Protection of personal data 


Website Privacy Policy

This website privacy policy describes the methods adopted by CRIF – Czech Credit Bureau, a.s. ID No. 262 12 242, having its registered office at Štětkova 1638/18, Nusle, 140 00 Praha 4 and registered in the Commercial Register maintained by the Municipal Court in Prague under file B 6853 (“CRIF CZ”), as the operator of the website (“Website”) with reference to the processing of Website users’ personal data. This is a general notice addressed to those who visit the Website, in compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”). When using certain products and services offered and provided through this Website, users will provide certain information about themselves, may make certain requests and may grant their consent to the processing of personal data if applicable law, in particular the General Data Protection Regulation, so requires. Contact the CRIF CZ Data Protection Officer via


Data Processing

Access to this Website may result in processing data about identified or identifiable natural persons (known as data subjects). The data controller is CRIF CZ. Personal data may also be processed by the data processor, i.e. CRIF S.P.A., having its registered office at Via M. Fantin 1-3, 40131 Bologna, Italy (“CRIF S.P.A.”), which shall ensure proper organisational and technical processing of data in order to protect it from unauthorised access, loss, damage, theft, unauthorised use or any other disclosure.


Data Processing Location

Personal data is processed at the premises of CRIF CZ and CRIF S.P.A. The data is handled solely by persons with relevant technical skills and abilities who have been assigned specific data processing roles and made familiar with the content of the General Data Protection Regulation.


Data Processing Methods

Data is processed in a correct manner and in full compliance with the General Data Protection Regulation so as to ensure data security and protect data confidentiality. Data is processed using electronic or automated means and kept in secured systems.


Processed Data Types

The information systems involved in the operation of this Website use certain personal data during their normal operation. The transmission of this data is implicit in the use of ICP protocols. The data is not collected in order to associate it with specific entities; however, due to its nature, the processing and relation to other data possessed by third parties allow to identify the users. This data category includes IP addresses and the domain names of the computers used by the users connecting to the network, the URL addresses of the requested sources, the time the request was made, the method used in making the request and other parameters related to the user’s operating system and information environment. The data also includes information provided by cookies on the user’s hard disk – see the section below. We also collect aggregate data on Website use, such as the traffic the Website gets, the number of Website visits per day and the average time spent by users on each Website.


Use of Collected Data

Collected data may be used, for example, to meet the user’s requirements, provide useful advice and instructions, provide quotes on demand and/or process and fulfil the user’s offers. Furthermore, the data may be used to provide order status details and information on services and new content on the Website, etc.

Some operational data may also be processed to ensure the security and availability of the Website and related services. Statistical data on Website use is processed to improve the Website functionality and user-friendliness and prepare aggregate and anonymous information used for marketing and similar activities.

Recipients of Collected Data

CRIF CZ may provide the information collected through the Website to other companies of the CRIF Group, namely to CRIF S.P.A., CRIF – Slovak Credit Bureau, s.r.o., ID No.: 35886013, having its registered office at Mlynské nivy 14, 821 09 Bratislava, and to CRIF – Registr platebních informací s. r. o., ID No.: 057 75 809, having its registered office at Štětkova 1638/18, Nusle, 140 00 Praha 4 and registered in the Commercial Register maintained by the Municipal Court in Prague under file C 268784, and to third parties such as contractors or other entities that provide services (or products) demanded by the user. We may also provide these companies with aggregate statistics on visitors, transactions and other activities on the Website. Information on users may also be disclosed to other entities if it is required by the relevant law or necessary to safeguard the rights and legally protected interests of the GRIF Group members or another entity.

Third companies that provide services, advertise or have their link on this Website may use cookies on their websites or collect information on users in a different manner. CRIF CZ has no control over how these companies collect and use information. Any enquiries regarding such data processing must be addressed to the operator of the respective website.



Privacy Protection and User Rights

The transmission of all information through the Website is encrypted. Nevertheless, CRIF CZ provides no warranties as to the security of the transmission of information a user sends to CRIF CZ. Any use of the Website is at the user’s sole responsibility.


What is a cookie?

A cookie is an information text string sent by a web server (e.g. a website) to the user’s web browser, which automatically saves it on the user’s computer and automatically sends it back to the server each time the website is accessed. Each cookie contains different data, such as the name of the server, where it comes from, a numeric identifier, etc.

Cookies are not used to transfer personal data. Using cookie sessions which are not permanently stored on the user’s computer and disappear after closing the browser is strictly limited to the transfer of session identification codes containing random server-generated numbers necessary for safe navigation on the website. Therefore, the use of such cookie sessions prevents the use of other information technologies which could pose a potential threat to the confidential nature of the navigation. They do not allow for acquiring personal data which could identify the user.

However, each web browser allows cookies to be restricted and deleted (for more information refer to the section in this information notice on “How to enable, disable or delete cookies”). Remember, however, that disabling or deleting cookies may impede the optimum use of some parts of the website or compromise the use of services requiring authentication.


Types of Cookies Used by CRIF

This Website uses the following cookie categories:

Technical cookies: technical cookies are those used solely for the purposes of sending a message through an electronic communication network, or to the extent strictly necessary for the service provider of the information company to provide a service explicitly requested by the subscriber or user. These cookies may be divided into: navigation or session cookies, which ensure a regular navigation and use of the website, analytic cookies used directly by the website administrator to collect overall information on the number of users and how they visit the website, and functional cookies, which enable the users to navigate themselves based on a series of selected criteria in order to improve the services provided.

Profile cookies: used to track the user’s navigation on a network and create profiles of the user’s tastes, habits, and choices. Based on these cookies, advertising messages can be sent to the user’s computer according to the demonstrated preferences.


How to enable, disable or delete cookies

By default, almost all web browsers are set up to automatically accept cookies. These can be restricted or blocked in the browser settings. If you prefer websites not to save certain cookies on your computer, set up the browser so that you receive a notification prior to saving each cookie. Alternatively, you can set up your browser to reject all cookies or only third-party cookies. You can also delete all cookies already existing in the system. It is important to note that the settings must be changed separately for each browser and each computer. If you block saving the cookies, we cannot guarantee a correct operation of the website. Some functions may be unavailable and it may no longer be possible to view certain websites.