GLDSublease
Sign In

Privacy Policy

Your privacy is important to us. This Privacy Policy explains how GLDSublease s.r.o. (“we”, “us”, “our”) collects, uses, and protects your personal data in accordance with the General Data Protection Regulation (GDPR) and Slovak law.

1. Data Controller:

GOLDEN Keys j.s.a.
Slovak Republic
Email: support@gldsublease.com

You may contact us at the email address above for any questions regarding the processing of your personal data. We have not appointed a Data Protection Officer, as we are not legally required to do so under Article 37 of the General Data Protection Regulation (GDPR).

2. Scope of This Policy:

This Privacy Policy applies to:

  • Investors and prospective investors
  • Clients and contractual partners
  • Website visitors
  • Newsletter subscribers
  • Business partners

3. Categories of Personal Data We Collect:

We may process the following categories of personal data:

a) Identification Data

  • Full name
  • Date of birth
  • Personal ID number (if required by law)
  • Nationality
  • Permanent address
  • Copy of ID card or passport

3.1. Contact, Financial, and Technical Data:

b) Contact Data

  • Email address
  • Phone number
  • Correspondence address
c) Financial and Investment Data
  • Bank account details
  • Investment amount
  • Transaction history
d) KYC/AML Documentation
  • Copy of identification document
  • Proof of residence
  • Politically Exposed Person (PEP) status
e) Technical and Usage Data
  • IP address
  • Browser type
  • Cookies and analytics data
f) Communication Data
  • Emails
  • Support requests

4. Purpose and Legal Basis of Processing:

We process personal data for the following purposes:

a) Contract Performance (Art. 6(1)(b) GDPR)

  • Processing investments
  • Managing investor accounts
  • Executing transactions
  • Providing customer support
b) Legal Obligations (Art. 6(1)(c) GDPR)
  • Compliance with Slovak AML laws
  • Accounting and tax obligations
  • Regulatory reporting
Legal basis includes:
  • Act No. 297/2008 Coll. on Protection Against Money Laundering
  • Slovak Accounting Act
  • Tax legislation
c) Legitimate Interest (Art. 6(1)(f) GDPR)
  • Protection against fraud
  • IT security
  • Legal claims defense
d) Consent (Art. 6(1)(a) GDPR)
  • Marketing communication
  • Newsletter subscription
  • Website analytics cookies
You may withdraw consent at any time.

5. Is Provision of Data Mandatory?:

Providing personal data is:

  • Mandatory where required by law (e.g., AML identification).
  • Necessary for contract conclusion.

6. Data Sharing and Recipients:

We may share personal data with:

  • Accounting and tax advisors
  • Legal advisors
  • IT service providers
  • Payment processors
  • AML/KYC verification providers
  • Public authorities when required by law

7. International Data Transfers:

Personal data may be transferred outside the European Economic Area (EEA) only if:

  • The European Commission has issued an adequacy decision; or
  • Standard Contractual Clauses (SCCs) are in place; or
  • Another GDPR-compliant safeguard applies.
Data is stored exclusively within the EU.

8. Data Retention Period:

We retain personal data as follows:

  • KYC/AML documentation: 5 years
  • Accounting documents: 10 years (as required by Slovak law)
  • Contractual data: duration of contract plus 5 years
  • Marketing data: until consent withdrawal
  • Website analytics data: 36 months

9. Data Security:

We implement appropriate technical and organizational measures including:

  • Encryption
  • Secure servers
  • Access control
  • Confidentiality agreements
  • Internal data protection policies

10. Your Rights Under GDPR:

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase personal data (“right to be forgotten”)
  • Restrict processing
  • Object to processing
  • Data portability
  • Withdraw consent at any time
  • Lodge a complaint with a supervisory authority

11. Supervisory Authority:

You may lodge a complaint with:

Úrad na ochranu osobných údajov Slovenskej republiky
Hraničná 12
820 07 Bratislava 27
Slovakia
Website: https://dataprotection.gov.sk

12. Automated Decision-Making:

We do not use automated decision-making or profiling.

13. Cookies:

Our website uses cookies for:

  • Essential functionality
  • Analytics
  • Marketing (if applicable)
You can manage cookies via browser settings or our cookie banner. A separate Cookie Policy is available here.

14. Changes to This Policy:

We may update this Privacy Policy from time to time.

The current version is effective as of: 2026.01.31