Personal Data Protection

If you are our customer, a news subscriber or if you visit our website, you entrust to us your personal data. We are responsible for their protection and security. Please, learn about the personal data protection, the principles and rights you have in conjunction with the GDPR (General Data Protection Regulation).

The administrator is the ALCA CZ SE company, the ALCA TRAVEL branch, Company ID No.: 06154174, with the registered office at Branická 93, Prague 4, registered with the Municipal Court in Prague, section C, inset 66138 and we run the following websites: and We process your personal data as an administrator, that is, we determine how the personal data will be processed, for what purpose, for how long and we select potential additional processors that will assist us in processing.

Contact Information

  1. If you wish to contact us during the processing, you can do so at 224 829 347 or by e-mail: or


  1. We hereby declare that, as the administrator of your personal data, we comply with all legal obligations required by the applicable law, in particular the Personal Data Protection Act and the GDPR, and that therefore:

    • We will process your personal data only on the basis of valid legal grounds, namely, the legitimate interest, the performance of the contract, legal obligation or granted consent,
    • in compliance with Article 13 of the GDPR, we meet the obligation to provide information prior to the commencement of the personal data processing,
    • we will allow you and will support you in the exercise and enforcement of your rights under the Personal Data Protection Act and the GDPR

Scope of Personal Data and Processing Purposes

  1. We process personal data you entrust to us for the following reasons (in order to fulfil the following purposes):

    • provision of services, performance of the contract; we absolutely need your personal data in the scope of: e-mail, telephone, name and surname, address, passport number, date of birth, in order to perform the contract (e.g. to send you information needed for you to access the system, to send invoices and confirmations, to issue a travel document and a voucher, etc., to deliver goods.
    • bookkeeping If you are a customer, we absolutely need your personal data (billing information) to comply with the statutory obligation to issue and file invoices.
    • marketing - sending newsletters We use your personal data (e-mail and name), gender, what you click on in the e-mails and when you open them most often, for direct marketing - sending business communications. If you are our customer, we do that out of a legitimate interest because we reasonably believe that you are interested in our news, namely for 5 years since your last order. If you are not our customer, we send you newsletters only based on your consent, for a period of 5 years since the moment when the consent was granted. In both cases, you can withdraw this consent using an unsubscribe link in each email you receive.
    • Advanced marketing based on the consent We may also send you inspirational third-party offers or use your e-mail address, for example, for remarketing and targeting Facebook publicity only based on your consent, namely, for a period of 3 years since the moment when your consent is granted. This can, of course, be withdrawn at any time by the means of our contact information.
    • photographic documentation – photographic documentation from the trips and events organized by us, or from events where we are partners
  2. We retain your personal data for the duration of the limitation periods unless the law stipulates a longer period for their retention or unless we have stated otherwise in specific cases.


  1. When browsing our/my websites, we record your IP address, how long you stay on the website and from which website you come. We view the use of cookies to measure the website traffic and customize the displaying of our website as our legitimate interest of an administrator because we believe that, thanks to this, we can offer you even better services.

  2. Cookies for targeting ads will only be processed based on your consent.

  3. Our website can also be browsed in a mode that does not make the collection of personal data possible. You can disable the use of cookies on your computer.

Security and Personal Data Protection

  1. We protect personal data to the fullest extent possible using modern technologies that correspond to the level of the technical development. We protect them as if they were our own. We have accepted and maintained all possible (currently known) technical and organizational measures that prevent the abuse, damage or destruction of your personal data.

Handing Personal Data Over To Third Parties

  1. Our employees and co-workers have access to your personal data.

  2. In order to secure specific processing operations that we are not able to ensure by our own means, we use services and applications of processors who are able to protect data better than we do and specialize in the processing in question.

  3. They are providers of the following platforms:

    • Story TLRS
    • Fakturoid
    • ČSOB
    • Facebook
    • Google
    • Helios Green
  4. It is possible that, in the future, we will decide to use other applications or processors to facilitate and improve the quality of the processing. However, we promise you that in such a case, when making our selection, I will require at least the same security and processing quality from the processor as from myself.

Handing Data Over Outside the European Union

  1. We process data exclusively in the European Union or in countries that ensure an adequate level of protection on the basis of the European Commission's decision.

Your Rights In Connection With the Protection of Personal Data

  1. You have a number of rights in connection with the protection of your personal data. If you wish to use any of these rights, please contact us via email at: or

  2. You have the right to information that is already covered by this information page with the principles governing the processing of personal data.

  3. Thanks to the right to access, you can invite us at any time and I will provide you with documentation of which of your personal data we process and why within a period of time of 14 days.

  4. If anything changes in your situation or if you find your personal data outdated or incomplete, you have the right to complement and change your personal data.

  5. You can use the right to limit the processing if you think we process your inaccurate data, if you think that we process your data illegally but you do not want to delete all the data or if you have raised an objection against the processing.

  6. You can limit the scope of the personal data or the processing purposes. (For example, by unsubscribing from the newsletter, you restrict the purpose of the processing for sending business communications.)

Right To Portability

  1. If you would like to take your personal data and transfer them to someone else, we will proceed in the same way as when using the right of access - except that we will provide you with the information in a machine-readable format. In this case, we need at least 30 days.

Right To Be Deleted (Be Forgotten)

  1. Another of your rights is the right to be deleted (to be forgotten). We do not want to forget about you but if you wish that, you have the right to be forgotten. In such a case, we will delete all your personal data from our system and from the systems of all partial processors and backups. We need 90 days for the deletion.

  2. In some cases, we are bound by a statutory obligation and, for example, we must keep the issued invoices on file until the statutory deadline. In such a case, we will thus delete all such personal data that are not bound by another law. We will notify you by e-mail about the completion of the deletion.

Complaint Lodged With the Office For Personal Data Protection

  1. If you feel that we do not treat your data in compliance with the law, you have the right to lodge your complaints, at any time, with the Office for Personal Data Protection. We will be very happy if you first tell us about this suspicion in order for us to be able to do something about it and to correct any mistakes.

Unsubscribing From Newsletters And Business Communications

  1. E-mails with inspiration, articles or products and services are sent to you if you are our customer, based on our legitimate interest.

  2. PIf you are not our customer yet, we only send them to you based on your consent. In both cases, you can end such subscribing to our e-mails by pressing the unsubscribe link in each e-mail you receive.


  1. Please be assured that our employees and collaborators who will process your personal data are required to maintain confidentiality about personal data and security measures the disclosure of which would pose threat to the security of your personal data. At the same time, this confidentiality persists even after your engagement with us ends. Without your consent, your personal data will not be released to any third party.

  2. These personal data processing principles apply from 25 May 2018 and replace the previous Personal Data Protection.