PRIVACY NOTICE ON DATA PROCESSING CONDITIONS

Personal data controller(s): Deloitte¹ Czech Republic² entities.

Personal data processors:

• Onyx Knox Sp. z o.o., ul. Kurhan 12, 02-203 Warsaw, Poland
• Deloitte Central Europe Service Centre s.r.o., Italská 2581/67, 120 00 Praha 2, Czech Republic;
• Deloitte CZ Services s.r.o. ,Italská 2581/67, 120 00 Praha 2, Czech Republic;
• con4PAS, s.r.o., Novodvorská 1010/14, 142 01 Prague 4 – Lhotka, Czech Republic;
• Deloitte CE Business Service Sp. z o.o., Al. Jana Pawła II 22, 00-133 Warsaw, Poland;
• Deloitte Advisory & Management Consulting Private Limited Company, Dózsa Gy út 84.C., 1068 Budapest, Hungary; Oracle East Central Europe Services BV, Cyprus Branch, carrying on business under its business name
  
• Microsoft Corporation, One Microsoft Way, Redmond, WA 98052, USA;
  
• LogMeIn, Inc., 333 Summer Street Boston, MA 02210, USA (if you choose to register for an event/webinar);
  
• Deloitte Global Services Limited, Hill House, 1 Little New Street, EC4A 3TR London, United Kingdom (DGSL).

In case where the data processing includes the transfer outside of the European Union (EU) the transfer is based on EU approved standard contractual clauses, thus ensuring an adequate level of personal data protection as required by the applicable data protection laws.

The personal data controller/s and data processors shall establish technological, physical, administrative and procedural safeguards all in line with the industry accepted standards in order to protect and ensure the confidentiality, integrity or accessibility of the personal data processed; prevent the unauthorized use of or unauthorized access to the personal data or prevent a personal data breach (security incident) in accordance with Deloitte CE instructions, policies and applicable laws.

Recipients of personal data: The personal data will be made accessible to the following categories of recipients: the authorized personnel of the above listed controllers and processors and to Deloitte CE companies.

The personal data may be also disclosed to the competent authorities as authorized by the applicable laws.

The period for which personal data will be processed: The data will be processed until the consent is revoked or as long as it is necessary in relation to the purposes described above, but no longer than 5 years. Before the above period expires, Deloitte may contact you in order to renew the consent; without the renewal your personal data will be permanently deleted. However, the personal data controllers may retain limited scope of my personal data in order to prove compliance with the applicable laws.

As the personal data subject you have the right to request from the controller access to and correction or erasure of your personal data or a restriction on the processing or to object to the processing, as well as the right to data portability, the right to withdraw your consent at any time, and the right to obtain a copy of the data. All rights described in this paragraph can be enforced by sending an e-mail request to the data controller at: infocz@deloittece.com. You also have the right to lodge a complaint with a local supervisory authority, i.e. the Office for Personal Data Protection (Úřad pro ochranu osobních údajů; (www.uoou.cz).

The personal data collected in relation to the above described purposes (preferences, behaviours and choice of marketing content) may be used as a basis for automated decisions leading to the identification of sales opportunities within Deloitte CE companies.

1 “Deloitte” refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. Please see https://www2.deloitte.com/cz/cs/pages/about-deloitte/articles/about-deloitte.html to learn more about our global network of member firms. “Deloitte CE” is a regional organization of entities organized under the umbrella of Deloitte Central Europe Holdings Limited, the member firm in Central Europe of Deloitte Touche Tohmatsu Limited. Services are provided by the subsidiaries and affiliates of Deloitte Central Europe Holdings Limited, which are separate and independent legal entities.

2 “Deloitte Czech Republic” refers to Deloitte entities operating within Czech Republic: Deloitte Advisory s.r.o. Deloitte Audit s.r.o., Deloitte BPS a.s., Deloitte CZ Services s.r.o., Deloitte Security s.r.o., Deloitte Legal s.r.o., advokátní kancelář and Deloitte Central Europe Service Centre s.r.o.