GDPR and Slovak Act No. 18/2018 Coll.
Information on the processing of personal data when using macrosoft.sk, ordering courses, training, online education, day computer camps, newsletter and contact forms.
Last updated: 10.05.2026
The controller of the macrosoft.sk website and the services ordered through this website is Macrosoft, s. r. o., Štefánikova 47, 811 04 Bratislava, Company ID: 36791598, VAT ID: SK2022400985.
Contact for questions about personal data protection: [email protected], or in writing to the controller address.
This page applies uniformly to computer courses, management and professional training, online courses, day computer camps, contact forms, newsletter, customer accounts, orders and payments made through macrosoft.sk.
For day camps, we may also process the child data provided by the legal guardian, in particular the child name, age, selected camp week and contact details of the parent or legal guardian. We obtain the child data from the legal guardian who registers the child for the camp.
Processed data
first name, surname, title, company, billing details, e-mail, phone number, selected course or camp, date, form of attendance, note, variable symbol, order status
Legal basis
performance of a contract or pre-contractual steps under Article 6(1)(b) GDPR
Processed data
child name, age, selected programme and camp week, legal guardian details and, if provided, other data necessary for organising the camp
Legal basis
performance of a contract concluded with the legal guardian under Article 6(1)(b) GDPR; data beyond the necessary scope is processed only under the relevant legal basis
Processed data
identification and billing details of the customer, order items, price, payment status, accounting documents
Legal basis
compliance with a legal obligation under Article 6(1)(c) GDPR
Processed data
order identifier, variable symbol, amount, payment status, technical data necessary to hand over the payment result
Legal basis
performance of a contract under Article 6(1)(b) GDPR; payment card details are entered directly with the payment gateway provider, and Macrosoft does not process the full card number or CVC
Processed data
name, e-mail, phone number, message content and follow-up communication
Legal basis
pre-contractual steps or legitimate interest in handling the request under Article 6(1)(b) or (f) GDPR
Processed data
e-mail address, subscription time, double opt-in confirmation, unsubscribe time and technical data necessary to prove consent
Legal basis
consent under Article 6(1)(a) GDPR; you may withdraw consent at any time through the unsubscribe link or by e-mail
Processed data
name or designation, rating, review text, or image record if separately permitted
Legal basis
consent or legitimate interest depending on the specific case; photographs of children for marketing purposes are used only with an appropriate legal basis, in particular with the consent of the legal guardian
Processed data
IP address, date and time of access, URL, user-agent, technical logs, cookies necessary for operating the website and cart
Legal basis
legitimate interest in secure website operation under Article 6(1)(f) GDPR
Processed data
cookies and online identifiers according to the consent settings in the cookie banner
Legal basis
consent under Article 6(1)(a) GDPR, unless the processing is technically necessary
We disclose personal data only to the necessary extent to persons who need it to provide the service or comply with legal obligations. This may include providers of IT and hosting services, e-mail communication, accounting, payment gateway and banks, internal order management systems, public authorities or persons involved in delivering a course or camp.
We do not sell personal data and do not provide it to third parties for their own marketing. If we use tools where data may be transferred outside the European Economic Area, we proceed in accordance with the GDPR and use available safeguards, in particular an adequacy decision or standard contractual clauses.
Data marked as required in forms is a contractual requirement or data necessary to accept an order, provide a course or camp, issue an accounting document, process payment or respond to your request. Without this data, we may not be able to accept the order, provide the service, issue a document or respond to the message.
Data for the newsletter, marketing cookies, analytics cookies and optional notes is provided voluntarily. Not providing it does not affect the ability to order a course or camp, but it may mean that we cannot send you the newsletter, personalise marketing measurement or take an optional request into account.
We retain data only for the period necessary to fulfil the purpose for which it was collected and subsequently for the period required by law or necessary to protect our legal claims.
We generally retain accounting and tax documents for 10 years. Data from course and camp orders is retained for the duration of the contractual relationship and then to the extent necessary to prove performance, handle complaints, keep accounting records or protect legal claims. We process newsletter data until consent is withdrawn or the subscription is cancelled. Technical and security logs are retained for the necessary period according to their purpose.
As a data subject, you have, where the legal conditions are met, in particular the following rights:
You may exercise your rights by e-mail at [email protected]. Before handling a request, we may reasonably verify your identity to prevent unauthorised disclosure of data.
For course and camp orders, we do not carry out automated individual decision-making or profiling that would have legal or similarly significant effects on the customer.
We protect personal data through appropriate technical and organisational measures, in particular access control, secure communication, backups, technical event records and limiting access only to persons who need the data to perform their work tasks.
For day camps, we process child data to the extent necessary for registration and camp organisation. Please do not enter special categories of personal data under Article 9 GDPR, in particular health data of the child, into web forms unless it is explicitly necessary to safely provide the service and there is an appropriate legal basis for it.