Zásady ochrany osobných údajov
Naposledy aktualizované: October 22, 2025
1. Introduction
Welcome to CheckyTo. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your information when you use our vehicle management platform.
This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
2. Data Controller
3. Information We Collect
3.1 Information you provide
- Account information: Name, email address, password
- Profile information: Company details, billing information
- Vehicle data: Vehicle details, maintenance records, service history
- Payment information: Processed securely through Stripe (we do not store credit card details)
- Communication data: Support tickets, emails, messages
3.2 Information we collect automatically
- Usage data: Pages visited, features used, time spent
- Device information: IP address, browser type, operating system
- Cookies: See our Cookie Policy
4. How We Use Your Data
We use your personal data for the following purposes:
Service Provision
To provide and maintain our vehicle management platform
Legal basis: Contract performance
Payment Processing
To process payments and manage subscriptions
Legal basis: Contract performance
Communication
To send notifications, updates, and respond to inquiries
Legal basis: Contract performance & Legitimate interest
Security
To detect and prevent fraud, abuse, and security incidents
Legal basis: Legitimate interest & Legal obligation
Analytics & Improvement
To analyze usage and improve our services
Legal basis: Legitimate interest & Consent (for cookies)
5. Data Sharing and Disclosure
We may share your data with:
Service Providers
Stripe (payment processing), hosting providers, email service providers. These providers are contractually obligated to protect your data.
Legal Requirements
When required by law, legal process, or government request.
Business Transfers
In connection with a merger, acquisition, or sale of assets (you will be notified).
We do not sell your personal data to third parties.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.
- Account data: Until account deletion + 30 days
- Financial records: 7 years (legal requirement)
- Analytics data: 26 months (Google Analytics default)
- Support tickets: 3 years
7. Your Rights (GDPR)
Under GDPR, you have the following rights:
Right to Access
Request a copy of your personal data
Right to Rectification
Correct inaccurate data
Right to Erasure
Request deletion of your data
Right to Restriction
Limit how we use your data
Right to Portability
Receive your data in a structured format
Right to Object
Object to processing for direct marketing
Right to Withdraw Consent
Withdraw consent at any time
Right to Complain
File a complaint with a supervisory authority
To exercise these rights, contact us at [email protected]
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data:
- SSL/TLS encryption for data in transit
- Encrypted data storage
- Regular security audits
- Access controls and authentication
- Employee data protection training
9. International Data Transfers
Your data is primarily stored within the European Union. If we transfer data outside the EU, we ensure adequate safeguards are in place (e.g., Standard Contractual Clauses).
10. Children's Privacy
Our service is not intended for children under 16. We do not knowingly collect data from children. If you believe we have collected data from a child, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through our platform. Your continued use of our service after changes constitutes acceptance of the updated policy.
12. Contact Us
If you have questions about this Privacy Policy or want to exercise your rights: