • Collected using cookies and analytics tools to understand user behavior and enhance website functionality.

 

Sensitive and Special Categories of Data

We do not intentionally collect or process special categories of personal data, as defined under GDPR Article 9, which includes, but is not limited to, data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic or biometric data, health information, or sexual orientation.

 

If such data is explicitly provided by you (e.g., included in a message, inquiry, or form submission), it will only be processed with your clear and explicit consent and solely for the specific purpose for which it was provided. We will take all reasonable steps to ensure the lawful and secure handling of such data if provided.

User Responsibility for Provided Data

When submitting data through any forms or communication channels on our Website or Services, you acknowledge and agree that:

  1. Accuracy and Legitimacy of Data: You are solely responsible for ensuring that the information you provide is accurate, truthful, and relevant to the inquiry or purpose for which it is submitted.
  2. No Liability for Unnecessary or Incorrect Data: If you include unnecessary, irrelevant, or false information in your submission, we disclaim all responsibility for any misunderstandings, miscommunications, or consequences arising from the use of that data.
  3. Intentional Disclosure of Special Data: If you choose to voluntarily disclose sensitive or special categories of personal data, you explicitly consent to its processing for the purpose related to your submission. However, we strongly advise against providing such data unless strictly necessary for your inquiry or request.

Limitation of Liability for User-Submitted Data

By submitting information via forms or direct communication, you confirm that you understand and accept the following:

  • We Do Not Vet Information at the Point of Entry: We process data as submitted by you and cannot guarantee the accuracy or relevance of information provided.
  • Misscommunication Due to Incorrect or Misleading Data: If incorrect, incomplete, or misleading data results in errors, delays, or other issues in communication or service provision, we are not liable for the resulting consequences.
  • Voluntary Nature of Data Disclosure: Providing sensitive information is entirely voluntary and is done at your sole discretion and risk.

Recommendation for Users

To avoid potential misunderstandings, we encourage users to:

  • Provide only the data specifically requested in the form fields.
  • Avoid including sensitive or unnecessary information unless absolutely necessary for your inquiry.
  • Contact us directly for clarification if you are uncertain about the information required for your request.

By interacting with our forms or communication channels, you acknowledge and accept responsibility for the accuracy and appropriateness of the information you provide.

Children’s Data

Our services are not intended for use by individuals under the age of 16. We do not knowingly collect, process, or store personal data from children under this age threshold. The protection of children’s privacy is of paramount importance to us, and we take this responsibility seriously in compliance with GDPR Article 8 and relevant provisions under Slovak Act No. 18/2018 Coll. on Personal Data Protection.

No Intentional Collection of Children’s Data

We have designed our Website, services, and forms with the clear intent of catering to individuals who are legally permitted to provide personal data under applicable laws. Any sections of our services requiring the submission of personal data are intended exclusively for users who are 16 years of age or older.

What Happens if a Child Submits Data

If it comes to our attention that we have inadvertently collected personal data from a child under the age of 16, we will take the following actions without undue delay:

  1. Immediate Review and Verification: We will review the submitted data to confirm whether it was provided by a child.
  2. Data Deletion: All personal data provided by the child will be deleted promptly and securely from our systems.
  3. Notification to the Parent or Guardian: Where feasible, we may notify the parent or legal guardian of the child regarding the incident and the actions we have taken to address it.

Parental or Guardian Responsibility

If you are a parent or guardian and become aware that your child has provided personal data without your consent, it is crucial to contact us immediately at [email protected] or +421 911 88 44 15. We will work with you to resolve the situation and ensure that any personal data is deleted or rectified as needed.

Steps We Take to Prevent Data Collection from Children

To minimize the risk of unintentional data collection from children, we have implemented the following measures:

  1. Age Verification Mechanisms: Where relevant, we may include a self-declaration mechanism in forms or user interfaces requiring users to confirm they are at least 16 years old.
  2. Content and Service Design: Our services and content are specifically targeted at an audience above the age of 16, ensuring that the language, themes, and functionalities are unsuitable or irrelevant to children.
  3. Parental Contact Policy: If we suspect that a user may be underage, we reserve the right to request parental or guardian verification before proceeding with the request or service.

Legal Compliance

This section complies with GDPR Article 8, which prohibits the processing of personal data from children under the age of 16 without parental consent, as well as Slovak national laws that align with these provisions. For users in jurisdictions where the minimum age is lower than 16 (e.g., 13 in some EU member states), we still apply the higher age threshold of 16 to ensure consistent data protection practices.

 

By accessing and using our Website, you confirm that you are at least 16 years old or have obtained appropriate parental or guardian consent. Any attempt to misrepresent your age or identity when using our services may result in the suspension or termination of access and deletion of associated data. Protecting children’s privacy is a shared responsibility. We encourage parents and guardians to monitor their children’s online activities and educate them about responsible and secure internet usage.

 

Purpose of Data Collection

We process personal data in strict compliance with the principles of lawfulness, fairness, and transparency as required under the General Data Protection Regulation (GDPR) and Slovak Act No. 18/2018 Coll. on Personal Data Protection. The purposes for processing your personal data are as follows:

Providing and Improving Services

We collect and process personal data to deliver the IT services you request, such as website development, consulting, and technical support. This data is necessary to fulfill contractual obligations and improve the quality of our services. Without this data, we cannot ensure the effective delivery of our services.

Communication with Users

Your contact information is used exclusively to communicate with you regarding inquiries, service updates, project statuses, and other related matters. This processing is essential for maintaining clear and efficient communication and addressing any concerns or requests promptly.

Analyzing Website Performance

To ensure the optimal performance of our website, we process non-identifiable technical data such as IP addresses, browser types, and interaction behavior. This helps us maintain security, identify technical errors, and improve functionality. Processing is limited to legitimate interest under GDPR and does not infringe on user privacy.

Compliance with Legal Obligations

We are legally required to process specific personal data, such as transaction records and billing details, to comply with Slovak tax regulations, accounting standards, and other statutory requirements. This includes retaining such data for legally mandated periods to meet compliance obligations.

Legal Grounds for Processing

Each purpose for data processing is based on a clear legal ground under GDPR:

  • Contractual necessity under GDPR Article 6(1)(b) for providing services and communication.
  • Legal obligation under GDPR Article 6(1)(c) for compliance with tax and statutory requirements.
  • Legitimate interest under GDPR Article 6(1)(f) for website performance analysis and user experience improvement.
  • Explicit consent under GDPR Article 6(1)(a) for marketing and promotional activities.

User Responsibility

By providing your personal data, you confirm that:

  • The information submitted is accurate, complete, and relevant to the stated purpose.
  • You have not included unnecessary or sensitive data that is not explicitly requested. If such data is voluntarily submitted, it will be processed solely with your explicit consent.

Minimization and Retention of Data

We adhere to the principle of data minimization, ensuring that only data strictly necessary for the above purposes is collected. Personal data will not be retained longer than required by law or the specific purpose for which it was collected.

 

Your Responsibility When Providing Data

When submitting personal data to us, you bear full responsibility for ensuring that the data you provide complies with applicable laws and does not infringe upon the rights or privacy of others. By providing your personal data, you explicitly confirm and agree to the following:

Accuracy and Completeness

  • The information you provide is accurate, truthful, complete, and up-to-date at the time of submission.
  • Any inaccurate or outdated information that results in errors, delays, or miscommunication is your sole responsibility.
  • You agree to promptly inform us of any changes to the personal data submitted, such as a change in contact information, to maintain accuracy in our records.

Permissions for Third-Party Data

  • If you submit personal data on behalf of another individual (e.g., as a representative, parent, or guardian), you confirm that you have obtained the necessary legal permissions or authorizations to do so.
  • You accept responsibility for ensuring that the individual is aware of this policy and has agreed to the processing of their data in accordance with it.
  • If a claim arises from the submission of another individual’s data without proper authorization, you will bear full liability for any resulting damages, penalties, or legal consequences.

Prohibition of Unnecessary or Sensitive Data

  • You agree to provide only the data explicitly requested and avoid submitting unnecessary, irrelevant, or sensitive information unless it is required for the purpose of the interaction and submitted with explicit consent.
  • If sensitive data (e.g., health data, political opinions, or other special categories of data under GDPR Article 9) is voluntarily submitted, you acknowledge that we will process it solely for the purpose related to your inquiry or request.

Misuse of Data Submissions

  • You must not use our forms or submission channels to send false, misleading, malicious, or harmful information. Doing so may result in legal consequences and/or termination of access to our services.
  • Any misuse of data submission channels or submission of fraudulent data that causes harm to us, our services, or other individuals will result in appropriate legal actions under Slovak and EU laws.

Assumption of Responsibility

By submitting personal data to us, you agree to:

  • Take full responsibility for the content and accuracy of the data provided.
  • Acknowledge that any harm, disputes, or issues arising from inaccurate, unauthorized, or inappropriate data submissions are your responsibility.
  • Indemnify and hold us harmless from any claims, damages, or legal liabilities resulting from your failure to comply with this responsibility.

Your cooperation in ensuring the accuracy and legitimacy of submitted personal data is essential for maintaining lawful and transparent data processing. Failure to comply with these responsibilities may result in the suspension of services, termination of access, or legal action where applicable.

Note

We ensure that all personal data collected is handled in compliance with GDPR, Slovak Act No. 18/2018 Coll., and relevant EU directives. By using our website or services, you acknowledge and agree to the collection and processing of personal data as described in this section.

 

 

3. How We Collect Personal Data

We collect personal data through various methods to ensure that our services are delivered efficiently, our website operates securely, and we comply with applicable legal and regulatory obligations. Below, we outline the ways in which we may collect your data.

 

Direct Interactions

We collect personal data that you voluntarily provide during your interactions with us. This includes:

  • When you contact us via email, phone, or our website’s contact forms to request support, submit inquiries, or ask for a quote.
  • When you request services such as IT development or consulting, and we require information necessary to fulfill your specific needs.
  • If applicable, when you create an account on our website or use specific services, providing details such as your name, email address, or phone number.

You, as the user, are responsible for ensuring that any data provided during these interactions is accurate, current, and submitted in compliance with applicable laws and this policy.

 

Automated Technologies

Certain data is collected automatically when you access or use our website. These automated methods include:

  • Cookies and Tracking Technologies: Cookies and similar technologies help enhance the website’s functionality, remember your preferences, and analyze user behavior. Data collected through these tools may include your IP address, geolocation, browser type, device details, and the pages you visit.
  • Server Logs: Our servers automatically record technical information, such as the time of access, error logs, and session durations. This data ensures the security and stability of the website.
  • Analytics Tools: We use third-party analytics tools to monitor website performance and user traffic. This helps us improve the user experience and optimize our services.

For more details about cookies and tracking technologies, please refer to our https://webuniter.com/legal/cookie-policy/. You may also manage your cookie preferences through your browser settings.

 

Third Parties

We may receive personal data about you from trusted third-party sources, which include:

  • Analytics Providers:
    Platforms such as Google Analytics or other analytics services that provide anonymized information about user behavior, traffic patterns, and website performance.

  • Payment Processors:
    Information related to your transactions, such as payment confirmations or billing data, is shared with us by third-party payment processors to facilitate financial transactions.

  • Marketing Tools: Marketing platforms may share insights about your engagement with our campaigns, such as interactions with targeted advertisements or newsletters.


We ensure that all third-party providers we engage with comply with the General Data Protection Regulation (GDPR) and relevant Slovak laws. This is achieved through formal Data Processing Agreements (DPAs), which guarantee that third parties process your personal data securely, lawfully, and only for the purposes we outline.



Your Rights and Choices

We respect your rights as a data subject under GDPR and strive to ensure transparency in how your personal data is collected and processed. However, by accessing and using our website, you acknowledge and agree to the use of cookies and other automated tracking technologies.

Automated Technologies

Cookies and similar tracking technologies are essential for the proper functioning of our website, improving user experience, and analyzing website performance. By continuing to browse or use our website, you provide your consent to the use of these technologies. If you do not agree with the use of cookies, you are required to leave the website. Disabling cookies through your browser settings may negatively impact the functionality and usability of our website, and we are not responsible for any issues caused by such actions.

Third-Party Data

We process data received from third-party sources, such as analytics platforms or payment processors, only to the extent necessary to deliver our services. All third-party data processing is conducted in compliance with GDPR and Slovak law, ensuring the lawful and secure handling of your personal data.

By using our website, you confirm that you understand and accept these conditions.

Transparency and Accountability

We are committed to maintaining transparency in how we collect personal data. By using our website, submitting forms, or interacting with third-party tools integrated into our platform, you acknowledge and agree to the collection and processing of your data as described in this policy.

 

 

4. Purpose and Legal Basis for Processing

We process your personal data in compliance with the General Data Protection Regulation (GDPR) and Slovak Act No. 18/2018 Coll. on Personal Data Protection to ensure lawful, fair, and transparent data handling. Each purpose for processing your personal data is supported by specific legal requirements as outlined below.

Provision of Services

We collect and process personal data to provide the IT services you request, such as website development, consulting, or other technical solutions. This processing is necessary to fulfill our contractual obligations to you or to take steps at your request before entering into a contract, as permitted under Article 6(1)(b) GDPR.

Marketing Communications

With your explicit consent, we use your personal data to send you newsletters, promotional materials, and updates about our services. This voluntary consent, as required under Article 6(1)(a) GDPR, ensures that you remain in control of the communications you receive. You may withdraw your consent at any time without affecting the lawfulness of processing that occurred prior to withdrawal.

Compliance with Legal Obligations

Certain data is processed to meet our obligations under Slovak and EU laws, such as maintaining accurate tax records or responding to lawful inquiries from authorities. These activities are mandatory under Article 6(1)(c) GDPR, as they are required for compliance with applicable legal frameworks.

Improvement of Services

We process data related to your interactions with our website to analyze performance, improve functionality, and enhance the overall user experience. This processing, supported by Article 6(1)(f) GDPR, is carried out in pursuit of our legitimate interest in continually improving our offerings while ensuring that your fundamental rights are respected.

Balancing Interests and Your Rights

When processing your data for purposes based on legitimate interests, we ensure that the data collected is minimal, relevant, and non-invasive. Furthermore, we provide you with the right to object to such processing at any time, in accordance with Article 21 of GDPR.

Your Control Over Data Processing

By engaging with our services, you acknowledge and agree to the processing of your personal data for the purposes outlined above.

 

5. Data Sharing

We may share your personal data with specific third parties to ensure the effective delivery of our services, compliance with legal obligations, and support for operational activities. All data sharing is conducted in accordance with the General Data Protection Regulation (GDPR) and the Slovak Act No. 18/2018 Coll. on Personal Data Protection. Below, we outline the categories of recipients and the safeguards in place to protect your data.

Service Providers

Your personal data may be shared with trusted service providers who perform critical operational functions on our behalf. These include:

  • Hosting Providers: To store and manage website data securely.
  • Payment Processors: To process financial transactions and ensure proper invoicing.
  • Analytics Platforms: To analyze website performance and user behavior, enabling us to improve functionality and user experience.

All service providers are carefully selected and bound by Data Processing Agreements (DPAs) to ensure compliance with GDPR. These agreements obligate the providers to handle your data securely, lawfully, and solely for the purposes defined by us.

Authorities

We may disclose personal data to governmental or regulatory authorities, courts, or law enforcement agencies when required to do so by law. This includes:

  • Responding to legal requests, such as subpoenas or court orders.
  • Complying with regulatory requirements, such as tax reporting or fraud prevention.

Data will only be disclosed to the extent necessary to fulfill our legal obligations under GDPR Article 6(1)(c) and Slovak national laws.

Marketing Partners

To deliver targeted advertisements and evaluate the effectiveness of our marketing campaigns, we may share limited personal data with marketing platforms or partners. Examples include advertising networks, email marketing platforms, or social media channels. This processing is conducted with your explicit consent, as required under GDPR Article 6(1)(a).

Safeguards for Data Sharing

To protect your personal data when shared with third parties, we implement the following safeguards:

  • Data Processing Agreements (DPAs): Binding contracts with all third parties that outline their obligations to process data securely and lawfully.
  • Access Limitation: Third parties are provided access only to the data necessary for their specific role or function.
  • Ongoing Monitoring: We monitor third-party compliance with GDPR and conduct periodic assessments of their data protection practices.
  • Data Localization: Whenever possible, we ensure that personal data is stored and processed within the EU/EEA. For international transfers, see Section 6: International Data Transfers.

Your Rights Regarding Data Sharing

You have the right to:

  • Request information about the third parties with whom your data has been shared.
  • Object to the sharing of your data for specific purposes, such as marketing.
  • Withdraw consent for data sharing where applicable.

By using our services, you acknowledge and consent to the sharing of your data with the categories of third parties outlined above, where such sharing is necessary for the purposes described in this policy.



6. International Data Transfers

To provide our services effectively, we may transfer your personal data to recipients outside the European Union (EU) or the European Economic Area (EEA). Such transfers might occur when we use third-party service providers or platforms based in countries like the United States (e.g., Google, payment processors, or marketing platforms). When transferring personal data internationally, we adhere strictly to the General Data Protection Regulation (GDPR) to ensure your data is protected to the same standards as within the EU/EEA.

Why International Data Transfers May Occur

  • Service Providers: Some of the service providers we use, such as hosting services, cloud storage, analytics tools, or email platforms, may process data on servers located outside the EU/EEA.
  • Technical Requirements: Certain technologies or platforms may require data to be stored or processed in jurisdictions outside the EU/EEA for operational purposes.

How We Ensure Compliance with GDPR

We are committed to ensuring that any transfer of personal data outside the EU/EEA complies with GDPR and that your personal data remains secure. To achieve this, we implement the following safeguards:

  1. Standard Contractual Clauses (SCCs)
    For transfers to countries that do not provide an adequate level of data protection (as assessed by the European Commission), we rely on Standard Contractual Clauses (SCCs). These are legally binding agreements between us and the recipient of your data, which impose strict obligations to ensure your personal data is handled securely and lawfully.
  2. Adequacy Decisions
    When personal data is transferred to a country recognized by the European Commission as offering an adequate level of data protection, such as Switzerland or Japan, we rely on this adequacy decision to facilitate the transfer. Adequacy decisions ensure that the recipient country’s data protection laws provide sufficient safeguards comparable to those of the EU.
  3. Additional Safeguards
    In addition to SCCs and adequacy decisions, we implement the following additional safeguards:
    • Encryption: All personal data transferred outside the EU/EEA is encrypted during transit to protect it from unauthorized access.
    • Access Control: Only authorized personnel and service providers have access to your personal data, ensuring its confidentiality and security.
    • Periodic Audits: We regularly assess the security measures of third-party providers to ensure continued compliance with GDPR.


Your Rights and Transparency

As a data subject, you have the right to know:

  • Whether your personal data is transferred outside the EU/EEA.
  • The specific safeguards implemented to protect your data during such transfers.
  • The right to request a copy of the Standard Contractual Clauses (SCCs) or other safeguards in place for these transfers.

You may contact us at [Your Email Address] for further information regarding international data transfers or to exercise your rights under GDPR.


Risks Associated with International Transfers

While we implement stringent safeguards to protect your personal data during international transfers, it is important to acknowledge that data protection laws in certain non-EU/EEA countries may not provide the same level of protection as GDPR. By continuing to use our services, you understand and accept that such risks may exist when your personal data is transferred internationally.

Server Relocation

Our servers, managed by trusted hosting providers, may occasionally relocate to different physical locations, either within or outside the EU/EEA, depending on operational or contractual requirements. While we ensure that all hosting providers comply with GDPR or equivalent data protection standards, we cannot guarantee the absolute safety of your data due to factors beyond our control, such as:

  • The hosting provider’s internal infrastructure and security measures.
  • Legal obligations in the hosting country that may require access to your data by local authorities.

You agree that such risks, while minimal, are inherent to data storage and hosting in a global digital environment.


Content Delivery Network (CDN)

We utilize a Content Delivery Network (CDN) to improve the speed, reliability, and performance of our website. A CDN is a network of servers distributed globally that cache copies of our website’s static resources (e.g., images, scripts, and stylesheets). When you access our website, some of your data (e.g., IP address or requested resources) may be temporarily processed by these servers to deliver content efficiently.

Potential Risks with CDN Usage

While CDNs are designed to enhance performance, certain risks may arise:

  1. Data Routing: Data, including your IP address, may be routed through servers located outside the EU/EEA, even if the CDN provider is GDPR-compliant.
  2. Temporary Storage: Cached content may be temporarily stored on servers in jurisdictions with varying levels of data protection.
  3. Data Breaches: Although CDNs employ advanced security measures, such as encryption, the distributed nature of CDNs may make them more susceptible to targeted attacks or unauthorized access.


Our Mitigation Measures

To minimize the risks associated with server relocations and CDN usage, we implement the following measures:

  • Hosting Provider Selection: We work with hosting providers and CDN platforms that adhere to GDPR or equivalent standards and have robust data protection policies.
  • Encryption: Data transferred between our servers, CDN nodes, and your device is encrypted using industry-standard protocols, such as HTTPS and SSL/TLS.
  • Access Restrictions: Access to personal data on our servers or cached resources in CDNs is restricted to authorized personnel only.
  • Monitoring and Audits: We continuously monitor hosting and CDN providers for compliance with data protection standards and conduct periodic security audits.

Your Acknowledgment

By using our website or services, you acknowledge and accept:

  • The potential risks associated with server relocations and hosting provider dependencies.
  • That data processed through CDN servers may be temporarily routed or cached in jurisdictions outside the EU/EEA, which could carry a slight risk of exposure to non-GDPR-compliant environments.

Note

We are dedicated to protecting your personal data regardless of where it is processed or stored. By using our services, you agree to the international transfer of your personal data as described in this policy.

 

7. Data Retention

We retain your personal data only for as long as it is necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. This ensures compliance with the General Data Protection Regulation (GDPR), Slovak Act No. 18/2018 Coll. on Personal Data Protection, and other relevant legal frameworks.

Retention Periods by Data Category

  1. Transactional Data
    • Purpose: To comply with legal obligations related to tax, accounting, and financial reporting.
    • Retention Period: Retained for 10 years from the date of the transaction, as required by Slovak tax laws and related EU directives.
  2. Marketing Data
    • Purpose: To send newsletters, promotional materials, or updates about our services, based on your explicit consent.
    • Retention Period: Retained until you withdraw your consent or the data becomes irrelevant (e.g., inactive subscriptions). Upon withdrawal of consent, your data will be securely deleted or anonymized without undue delay.
  3. Website Usage Data
    • Purpose: To analyze website performance, improve functionality, and enhance user experience.
    • Retention Period: Retained for up to 24 months, after which the data is either deleted or anonymized, ensuring it cannot be linked back to you.


Criteria for Determining Retention Periods

The retention periods listed above are determined based on the following criteria:

  • Legal and Regulatory Requirements: Data that must be retained to meet statutory obligations, such as financial reporting or regulatory compliance.
  • Operational Necessity: Data needed to maintain the functionality of our services or ensure the quality of user experience.
  • User Preferences: Data retained based on your consent, such as marketing communications, will be deleted if consent is withdrawn.

Secure Deletion of Data

When personal data is no longer required for the purposes outlined above, we will ensure it is securely deleted or anonymized to prevent unauthorized access, misuse, or identification.

  • Deletion: Data is permanently removed from all systems, including backups.
  • Anonymization: Data is transformed so it can no longer be linked back to an individual, enabling its use for statistical purposes without privacy risks.

Your Rights Regarding Retention

You have the right to:

  • Request Deletion: Under GDPR Article 17, you may request the deletion of personal data that is no longer necessary for its original purpose, provided no overriding legal obligations require its retention.
  • Request Clarification: You may inquire about the specific retention period for a particular category of your data.

We are committed to balancing legal compliance and data minimization by retaining your personal data only for as long as necessary.

 

8. Your Rights Under GDPR

As a data subject, you are entitled to specific rights under the General Data Protection Regulation (GDPR) and Slovak Act No. 18/2018 Coll. on Personal Data Protection, ensuring transparency and control over the processing of your personal data. Below is a summary of your rights and how you can exercise them:

Access

You have the right to request access to your personal data and obtain a copy of the information we process about you. This includes details about the purpose of the processing, the categories of data processed, the recipients of your data, and the retention periods.

Rectification

If you believe that any personal data we hold about you is inaccurate or incomplete, you have the right to request its correction or completion without undue delay.

Erasure (Right to Be Forgotten)

You may request the deletion of your personal data in certain circumstances, such as:

  • The data is no longer necessary for the purpose for which it was collected.
  • You withdraw your consent for processing, and no other legal basis exists.
  • You object to processing based on legitimate interests, and there are no overriding legitimate grounds for continued processing.

This right does not apply if the processing is necessary to comply with legal obligations or for the establishment, exercise, or defense of legal claims.

Restriction of Processing

You have the right to request the restriction of processing your personal data in specific situations, such as:

  • When you contest the accuracy of the data.
  • When the processing is unlawful, but you oppose erasure and request restriction instead.
  • When the data is no longer needed by us, but you require it for legal claims.

Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format. You can also request that we transmit this data directly to another controller, for a fee imposed by us. This right applies only to data processed based on consent or a contract and by automated means.

Objection

You have the right to object to the processing of your personal data in the following situations:

  • Marketing: You can object to receiving marketing communications at any time, and we will stop processing your data for this purpose.
  • Legitimate Interests: You can object to processing based on our legitimate interests, unless we demonstrate compelling legitimate grounds that override your rights and freedoms.



Complaint to the Slovak Data Protection Authority

If you believe your rights under GDPR have been violated or your data is being processed unlawfully, you have the right to file a complaint with the Slovak Data Protection Authority (Úrad na ochranu osobných údajov SR):

 

9. Data Security

Protecting your personal data is a top priority for us. We implement robust technical and organizational measures to ensure the confidentiality, integrity, and availability of your data, in full compliance with the General Data Protection Regulation (GDPR) and Slovak Act No. 18/2018 Coll. on Personal Data Protection. These measures are designed to protect against unauthorized access, misuse, loss, alteration, or destruction of your personal data.

Security Measures We Employ

  1. Encryption

    • All sensitive personal data is encrypted during transmission and storage using industry-standard encryption protocols, such as SSL/TLS, to prevent unauthorized access or interception.
    • This ensures that your data remains protected even in the unlikely event of unauthorized access to our systems.

  2. Access Controls

    • Access to personal data is restricted to authorized personnel only, based on their specific job responsibilities.
    • Role-based access control (RBAC) systems are in place to ensure that employees or contractors can only access the data necessary for their tasks.

  3. Regular Security Audits

    • We conduct regular assessments and audits of our data protection measures to identify and address vulnerabilities in our systems.
    • These audits are complemented by periodic penetration testing to ensure our security protocols remain effective against evolving threats.

  4. Breach Notifications

    • In the unlikely event of a personal data breach, we comply with GDPR Article 33, which requires us to notify the relevant data protection authority within 72 hours of becoming aware of the breach.
    • If the breach poses a high risk to your rights and freedoms, we will also inform you without undue delay, providing details of the breach and any steps you should take.

Additional Measures

  • Data Minimization: We collect and process only the personal data necessary for specific, lawful purposes to reduce risks associated with data storage.
  • Periodic Backups: Regular backups of personal data are maintained to ensure that information can be restored in the event of accidental loss or technical failure.

Limitations and User Responsibility

While we take all reasonable precautions to safeguard your personal data, it is important to note that no security system is completely immune to breaches. As a user, you also play a crucial role in maintaining data security by:

  • Ensuring the security of your devices and internet connection when interacting with our services.
  • Keeping your login credentials private and notifying us immediately if you suspect unauthorized access to your account.

Transparency in Data Security

We are committed to maintaining transparency about how we protect your data.  By employing industry-standard security measures and adhering to GDPR requirements, we strive to provide a secure environment for your personal data. However, while we continuously enhance our security protocols to address emerging risks, your proactive steps in safeguarding your interactions with us are equally essential to ensure comprehensive data security.


Acceptance of Data Security Limitations

By accessing and browsing our website, you acknowledge and agree to the following regarding data security:

Data Security Guarantee

While we employ industry-standard security measures to protect your personal data, no system or method of electronic transmission or storage is entirely immune to technical failures, cyberattacks, or unforeseen events. As such:

  • We cannot guarantee 100% protection of your data against loss, unauthorized access, or breaches caused by technical reasons or third-party actions.
  • The potential risks include, but are not limited to, server outages, software vulnerabilities, hosting provider issues, or targeted cyberattacks on our systems or those of third-party service providers.

Liability and Cooperation

In the unlikely event of data loss, breach, or other security-related incidents:

  • We will take all necessary steps to investigate the issue, mitigate its effects, and comply with legal requirements, including notifying the relevant authorities as mandated by GDPR Article 33.
  • While we are prepared to cooperate with law enforcement, regulatory authorities, and affected third parties to resolve the issue, we cannot engage in personal-level resolutions with individual users for such incidents.

Acknowledgment of Risk

By continuing to use our website, you acknowledge that:

  • You understand and accept the limitations of data security inherent in digital systems.
  • You agree that we are not liable for any direct, indirect, or consequential damages resulting from the loss or unauthorized access to your data due to reasons beyond our control, including actions by third-party service providers.

 

10. Updates to This GDPR Policy

We reserve the right to modify, update, or revise this GDPR Compliance Policy at any time to reflect changes in our data processing practices, legal requirements, or operational needs. Any updates or modifications will take effect immediately upon posting the revised version on this page, and the Effective Date will be updated accordingly.

User Responsibility for Staying Informed

By using our website, you acknowledge and agree that:

  • It is your sole responsibility to periodically review this policy for any changes or updates.
  • We are not obligated to notify you individually of revisions to this document.
  • Continued use of our website or services after any updates constitutes your acknowledgment and acceptance of the revised policy.

No Individual Notifications

We do not issue individual notifications to users regarding updates to this GDPR Compliance Policy. All updates will be made publicly available on this page, ensuring transparency and accessibility.

Where to Find the Latest Version

The latest version of this policy is always available at www.webuniter.com/legal/



11. Contact Information

If you have any questions, concerns, or requests regarding this GDPR Compliance Policy or how your personal data is handled, please feel free to contact us using the information below. We are here to address your concerns and ensure transparency in our data protection practices.

Data Protection Contact

 

Alternatively, you may file a complaint with the Slovak Data Protection Authority (Úrad na ochranu osobných údajov SR):

 

 

 

Final note and legal conclusion

At WebUniter, protecting your personal data is not just about compliance – it is a core aspect of our commitment to ethical and responsible business practices. We recognize that trust is earned through transparency, accountability, and consistent dedication to upholding your rights under data protection laws.

 

As a business rooted in innovation and customer-centricity, we view privacy as a cornerstone of building sustainable relationships with our clients. This policy reflects not only our adherence to the law but also our broader philosophy of treating your data with the respect and care it deserves.

 

We invite you to reach out to us with any concerns, inquiries, or suggestions. Your feedback helps us continuously improve our practices and align them with your expectations. Thank you for entrusting us with your personal data and for supporting our mission to deliver excellence while safeguarding your privacy.