1. Data Controller

The controller of your personal data is:
The Art of Success s.r.o.
ID No.: 19581262
Registered office: U Rybníčků 348/2, Karlovy Vary, 36006, Czech Republic
Registered with the Regional Court in Plzeň, file no. C 44084
Represented by: Daria Molnár

Website: dariamolnar.com
Email: daria@dariamolnar.com

(hereinafter referred to as “we”, “us”, or “the Controller”)

2. What Personal Data We Process

We process personal data that you provide to us or that is generated when you use our website or services, including identification data (name, surname), contact data (email address, phone number, address), billing data (billing address, ID number, VAT number, bank account details), communication data (messages sent via email or forms), and limited technical data necessary for security and basic website functionality such as IP address and browser information.

If you subscribe to our newsletter, we may also process marketing interaction data such as email opens and clicks.

3. Purposes and Legal Basis for Processing

We process personal data for the following purposes:

• Performance of a contract: providing services, delivering digital content, granting access to purchased products, and handling related communication, based on Article 6(1)(b) of the GDPR.

• Legal obligations: accounting and tax compliance, based on Article 6(1)(c) of the GDPR.

• Legitimate interest: basic customer communication, website security, and protection of legal claims, based on Article 6(1)(f) of the GDPR. You may object to this processing at any time.

• Consent: sending newsletters to non-customers, publishing testimonials or feedback, and using non-essential cookies or embedded third-party content, based on Article 6(1)(a) of the GDPR. You may withdraw your consent at any time.

4. Cookies and Embedded Content

Our website is built using WordPress and uses cookies and similar technologies. We use strictly necessary cookies required for the operation and security of the website.

If we embed external content such as videos, third-party providers may set cookies or collect data. For example, embedded videos from Google (YouTube) may involve data collection and cookie usage controlled by Google.

We may in the future use analytics or marketing tools, in which case we will request your consent before activating such cookies.

Cookies are processed in accordance with the General Data Protection Regulation (GDPR) and the EU ePrivacy Directive.

5. Data Retention

We store personal data only for as long as necessary.

Contractual and billing data is retained for up to 10 years in accordance with legal obligations. Communication data is retained for up to 3 years after the last interaction.

Marketing data is stored until consent is withdrawn or for a maximum of 2 years after last activity.

Consent-based content such as testimonials is stored until consent is withdrawn.

6. Sharing of Personal Data

We may share personal data with trusted service providers such as email service providers, website hosting and technical providers, accounting and tax advisors, and analytics or advertising providers if used. These processors act only under our instructions and are bound by data processing agreements in accordance with Article 28 of the GDPR. We do not sell personal data.

7. International Data Transfers

Personal data may only be transferred outside the European Economic Area if necessary and only with appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or transfers to countries with an adequacy decision.

8. Your Rights

Under the General Data Protection Regulation (GDPR), you have the right to access your personal data, request rectification, request erasure, request restriction of processing, object to processing, and request data portability. Where processing is based on consent, you may withdraw your consent at any time. You also have the right to lodge a complaint with a supervisory authority, such as the Office for Personal Data Protection in the Czech Republic.

9. Data Security

We apply appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, or alteration. However, no system can guarantee absolute security.

10. Voluntary Provision of Data

Providing personal data is voluntary, but in some cases necessary for the provision of services. Without required data, we may not be able to fulfill contractual obligations.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The current version is always available on our website.

12. Contact

If you have any questions or wish to exercise your rights, you may contact us at daria@dariamolnar.com