1. Data controller

The data controller under Art. 4(7) GDPR is:

ELEXO s. r. o.
Karpatské námestie 7770/10A, 831 06 Bratislava — Rača, Slovakia
Company ID: 57 388 601, Tax ID: 2122722426
E-mail: info@elexo.sk
Phone: +421 951 303 751

We have not appointed a Data Protection Officer (DPO) as we do not meet the criteria under Art. 37 GDPR.

2. What data we process and for what purpose

2.1 Contact form and business communication

  • Data: name, e-mail, phone (optional), company name (optional), message content.
  • Purpose: processing inquiries, pre-contractual phase, B2B project communication.
  • Legal basis: Art. 6(1)(b) GDPR — pre-contractual measures.
  • Retention: 24 months from last communication.

2.2 Contractual relationships

  • Data: identification and billing data, signature, contact details of responsible persons.
  • Purpose: contract conclusion and fulfilment, invoicing, statutory obligations.
  • Legal basis: Art. 6(1)(b) and (c) GDPR.
  • Retention: 10 years (accounting), otherwise 5 years.

2.3 Cookies and web analytics

  • Data: device identifiers, IP address, browser type, aggregated traffic statistics.
  • Purpose: ensuring site functionality and anonymous analytics.
  • Legal basis: legitimate interest (Art. 6(1)(f)), for optional cookies consent (Art. 6(1)(a)).
  • Details in our Cookie Policy.

3. Recipients

We do not share data with third parties except for the following recipients to the extent necessary:

  • hosting and IT service providers;
  • accounting and tax service providers;
  • public authorities where required by law.

4. Transfers outside the EU

We process data primarily within the EU/EEA. For transfers to third countries, we use Standard Contractual Clauses (Art. 46 GDPR).

5. Your rights

As a data subject, you have the right to: access, rectification, erasure, restriction, portability, objection, withdrawal of consent, and to lodge a complaint with the Slovak Data Protection Authority — dataprotection.gov.sk.

You can exercise these rights at our office address or by e-mail at info@elexo.sk. Response within 30 days.

6. Automated decision-making

We do not perform automated individual decision-making or profiling under Art. 22 GDPR.

7. Policy changes

We may update this policy. The current version is always published on this page with the last update date.