Privacy Policy (GDPR)

Information on the processing of personal data

I value your trust and privacy. This policy explains how Ifkees s.r.o. handles your personal data in compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).

1. Data Controller

The controller of your personal data is:
Ifkees s.r.o.
Reg. No. (IČO): 23354089
Registered Office: Rybná 716/24, Staré Město, 110 00 Prague 1, Czech Republic
File Reference: C 425747 registered at the Municipal Court in Prague
Contact E-mail: konstantin@ifkees.com

2. What Data I Process and Why

A. Communication and Inquiries

If you contact me via e-mail, phone, or messaging platforms (WhatsApp/Signal), I process your contact details (name, e-mail, phone number) for the purpose of handling your inquiry. The legal basis is the negotiation of a contract or legitimate interest in responding.

B. Service Provision and Invoicing

If you become my client, I process your billing details (name/company name, Reg. No., VAT ID, address, bank details) for the purpose of contract performance and compliance with legal obligations (accounting, tax laws). Under Czech law, I am required to archive these documents for 10 years.

3. Cookies and Analytics

This website adopts a "Privacy by Design" approach. I do not use any third-party marketing, tracking, or profiling cookies (such as Facebook Pixel or Google Analytics with advertising features).

For technical traffic analysis, I use Cloudflare Web Analytics. This service is designed to be privacy-first:

  • It does not use cookies (cookie-less).
  • It does not store any personal identifiers (PII).
  • It does not track users across different websites.

Therefore, this website does not require a cookie consent banner (so-called cookie bar), as there is no intrusion into user privacy within the meaning of the ePrivacy Directive.

4. Data Recipients

I do not sell your data to anyone. Access to your data may only be granted to vetted partners who assist with the operation of the company and are bound by confidentiality agreements (NDA):

  • IT infrastructure and hosting providers (server, e-mail services).
  • External accounting firm (for processing statutory accounting).
  • State authorities (e.g., Tax Office), if required by law.

5. Your Rights

Under the GDPR, you have the right to:

  • Request information about what personal data I process about you.
  • Request access to this data and have it updated or corrected.
  • Request deletion of this personal data (unless it conflicts with a legal obligation to archive invoices).
  • Object to processing based on legitimate interest.
  • Data portability (transfer your data to another controller).

If you believe that I am not handling your data correctly, you have the right to lodge a complaint with the supervisory authority. However, I would appreciate it if you contacted me first so we can resolve the situation.

This policy is valid from December 18, 2025.