Legal

Privacy Policy

Last updated: 8 June 2026 · Version 1.0

This Privacy Policy explains how RealBrand Consulting s.r.o. (“RealBrand”, “we”, “us”) collects, uses, shares and protects your personal data when you visit our websites or contact us. We process personal data in accordance with Regulation (EU) 2016/679 (the “GDPR”) and applicable Czech law.

Contents

Who we are
Scope
What we collect & why
Cookies
Who we share data with
International transfers
How long we keep data
Your rights
Right to complain
Security
Children
Changes
Contact us

1. Who we are (data controller)

The controller responsible for your personal data is:

RealBrand Consulting s.r.o.
Budečská 998/10, Vinohrady, 120 00 Praha, Czech Republic
Company ID (IČO): 23235608
Registered in the Commercial Register kept by the Municipal Court in Prague, file No. C 423720
Email: jakub@realbrand.cz

We have not appointed a Data Protection Officer, as we are not required to do so. For any privacy matter, contact us using the details above.

2. Scope

This policy applies to the website at realbrand.cz and the other websites and landing pages we operate under our own brand (together, the “Sites”). It does not cover third-party websites we link to, which have their own privacy policies.

3. What personal data we collect and why

We only collect what we need. The table below sets out the categories of data, the purpose, and the legal basis under Article 6(1) GDPR.

Data	Purpose	Legal basis
Enquiry & contact details — name, email address, company, website URL, and anything you write to us via our forms or by email.	To respond to your enquiry, prepare a proposal or concept, and provide our services.	Performance of a contract / pre-contractual steps — Art. 6(1)(b); and our legitimate interest in answering enquiries — Art. 6(1)(f).
Technical & log data — IP address, browser type, device, pages visited, referring URL, timestamps, and approximate location (country) inferred from your IP.	To deliver and secure the Sites, prevent abuse, set the correct display currency, and keep the service reliable.	Our legitimate interest in operating a secure, functional website — Art. 6(1)(f).
Analytics data — aggregated usage statistics and interaction data, where used.	To understand how the Sites are used and improve them.	Your consent — Art. 6(1)(a). Set only if you accept analytics cookies.
Marketing data — advertising identifiers and campaign interaction data, where used.	To measure and, where applicable, personalise our advertising (e.g. LinkedIn, Meta, Google Ads).	Your consent — Art. 6(1)(a). Set only if you accept marketing cookies.

We do not knowingly collect special categories of personal data (e.g. health, political or religious data), and we ask that you do not send us such data. We do not make decisions about you based solely on automated processing that produce legal or similarly significant effects.

4. Cookies and similar technologies

We use a small number of strictly necessary cookies and local storage entries to run the Sites, and — only with your consent — analytics and marketing technologies. You can give, refuse or withdraw consent at any time. For full details and to change your choices, see our Cookie Policy or open .

We never sell your personal data. We share it only with service providers (processors) who help us run our business, and only as needed. These currently include or may include:

Netlify, Inc. — website hosting and content delivery (logs, IP addresses).
Google Ireland Ltd. / Google LLC — web fonts; and, with your consent, Google Analytics and Google Ads.
Microsoft Corporation — with your consent, Microsoft Clarity analytics.
LinkedIn and Meta — with your consent, advertising and conversion measurement.
Email and productivity providers — to receive and respond to your enquiries.

Each processor acts on our instructions under a data processing agreement. We may also disclose data where required by law or to establish, exercise or defend legal claims.

6. International data transfers

Some of our providers are based outside the European Economic Area (EEA), including in the United States. Where we transfer personal data outside the EEA, we rely on an adequacy decision of the European Commission or on appropriate safeguards such as the European Commission's Standard Contractual Clauses (and, where applicable, the EU–U.S. Data Privacy Framework). You can ask us for a copy of the relevant safeguards using the contact details above.

7. How long we keep your data

Enquiries and correspondence: for as long as needed to handle your request and, where a business relationship begins, for the duration of that relationship plus the period required by law (typically up to 10 years for accounting and tax records).
Server logs: a short period (typically days to a few months) for security and diagnostics.
Consent records and analytics/marketing data: for the lifetime of the relevant cookie (see the Cookie Policy) or until you withdraw consent.

When data is no longer needed, we delete or anonymise it.

8. Your rights

Under the GDPR you have the right to:

Access — obtain confirmation of whether we process your data and a copy of it;
Rectification — have inaccurate or incomplete data corrected;
Erasure — have your data deleted (“right to be forgotten”), where applicable;
Restriction — limit how we use your data in certain cases;
Portability — receive data you provided in a structured, machine-readable format;
Object — object to processing based on legitimate interests, including direct marketing;
Withdraw consent — at any time, without affecting processing carried out before withdrawal.

To exercise any of these rights, email jakub@realbrand.cz. We will respond within one month. Exercising your rights is free of charge in normal cases.

9. Right to lodge a complaint

If you believe we have handled your personal data unlawfully, you have the right to lodge a complaint with the Czech supervisory authority:

Úřad pro ochranu osobních údajů (Office for Personal Data Protection)
Pplk. Sochora 27, 170 00 Praha 7, Czech Republic
Web: www.uoou.cz · Phone: +420 234 665 111

You may also complain to the supervisory authority in your country of residence or work.

10. How we protect your data

We use appropriate technical and organisational measures to protect personal data, including encryption in transit (HTTPS), access controls, and working only with reputable processors. No method of transmission over the internet is completely secure, but we take reasonable steps to keep your data safe.

11. Children

Our Sites and services are intended for businesses and adults. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, please contact us and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top shows when it was last revised. Material changes will be highlighted on the Sites.

13. Contact us

For any question about this policy or your personal data, contact RealBrand Consulting s.r.o. at jakub@realbrand.cz.