These Privacy Principles apply to the website audiovodicak.sk and describe how personal data is processed in connection with access to and use of the audiobook and related digital content.
1. Controller
The controller of personal data is:
Name and surname: Peter Parničan (also referred to as ‘Peter Parnican’ in international documents)
Contact / registered address: available via the Author details & contact page
E-mail: support@audiovodicak.sk
Hereinafter the “Controller” or the “Author”.
The Controller operates the website audiovodicak.sk (the “Website”), through which he provides digital content – in particular audiobooks intended to help prepare for driving licence examinations (the “Product”).
Personal data are processed in accordance with Regulation (EU) 2016/679 (GDPR) and the related legislation of the Slovak Republic.
2. Scope of personal data processed
The Controller primarily processes the following categories of data:
2.1. Data necessary to create and manage access to the Product
- e-mail address (login for access to the audiobook),
- name / nickname (if provided by the user),
- user account ID or an internal identifier.
2.2. Technical data (logs)
- IP address,
- information about the device and browser used (type, version),
- date and time of login, and any technical logs needed to diagnose errors.
2.3. Data related to the order
Payment data (card number, IBAN, billing data, VAT, tax country, etc.) are primarily processed by Paddle.com Market Limited as an independent controller (Merchant of Record). The Controller may process:
- information that payment has been completed,
- the Product ordered,
- the amount, date and transaction identifier (e.g. Paddle order number),
- the buyer’s e-mail address.
This data is mainly used to match the payment with access to the Product and to handle any complaints.
3. Purpose and legal basis of processing
Personal data is processed for the following purposes:
3.1. Performance of the contract (Article 6(1)(b) GDPR)
- creating access to the purchased Product,
- enabling login to and use of the Website,
- communicating with the user in relation to the order, access and technical support.
3.2. Compliance with legal obligations (Article 6(1)(c) GDPR)
- keeping records required for tax and accounting purposes,
- handling complaints and exercising consumer rights.
3.3. Legitimate interests of the Controller (Article 6(1)(f) GDPR)
- protecting the Website against abuse, attacks and unauthorised access,
- improving the functionality of the Website (technical diagnostics of errors),
- basic usage statistics (to an extent that does not identify a specific person or is pseudonymised).
If the Controller were to use marketing e-mails or advanced analytics, a separate consent would be obtained under Article 6(1)(a) GDPR (for example a checkbox when signing up to a newsletter).
4. Source of personal data
The Controller obtains personal data:
- directly from the user (entering an e-mail, registration, contact via a form),
- indirectly via the Paddle service (information about successful payment, transaction ID and the buyer’s e-mail),
- automatically when using the Website (IP address, logs, cookies).
5. Cookies and similar technologies
The Website may use:
5.1. Necessary (technical) cookies
- used to ensure the basic functions of the Website (login, maintaining the session, security),
- without these cookies the Website may not function properly,
- legal basis: legitimate interest / performance of the contract.
5.2. Analytical or marketing cookies (if used)
- may be used for anonymised statistics or content personalisation,
- in such a case, users will be informed through a cookie banner and their consent will be requested, which they can refuse or withdraw.
A specific list of cookies used may be published in a separate “Cookie Policy” or in a supplementary table on the Website.
6. Recipients of personal data
Personal data may be disclosed to:
- Paddle.com Market Limited – payment processing, invoicing, tax obligations,
- the provider of hosting and technical infrastructure of the Website,
- the provider of e-mail services (if an external mail server is used),
- other entities where required by law (e.g. public authorities, tax office).
The Controller does not sell personal data to third parties for marketing purposes.
7. Transfers to third countries
Some services (e.g. hosting, Paddle) may have servers or process data outside the EU/EEA. In such cases, transfers are based on:
- an adequacy decision of the European Commission, or
- Standard Contractual Clauses and, where appropriate, additional measures.
8. Retention period for personal data
Personal data will be stored:
- for the duration of access to the Product and subsequently for the period necessary to meet accounting and tax obligations (as a rule, 10 years from the end of the tax period in which the transaction took place),
- security logs are generally retained for several months, but no longer than is reasonably necessary to handle incidents and disputes.
After the retention period expires, personal data will be securely deleted or anonymised.
9. Rights of the data subject
The user (data subject) has the following rights in relation to the processing of personal data:
- right of access – to obtain confirmation whether their data is being processed and which data,
- right to rectification – to request correction of inaccurate or incomplete data,
- right to erasure – to request deletion of data if the conditions are met (e.g. the data are no longer necessary),
- right to restriction of processing,
- right to data portability – to the extent provided for by the GDPR,
- right to object – in particular to processing based on legitimate interest,
- right to withdraw consent – where processing is based on consent (e.g. newsletter).
The user may exercise their rights by contacting the Controller at: support@audiovodicak.sk.
The user also has the right to lodge a complaint with the supervisory authority:
Úrad na ochranu osobných údajov SR
Hraničná 12, 820 07 Bratislava 27
Web: www.dataprotection.gov.sk
10. Voluntary nature of providing data
Providing an e-mail address (and possibly a name) is necessary to conclude the contract and provide access to the Product. Without this data, it is not possible to provide access to the audiobook.
11. Changes to this Policy
The Controller reserves the right to change this Privacy Policy, in particular if there are changes in legal regulations, technical solutions of the Website or the scope of services provided.
The current version is always published on the Website.
These Principles are valid from: 1 Novemeber 2025.