Toto je také dostupné v Čeština Deutsch ไทย

Personal data processing principles

Who processes your personal data?

The operator of the website www.ketom.cz, including the online booking system, is:

Ketom s.r.o.
ID: 05176735
Registered office: Kruhová 239/5, Ústí nad Labem, 40001
(“Ketom s.r.o.”)

Ketom s.r.o. manages the reservation system in which clients book appointments at individual branches.

Individual branches may be operated by different companies:

Ketom Spirit s.r.o., ID: 09319867.

These companies are independent data controllers of personal data in connection with the provision of booked services and the processing of payments.

What is the relationship between Ketom s.r.o. and the individual branches?

  • Ketom s.r.o. is the data controller for the operation of the online booking system at www.ketom.cz.
  • Individual branches (e.g. Ketom Spirit s.r.o.) are independent data controllers of personal data to the extent necessary to provide the booked services and to make payment.
  • Ketom s.r.o. also acts as a data processor for these branches, as it allows them access to the reservation system and reservation data.

What personal data do we process?

For the purpose of booking a date, we process the following personal data:

  • Name and surname
  • E-mail address
  • Telephone number
  • Other information provided at the time of booking (e.g. booking notes)

For payment purposes:

  • Details required to make a payment (for payments via Stripe)
  • In the case of a cash payment, the payment details are processed by the relevant branch

For what purpose do we process personal data?

We process your personal data in order to:

  • making and recording reservations
  • communication regarding the booked date or changes to the date
  • performance of the contract (provision of the reserved service)
  • compliance with legal obligations (e.g. accounting and tax records)
  • to protect our legitimate interests (especially in the case of clients who repeatedly fail to turn up for a booked treatment without excuse – see section below)

How long do we keep personal data?

We store personal data:

  • for a maximum of 2 years from the last booking or contact, unless there is another legal reason for keeping them longer (for example, accounting or tax obligations),
  • indefinitely in case of registration of clients who repeatedly fail to arrive for a booked appointment without an excuse (blacklist) – this is to protect our legitimate interest in order to prevent abuse of the reservation system and blocking of capacity.

Who has access to personal data?

They have access to your personal data:

  • Ketom s.r.o. (operator of the reservation system)
  • The relevant branch where the service is booked
  • IT service providers, accountants and tax advisors, if necessary for the operation of the booking system and the fulfilment of legal obligations
  • Payment gateway provider Stripe (for card payments)

Who further processes personal data (processors)?

In addition to Ketom s.r.o. and individual branches, personal data may also be processed by third parties who provide technical support and services necessary for the operation of the booking system, website and payments. These processors include:

  • Google Ireland Limited – Google Workspace (email, cloud storage), Google Analytics (traffic statistics), Google reCAPTCHA (contact form spam protection), Google Ads (advertising and remarketing services),
  • Meta Platforms Ireland Limited – marketing and advertising services (e.g. Facebook Pixel, Facebook and Instagram ads), use of Facebook Business Suite, Facebook Messenger chat to communicate with customers, or communication via Instagram. Meta also owns WhatsApp, which can be used for direct communication with customers (see separate section below).
  • Stripe Payments Europe Ltd. – ensuring online card payments
  • ČESKÝ WEBHOSTING s.r.o. – provider of webhosting, which runs a reservation system and websites
  • Advice spol. s r. o. – accounting firm providing bookkeeping and tax records
  • Seznam CZ a.s. – advertising and remarketing services (Sklik, Firmy.cz)
  • Solitea Česká republika, a.s. – operator of the iDoklad service for issuing tax documents
  • Celonis SE – process automation
  • Microsoft Ireland Operations Limited – advertising and remarketing services (Bing Ads / Microsoft Advertising)
  • Tawk.to Inc. – provider of an online chat and communication platform through which communication with visitors to the site takes place, including possible integration with Facebook Messenger and WhatsApp chat service. Tawk.to also processes data such as IP address, location, device type and content of communication using artificial intelligence.
  • Iteca Limited – SMS and voice call services, or other cloud functions such as calendar synchronisation or connection to other services
  • WhatsApp Ireland Limited – provider of WhatsApp, which is used to communicate directly with customers via chat. The service belongs to the Meta Platforms group, personal data (phone number, content of communication) is processed for the purpose of answering your questions and informing you about bookings.
  • Materia Group s.r.o. – provider of SMS messaging services that can be used for example to send booking confirmations, appointment reminders or other information to clients. These services may process telephone numbers and the content of the messages sent.

When paying the price for services (especially in the case of payment by bank transfer), personal data (e.g. name, variable symbol, account number) may also be processed by banking institutions as independent data controllers in the context of payment transactions and the fulfilment of their legal obligations.

Payments are accepted to a bank account with Fio banka, a.s.

All processors are bound by a data processing agreement and comply with applicable data protection legislation.

Use of cookies and advertising technologies

We use cookies on our website for website functionality, analytics and marketing purposes, including remarketing via Google Ads, Seznam Sklik, Facebook (Meta), Bing Ads and others.

Detailed information about cookies, their purpose, retention period and settings can be found in our Cookie Policy.

You can manage your consent to the use of each type of cookie by using the cookie bar that appears when you visit our website.

What are your rights?

You have the right:

  • request information about what personal data we process about you
  • request the rectification or erasure of personal data
  • require restriction of processing
  • object to processing (including objection to blacklisting)
  • request data portability
  • lodge a complaint with the Office for Personal Data Protection (www.uoou.cz) if you believe that we are processing your data unlawfully

Questions about the processing of personal data

If you have any questions about the processing of your personal data, you can contact us using the contact form.

Information obligation

It follows from the regulation EU 2016/679. In the Czech Republic, compliance with the Personal Data Act is supervised by the Office for Personal Data Protection. More information at www.uoou.cz