en

Information for consumers

According to the Act No. 634/1992 Coll., on Consumer Protection, the client - consumer is entitled to apply to the Czech Bar Association for an out-of-court settlement of a consumer dispute in the event of a dispute with an attorney being a provider of legal services.

Information on the processing of personal data

PRIVACY POLICY


BASIC PROVISIONS

  • The controller of personal data pursuant to Article 4(7) of Regulation (EU) No. 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter as the "GDPR") is JUDr. David Ptáček, ID No. 17652197, with his registered office at Říční 456/10, 118 00 Prague 1 - Malá Strana (hereinafter as the "Controller").
  • The contact details of the Controller are:
  • Address: Říční 456/10, 118 00 Praha 1 - Malá Strana
  • e-mail: info@jk-advokati.cz
  • Personal data means any information about an identified or identifiable natural person; an identifiable natural person is a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name and surname, an identification number, location data, a network identifier or to one or more specific elements of the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
  • The Controller has not appointed a data protection officer.


SOURCES AND CATEGORIES OFPERSONAL DATA PROCESSED

  • The Controller processes personal data that you have provided to the Controller when filling in a contact form or form other communication from you.
  • The Controller processes your identification and contact data and the data necessary to respond to your completed contact form or other communication.


LAWFUL BASIS AND PURPOSE OF PROCESSING PERSONAL DATA

  • The lawful basis for processing personal data is the performance of a contract between you and the Controller pursuant to Article 6(1)(b) of the GDPR.
  • The purpose of processing personal data is to process your request and to exercise the rights and obligations arising from the contractual relationship between you and the Controller.
  • There is no automatic individual decision-making by the Controller within the meaning of Article 22 of the GDPR.


DATA RETENTION PERIOD

  • The Controller retains personal data for the period necessary to respond to your request and the exercise of any rights and obligations arising from your request and our response (i.e. for a maximum period of 15 years).
  • After the expiry of the retention period, the Controller will delete the personal data.

YOUR RIGHTS

  • Under the terms of the GDPR, you have:
  • the right to access your personal data in accordance with Article 15 of the GDPR,
  • the right to rectification of personal data pursuant to Article 16 of the GDPR, or restriction of processing pursuant to Article 18 of the GDPR,

  • the right to erasure of personal data pursuant to Article 17 of the GDPR,

  • the right to object to processing under Article 21 of the GDPR.

  • you also have the right to lodge a complaint with the Office for Personal Data Protection if you believe that your right to data protection has been violated.

PERSONAL DATA SECURITY CONDITIONS

  • The Controller declares that he has taken appropriate technical and organisational measures to safeguard personal data.
  • The Controller does not keep personal data in paper form.
  • The Controller declares that only persons authorised by him have access to the personal data.

FINAL PROVISIONS

  • By submitting a message using the contact form located on our website, you confirm that you are aware of the privacy policy and that you accept it in its entirety.
  • The Controller is entitled to modify these conditions. The Controller will publish the new version of the privacy policy on his website.

These terms and conditions become effective on 15.2.2023. 

Duties of an attorney in relation to AML


Every attorney is an obliged person under the Act No. 253/2008 Coll., on Selected Measures against Legitimisation of Proceeds of Crime and Financing of Terrorism, as amended, and under this Act he/she is obliged to implement measures under this Act and other regulations, including, inter alia, the identification and check of the client. For this purpose, he/she is obliged to collect and store the personal data of the client and to make copies of the documents from which he/she has verified such data.

Within an association of attorneys, each of the attorneys participating in the association shall perform these duties separately.


With regard to the obligations imposed on an attorney, we would like to draw your attention to the following:


Definition of the scope of the processed data

All names and surnames, personal identification number and, if not assigned, date of birth and sex, as well as the place of birth, permanent or other residence and nationality may be processed; in the case of a natural person engaged in business (entrepreneur), also his/her business name, distinctive supplement or other designation, registered office and personal identification number.


Determination of the duration of data processing

For a period of 10 years after the transaction outside the business relationship or after the termination of the business relationship.


Definition of the purpose of data processing

The purpose of the data processing is to comply with the legal obligations in the field of combating money laundering and financing of terrorism.


Form of data processing

Personal data for the above purpose may be collected and copies of the documents from which the data have been verified may be taken.

  • Information on the rights of the data subject and his/her possibilities to restrict or exclude the processing of the data.

The data subject shall have the right to have the Controller restrict the processing in any of the following cases:

a) the data subject contests the accuracy of the personal data for the period necessary to enable the Controller to verify the accuracy of the personal data;

b) the processing is unlawful and the data subject refuses erasing of the personal data and requests instead the restriction of their use; 

c) the Controller no longer needs the personal data for the purposes of the data processing, but the data subject requires them for the establishment, exercise or defence of legal claims;

d) the data subject has objected to the processing pursuant to Article 21(1) of the GDPR until it is verified that the legitimate grounds of the Controller override the legitimate grounds of the data subject.

Where the data processing has been restricted pursuant to this provision, such personal data may be processed, except for storage, only with the data subject's consent or for the establishment, exercise or defence of legal claims, for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the European Union or of a Member State.

A data subject who has obtained a restriction on processing pursuant to this provision shall be notified in advance by the Controller that the restriction on processing will be lifted.


Instructions on the transfer of personal data

Personal data will be transferred under the conditions set out in the GDPR and the Act No. 253/2008 Coll., on Selected Measures against Legitimisation of Proceeds of Crime and Financing of Terrorism, as amended.

The supervisory authority in the above cases is the Czech Bar Association and the Financial Analytical Office.