Privacy policy

PRINCIPLES OF PERSONAL DATA PROTECTION

rules for the collection, collection, storage, retention, use, dissemination and security of personal data

Please send questions and comments on this document to gdpr@jump-soft.com

1.Operator:

the entity processing the personal data of the data subject.

JUMP soft, a.s., 
Landererova 12, 
811 07 Bratislava

ID: 46 117 491

Registered in the Commercial Register of the District Court Bratislava I, Section: Sa, File No .: 5273 / B

(hereinafter also referred to as "Operator" or JUMP)

2. The person concerned:

all natural persons whose personal data are processed by the Operator.

These are:

  • Employees and their close persons
  • Former employees and their close persons
  • Job seekersSuppliers, customers and contractual partners
  • Visitors of the Operator's website
  • Visitors of social networks operated by the Operator
  • Visitors of the Operator's headquarters equipped with camera systems with recording

(hereinafter also referred to as "Affected Person")

3.Definition of terms used:

Personal information:

are any data used to directly or indirectly identify the Data subject. The personal data is considered to be the title, name, surname, contact information, job position, photo or portrait on the camera system, location data. Data specific to the physical, physiological, genetic, mental, economic, cultural or social identity of the Data subject shall also be considered personal data.

Processing of personal data:

performing operations or a set of operations with personal data, from their acquisition to liquidation. This includes acquiring, collecting, disseminating, recording, organizing, processing or modifying, searching, browsing, rearranging, combining, moving, using, storing, blocking, disposing of, transbounding, providing, making available or publishing them.

Broker:

is a person authorized by the Operator who processes personal data on his behalf.

Information System:

is a system in which a set of personal data accessible according to specified criteria is systematically processed for a pre-defined or established purpose. An example is the attendance system.

GDPR:

GDPR means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation) .

Personal Data Protection Act:

is Act no. 18/2018 Coll. on the protection of personal data and on the amendment of certain laws as amended.

Cookies:

are small text files that a web server places on your computer when you view certain pages. They are used to store information about you and your settings, so the web server does not have to request them repeatedly. This speeds up page loading and optimizes the user experience. JUMP uses only those functional and technical cookies that are immediately necessary for the independent operation of the website, therefore your consent to their use is not required.

Profiling:

automated processing of personal data for the purpose of evaluating certain personal aspects relating to a natural person. An example is the analysis of an individual 's performance, health, interests, etc. The company JUMP soft, a.s. does not perform automated processing of personal data, including profiling.

Public space camera system:

a camera system with a recording located at the seat of the Operator by the building administrator for the purpose of monitoring public spaces for the purposes of protection of health and property on the basis of a legitimate interest. Employees and visitors to the building are alerted to the presence of cameras by the camera pictogram at the entrance to the building.

Camera system of operating premises:

a camera system with recording placed in the Operator's premises monitoring the entrances and escape exits in order to protect health and property on the basis of a legitimate interest. The JUMP camera system is not used to monitor employees in workplaces or other areas where the privacy of the Affected Persons could be compromised. Employees and visitors of the Operator are notified of the presence of cameras by the pictogram of the camera at the entrance to the premises.

Facebook / Instagram:

JUMP is a co-operator of the company profile on the social networks Facebook and Instagram. Facebook uses cookies to store your device. For more information on Facebook's processing of personal data, please visit. We would also like to inform you that any data processed via Facebook will be transmitted internally within Facebook to Facebook's servers located worldwide, based on the EU-US Privacy Schield mechanism.

LinkedIn:

JUMP is the operator of the company profile on the social network LinkedIn. The LikedIn social network uses the storage of cookies in your device. The operator of this social network has adopted its own provisions for the protection of personal data, which you will find on the site. We would also like to inform you that any data processed via LinkedIn will be transmitted internally within the social network to LinkedIn servers located around the world, based on the EU-US Privacy Schield mechanism.

4. Your rights:

we value your trust and take a responsible approach to securing and respecting your rights. You can exercise all rights through communication with the Operator in the manner specified below.

Right of access to data:

as a data subject you have the right to access your personal data. You can obtain copies of personal data that the Operator processes, obtain confirmation of whether your data is processed or not.

Right to rectification:

as the Affected Person, you have the right to request the Operator to correct your personal data if they are incorrect or incomplete.

Right to delete:

as a Data subject, you have the right, under certain conditions, to request the deletion of your personal data. If deletion is not possible, the Operator informs you of the reasons why it cannot delete the data.

Right to restrict processing:

as a Data subject, you have the right, under certain conditions, to request a restriction on the processing of your personal data. If deletion is not possible, the Operator informs you of the reasons why it cannot restrict the processing of data.

Right to data portability:

as the Affected Person, you have the right to obtain your personal data from the Operator and transfer them to another operator. The company JUMP soft, a.s. carry out the transfer only at the written request of the Person concerned.

Right to object:

as the Affected Person, you have the right to object to the processing of personal data with the Operator.

Right to withdraw consent:

if the Operator processes your personal data on the basis of consent / express consent, you have the right to revoke this consent at any time.

Right to apply for personal data protection proceedings:

as the Affected Person, you have the right to submit a proposal, complaint or initiative to the Office for Personal Data Protection of the Slovak Republic with its registered office at Hraničná 12, 820 07 Bratislava 27, Slovak Republic, Company Identification Number: 36 064 220, tel. No .: +421/2/3231 3220. More information about the procedure can be found here.

5. How to exercise your rights with the Operator:

The person concerned may exercise his rights in the following ways:

  • By post to the address of JUMP: Landererova 12, 811 09 Bratislava
  • By e-mail to the address gdpr@jump-soft.com
  • Personally at the registered office of the company: Landererova 12, 811 09 Bratislava

The Operator undertakes to register your application and to inform the applicant of the measures taken without undue delay, no later than within 1 month of receipt of the application. This period may be extended by 2 months if necessary, taking into account the complexity of the application and the number of applications. The Operator must inform the applicant about the extension of the deadline no later than 1 month from the delivery of the application together with the justification.

The communication will take place in the manner chosen by the applicant, generally in the manner in which the application was submitted, unless the applicant determines otherwise.

The JUMP shall process applications free of charge, but if the Data subject's request is unfounded or repeated, the JUMP may charge a reasonable administrative fee or refuse to act.

6. Why we process personal data:

  • processing of personal data is essential in order for us to be able to fulfill our obligations and tasks arising from and on the basis of
  • generally binding legal regulations of contractual and pre-contractual relations of legitimate interests, which follow the consent or express consent of the Person concerned

7. For what purposes do we process personal data:

We process your personal data mainly for the purpose of fulfilling our legal obligations as an employer, for the purposes of fulfilling our contractual and pre-contractual obligations towards clients, for the purpose of fulfilling our obligations arising from general legal regulations.

More detailed information on the purposes of processing personal data, the legal bases of processing and the retention period can be found in the Record of Processing Activities Available on Request.

8. Who can have access to personal data:

in addition to the Operator's authorized employees, intermediaries designated by the Operator may also have access to the personal data of the Affected Person processed by the Operator. The controller regularly ensures that the processing of personal data by these entities takes place in accordance with the principles of personal data protection.

These are:

  • suppliers of payroll and accounting services
  • suppliers of IT services
  • providers of legal, consulting or educational services
  • administrators of camera systems at the seat of the Operator

Personal data will be provided on request also:

  • public authorities
  • empowered in criminal proceedings

9. Cross-border data transmission:

We generally do not carry out cross-border transfers of personal data of our employees as Affected Persons to third countries outside the European Economic Area (EU, Iceland, Norway and Liechtenstein) and to an international organization.

However, we carry out cross-border transfers of personal data of selected employees or contractual partners worldwide in order to fulfill the subject of our business. The subject of cross-border transmission is only ordinary contact personal data in the range of title, name, surname, address, telephone number and e-mail address. We never make cross-border transfers of special categories of personal data.

The controller does not intend to transfer personal data to a third country or international organization, including the identification of the country or international organization. However, some of the recipients may have servers located outside the EU (Google, LinkedIN, Facebook). These servers can be located around the world. Companies based in the USA that have access to personal data are certified under the so-called privacy system. in Private Schields and are considered to provide an adequate level of protection.

10. Protection of personal data:

As the Operator, we pay attention to the security of personal data so as to minimize the risk of their misuse or impairment. To this end, we have taken appropriate technical, organizational and security measures.

Only authorized persons or intermediaries who are instructed on the principles of personal data protection have access to personal data. Documents containing personal data are located in lockable cabinets, the entrance to the Operator's premises is monitored by a camera system and protected by access to a chip card. Technical devices are password protected and protected by anti-virus programs. We have implemented and constantly maintain the ISO 27 001 security standard. Our employees are trained and certified in the field of data protection.

The controller shall immediately deal with any security incident involving personal data in accordance with internal guidelines. If the incident is likely to result in a high risk to the rights and freedoms of natural persons, it shall always inform the Person concerned and inform him / her of the remedial action taken. About each incident is rather a record. The Office for Personal Data Protection of the Slovak Republic informs about each serious incident.

11. Further information for the Persons concerned:

12. Final information:

Changes to the Privacy Policy:

For us, protecting personal information is not a one-time affair. The information we are required to provide to you with respect to our processing of personal data may change or cease to be current. For this reason, we reserve the right to modify and change these conditions to any extent at any time. In the event that we change these conditions in a material way, we will bring this change to your attention, e.g. by general notice on this website or by special notice by email.

Document owner: JUMP soft, a.s.
Date of last update: 22.7.2021