Table of contents
1 Data controller
The data controller is:
NUBIRO s.r.o.
Registered office: Široká 279/7, 460 07 Liberec 3 - Jeřáb, Czech Republic
Company ID: 10881239, VAT ID: CZ10881239
E-mail: info@nubiro.cz
Phone: +420 704 051 051
Web: https://nubiro.cz
Registered in the Commercial Register kept by the Regional Court in Ústí nad Labem, Section C, Insert 47150
NUBIRO s.r.o. has not appointed a Data Protection Officer (DPO). For matters concerning personal data protection, please contact the company directly at the e-mail address above.
2 Introduction and basic principles
The protection of your personal data is important to us. We always process it lawfully, transparently and only to the extent necessary for the given purpose, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and Act No. 110/2019 Coll., on Personal Data Processing.
We never sell personal data to third parties nor use it for purposes you have not agreed to.
3 Purposes and legal grounds for processing
3.1 Contract performance (orders)
Processing is necessary for the conclusion and performance of the purchase contract, delivery of goods, issuing tax documents, handling complaints and exercising rights under the contract.
Legal basis: contract performance (Art. 6(1)(b) GDPR).
3.2 Compliance with legal obligations
We process personal data to fulfil legal obligations, particularly in the areas of accounting, taxes and AML (Act No. 253/2008 Coll.).
Legal basis: compliance with legal obligation (Art. 6(1)(c) GDPR).
3.3 Legitimate interest – direct marketing to customers
Customers may be sent commercial communications regarding similar NUBIRO products and services, in accordance with § 7(3) of Act No. 480/2004 Coll. You may object to this processing at any time.
Legal basis: legitimate interest of the controller (Art. 6(1)(f) GDPR).
3.4 Consent – newsletter and marketing communications
Based on your express consent, we send newsletters, catalogues, event invitations and personalised offers.
Legal basis: consent of the data subject (Art. 6(1)(a) GDPR).
3.5 Consent – user account
Upon registration, we process your data for maintaining a user account, order overview and related e-shop functions.
Legal basis: consent of the data subject (Art. 6(1)(a) GDPR).
3.6 Consent – contact form and telephone communication
If you contact us via the web form or by telephone, we process your data for the purpose of handling your enquiry and communication.
Legal basis: consent of the data subject (Art. 6(1)(a) GDPR).
3.7 Consent – abandoned cart
In case of an unfinished order, we may remind you by e-mail of the option to complete it.
Legal basis: consent expressed by providing the e-mail address.
3.8 Legitimate interest – protection of NUBIRO rights
Personal data may be processed to protect legal claims, resolve disputes and during inspections by public authorities.
Legal basis: legitimate interest of the controller (Art. 6(1)(f) GDPR).
4 Categories of processed personal data
Depending on the purpose of processing, we work with the following data categories:
5 Personal data retention period
| Purpose of processing | Retention period |
|---|---|
| Contractual relationship | During the contract and 4 years after its termination (for the case of asserting claims) |
| Accounting and tax documents | 10 years under Act No. 563/1991 Coll. on Accounting |
| AML identification | 10 years under Act No. 253/2008 Coll. |
| Marketing consent | Until consent is withdrawn |
| User account | Until account cancellation or withdrawal of consent |
| Contact enquiries | For the time necessary to handle the enquiry, maximum 1 year |
6 Recipients and processors
We make personal data available only to verified entities, and strictly to the extent necessary for the given purpose:
We do not sell or transfer personal data to third parties for their own marketing purposes.
7 Withdrawal of consent
You may withdraw your consent to the processing of personal data at any time, without affecting the lawfulness of processing prior to withdrawal. Withdrawal is possible:
- by e-mail to info@nubiro.cz,
- in writing to the company's registered office address,
- via the unsubscribe link in commercial communications.
8 Third-party analytics and marketing tools
8.1 Google Analytics
We use Google Analytics (operator: Google LLC, USA) for website traffic analysis. This service may store cookies and transmit anonymised data to Google servers. More information is available at policies.google.com/privacy.
8.2 Facebook Pixel
A Facebook Pixel (operator: Meta Platforms, Inc., USA) is deployed on the website, used for measuring advertising effectiveness and targeting relevant audiences. Data is processed in accordance with Meta's data protection policy: facebook.com/privacy/policy.
8.3 Cookies
The website uses cookies to ensure functionality, analytics and marketing. Cookies are divided into:
Necessary cookies
Required for website functionality. Do not require consent.
Analytics cookies
Used to track visitor behaviour (Google Analytics).
Marketing cookies
Used for targeted advertising (Facebook Pixel).
You can adjust cookie settings at any time via the cookie bar on the website or in your browser settings.
9 Service rating – Heureka
NUBIRO participates in the "Verified by Customers" programme operated by Heureka Shopping s.r.o. For this purpose, we forward your e-mail to Heureka after your purchase, so that you can be invited to rate the service.
Participation in the programme is voluntary and can be declined:
- by ticking the relevant option before submitting the order, or
- by sending an e-mail to info@nubiro.cz after the purchase.
10 Data subject rights
In accordance with GDPR, you have the following rights:
Submit requests by e-mail to info@nubiro.cz. We will respond without undue delay, no later than within 30 days.
11 Supervisory authority
The supervisory authority for personal data protection in the Czech Republic is:
Office for Personal Data Protection (ÚOOÚ)
Pplk. Sochora 727/27, 170 00 Praha 7, Czech Republic
Web: www.uoou.cz
12 Validity of the document
This document is valid and effective from 25 May 2026. NUBIRO s.r.o. reserves the right to update the document on an ongoing basis. The current version is always available at nubiro.cz/ochrana-osobnich-udaju.
NUBIRO® Team
Note on translation: This English version is provided for the convenience of international customers. In case of any discrepancy, the Czech version shall prevail, as it represents the legally binding text under Czech law.
Contact for GDPR questions
NUBIRO s.r.o.
Široká 279/7
460 07 Liberec 3 - Jeřáb
Czech Republic
Company ID: 10881239 | VAT ID: CZ10881239
Opening hours
Monday – Friday
8:00 – 16:00
Outside working hours, an appointment can be arranged by phone.