VirtualResidence

TermsGDPRBack to home

Privacy Policy (GDPR)

This document explains personal data processing for the Lifetime virtual residence service.

Effective date: 2026-02-12

The Provider processes personal data only to the extent required for contract performance, legal compliance, and secure operation of the service.

1. Data controller

The data controller is Reportify s.r.o., Company ID 23832011, with registered office at Spojovací 2148/34, 130 00 Prague - Žižkov, Czech Republic.

Controller contact details are published in the Contact section and website footer.

2. Categories of personal data

  • Identification and contact data submitted in checkout (for example company name, Company ID, VAT ID, and email).
  • Billing and payment-related data.
  • Order data, selected address, optional items, and order processing status.
  • Technical and operational logs required for security and reliability.

3. Purpose and legal basis

  • Contract performance under Article 6(1)(b) GDPR (order processing, payment, and document delivery).
  • Legal obligations under Article 6(1)(c) GDPR (especially accounting and tax obligations).
  • Legitimate interest under Article 6(1)(f) GDPR (security, fraud prevention, and legal claim defense).
  • Consent under Article 6(1)(a) GDPR where required (for example optional analytics or advertising cookies).

4. Recipients and processors

Personal data may be processed by trusted processors required to operate the platform.

Typical categories include payment gateway provider (GoPay), hosting/database infrastructure provider, email infrastructure provider, and technical suppliers.

The Controller enters into appropriate contractual safeguards with processors.

5. Data retention

Order-related data is retained for the duration of the contractual relationship and for legally required retention periods.

Accounting and tax records are retained for periods required by applicable law.

After retention periods expire, data is deleted, anonymized, or retained only in a strictly limited scope for legal claim defense.

6. Transfers outside the EU/EEA

Personal data is processed primarily within the European Union.

If exceptionally transferred outside the EU/EEA, such transfer is made only under GDPR conditions and with appropriate safeguards.

7. Data subject rights

  • Right of access to personal data.
  • Right to rectification of inaccurate or outdated data.
  • Right to erasure, restriction, and data portability where legally applicable.
  • Right to object to processing based on legitimate interest.
  • Right to withdraw consent at any time where processing is consent-based.

8. Cookies and similar technologies

  • Necessary cookies are used for basic website functionality and security.
  • Analytics and advertising cookies are used only to the extent permitted by applicable legal requirements and consent settings.
  • Up-to-date cookie information is provided in the cookie banner or related cookie policy content.

9. Security measures

The Controller applies technical and organizational safeguards appropriate to the risk level to protect personal data against loss, misuse, unauthorized access, or disclosure.

Access to personal data is limited to persons who need such access to perform their duties.

10. Supervisory authority and contact

If a data subject believes personal data processing is unlawful, a complaint may be filed with the Czech Data Protection Authority.

Requests related to personal data protection can be sent to the contact email listed on the website.

11. Final provisions

The Controller may reasonably update this policy; the latest version is always published on this website.

This policy applies to personal data processing for services on virtualresidence.cz and sidlonaklik.cz.