PERSONAL DATA PROTECTION STATEMENT

At MERKUR CASINO a.s., we are fully aware of the importance of personal data protection in modern society. We also understand the breadth of this topic, which is not only the personal data of our clients but also our employees, business partners, their representatives and any other individuals. In compliance with the legal order of the Czech Republic, our company processes personal data within our business activities. Our goal is to ensure the correct protection of this data, as well as to properly develop this protection by using modern technologies and procedures. We do not only aim to meet the minimum requirements set by the legal order of the Czech Republic. We set our own minimum standards of personal data protection, which aim to strengthen the legal status and privacy of the individuals whose personal data we hold.

We publish this statement to inform our clients and the general public about the fulfilment of the requirements of the new legislation and to inform all natural persons about new possibilities regarding the management of personal data.

The above-mentioned new legislation in the field of personal data protection is Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as "GDPR").

Which personal data of our clients do we process?

Personal data is data that makes it possible to directly or indirectly identify a specific person, and any other data about this identified person. This could be a natural person's name, surname or date of birth. It could also be information regarding the financial transactions, type of work and attendance of an identified person. In this respect, we follow the principle of minimisation, where our goal is always only to manage the personal data we need to conduct our business and only to process this data for legal reasons. In this respect, the legal order of the Czech Republic, as the operator of gambling, clearly sets out the obligations in the area of ​​personal data processing, in particular, Act No. 186/2016 Coll., On Gambling and Act No. 253/2008 Coll., on selected measures against legitimisation of proceeds of crime and financing of terrorism. With the consent of our clients, we are also entitled to process their personal data if they choose to participate in our marketing, bonus and other similar events. This participation is always voluntary.

Why do we process our clients' personal data?

Unless required by a legal obligation (law), a concluded contract, the public interest or the protection of the vital interests of such a person (hereinafter Article 6 of the GDPR), our processing of personal data is always based on the aspect of voluntariness. We process the data that our clients pass on to us primarily to fulfil our legal obligations and provide our business services (operation of gambling). If you decide to refuse the processing of certain data or to request the deletion of provided data, you have the opportunity to do so by sending an e-mail to info@merkur-casino.com. We guarantee that if the deletion of personal data is not prevented by another legal obligation (e.g. a general legal regulation), we will always do so within one month of receiving a request.

Who do we share data with?

We do not share our clients' personal data with any third parties without the consent of our clients. However, in some cases stipulated by law, we may be obliged to share the personal data of our clients with public authorities. In such cases, we always proceed in such a way as to maximally protect the interests and privacy of our clients. 

How do we ensure the security of data?

Our clients' personal data is always processed and stored using exceptionally high security standards for the entire period that we hold this data. In this respect, our company always stores the personal data of our clients in full compliance with GDPR requirements. With regard to the subject of our activity, our company has the latest technologies at its disposal, which are more than capable of protecting the data of all our clients.

How long do we store our clients' personal data?

We only store our clients' personal data for the time necessary, with regard to the purposes for which our company first collected this data.

Cooperation with professionals

Merkur casino a.s. cooperates in the protection of personal data of our clients only with professionals and consultants. We work closely with GDPR Solutions a.s., whose leading methodological worker, RNDr. Igor Němec, was the chairman of the Office for Personal Data Protection for 10 year and the Vice-Chair of the Article 29 Working Party.

 

Our clients' rights

As part of the protection of personal data under the new legislation, all our clients have the following rights:
 
The right of access to personal data. This right is always granted on request. Clients have the right to request information on whether our company processes their personal data, which categories of data the processing applies to, together with the purpose of processing and the length of time the data be stored. At the client's request, access to this data will be provided, or a free copy of their processed data will be made. This right allows clients to check that their personal data is not being treated illegally.
 
The right to the accuracy of personal data. Our company takes all measures to ensure that only accurate and up-to-date data is processed. We are obliged to verify that we are processing accurate data, and if not, to delete or correct it. We are also obliged to inform data subjects, who have the right to supplement incomplete personal data with a statement addressed to the company.
 
The right to be forgotten or the right to erasure. This right allows our clients to request that our company delete their data and no longer store it. We are obliged to do so, unless there is a legal obstacle, e.g. due to public interest or a legal obligation that requires processing. Should such an exception occur, the company is obliged to inform its clients within one month.
 
The right to request restrictions on the processing of personal data. Clients can use this right if they believe that the data we hold is inaccurate. In this case, the company must restrict data processing while the data in question is verified. This right can also be used if data is illegally handled or improperly processed, and it is not in the interest of our client for the data to be deleted. If a client objects to the processing of their data, the company is restricted from processing data until the situation is resolved.
 
The right to data portability allows our clients to move or transfer their personal data between individual administrators.
 
The new legislation also gives our clients the right to object to the processing of personal data at any time.
 
The new legislation also gives clients the right not to be the subject of any decision based solely on the automated processing of their personal data.
 

Contact us

info@merkur-casino.com

MERKUR CASINO a.s. PRIVACY POLICY (Principles of Personal Data Processing) is available here