1. DEFINITIONS AND INTRODUCTORY PROVISIONS
“Communication Services” may contain e-mail services, dash-board services, chat areas, or other message or communication facilities designed to enable you to communicate with others.
„GDPR“ means regulation no. 679/2016 general data protection regulation;
„Rodger “ means software tool provided by us primarily to enhance management of data subject´s requests raised with aim to apply the data subject´s rights according to Articles 15 to 22 GDPR and to support controllers in demonstrating the compliance with GDPR;
„Commercial code“ means act n. 513/1991 Coll. Commercial code as amended;
“Services” mean any individual services provided by Provider in connection with deploying rodger© software to individual environment and application layers of Client, namely customization, configuration of settings and consulting of specific issues;
„Parties“ mean jointly Provider and Client, each separately as „Party“;
„Website“ means website of Provider www.rodgerapp.com including sections and sub-sections.
a) by downloading and/or installing Rodger© software or using any substantial part of Rodger© software (e.g. source code)
d) visiting and using Website (only insofar as it relates to the use of Website);
5. Contact. General contact information of Provider: firstname.lastname@example.org, 0911 195 133, Dagital Solutions, s.r.o., Nové Záhrady I/9, 821 05 Bratislava – mestská časť Ružinov, Slovak Republic. Parties are obliged to notify each other of the change of contact data, while the original contact information is valid until the new contact details are communicated. Until such change in contact details is notified to the other Party, the other Party may use the original contact details for any communication (whether written or electronic) hereof which is deemed delivered to the breaching Party even if returned as not delivered.
6. Oversight. In terms of processing of personal data, the relevant data protection authority is Office for the Protection of Personal Data of the Slovak Republic, Hraničná 12, 820 07 Bratislava 27, Slovak Republic (www.dataprotection.gov.sk). In terms of consumer rights and e-commerce the relevant oversight authority is Slovak commercial inspection, P. O. BOX 29, Prievozská 32, 827 99 Bratislava (www.soi.sk).
1. Providing license for use of Rodger© Software as widget into the Client´s website. You can easily implement Rodger as widget to your own website and then use it based on our cloud platform (“Widget License”).
2. Providing license for use of Rodger© Software according to Client´s individual needs and requirements. If the Widget license is not suitable for You can specify your demands and ask for individual license anytime (“Individual License”).
3. Providing license for further developing and customization of Rodger© Software according to will and needs of Client. If you want to enrich our solutionsprovided within Rodger© Software for developing your own solutions, please ask for developer´s license (“Developer License”).
4. Individual customization of Rodger© Software according to Client´s requirements. If you want customizeRodger© Software during its deployment with your databases and internal systems, we can help and provide you with customized version which will be able export data from you CRM system or other core system important for processing of personal data (“Customization of Rodger”)
5. Individual configuration of Rodger© Software settings according to Client´s needs. If you have implemented legal policies related to data subject´s request we can configurate settings of Rodger in compliance with that (e.g. right access management for defined layers of users with different privileges within response procedures, internal periods for exercising of important actions etc.) (“Configuration of Rodger”).
3. FEE & BILLING
1. Fee. The renumeration of the Provider´s Services is yet to be confirmed.
2. VAT. Upper stated amounts of fees are without value added tax (VAT), which is in Slovakia 20%.
4. RIGHTS AND OBLIGATIONS OF PARTIES
3. Use of Communication Services. You agree to use the Communication Services only to post, send and receive messages and material that are proper and, when applicable, related to the particular Communication Service. By way of example, and not as a limitation, you agree that when using the Communication Services, you will not:
a) Use the Communication Services in connection with surveys, contests, pyramid schemes, chain letters, junk email, spamming or any duplicative or unsolicited messages (commercial or otherwise);
b) Defame, abuse, harass, stalk, threaten or otherwise violate the legal rights (such as rights of privacy and publicity) of others;
c) Publish, post, upload, distribute or disseminate any inappropriate, profane, defamatory, obscene, indecent or unlawful topic, name, material or information;
d) Upload, or otherwise make available, files that contain images, photographs, software or other material protected by intellectual property laws, including, by way of example, and not as limitation, copyright or trademark laws (or by rights of privacy or publicity) unless you own or control the rights thereto or have received all necessary consent to do the same;
e) Use any material or information, including images or photographs, which are made available through the Services in any manner that infringes any copyright, trademark, patent, trade secret, or other proprietary right of any party;
f) Upload files that contain viruses, Trojan horses, worms, time bombs, cancelbots, corrupted files, or any other similar malware software or programs that may damage the operation of another's computer or property of another;
g) Advertise or offer to sell or buy any goods or services for any business purpose;
h) Download any file posted by another user of a Communication Service that you know, or reasonably should know, cannot be legally reproduced, displayed, performed, and/or distributed in such manner;
i) Falsify or delete any copyright management information, such as author attributions, legal or other proper notices or proprietary designations or labels of the origin or source of Rodger software or other material contained in a file that is uploaded;
j) Restrict or inhibit any other user from using and enjoying the Communication Services;
k) Violate any code of conduct or other guidelines and policies of Client which may be applicable for any particular Communication Service;
l) Harvest or otherwise collect information about others, including e-mail addresses if it is not necessary to exercise your duties and working tasks in order to response properly on the data subject request;
m) Violate any applicable laws or regulations;
n) Create a false identity for the purpose of misleading others;
o) Use, download or otherwise copy, or provide (whether or not for a fee) to a person or entity any directory of users of the Services or other user or usage information or any portion thereof.
5. Requests of authorities. Provider reserves the right at all times to disclose any information as Provider deems necessary to satisfy any applicable law, regulation, legal process or governmental request, or to edit, refuse to post or to remove any information or materials, in whole or in part, in Provider´s sole discretion.
6. Liability for content. Client is obliged always use caution when giving out any personal data in any Communication Services. Provider does not control or endorse the content, messages or information found in any Communication Services and, therefore, Provider specifically disclaims any liability with regard to the Communication Services and any actions resulting from your participation in any Communication Services. Materials uploaded to the Communication Services may be subject to posted limitations on usage, reproduction and/or dissemination; Client is responsible for adhering to such limitations. Provider apply mere conduit principle pursuant Directive 2000/31/EC of the European Parliament and of the Council of 8 June 2000 on certain legal aspects of information society services, in particular electronic commerce, in the Internal Market ('Directive on electronic commerce') and therefore we have no legal liability for the consequences of traffic delivered via networks . Provider is in no way involved with the information transmitted through Rodger© software; especially we do not modify the information that Rodger© software transmits as well as we not initiate such transmission or select the receiver of the transmission. Client is fully aware that is solely and exclusively liable for use of Rodger© software within Communication Services.
7. Confidentiality. Provider is obliged to maintain confidentiality about the facts which it has learned in connection with providing Services about the Client. The duty of confidentiality does not apply to the cases of a lawful obligation of Provider. The duty of confidentiality applies to all personnel used for providing Services (e.g. employees, advisers, co-operating lawyers, sub-contractors, etc.). The duty of confidentiality persists even after any Termination (as defined below).
8. References. The Client agrees that Provider may disclose the following information about the Client in connection with provision of Services.
“Business name of Client / Client´s Group / official graphic brand or logo of Client / written references related to satisfaction with Rodger provided by suitable representants of Client.“
5. PROCESSING OF PERSONAL DATA DURING PROVIDING SERVICES
1. For the processing personal data during providing Services has the Client position of controller pursuant Article 4 (7) GDPR (“Controller”) and Provider has position of processor pursuant Article 4 (8) GDPR (“Processor”) by default and therefore Parties agrees with following fulfilling of requirements stipulated in Article 28 (3) GDPR in these Use of Terms:
2. Purpose of the processing. The Controller hereby appoints the Processor to process the personal data for the purpose: Management of data subject´s requests on behalf of the Controller in compliance with this agreement, GDPR and instructions of the Controller.
3. Nature of personal data processing. The nature of personal data processing is determined by the relation between data subject and Controller who processing personal data of natural persons including the data subject for own purposes of processing. The processing of personal data involves use of Rodger© software for management of data subjects request for applying the rights according to Articles 15 to 22 GDPR.
4. Duration of data processing: During the duration of the using of Services according to this Use of Terms by Controller or until the Controller instructs the Processor to terminate the processing of personal data on a particular day.
5. Types of personal data. Processor process only common contact and identification personal data of data subjects. Parties do not foresee processing of special categories of personal data pursuant to the Article 9 of the GDPR or personal data about criminal convictions pursuant to the Article 10 of the GDPR, unless otherwise provided by the Controller's instructions.
6. Categories of data subjects. Data subjects are: a) natural person who submit through any request through Rodger©Software, b) Controller´s users of Rodger©Software with granted access rights.
7. Rights and obligations.
a) Documented instructions. The Processor shall process personal data only in accordance with the documented instructions of the Controller with regard to cross-border transfer of personal data to third country or international organization except where required by Union law or the law of the Member State to which the Processor is subject. If this is the case, the Processor shall inform the Controller about the legal obligation prior to processing unless it is not restricted by law due to public interest. The Controller's order or the email instruction shall be considered as a documented instruction.
b) Confidentiality. The Processor shall maintain confidentiality about personal data obtained from or on behalf of the Controller and to ensure that authorized persons (e.g. employees or other processors) are obliged to maintain confidentiality of the Controller's processed personal data.
c) Security of personal data. The Processor has implemented appropriate security measures under Art. 32 of the GDPR.
d) Cooperation. The Processor is obliged to assist the Controller in fulfilling the Controller's obligation to respond to requests for exercise of the rights of the data subjects and other obligations of the Controller under Art. 32 to 36 of GDPR taking into account the nature of the processing and the information available to the Processor.
e) Requests of data subjects. The Processor itself is not entitled to respond to requests of data subjects of the Controller and any requests of data subjects related to the Controller delivered to the Processor shall be immediately forwarded to the Controller. The Processor is required to provide assistance to the Controller in case of any dispute or proceeding concerning or relating to the processing of personal data under this agreement.
f) Termination. The Processor shall either erase or return personal data to the Controller and delete existing copies (if EU law or national law does not require the retention of such personal data) upon termination of provision of processing services based on the decision of the Controller.
g) Personal data breach notifications. The Processor shall notify the Controller of any suspected personal data breach  without undue delay (within 24 hours). The Processor is not entitled to report personal data breaches relating to this agreement to the supervisory authority or data subjects. If there is a breach of personal data concerning the Processor, the Processor shall document the breach in accordance with Art. 33 (5) of The GDPR and provides the documentation to the Controller.
h) Audits. The Processor shall provide the Controller with all the information necessary to demonstrate compliance with the obligations in Art. 28 GDPR and allows audits as well as inspections performed by the Controller or other auditor entrusted by the Controller and contribute to them. The costs of audits are solely a matter of Controller and Processor may claim compensation for own costs resulting from audits (e.g. lost time of its personnel, restriction of providing Services for other clients).
j) Communication. Regardless the provisions of the Main Contract, the Parties shall communicate through the contact details listed in the header of this agreement, including email communications in case of any questions relating to this agreement and protection of personal data.
k) Cross-border transfer.The Processor shall transfer personal data outside EU/EAA only if adopt appropriate legal safeguards according to Article 46 GDPR in relation to the data importer in third country which doesn´t ensure adequate level of personal data protection or into the country, territory or sector covered by adequacy decision of European Commission issued pursuant Article 45 GDPR.
l) Sub-processors. The Processor shall follow conditions of engagement of another processor set out in Art 28 (2) and (4) of GDPR. The Processor remains responsible to the Controller in respect to the processing undertaken via sub-processors as it was the Processor´s performance of this agreement. The Processor declares to use only the following sub-processors for the processing of personal data under this agreement and if the sub-processor changes the Processor shall require the prior approval of the Controller concerning the change. The Processor warrants to the Controller that these sub-processors provide sufficient guarantees and that appropriate technical and organizational measures are in place to ensure that the processing complies with the GDPR requirements and to ensure the protection of the rights of the data subjects.
Business name, seat
Third country that does not guarantee an adequate level of protection 
Indication of applicable adequate safeguards under Art. 46 GDPR or exceptions under Art. 49 GDPR
Amazon Web Services
n/a (only EU)
n/a (only EU)
6. DURATION AND TERMINATION
2. Termination. If the Client uses Services for unspecified term (“Unspecified term”), Client has option to terminate by giving one-month prior notice. If the Client uses Services for fixed term, (“Fixed term”) he has no option to prematurely terminate by notice and termination will occurred by end of the agreed period of time.
7. FINAL PROVISIONS
In Bratislava on 1 may 2019
Dagital Solutions, s.r.o.
 According to the Article 4 section 12: ‘personal data breach’ means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;
 All countries except: EU Member States, Iceland, Norway, Liechtenstein, Andorra Decision of Commission n.2010/625/EU, Argentina Decision of Commission n. 2003/490/EC, Faroe Islands Decision of Commission n. 2010/146/EU, Guernsey Decision of Commission n. 2003/821/EC, Israel Decision of Commission n. 2011/61/EU, Jersey Decision of Commission n. 2008/393/EC, New Zealand Decision of Commission n. 2013/65/EU, Canada Decision of Commission n. 2002/2/EC, Isle of Man Decision of Commission n. 2004/411/EC, Switzerland Decision of Commission n. 2000/518/EC, Uruguay Decision of Commission n. 2012/484/EU, United states of America (companies in the regime of Privacy Shield) – specific form of cross-border transfer.