SIMONE Research Group
Solutions For Simulation And Optimisation In The Gas Industry

PRIVACY POLICY

1. Personal Data Controller

SIMONE Research Group s.r.o., registered office at Římská 103/12, Prague 2 - Vinohrady, 120 00, Company ID: 63985195, acts as Data Controller. The Company declares that it processes personal data pursuant to EU Regulation 2016/679 on General Data Protection (“GDPR”) and Act No. 110/2019 Coll. on the processing of personal data.

For any requirements or questions related to the protection of personal data contact the responsible employee available at gdpr@simone.cz.

2. Categories of personal data, purpose and legal base of processing

We process your personal data you provide to us in connection with your interest in our products and services - for example, by sending an order via email, by or filling in the contact form etc.

These are general category personal data - especially identification and contact information.

2.1. Purchase of goods / services and delivery of goods / services

The following data is required for the conclusion and performance of the contract, invoicing, delivery of goods / services, and other legal purposes, in particular:

• Name and surname,

• Contact and / or Delivery Address,

• Email,

• Phone number,

• ID number or VAT number, in the case of self-employed persons (Czech legal regulation).

Personal data for these purposes is kept for as long as is necessary to fulfill other legal obligations arising from the law and / or from the contractual relationship (e.g. tax records, invoicing, statute of limitation, etc.).

2.2. Contact

In case you have a question or request for us, you can contact us by email or phone number or fill-in form on our website. In order to properly resolve your request, we need your following personal information:

• Name and surname,

• Email,

• Phone number.

This personal data will only be processed for the purpose mentioned above and retained for further legal requirements (e.g. 3 years for the limitation period).

3. Recipients of personal data

SIMONE Research Group s.r.o. uses all data obtained from customers solely for internal use and does not provide it to third parties. Exceptions may be situations related to goods delivery, services performance or payment in relation to ordered goods / services, tax records, etc. Personal data is collected, processed and stored by the Company in accordance with applicable laws of Czech Republic. External recipients of personal data are personal Data Processors acting under contract with the Company, public authorities, agencies and other entities (e.g. banks, insurance companies, etc.).

4. Period of data processing

The processing of personal data is governed by the Disposition and Retention Schedule. In some cases, the processing period is linked to a contractual or business relationship and to legal deadlines. For specific information regarding the processing of personal data, please contact gdpr@simone.cz.

5. Data Security

Specific organizational and technical security measures including access control to personal data have been adopted to secure your personal data. The Controller undertakes to test and evaluate the effectiveness of organizational and technical measures in order to improve the safety of personal data processing.

Your personal data are stored both electronically and in writing. Data in electronic form is stored on shared disks in the data center of our company. Only designated employees of the Company have access to personal data on shared disks. Written documentation is stored in lockable filing cabinets to which only the company's designated employees have access. Disposal of data is carried out regularly according to the Disposition and Retention Schedule.

6. Rights of Data Subjects

a) Right to access your personal data: You have the right to obtain the following information:

• processing purposes,

• the categories of personal data concerned,

• the recipients or categories of recipients to whom personal data have been or will be made available,

• scheduled time for which personal data will be stored,

• any available information about the source of personal data, if not obtained from the data subject;

b) Right to rectify personal data.

c) Right to be deleted if at least one condition is met:

• personal information is no longer needed for the purposes for which it was collected or otherwise processed

• the processing of personal data has expired,

• you withdraw your consent and there is no other legal reason for processing,

• you raise objections to the processing and there are no prevailing legitimate reasons for processing,

• personal data has been processed illegally,

• personal data was collected in connection with the offer of information society services under Article 8 (1) of the General Regulation.

The right to erase is not an absolute right that would give you the opportunity to request the deletion of personal data at any time and in any situation. For example, under this right, it is not possible to ask for the deletion of all personal data if we are subject to legal obligation to retain some personal data.

d) The right to restrict the processing of personal data when:

• you deny the accuracy of personal information,

• data processing was illegal and you refuse us to delete your personal information and request instead to restrict use of your data,

• we no longer need your personal information for processing purposes, but you require it to determine, execute or defend legal claims,

• you intend to apply for:

e) Right to object the processing of personal data.

f) The right for portability is the possibility of obtaining the personal data you have provided to us in a structured, commonly used and machine-readable format, and the right to transmit such data to another Collector, where technically feasible and

• the data processing was based on consent or contract,

• processing is done automatically.

g) The right to file a complaint to the supervisory authority if you believe that the processing of your personal data violates the GDPR. Czech supervisory authority Office for Personal Data Protection can be contacted by email posta@uoou.cz.

To apply your personal data rights please contact gdpr@simone.cz.