0
Home
Privacy Policy

Privacy Policy

1. INTRODUCTION

Welcome to our online store ArtSets. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy describes how we collect, use, and protect your personal information in accordance with the GDPR and Czech data protection laws.

2. CONTACT

Website address: https://artsets.cz
Company name: Artsets DIY s.r.o.
Registered office: Korunní 2569/108, Vinohrady, 101 00 Prague 10
Company ID (IČO): 234 12 704
Email: info@artsets.cz
Phone: +420 702 004 034

3. DATA COLLECTION3.1 Personal data collected during orders

When you place an order or register on our website, we collect the following personal data:

  • Full name
  • Address
  • Email address
  • Phone number
3.2 Data collected by plugins

We use various plugins on our website that may collect and store certain data. Below is an overview of the plugins we use and the cookies they may create:

3.2.1 WPML

WPML uses cookies to identify the current visitor language, the last visited language, and the language of logged-in users. WPML does not share any user data except when sharing site data via the Installer.

3.2.2 EWWW Image Optimizer

This plugin does not store any personal data by default and does not share it with third parties. If you accept images from users and use the API or Easy IO, such images may be transferred to third-party servers and stored for up to 30 days.

3.2.3 MailPoet

If you are subscribed to our newsletter or are a member of our site, you may receive emails from us. We use your name and email address to send these emails. This site sends emails via the MailPoet Sending Service, which allows us to track opens and clicks. MailPoet uses the following cookies:

  • mailpoet_page_view: Stored for 3,650 days to track a subscriber’s last page view.
  • mailpoet_revenue_tracking: Stored for 14 days to track which newsletters lead to purchases.
  • mailpoet_subscriber: Stored for 3,650 days to track subscriber engagement.
  • popup_form_dismissed_{$formId}: Stored for a duration set per form to track if the user has already dismissed the popup.
3.2.4 Nextend Social Login

This plugin collects data when a visitor registers, logs in, or links their account with any enabled social provider. It collects the email address, name, social provider ID, and access token. It may also collect the profile picture and other fields. The plugin must create a cookie for users using social login authorization.

3.2.5 WooCommerce

This plugin collects data during the order process in our store:

  • Products viewed: Used to display recently viewed items.
  • Location, IP address, and browser type: Used to estimate taxes and shipping.
  • Shipping address: Used to calculate shipping costs and complete orders.

WooCommerce also uses cookies to keep track of cart contents while you browse our website.

3.2.6 WPML Translation Management

This plugin sends the email address and name of each manager and assigned translator, as well as the content itself, to the Advanced Translation Editor and the translation services used.

3.2.7 WooCommerce Multilingual and Multicurrency

This plugin uses cookies to handle cart information when using languages on different domains and to transfer data between domains.

It also uses cookies to determine the language and currency of each order and to properly generate WooCommerce reports.

3.3 Google Analytics

We use Google Analytics to monitor and analyze the use of our website. Google Analytics may use cookies to anonymously collect data about user behavior on our site.

  1. USE OF DATA
4.1 Communication

We use your personal data to send order confirmations, invoices, and occasional newsletters or other marketing messages if you have given your consent. You may withdraw your consent at any time by clicking the “unsubscribe” link in our emails or by contacting us directly.

4.2 No sharing with third parties

We do not share your personal data with third parties unless it is necessary to fulfill your order or required by legal regulations.

4.3 Legal basis for processing

We process your personal data in accordance with Article 6 of the General Data Protection Regulation (GDPR) based on the following legal grounds:

  • Performance of a contract – processing is necessary for fulfilling contractual obligations, especially when completing orders and delivering products.
  • Consent – for example, for sending newsletters or other marketing communications.
  • Compliance with legal obligations – especially in accounting, taxation, and the retention of records in line with applicable legal requirements.
  • Legitimate interest – such as ensuring website security, preventing fraud, or improving customer experience.
  1. DATA PROTECTION
5.1 Data confidentiality

We treat your personal data as confidential and take steps to ensure it is only accessible to authorized personnel who need it to fulfill their job responsibilities. Every employee with access to personal data is bound by a confidentiality agreement.

5.2 Infrastructure-level security

In addition to basic SSL encryption, we have implemented advanced server and network-level security measures, including firewalls and proactive threat monitoring. We regularly audit our systems for vulnerabilities and update our security practices according to the latest expert recommendations.

5.3 Hosting and security

Our website is hosted on servers provided by Hetzner Online GmbH in Germany. This provider complies with GDPR requirements and ensures an appropriate level of technical protection. We keep our WordPress installation and plugins up to date to protect against vulnerabilities.

5.4 Data retention

We store order-related data for at least 3 years for tax and accounting purposes, or longer if required by law.

Newsletter and marketing consent data is stored for 5 years or until the consent is withdrawn.

5.5 Protection against unauthorized access

We use modern technologies and security procedures to protect your personal data from unauthorized access, loss, destruction, or damage. Access to personal data is limited to authorized employees and partners, who are bound by strict contractual confidentiality obligations.

5.6 Regular security audits

We conduct regular internal and external security audits to identify and resolve any security gaps. This includes reviewing and improving our security protocols and practices on a regular basis.

5.7 Third-party data protection

If we share your data with service providers or partners, we ensure they offer adequate levels of data protection and use the data only for purposes aligned with our privacy policy.

  1. USER RIGHTS
6.1 Access and modification

If you have an account, you can access and modify your personal data at any time directly from your profile. You can also contact us to request updates or corrections.

6.2 Right to erasure

You may request the deletion of your personal data if it is no longer needed for the purposes for which it was collected or if you withdraw your consent. In some cases, certain data may be retained if required by law.

6.3 Right to data portability

You have the right to request a copy of the personal data we hold about you in a structured, commonly used, and machine-readable format.

6.4 Withdrawal of consent

If you have given us consent to process your data (e.g., for sending newsletters), you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before the withdrawal.

6.5 Right to file a complaint

If you believe that your personal data is not being processed in accordance with the law, you have the right to file a complaint with the Data Protection Authority (www.uoou.cz).

  1. CONTACT INFORMATION

If you have any questions, comments, or wish to exercise your rights regarding the protection of personal data, feel free to contact us:

  • Company Name: Artsets DIY s.r.o.
  • Registered Address: Korunní 2569/108, Vinohrady, 101 00 Prague 10, Czech Republic
  • Company ID (IČO): 234 12 704
  • Email: info@artsets.cz
  • Phone: +420 702 004 034
  1. PRIVACY POLICY UPDATES
8.1 Updates on the Website

Any changes to this privacy policy will be published on our website to ensure they are always up-to-date and transparent.

8.2 Regular Review of the Policy

We regularly review this policy to ensure compliance with applicable laws and regulations. Significant changes will be announced in an appropriate manner.

8.3 User Feedback

We welcome any feedback on this policy. If you have suggestions or questions, please contact us – your input helps us improve our privacy practices.

8.4 User Consent to Updated Policy

By continuing to use our website after an update, you agree to the revised terms. If you do not agree, we recommend stopping the use of our services and contacting us for more information.

8.5 Direct Notification

If the changes to the policy significantly affect your rights or obligations, we will inform you using the contact details provided.

8.6 Significant Changes

If we make substantial changes to the way we process your personal data, we will seek your consent before implementing the changes.

Effective date: July 7, 2025

10% sleva jen pro vás! 🎁

Přihlaste se k odběru a získejte slevový kód, navíc budete mít přehled o našich novinkách a speciálních nabídkách!

Nezasíláme spam! Přečtěte si naše zásady ochrany osobních údajů pro více informací.