Chapter 1.

 General Provisions


Having regard to the protection of privacy of the Users of the services provided at, hereinafter referred to as the Website, as the Website owner and administrator, we are hereby implementing this Privacy Policy.


This Privacy Policy will allow you, the Website Users, to obtain information regarding:

  • The Personal Data Controller (PDC)
  • The scope and purposes of personal data processing
  • The manner in which personal data are acquired and collected
  • The rights of data subjects
  • The making available and entrusting of personal data to others
  • The measures to safeguard personal data.


Please note the following:

The Controller of your personal data submitted when using the Website services is: Consultimate Solutions s.r.o. with its seat in Tajovského 4, 96501 Žiar nad Hronom, Slovak Republic, represented by the Managing Director, hereinafter referred to as Consultimate Solutions s.r.o. or Company.

Personal data of Website Users are processed in accordance with the Personal Data Protection Act dated 29 August, 1997 (J. of Laws of 2016, Item 922), the Electronic Supply of Services Act dated 18 July, 2002 (J. of Laws of 2017, Item 1219), REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the European Union L 119 of 4 May, 2016).


Definitions used for the purpose of this Privacy Policy:

  1. Personal Data Controller (PDC)– shall mean a body, organisational unit, entity or person deciding about the purposes and means of the processing of personal data. The Personal Data Controller is Consultimate Solutions s.r.o. with its seat in Tajovského 4, 96501 Žiar nad Hronom, Slovak Republic, represented by the Managing Director;
  2. Personal data– shall mean any information relating to an identified or identifiable natural person, who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity;
  3. Website notices (check box)– notices which should be located beneath the contact form through which PDC collects user personal data;
  4. Website– all services supplied through the website, in particular the Newsletter service and the ability to use the Contact Form to contact the site;
  5. Electronically supplied services– all services performed through the sending and receiving of data through IT systems at an individual request of service recipient (customer), without the simultaneous physical presence of the parties, transmitted via public networks, in accordance with the Electronic Supply of Services Act dated 18 July, 2002 (J. of Laws of 2017, Item 1219);
  6. Website User– a person who voluntarily avails of the services available at the Website, i.e. browses the web pages of the Website, subscribes to a free Newsletter, or contacts the Website owner via the Contact Form;
  7. Data processing– the carrying out of any operation on personal data, such as data collection, data modification, data archiving, or data erasure.


Chapter 2.

 The Scope and Purpose of Personal Data Processing


The provisions of this Policy refer to all groups using the Website and the services provided at, in particular the following:

  • persons who order free subscription (Newsletter);
  • person who communicate via the Contact Form.


Your personal data is processed with the intention of providing online bulk VAT validation services and replying to the questions submitted via the Contact Form.


The submission of personal data is requisite, for the nature of the services provided via the Website renders their performance – i.e. replying to a question submitted via the Contact Form or sending the validated VAT ID results – impossible, if anonymous.


The scope of the personal data processed is reduced to a minimum required to provide the Website services. The submission of any additional data, not requisite to provide the service, is voluntary and requires an express consent of the Website User to their further processing.


Data required when subscribing to the service of VAT Validation in bulk batches:

  • Email address;
  • Full name used to personalize the message;
  • Name of the company on behalf of which you contact us.

Even though the submission of personal data is voluntary, it is requisite to provide subscription services.

The VAT Validation service involves upload of a data file and the application embedded in the system processes the information in the data file and returns an output file for download for the user.

The User is notified thereof at the time of subscribing to the service. Personal data are processed pursuant to Article 23(1)(1) of the Regulation of the European Parliament and of the Council on the protection of personal data (General Data Protection Regulation), which means that the Controller may process said data only when the data subject gives his consent thereto.

Consultimate Solutions s.r.o. does not introduce personal data to the VAT Validator data base. The Users themselves introduce themselves into the list. The User (owner of the email address) must confirm his subscription by clicking on the activation link, which is sent to the email address provided. This is the only way in which confirmed emails are introduced into the subscribers’ data base.

The person which subscribed to the VAT Validation service may, at any time, update his data by contacting the Data Controller via the Contact Form.


Personal data of the User availing of the Contact Form are processed pursuant to Article 23(1)(1) of the Regulation of the European Parliament and of the Council on the protection of personal data (General Data Protection Regulation), which means that the Controller may process said data to answer any question you asked using the Form. Personal data of persons who do not enter into a contract with Personal Data Controller are erased.

Even though data are provided voluntarily, their provision is requisite to send a question and receive a reply. In addition, the provision of personal data serves the purpose of User personalisation.

Email addresses submitted via the Contact Form are not automatically introduced to the Service Subcribers’ data base. The service may be subscribed separately & independently by the Website User.


Chapter 3.

 How Personal Data Are Acquired


Personal data of the Users of our Website are collected directly from data subjects, i.e. through

  • The filling in of the Contact Form when submitting a question via the web page;
  • The filling in of the Batch VAT Validation Service subscription form.


Chapter 4.

 The Rights of Data Subjects


Irrespective of the purpose of personal data processing, at any time, as the Users of our Website, you have the following rights:

  1. The right to access the contents of the personal data provided;
  2. The right to demand that the provided personal data be supplemented, updated, corrected, and that the processing of data be temporarily or permanently suspended;
  3. The right to remove the data provided, should the data be incomplete, outdated, untrue, or collected in violation of the law, or no longer required for their designated purpose;
  4. To right to be forgotten;
  5. The right to limit the processing of personal data;
  6. The right to transfer the personal data provided, should the data be processed in an automated way subject to a consent or contract;
  7. The right to object;
  8. The right to be excluded from profiling;
  9. The right to withdraw the consent to process one’s personal data at any time, should the processing of such data be subject to a consent;
  10. Every 6 months, the right to verify the processing of personal data with respect to the existence of the filling system wherein data are processed, to obtain up-to-date information regarding the controller of data and the purpose, scope and method of their processing, and about their contents, source, and the way of data provision, and the recipients or categories of recipients of the personal data provided;
  11. The right to file a complaint with the inspector general for personal data protection, should the data controller not account for:
    1. Your right to verify data, or will process data despite a written and justified request to stop processing said data in view of your special circumstances;
    2. Your objection to personal data processing in the event that the Data Controller processes data because it would be requisite to meet legally justified aims, and the processing does not infringe the rights and freedoms of the data subject, such as the marketing of own products and services of Personal Data Controller.


Chapter 5.

 Making Available and Entrusting Personal Data


We hereby inform you that your personal data shall not be made available to other entities, except for the event when the Data Controller making available said data or the Data Controller acquiring data the way they were provided, have an appropriate legal basis to justify the above.

The Website owner, as the Personal Data Controller, shall refuse to make available personal data in the event that would cause a substantial infringement of personality rights of data subjects or other persons, and in a situation when personal data are not substantially related to the indicated grounds of actions of the entity applying for data provision.


Pursuant to Article 31 of the personal protection Act, your data may be entrusted to other entities with the intention of performing certain services conducted at the request of Data Controller, in particular the service of hosting, or newsletter automation, only subject to a contract agreement.

Entities whose data is entrusted are obliged to avail of any and all technical and organisational measures to safeguard said data.


Consultimate Solutions s.r.o. shall not be liable for the privacy policy of web pages the links to which can be found on our Website.

It is recommended that one examines the privacy policies available on external web pages after clicking on the links, e.g. when redirected to websites via which the Data Controller communicates information or organises own events.

Links to external resources are placed on the Controller’s web pages with the sole purpose of allowing the User to examine requisite information or full details of an event etc., should it be organised or carried out via external services.


Chapter 6.

 Measures to Safeguard Personal Data


The Data Controller applies technical and organisational measures to safeguard the processing of personal data, ensuring protection suited to the risks and the category of data under protection, and above all, protects data against their provision to any unauthorised parties, their taking by an unauthorised party, their processing with the infringement of the law, and their change, loss, damage or destruction.

The Data Controller has developed and implemented all and any requisite personal data files in the form of the policy of information safety and the manual of IT system management.

Access to personal data is limited only to parties authorised by the Data Controller, who are bound by obligation of secrecy as to the data and the measures to safeguard them, upon the signing of a confidentiality statement.


Chapter 7.

 Final Provisions


Consultimate Solutions s.r.o. shall reserve the right to amend this Privacy Policy in the event that the applied technical solutions or amendments to the legal provisions in respect of the Website User privacy will so require.

In the event of an amendment to the binding privacy policy, the above provisions will be modified accordingly. The current version of the privacy policy will be provided on the Website at any time. Therefore, it is recommended that the currently binding document is examined every time.