You cannot fill out this field
Home / Privacy policy and GDPR

Privacy policy and GDPR

I. Basic provision

The controller of personal data, in accordance with § 5 letter o) of Act No. 18/2018 Coll. on the Protection of Personal Data (hereinafter referred to as the "Act"), is:

business name:      Ing. Adrián Vőrős

registered address: Nám. Hraničiarov 8/A, 85103 Bratislava

Company Identification Number CID:

                                      57177210

Taxpayer identification
number (TIN):         1084571807

registered in:          Trade Register of the District Office Bratislava, No. 110-358291

e-mail:                       info@compoacc.com

web:                           https://shop.compoacc.com

customer service:   info@compoacc.com

(hereinafter referred to as the "Trader").

I. Basic Provision

The personal data Trader processes under § 5(o) of Act No. 18/2018 Coll. on the protection of personal data (the “Act”) is:

Contact information of the Trader:

Personal data means any information that can directly or indirectly identify a natural person, including name, contact details, address, IP address, or order information.

The Trader has appointed a Data Protection Officer (DPO). Contact DPO at: info@compoacc.com

II. Sources and Categories of Processed Personal Data

The Trader processes personal data you provide when:

  • Ordering products (carbon shin guards, masks)

  • Registering an account or subscribing to a newsletter

  • Communicating with the e-shop support

The Trader processes the following categories of personal data:

  • Identification data (first and last name)

  • Contact data (email, phone, address)

  • Order and payment data

  • Data for communication and marketing (with consent)

  • Biometric data, photogrammetric images of customers’ faces, voluntarily provided when ordering custom masks or other personalized products

III. Legal Basis and Purpose of Processing

Legal bases for processing:

  • Performance of a contract between the customer and the Trader (§ 13(1)(b) of the Act)

  • Customer consent for marketing, newsletters, and commercial communications (§ 13(1)(a) of the Act)

  • Legitimate interest of the Trader to secure the e-shop and prevent fraud (§ 13(1)(f) of the Act)

  • Explicit consent of the customer for sensitive data (§ 13(1)(a) / GDPR Art. 9(2)(a))

Purposes of processing:

  • Personalization of products (e.g., custom protective masks)

  • Verification of product correctness and compatibility

  • Processing orders, delivering products, processing payments

  • Providing information about products, offers, and marketing communications (only with consent)

  • Fraud prevention and e-shop security

No automated decision-making is performed, except with explicit consent (e.g., product recommendations).

IV. Retention Period of Personal Data

The Trader retains personal data:

  • For the time necessary to fulfill the order and contract (maximum 15 years for tax and legal obligations)

  • Until withdrawal of consent for marketing purposes (maximum 3 years)

Biometric data: retained only as long as necessary to manufacture/recommend and deliver the mask, max. 30 days after delivery unless the customer consents to longer storage (e.g., for future orders).

After the retention period, data will be promptly deleted or anonymized.

V. Recipients of Personal Data

Recipients of data include:

  • Payment gateways (e.g., GoPay, Stripe) – payment processing

  • Courier services – product delivery

  • E-shop management and analytics services (Shoptet, Google Analytics)

  • Marketing partners – only with user consent

The Trader does not transfer data outside the EU except in cases secured by standard contractual clauses.

VI. Users’ Rights

Under the Act, you have the right to:

  • Access your data (§ 21)

  • Correct your data (§ 22)

  • Delete your data (§ 23)

  • Restrict processing (§ 24)

  • Object to processing (§ 27)

  • Data portability (§ 26)

  • Withdraw consent at any time

  • Delete biometric data

  • Receive information about how data is processed and stored

Requests should be sent to: info@compoacc.com
Response within 30 days.

You also have the right to lodge a complaint with the Office for Personal Data Protection of Slovakia.

VII. Security of Personal Data

The Trader has implemented technical and organizational measures to protect data.

  • Access is restricted to authorized personnel only

  • Data is secured electronically and physically (databases, paper records)

  • Emphasis on encryption and restricted access, especially for sensitive biometric data

VIII. Cookies

Our website uses cookies—small files stored on your device to ensure proper functioning, improve performance, and provide personalized content.

Types of cookies used:

  • Necessary cookies – always active, required for website functionality

  • Analytical cookies – to analyze visitor behavior and improve the site

  • Profiling/Marketing cookies – active only with consent, for relevant content and ads

By using our website and confirming your choice in the cookie banner, you consent to the storage and use of cookies. Cookie settings can be changed anytime via your browser or the website’s cookie banner.

IX. Final Provisions

By placing an order, you confirm that you have read and agree with this policy.
Consent is given by ticking a box during ordering or newsletter registration.

The Trader reserves the right to update this policy; new versions will be published online and sent via email if necessary.

Effective date: 1 September 2025

What are you looking for?

We recommend

chránič diamond black 01 Shin guards Carbon Diamond black 79 €
chránič classic 01 Shin guards Carbon Classic 69 €
maska fotka na eshop 1 Sports Carbon fibre protective mask - custom made 499 €
maska fotka S M L Sports Carbon fibre protective mask - standard 299 €
chránič diamond black 01 PERSONAL Shin guards - Carbon Diamond black Personalized 89 €
chránič classic 01 PERSONAL Shin guards Carbon Classic Personalized 79 €