PRIVACY POLICY

Controller:

Jiří Novotný

IČO: 08047057

Address: 9. května 30, 436 01 Litvínov, Czech Republic

E-mail: info@rivercruiseprague.com

Website: www.rivercruiseprague.com

(hereinafter referred to as the “Controller” or “we”)

1. Introduction

In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR), this Privacy Policy explains how personal data are processed when using our services on www.rivercruiseprague.com, including booking a cruise, submitting an inquiry, or contacting us. Providing personal data is voluntary, however certain data are necessary for the conclusion and performance of the booking contract.

2. Purposes, Categories of Data, and Legal Bases

2.1 Booking and performance of the cruise contract

Data processed: name, surname, email, phone number, number of persons, date of cruise, billing address (if required), payment details

Legal basis: Performance of a contract or pre‑contractual measures (Art. 6(1)(b) GDPR)

Storage period: 5 years after the service is completed (for complaints and potential legal claims)

2.2 Invoicing and accounting

Data processed: name, address, IČO/DIČ (if business customer)

Legal basis: Legal obligation (Art. 6(1)(c) GDPR)

Storage period: 10 years in accordance with accounting and tax regulations

2.3 Direct marketing to existing customers

Data processed: name, email

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) – sending information about similar services offered by the Controller (for example future cruises, discounts or special offers)

Storage period: until objection is raised, maximum 3 years. The recipient may object to such communication at any time.

2.4 Website analytics

Data processed: pseudonymized IP address and website usage data

Legal basis: Consent (provided via Cookie Banner)

Storage period: up to 26 months

3. Recipients and Processors

Personal data may be disclosed only where necessary to provide the requested services. These may include:

• Boat operators or other service providers responsible for operating the vessel and delivering the booked cruise, only to the extent necessary for the organization and performance of the booked service.

• Accountant or tax advisor  

• Payment providers used to process online payments.  

• Email marketing services used to manage communication with customers. 

• Google Ireland Ltd. (Google Analytics – processing of pseudonymized analytics data; data may be transferred outside the European Economic Area (EEA) under Standard Contractual Clauses pursuant to Article 46 GDPR). 

• Website hosting provider or website administrator (only under a data processing agreement)

4. Security of Personal Data

We implement appropriate technical and organizational measures to ensure the security of personal data and to protect them from unauthorized access, alteration, loss, or misuse. We do not use automated decision-making or profiling within the meaning of Article 22 GDPR.

5. Your Rights under GDPR

Under the GDPR you have the right to:

• access your personal data  

• rectify inaccurate or incomplete data  

• request erasure of your personal data  

• restrict processing of personal data  

• object to processing based on legitimate interests, including direct marketing  

• withdraw consent where consent is the legal basis  

• data portability (receive personal data in a structured, commonly used format)  

• lodge a complaint with the Czech Office for Personal Data Protection (www.uoou.cz)

6. Cookies

Our website may use cookies to ensure proper website functionality and to analyze website traffic.

Cookies are small text files stored on the user’s device when visiting a website.

We may use the following categories of cookies:

  • Essential cookies  

Necessary for the proper functioning and security of the website.

  • Analytics cookies  

Used to understand how visitors interact with the website and to improve user experience (for example Google Analytics).

Users can manage or disable cookies through their browser settings or through the cookie banner displayed on the website.

7. Contact

If you have any questions regarding the processing of personal data, you may contact us at:

info@rivercruiseprague.com

or by post at the address listed above.

8. Effective Date

This Privacy Policy takes effect on March 1, 2025.