Privacy Policy
This privacy policy explains how we use and protect any information that you provide while using this website.
We are committed to protecting your privacy. If we ask you to provide certain information by which you can be identified when using this website, you can be assured that it will only be used in accordance with this privacy policy.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have implemented appropriate physical, electronic and organisational measures to safeguard and secure the information we collect online.
We may update this policy from time to time by updating this page. We recommend checking this page occasionally to ensure that you agree with any changes.
Data Controller
Our company, United Heels s.r.o., with its registered office at Čimická 708/29, Prague 8 - Troja, 182 00, Czechia; Identification Number: 28518187, registered in the Commercial Register maintained by the Municipal Court in Prague, Section C, Insert 147439, is the controller of your personal data (hereinafter referred to as the "Controller").
Personal Data
Personal Data You Provide to Us
We process personal data that you provide to us directly.
If you order goods or services from us, for example, we require the details marked as mandatory during the ordering process (primarily your first and last name, delivery address, and telephone number). Without this information, we would be unable to deliver your goods correctly. For the purpose of selling goods or services, we also require your e-mail address, to which we will send your order confirmation — which also serves as confirmation of the concluded purchase contract — along with a copy of the terms and conditions and complaints procedure.
Once your goods have been delivered, you may receive an e-mail asking you to rate the purchased goods.
When ordering goods or services, you may also fill in optional details. These help us fulfil the concluded contract better and more efficiently. By completing optional fields in your user profile, you may share additional personal data with us, such as frequently used delivery addresses. Optional data is provided entirely voluntarily.
When paying by payment card, you will be redirected to the secure server of the payment gateway. When paying by payment card from a computer, communication with the payment gateway server may also take place via a so-called iframe (i.e. the payment gateway page is displayed directly on our website without any further redirection). Your payment card details are therefore not sent to our company; instead, they are transmitted directly to our payment gateway provider via a secure data transfer. The payment gateway then transmits the data to the relevant banking institution, again via a secure data transfer.
Personal Data of Third Parties You Provide to Us
If you provide us with personal data relating to third parties, it is your responsibility to inform the person concerned and to obtain their consent to these privacy terms and conditions.
For example, you may purchase goods from us but wish to have them sent to the name or address of another person. In doing so, you will also be providing us with their personal data.
Personal Data We Process Automatically
When you visit our website, we may collect certain information about you, such as your IP address, the date and time of your access to our website, information about your internet browser, operating system, or language settings. We may also process information about your behaviour on our website — for example, which links you visit on our website and which goods are displayed to you.
If you access our website from a mobile phone or similar device, or via one of our mobile applications, we may also process information about your mobile device (data about your mobile phone, any records of application crashes, etc.).
Cookies
A cookie is a small file that requests permission to be stored on your computer's hard drive. Once you agree, the file is saved.
Cookies allow web applications to respond to you as an individual. A web application can tailor its operation to your needs, preferences, and interests by collecting and remembering information about your settings.
We use cookies to record traffic in order to find out which pages are being used. This helps us analyse website traffic data and improve our pages so that they better meet the needs of our customers. We use this information for statistical analysis only, after which the data is removed from the system.
Overall, cookies help us provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie does not in any way give us access to your computer or to any information about you, other than the data you choose to share with us. You may choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer. This may, however, prevent you from taking full advantage of the website.
List of cookies we collect:
The table below lists the cookies we collect and the information they store.
| Cookie | Information and Purpose |
|---|---|
| Technically necessary cookies (always enabled) | |
| session- | Based on the session cookie, the website recognises whether a user has an active shopping basket and whether they are logged in. It is used to identify the connection between the browser and the server. No additional information is stored in the browser other than the session identifier (session ID). Session management takes place on the server side. |
| sw-cache-hash | When visiting the website, an individual CSRF cookie is also created, which serves to secure communication between the browser and the server and enables secure access to individual sections of the website. |
| timezone | A fixed time is stored in the database, which is converted according to the user's time zone using the timezone cookie. This ensures that the correct time is always displayed to the user. The cookie is used for both the public-facing part of the website and the administration. |
| Functional cookies | |
| This category includes, for example, cookies for login or a wishlist. | |
| Statistical cookies | |
| Analytical tools (Google Analytics, etc.) — added automatically if the relevant plugin is active. | |
| Marketing cookies | |
| Google Ads, Facebook Pixel, etc. — again, depending on active plugins. | |
Why We Collect and Process Your Personal Data
We process your personal data for the following reasons:
- Purchase of goods and services: first and foremost, we process your personal data in order to properly process and deliver your order. Should any issues arise, your personal data enables us to know whom to contact.
- Customer care: if you contact us with a query or problem, we must process your data in order to respond to or resolve it. In certain cases, personal data may also be passed on to third parties (e.g. the goods carrier or a service centre).
- User account: the personal data you provide in your user profile unlocks a number of useful features. You may change the data you have entered at any time, with the exception of your e-mail address, which is used to access your user account.
- Marketing activities:
- E-mail marketing: we send you commercial e-mail communications on the basis of your consent. You can easily unsubscribe from commercial communications by clicking the "unsubscribe" link in any e-mail we send you.
- Marketing competitions: in some cases, the winner of a competition may be photographed or filmed, primarily in order to increase the transparency of our marketing competitions. This processing of personal data is carried out on the basis of our legitimate interest, which consists in increasing the credibility of marketing competitions in the eyes of other participants and in increasing the attractiveness of these competitions. You may object to this processing by sending an e-mail to gdpr@unitedheels.cz
- Retargeting: if you enable marketing cookies, we may make use of retargeting techniques.
- Improving our services: using your order history and behaviour on the website, we are able to offer more relevant suggestions for additional goods, such as accessories for products you have purchased. In certain locations, we may display products that are directly relevant to you and match your needs and interests. To optimise elements on and off the website (personalised advertising on third-party websites), we may also use variant testing tools (so-called A/B testing), Google Analytics, Facebook Analytics, etc.
- Customer reviews of goods and services: after purchasing goods or services from us, you may be asked to leave a review. Reviews may also be submitted on your own initiative.
- Exercising rights and legal claims, and inspections by public authorities: we may also process your personal data where we need it to exercise our rights and legal claims (for example, in the event that you have an outstanding debt with us, or to demonstrate delivery of ordered goods). We may further process your personal data where it is required for the purposes of inspections carried out by public authorities, or for other equally serious reasons.
Legal Basis, Purpose, Duration, and Scope of Personal Data Processing
The data controller processes personal data on the basis of the following legal grounds, for the purposes stated below, and for the periods set out below:
| Type of personal data processing | Legal basis for personal data processing | Scope of personal data processing | Purpose of personal data processing | Duration of personal data processing |
|---|---|---|---|---|
| Processing of personal data of a registered user | Consent granted by the data subject [Article 6(1)(a) GDPR] |
|
|
Until a request for erasure of personal data is submitted by the data subject |
| Processing of personal data in the event of a purchase |
Necessary for the performance of a contract [Article 6(1)(b) GDPR] Legitimate interest of the controller [Article 6(1)(f) GDPR] |
|
|
For a period of 5 years following the placing of the order (limitation period set out in the Civil Code) |
| Processing of billing data | Compliance with a legal obligation of the data controller [Article 6(1)(c) GDPR] |
|
Invoicing of goods and services | Until the deadline set out in the Accounting Act, i.e. 10 years |
| Sending of newsletters, SMS messages, SMS promotional communications |
Consent granted by the data subject [Article 6(1)(a) GDPR] Legitimate interest of the controller [Article 6(1)(f) GDPR] |
|
Sending promotional offers by electronic means | Until a request for erasure of personal data is submitted by the data subject |
Without the provision of mandatory data, the controller is unable to provide the data subject with the requested services; in such cases, it is not possible to create a customer account, manage it, or process an order.
Disclosure of Personal Data to Third Parties
Your data remains with us. However, certain companies or individuals work on our behalf and may access your data in the course of assisting us with the operation of our e-shop. These entities are referred to as data processors, and an overview of them is provided below.
Data Processors
A processor processes personal data in accordance with the instructions of the controller and has no right to handle it at its own discretion; it handles the provided data exclusively in accordance with the controller's instructions and does not use it for its own processing purposes.
| Processor | Scope of personal data processing | Purpose of personal data processing | |
|---|---|---|---|
|
Zásilkovna s.r.o., Lihovarská 1060/12, Libeň, 190 00 Praha 9, IČO: 28408306, registered in the Commercial Register maintained by the Municipal Court in Prague, Section C, Insert 139387, and also other companies within the group (hereinafter also referred to as "Zásilkovna") as well as other carriers and collection points whose services are required to provide order delivery. |
|
Delivery of orders | Objections to processing may be raised by e-mail to privacy@zasilkovna.cz |
Links to Other Websites
Our website may contain links to other websites that you may find of interest. However, once you have used these links to leave our site, please note that we have no control over those other websites.
We cannot therefore be responsible for the protection and privacy of any information you provide whilst visiting such sites. These sites are not governed by these privacy terms and conditions. We would therefore advise you to exercise caution and to read the privacy policy of the website in question.