Privacy Policy

This policy applies to personal data processed by Spectoda s.r.o. when you use the Spectoda Connect app, visit spectoda.com, request our services, communicate with us, or apply for cooperation or employment.

Spectoda Connect acts as the entry point for products and experiences powered by the Spectoda ecosystem. The official policy explicitly mentions NARA, SpectaSticks, and Spectoda App within this scope.

The exact scope depends on how you interact with us. For app users, this may include identification and contact details voluntarily provided by you, technical information such as IP address, and data related to web interfaces or cookies where applicable.

• information you provide when contacting us, registering interest, requesting support, or entering into a contract
• contact details such as email address, phone number, or correspondence address
• identification details where needed for a contract or another legal relationship
• technical data about your device, browser, operating system, and IP address when using the website or related web interfaces
• newsletter data if you consent to receiving updates from us

We use personal data only for the purposes for which it was collected. This typically includes delivering our services, performing contractual obligations, complying with legal obligations, answering your questions, improving our services, or sending updates if you have agreed to receive them.

The legal basis may be performance of a contract or pre-contractual steps, compliance with a legal obligation, your consent, protection of vital interests, or our legitimate interest.

We do not make decisions based solely on automated processing, including profiling, that would have legal or similarly significant effects on you.

We do not disclose your personal data outside the situations described in the policy. Where justified and necessary, we may share it with partners helping us operate our services and infrastructure, or with public authorities if required by law or needed to protect our legitimate interests.

• IT infrastructure providers and administrators
• website and related digital service operators
• postal and other operational service providers
• public authorities, courts, or the Police of the Czech Republic when required by law or necessary to protect our rights

We follow the principles of data minimization and storage limitation. We keep personal data only for as long as necessary for the specific purpose, the duration of the legal basis, or the period required by law. In some cases, retention may reach up to 10 years after the contractual relationship ends, or longer if needed for a dispute or another justified case.

We use appropriate technical, physical, and organizational safeguards to protect personal data against unauthorized access or misuse. Access is limited to authorized personnel only.

As a data subject, you can request access to your personal data, correction, completion, erasure, restriction of processing, or data portability. You can also object to processing based on legitimate interests and withdraw your consent at any time where processing relies on consent.

If you believe we process your personal data in breach of applicable law, you may file a complaint with the Czech Data Protection Authority.