1. Controller
The controller within the meaning of GDPR (EU Regulation 2016/679) and Act No. 18/2018 Coll. on the protection of personal data is:
- E-Križovatka s. r. o.
- ID No.: 57538093
- Registered Office: Sládkovičova 1560/16, 986 01 Fiľakovo
- Contact: info@adlify.eu
Given the scope of our activities, we are not obligated to appoint a Data Protection Officer (DPO). For any questions regarding personal data, please contact us at the provided email address.
2. What data we process
A) Data from contact form
- Name and surname
- Email address
- Company name / website (optional)
- Phone number (optional)
- Message content
Purpose: processing your request and contacting you from our agency.
Legal basis: Your consent (Art. 6(1)(a) GDPR), or pre-contractual relationship (Art. 6(1)(b)).
Retention period: 24 months from last contact if no contract is concluded. In case of contractual relationship for the duration of the relationship + 10 years (statutory archiving).
B) Data from newsletter registration
- Email address
- Name (optional)
Purpose: sending marketing and business communications.
Legal basis: Your consent (Art. 6(1)(a) GDPR).
Retention period: until consent is withdrawn (unsubscribe via link in each email).
C) Data from contractual relationships
- Billing data (company name, business registration number, VAT number, address)
- Names of contact persons
- Communication within the project
Purpose: contract performance, invoicing, legal protection.
Legal basis: Performance of contract (Art. 6(1)(b) GDPR), legal obligation (Art. 6(1)(c) - tax and accounting laws).
Retention period: 10 years (legal obligation for accounting documentation).
D) Data from analytical tools
When visiting the website, we collect anonymized behavioral data (see page Cookies). This data does not identify a specific person.
3. To whom we transfer data (processors)
Your data may be transferred to these processors (always with appropriate protection):
- Resend (USA, EU data centres) - sending emails from forms
- Netlify (USA) - website hosting
- Supabase (EU data centres) - database
- Google (USA / EU) - Google Ads, Analytics, Tag Manager (if you have provided cookie consent)
- Meta (USA / EU) - Facebook and Instagram pixel (if you have provided cookie consent)
- Accountant and tax advisor within the scope of legal obligations
When transferring data to the USA, we use Standard Contractual Clauses (SCCs) or Privacy Shield Framework. Some providers are certified under the EU-US Data Privacy Framework.
4. Your rights
As a data subject, you have the right:
- Of access — to find out what data we process about you.
- To rectification — request correction of inaccurate data.
- To erasure — (right to be forgotten) - if we no longer have a lawful basis for processing.
- To restriction — temporarily suspend processing.
- To portability — obtain your data in a structured format.
- To object — to processing based on legitimate interest.
- Withdraw consent — at any time, without any consequences.
- Lodge a complaint — with the Personal Data Protection Office of the Slovak Republic (dataprotection.gov.sk).
To exercise any of these rights, please contact us. We guarantee a response within 30 days. info@adlify.eu
5. Data Security
We protect your data with appropriate technical and organisational measures:
- Encrypted communication (HTTPS/TLS) for all web forms
- Encrypted databases (Supabase EU)
- Data access restricted to necessary personnel only
- Regular security backups and updates
- Two-factor authentication for administrative accounts
6. Cookies and tracking
Cookie policies are described in detail on a separate page Cookies.
7. Changes to these policies
We may update these policies. We will inform about material changes by email (registered users) or by notice on the website at least 30 days in advance.