In the sense of § 19 resp. § 20 of Act No. 18/2018 Coll. on the protection of personal data and on amendment and supplementation of certain acts (hereinafter referred to as the “Personal Data Protection Act”) and Art. 13 respectively. Art. 14 of Regulation (EU) No. 2016/679 z 27. April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the Regulation), the controller shall provide the following information to the data subject when obtaining his or her personal data:

  1. The contact details of the operator are: the National Association of Mountain Guides of the Slovak Republic (hereinafter referred to as NAHVSR), P.O.BOX 38, Starý Smokovec, 062 01 Vysoké Tatry, IČO 42035210.
  2. The contact details of the responsible person designated by the controller to carry out the tasks under the Personal Data Protection Act are: sekretar@nahvsr.sk
  3. The purpose of the processing of personal data of data subjects is to receive, distribute and process requests from authorities from other EU Member States, respectively. EEA to provide information on natural persons resp. legal persons and applications from natural persons for the verification of professional qualifications (in particular for the issue of the European Professional Card).
  4. The legal basis for the processing of personal data are in particular: (a) Articles 3, 5, 7, 13 to 17 of Regulation (EU) No. 1024/2012 z 25. October 2012 on administrative cooperation through the Internal Market Information System and repealing Commission Decision 2008/49/EC, (b) Articles 4a to 4e of Directive 2005/36/EC of the European Parliament and of the Council of 7. September 2005 on the recognition of professional qualifications, (c) Sections 44 to 48 of Act No. 422/2015 Coll. on the recognition of educational qualifications and professional qualifications and on the amendment and supplementation of certain laws.
  5. For the fulfilment of the purpose, the controller usually only takes cognisance of personal data which have been entered into the IMI information system by other persons. It shall only consult the personal data which are strictly necessary to achieve the stated purpose and which are included in the requests to be processed. Special category personal data shall not be processed.
  6. The controller may refer a request containing personal data of the data subject to another authority registered in IMI for processing, if this is necessary to achieve the purpose. The personal data processed shall not be made public.
  7. The controller does not transfer personal data to third countries.
  8. The controller does not have system authorisation to edit personal data in the IMI information system. The destruction of personal data after the end of the purpose of processing is handled automatically in the IMI information system.
  9. The data subject shall have the right to require the controller to access the personal data concerning him or her.
  10. If the legal basis for the processing of personal data is the consent of the data subject, the data subject has the right to withdraw his or her consent at any time.
  11. If the data subject suspects that his or her rights have been violated or the law has been infringed in the processing of personal data by the controller, he or she has the right to bring an action pursuant to Section 100 of the Personal Data Protection Act.
  12. The data subject is not obliged to provide the controller with his or her personal data.
  13. The controller does not use automated individual decision-making, including profiling, when processing personal data.
  14. The controller has established appropriate technical, personal and organisational conditions to ensure the protection of the personal data processed. Personal data is processed in the electronic database system IMI, which was created and is managed by the European Commission and is primarily designed for cooperation between public authorities and other bodies and organisations issuing or verifying documents or information in the Member States.