1. WHO IS THE CONTROLLER?

The controller of your personal data is GOFORMAX s.r.o., with its registered office at Dřevnická 4127, 760 01 Zlín, Czech Republic, ID: 23436719, registered in the Commercial Register kept by the Regional Court in Brno, Section C, Insert 145930. We operate the website www.goformax.eu, www.goformax.cz, and others listed on the main page.

As the controller of your personal data, we determine how and for what purpose the data will be processed, for how long, and we select any other processors who assist us with the processing. In the event of a dispute, the Regional Court in Brno has jurisdiction.

2. HOW CAN YOU CONTACT US?

We care for our website visitors with love. If you have any questions or comments, please contact our customer support at:

• Email: info@goformax.cz

3. SCOPE OF PERSONAL DATA AND PURPOSE OF PROCESSING

We process personal data that you entrust to us for the following reasons (to fulfill these purposes):

Organization of (Online) Courses, Provision of Services, and Performance of Contract Your email address is essential for organizing our (online) courses and providing access to electronic products and services. If you order any of our products or services, we need your email to fulfill the contract and create access to the member section. In the case of delivering physical goods (e.g., Belgian chocolates or physiotherapeutic scooters), we also require a delivery address and contact details (such as a phone number) to provide to the shipping company of your choice.

Accounting If you order any product or service, we need your personal data (billing information) to comply with the legal obligation for issuing and recording tax documents.

Direct Marketing via Email We use your personal data (email and name), gender, which pages you visit on our website, what you click on in emails, and when you open them most often for the purpose of direct marketing—sending and displaying commercial communications. If you order any of our courses or products (paid or free), we perceive a legitimate interest in sending you newsletters regarding creativity, traditions, folklore, and key know-how. We will do this for a maximum of 5 years. You can unsubscribe at any time via the "unsubscribe" link in the footer of every email.

Direct Marketing via Facebook Ads If you visit our website, we perceive a legitimate interest through cookies to track which pages you visit and subsequently use this information for remarketing and better ad targeting on Facebook for a maximum of 1 year. If you do not wish to see our ads, you can cancel them directly on Facebook or disable cookies in your browser.

Direct Marketing via FB Messenger If you contact our FB page via Messenger, we will ask for your consent to send messages. We will only send these based on your consent for a maximum of 5 years. You can unsubscribe at any time by replying with the word "STOP".

Advanced Marketing based on Consent Only with your explicit consent may we send you inspiring offers from third parties or use your email for advanced remarketing. This consent can be withdrawn at any time.

4. DATA RETENTION PERIOD

We retain your personal data for the duration of the statutes of limitation, unless the law provides for a longer retention period or we have stated otherwise in specific cases.

5. TRANSFER OF DATA TO THIRD PARTIES

Our employees and collaborators, who are bound by confidentiality and trained in data security, have access to your data. We handle most operations ourselves, but we use specialized GDPR-compliant applications for specific tasks (e.g., email platforms, analytical tools).

6. COOKIES

While browsing our website, we record your IP address, time spent on the page, and the referring site. We use cookies for measuring traffic and customizing website display as part of our legitimate interest. You can browse our website in a mode that does not allow the collection of personal data by disabling cookies in your browser.

Processors we use for cookies:

• Google Analytics: operated by Google Inc.

• Facebook Pixel: operated by Meta Platforms, Inc.

7. SECURITY AND PROTECTION OF PERSONAL DATA

We protect personal data to the maximum extent possible using modern technologies that correspond to the current level of technical development. We have adopted and maintain all possible technical and organizational measures to prevent misuse, damage, or destruction of your data.

8. DATA TRANSFER OUTSIDE THE EU

We process data exclusively in the European Union or in countries that ensure an adequate level of protection based on the decision of the European Commission.

9. CONFIDENTIALITY

We assure you that our employees and processors are obliged to maintain confidentiality regarding personal data and security measures. Your personal data will not be released to any other third party without your consent.

This Privacy Policy is effective as of July 1, 202ř.