Effective Date: 13.06.2025
Data Controller: MyMiStore s.r.o., a company registered in the Czech Republic
Contact Email: hey@gotuna.com
This Privacy Policy is prepared in accordance with EU General Data Protection Regulation (GDPR) (EU) 2016/679 and the Law No110/2019 Sb. About Processing of Personal Data.
This Privacy Policy explains how we collect, use, and protect your personal data in compliance with GDPR and Czech regulations.
1. What Data We Collect
We may collect:
- Identity data /personal information (name, email, phone, address)
- Order and payment details (processed securely via third-party providers)
- Browsing Data (IP address and device/browser info, cookies)
- Communication history
2. Purpose and Legal Basis
We process your data based on:
- User Consent (for marketing and cookies)
- Contractual Necessity (for purchases)
- Legal Compliance (for tax and security purposes)
The purpose:
- To fulfill contracts and consumer’s support
- To comply with legal obligations (e.g., accounting laws and tax compliance)
- Marketing and personalized recommendations
- Based on your consent (e.g., newsletter)
- Based on legitimate interest (e.g., fraud prevention)
3. Data Retention
Data is stored:
- For 10 years to meet legal requirements
- Until consent is withdrawn (e.g., for marketing)
4. Sharing of Data
We may share your data with:
- Payment processors (e.g., Stripe, PayPal)
- Delivery providers (for order delivery)
- Accounting services
- IT service providers
- Legal authorities (if required by law)
5. Your Rights
Under GDPR you have the right to:
- Access your data
- Request correction or deletion
- Object to processing
- Withdraw consent
- Request data portability
- File a complaint with the ÚOOÚ (Czech Data Protection Authority): https://www.uoou.cz
6. Data Security Measures
We implement Cyber Resilience Act (CRA) standards, including encryption and secure storage.
7. Policy Updates
We may update this policy. Changes will be posted on our website.
8. Contact Us
For inquiries, email hey@gotuna.com.
Cyber Security Statement
Effective Date: 13.06.2025
1. Introduction
At Go Tuna, we prioritize cybersecurity to protect our customers, partners, and business operations. This statement outlines our commitment to data security in compliance with the Cyber Resilience Act (CRA) and Czech cybersecurity regulations.
2. Security Measures
We implement the following security protocols:
3. Customer Data Protection
We ensure:
- Data Encryption – All sensitive data is encrypted using industry-standard protocols.
- Access Control – Multi-factor authentication (MFA) is required for system access.
- Regular Security Audits – We conduct periodic assessments to identify vulnerabilities.
- Incident Response Plan – A structured approach to handling security breaches.
- Secure storage of personal and payment data.
- Compliance with GDPR and DSA regulations.
- Immediate notification in case of data breaches.
4. Third-Party Security
We collaborate with trusted vendors who comply with cybersecurity standards.
5. Contact Us
For security concerns, email hey@gotuna.com.
