GDPR Information

Your data protection rights under GDPR

Back to Home

Effective Date: June 1, 2025
Last Updated: June 1, 2025

1. Introduction

The General Data Protection Regulation (GDPR) is a European Union regulation that governs how organizations process personal data. At Valiant Ventures s.r.o., we are committed to protecting your privacy and ensuring compliance with GDPR requirements.

🛡️ Privacy by Design

Our StableImg service is built with privacy by design principles, ensuring minimal data collection and maximum protection of your personal information.

2. Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

Right to Information

You have the right to know what personal data we collect, how we use it, and who we share it with.

Right of Access

You can request a copy of all personal data we hold about you.

Right to Rectification

You can ask us to correct any inaccurate or incomplete personal data.

Right to Erasure

You can request deletion of your personal data (right to be forgotten).

Right to Restrict Processing

You can ask us to limit how we process your personal data.

Right to Data Portability

You can request your data in a structured, machine-readable format.

Right to Object

You can object to certain types of data processing.

Right to Withdraw Consent

You can withdraw your consent at any time where processing is based on consent.

3. How We Protect Your Data

3.1 Data Minimization

We collect only the personal data that is strictly necessary for providing our image replacement service. We do not collect data for secondary purposes such as marketing or analytics.

3.2 Purpose Limitation

Your personal data is processed only for the specific purposes for which it was collected:

  • Providing image upload and replacement services
  • Maintaining service security and integrity
  • Responding to your support requests
  • Complying with legal obligations

3.3 Technical and Organizational Measures

  • Encryption: All data is encrypted in transit and at rest
  • Access Controls: Strict access controls and authentication
  • Regular Audits: Security assessments and vulnerability testing
  • Staff Training: Regular privacy and security training for all staff
  • Incident Response: Procedures for handling potential data breaches

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

Contractual Necessity (Article 6(1)(b))

Processing is necessary to provide our image replacement service as agreed in our terms of service.

Legitimate Interests (Article 6(1)(f))

Processing is necessary for our legitimate interests in providing a secure and functional service.

Legal Compliance (Article 6(1)(c))

Processing is necessary to comply with legal obligations, such as data retention requirements.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Image Data: Retained for the duration of your service usage
  • Replacement Tokens: Retained until you delete them or close your account
  • Technical Logs: Retained for 30 days for security purposes
  • Support Communications: Retained for 1 year for quality assurance

6. International Data Transfers

Your personal data is processed within the European Economic Area (EEA). We do not transfer personal data to countries outside the EEA unless adequate protection is ensured through appropriate safeguards as required by GDPR.

7. Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the information below. We will respond to your request within one month.

How to Submit a Request

  1. Send an email to our Data Protection Officer
  2. Include your full name and contact information
  3. Specify which right you wish to exercise
  4. Provide sufficient information to verify your identity
  5. Include any relevant details about your request

Response Time

We will respond within 1 month of receiving your request. In complex cases, this may be extended by up to 2 additional months.

No Cost

Exercising your rights is free of charge unless your request is manifestly unfounded or excessive.

8. Data Protection Officer

Our Data Protection Officer is responsible for ensuring GDPR compliance and handling data protection inquiries.

Data Protection Officer
Valiant Ventures s.r.o.
Na Celné 730/10, Smíchov
150 00 Prague 5, Czech Republic

Email: dpo@valiantventures.cz
Subject: GDPR Rights Request

9. Right to Lodge a Complaint

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with a supervisory authority.

Czech Republic Supervisory Authority

Úřad pro ochranu osobních údajů (ÚOOÚ)
Pplk. Sochora 27
170 00 Prague 7
Website: www.uoou.cz

10. Updates to GDPR Information

We may update this GDPR information from time to time to reflect changes in our data processing practices or legal requirements. We will notify you of any material changes via email or through our service.

For the most comprehensive information about how we handle your personal data, please also refer to our Privacy Policy.