+420 844 111 777 klient@crif.com

Website User Data Protection Policy

This document setting out the data protection policy describes the procedures adopted by the interest association CNCB – Czech Non-Banking Credit Bureau, z. s. p. o., ID No.: 712 36 384, with registered office at Štětkova 1638/18, Nusle, 140 00 Prague 4, registered in the Federal Register maintained by the Municipal Court in Prague, file No. L 58499 (hereinafter referred to as “CNCB”), as the operator of the website www.cncb.cz (hereinafter referred to as the “website”) regarding the processing of personal data of website users. This is a general information addressed to those who visit this website, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the “General Data Protection Regulation”). When using the services offered and provided through this website, users will provide certain information about themselves and may make certain requests.

Data processing

Access to this website may result in the processing of data relating to identified or identifiable natural persons (so-called data subjects). The data controller is CRIF – Czech Credit Bureau, a.s., with registered office at Štětkova 1638/18, Nusle, 140 00 Prague 4, registered in the Commercial Register maintained by the Municipal Court in Prague, file no. B 6853 (hereinafter referred to as “CRIF CZ”) and CNCB. The personal data may also be processed by a processor, which is CRIF S.P.A., with registered office at Via M. Fantin 1-3, 40131 Bologna, Italian Republic (hereinafter referred to as “CRIF S.P.A.”), which will ensure adequate organizational and technical processing of the data in order to secure it against unauthorized access, loss, damage, theft, use or other disclosure.

Place of data processing

Personal data are processed on the premises of CRIF CZ, CRIF S.P.A. and CNCB. The data are handled exclusively by persons with the appropriate technical skills and capabilities who have been assigned specific data processing functions.

Data processing procedures

The data are processed in a fair manner and in full compliance with the General Data Protection Regulation in order to ensure data protection and confidentiality. Data are processed by electronic or automated means.

Types of data processed

The information systems and software processes used in the operation of this website collect certain personal data in the course of their normal operation. The transmission of this data is implicitly determined by the use of ICP protocols. The data is not collected with the aim of linking it to specific subjects, but by its very nature it allows users to be identified through its processing and association with other data held by third parties. This category of data includes the IP addresses and domain names of computers used by users connecting to the network, as well as the URLs of the resources requested, the timing of the requests, the procedure used to make the requests and other parameters relating to the user’s operating system and information environment. And then there is the information provided by the “cookies” on the user’s hard drive. In addition, aggregate data on website usage is also collected, such as information on which pages have the most traffic, the number of accesses per day, and the average time users spend on each page.

Use of the collected data

Collected data may be used to, among other things, fulfill user requests, provide information about on-demand quotes, process, fulfill and track user quotes, provide information about order status, provide information about products or services that may be of interest to users, provide information about updates and changes to this website, new products or services, etc.

CNCB may aggregate information provided to it by users in previous off-line communications with information provided by users on-line for the purpose of tailoring the website to the user. Some data of an operational nature may also be processed to ensure the security and availability of the website and related services. Statistical data about the use of the website is processed to improve its functionality and user-friendliness and to prepare aggregate, anonymous information used in marketing, advertising or similar activities.