Privacy Policy
Information on the Processing of Personal Data
Nyvium s.r.o., Vilová 2, 851 01 Bratislava, Slovakia, takes the protection of personal data that you provide to us seriously. It is important that you know that the personal data you provide to us is processed responsibly, transparently, and in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council and Act No. 18/2018 on Personal Data Protection. You have the right to request information about the personal data recorded about you, to request its correction, or deletion if it has been provided based on your consent. If automated processing takes place, you have the right to data portability and the right not to be subject to a decision based solely on such automated processing. In case of any questions or requests regarding the processing of your personal data, you may contact us in writing at the address of the company's registered office.
Security of Your Personal Data
Nyvium s.r.o. places great importance on the security of the personal data you provide to us. We have implemented appropriate technical and organizational measures to adequately protect your data, taking into account the sensitivity of its processing. No unauthorized person has access to the personal data we have obtained from you, and we do not share it with other entities for further processing without your consent, unless required by law or in order to protect our legal interests.
Right to Be Informed
Your right is to request information about what personal data we process about you, to what extent, and for what purpose. We will provide this information free of charge within 30 days, and in exceptional situations no later than 90 days. We will inform you in advance of any extension of the deadline in exceptional cases. If you request information about the data we hold about you, we will first need to verify that you are indeed the person to whom the information relates. Therefore, please provide sufficient identification in your request. If necessary, we have the right to request additional information to verify your identity before providing you with the personal data we process about you. We also reserve the right to reasonably refuse requests for information that are unfounded, excessively repetitive, require disproportionate effort, or would be difficult to obtain (typically from backup systems, archives, etc.).
Right to Data Portability
You have the right to obtain the personal data we hold about you in a structured, commonly used, and machine-readable format. Upon your request, this data may be transferred to another controller.
Data Updates and Right to Rectification
As personal data may change over time (for example, a change of surname), we would appreciate it if you inform us of any changes so that we can keep your personal data up to date and avoid possible errors. Providing information about changes to your data is necessary for us to properly carry out our activities as a controller. This is also related to your right to rectification of the personal data we hold about you. If you find that the data we hold is no longer accurate, you have the right to request its correction.
Objections
If you believe that your personal data is not being processed in accordance with the applicable legislation of the Slovak Republic and the European Union, you have the right to raise an objection, and we will subsequently review the validity of your request. At the moment an objection is submitted, the processing of your personal data will be restricted until it is verified whether the objection is justified.
We also inform you that you have the right to lodge a complaint regarding the processing of your personal data with the competent supervisory authority at the following address:
Office for Personal Data Protection
Hraničná 12
820 07 Bratislava 27
Slovak Republic
Right to Restriction of Processing
You have the right to request the restriction of processing of your personal data if you believe that the recorded data is inaccurate, if you believe that we process it unlawfully, or if you believe that we no longer need the data for the purposes for which it was processed.
Right to Erasure
If you have previously given us consent to process your personal data, you have the right to withdraw such consent at any time, and we are obliged to delete the data processed exclusively on the basis of your consent. The right to erasure does not apply to data processed for the purpose of fulfilling contractual obligations, complying with legal requirements, or protecting legitimate interests.
If some of your data is stored in backup systems that automatically ensure the resilience of all our systems and serve the function of protecting against data loss in the event of failures, it may not be possible for us to delete such data from backup systems, and in many cases, this is not technically feasible. However, such data will not be actively processed further and will not be used for any other processing purposes.
Where You Can Contact Us
If you have any questions regarding personal data protection, you may contact us by e-mail at info@nyvium.com or at the registered office of our company:
- Nyvium s.r.o., Vilová 2, 851 01 Bratislava, Slovakia. IČO: 51005441 · DIČ: 2120554766 · IČ DPH: SK2120554766
- Nyvium CZ s.r.o., Nivnická 446/14, Mariánské Hory, 709 00 Ostrava, Czech Republic. IČO: 06490743 · DIČ: CZ06490743
Website – Log Files
When you access our website and browse it, we process and store the following log files on our servers. The information we store includes:
- Your IP address
- The page of our website you accessed
- HTTP response code
- Identification of your browser
We process this information for a maximum period of one year, and solely for the purpose of our legal protection.
Cookies
When you visit our website, you are informed that we use technologies to collect and store information using cookies on your device. Cookies are small text files that are stored locally on your device. You may delete these files from your browser or disable their use entirely.
Cookies do not collect any of your personal data; however, without them we are unable to ensure the full functionality of our website.
Analytics and Statistics
We monitor and analyze our website using analytical services. None of the data processed through these services constitutes your personal data.
Through these services, we obtain information about website traffic and geographic data, as well as information about the browser and operating system used to access our website.
We use all this information for marketing purposes, for further improving our website and content, and also for legal protection purposes.
Data Retention Periods
Contract and invoicing records are retained for up to 10 years due to legal requirements. Project communication and delivery artifacts are kept for 3–5 years after completion for the purpose of defending against potential claims and ensuring continuity. Candidate and recruitment data are stored for 12 months from the last meaningful contact, unless this period is extended with consent. Security and access logs are retained for 90 days, unless they are required for an investigation. General inquiries are stored for 12 months after the issue has been resolved.
Data Sharing and Processors
We use carefully selected processors that provide infrastructure, productivity tools, accounting services, or security solutions. Each processor is bound by a written data processing agreement in accordance with Article 28 of the GDPR. The categories of processors include cloud hosting providers, email and productivity suite providers, secure file storage services, accounting service providers, communication and conferencing platforms, and developer tools. We do not sell personal data.
Security Measures
- The principle of least privilege and role-based access control.
- Encrypted transmission (HTTPS/TLS) is used.
- Encrypted storage is used for confidential documents.
- Regular access reviews and offboarding procedures are in place.
- Secure development practices and patch management are applied.
- No method of transmission or storage is 100% secure; we regularly assess and improve our controls.
The privacy policy is regularly reviewed and may be updated when necessary. The last update of this privacy policy took place in December 2025.