1. Data Controller
The data controller under the GDPR is Sonera s.r.o., ID 22641416, Uralská 689/7, Prague 6.

2. Purpose and Legal Basis
We process your data (name, email, phone, company ID, billing address, IP addresses, and logs) for: contract fulfillment (providing IT services, hosting), legal obligations (accounting and taxes), and legitimate interests (network security).

3. Data Retention
We retain data for the duration of the contract and for the period required by law (e.g., 10 years for tax documents).

4. Processors and Recipients
Data is accessible to authorized employees and verified subcontractors (e.g., accounting firm). We do not transfer data outside the EU.

5. Your Rights
You have the right to access, rectify, delete, restrict processing, and port your data. To exercise your rights, contact us at info@sonera.cz. You also have the right to file a complaint with the Office for Personal Data Protection (ÚOOÚ).