Personal Data Protection
The company Air Navigation Services of the Czech Republic, a state enterprise (hereinafter referred to as “ANS CR” or “Enterprise”) with its registered office at Navigační 787, 252 61 Jeneč, business ID no. (IČO): 49710371 as a data controller would hereby like to inform you about the extent and manner of processing your personal data and your rights in relation to such processing.
ANS CR processes personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC - General Data Protection Regulation (hereinafter referred to as “GDPR”).
In case of queries, comments, complaints, or for the exercise of your privacy rights, you may contact the data protection officer via firstname.lastname@example.org or at the Company’s registered office.
Purpose of processing
The Enterprise processes personal data exclusively for the purposes of providing services, fulfilling legal obligations, performing the employment law agenda, protecting the Company’s rights and for business and marketing purposes. It concerns, in particular, the following activities:
Legal basis of processing
It is only possible to process personal data in the Enterprise on the basis of one of the following legal titles:
Personal data processors
Mainly employees of the Enterprise process personal data. In some cases, the ANS CR uses other persons (processors) to process the personal data. The processing of personal data by other processors is based on a contract, in which these processors undertake to process personal data in accordance with the GDPR Regulation and the Company’s instructions.
ANS CR provides personal data to these processors only if they meet the required organizational and technical conditions to adequately protect such data.
Transfer of personal data abroad
Due to the international character of the Enterprise’s business activities, there may be a need to transfer the processed personal data to foreign or international organizations. Within the European Union, the rules and procedures defined by the GDPR regulation apply. This means that the same rules apply as do to personal data processing in the Czech Republic. The transfer of personal data to third countries must be based on compliance with the rules laid down in Articles 45 and 46 of the GDPR.
Ensuring transparency of processing
The Enterprise keeps your personal data only for the time necessary to fulfil the purpose of processing this data or possibly to comply with the statutory deadlines.
In accordance with GDPR, you have the following rights in relation to processing of your personal data:
Keeping data subjects informed
All employees of the Enterprise and other persons may request personal data protection officer to provide GDPR-related information. In addition to this possibility, the employees are informed of the way personal data is processed during the entry and up-to-date security training, and are further familiarized with the relevant internal documentation that governs the protection of personal data according to the job position being performed.
Other data subjects are informed to the extent and manner of personal data processing and processing requirements by the guarantor of the respective processing activity. Selected information is provided at workplaces that solve access to or possibly collecting of personal data.