Privacy Policy

How MediBit s.r.o. handles the personal data you share with us on this website.

Last updated: 16 July 2026

This notice explains, as required by Articles 13 and 14 of Regulation (EU) 2016/679 (the GDPR) and by Act No. 18/2018 Coll. on the Protection of Personal Data of the Slovak Republic, what personal data this website collects, why we process it, and the rights you have over it.

Who is the controller

The controller of your personal data is MediBit s.r.o., Company ID (IČO): 57 121 087, Tax ID (DIČ): 2122576984, with its registered office at Ulica Jozefa Adamca 9983/24, 917 01 Trnava, Slovakia, registered in the Commercial Register of the District Court Trnava, Section Sro, Insert No. 60247/T. We have not appointed a data protection officer. For anything related to your personal data, contact us at [email protected].

What personal data we collect

The only personal data this website collects is what you type into the contact form on the contact page:

  • your name (required),
  • your email address (required),
  • your organization (optional),
  • the text of your message (required),
  • a record that you ticked the consent box (sent only when the form submits through our form-processing endpoint).

Depending on how the site is configured, submitting the form either sends these details to our form-processing endpoint, or opens your own email client with a pre-filled message addressed to [email protected] that you send yourself.

The form also contains a hidden anti-spam field that only automated bots fill in. If a bot fills it, nothing is sent to us; the field is discarded in your browser and is never transmitted.

Please do not include sensitive information — in particular health information — in your message. The form asks you not to, and we do not knowingly collect any special categories of personal data.

If you email us directly at [email protected] or contact us on LinkedIn instead of using the form, we process the personal data contained in that correspondence for the same purpose described below.

This website is a static site hosted on DigitalOcean and delivered through Cloudflare's network. Like most websites, these servers may keep short-lived technical logs (such as IP addresses) for security and reliability.

Why we process it and on what legal basis

We process the contact-form data for a single purpose: to read your enquiry and reply to it, including any follow-up correspondence about it. The legal basis is your consent under Article 6(1)(a) GDPR, which you give by ticking the consent box before sending the form. You can withdraw your consent at any time by emailing [email protected]; withdrawal does not affect the lawfulness of processing carried out before it.

We do not use your data for marketing, we do not sell it, and we do not combine it with data from other sources.

Who receives your data

Your enquiry is read only by the MediBit team. Depending on how the form is delivered, it passes through:

  • Zoho, the email service provider that hosts our [email protected] mailbox in its EU data centres,
  • our website infrastructure providers, DigitalOcean and Cloudflare, which see technical traffic data (such as your IP address) when the site loads, and
  • where the form submits through our form-processing endpoint rather than email, Supabase, the provider operating that endpoint.

These providers act as processors bound by data-processing agreements and may not use your data for their own purposes. We do not disclose your data to any other recipients unless the law requires it.

Where your data is processed

Your enquiry is stored within the European Union: our mailbox runs in Zoho's EU data centres, and our Supabase form endpoint runs in an EU region. Technical traffic data (such as your IP address when the site loads) passes through Cloudflare's global network and may be processed outside the EU/EEA; those transfers are covered by the EU standard contractual clauses in the provider's data-processing terms.

How long we keep it

We keep enquiry correspondence only as long as we need it to handle your enquiry and any follow-up to it, and we delete it no later than 12 months after our last contact with you about it.

Your rights

Under the GDPR and Act No. 18/2018 Coll. you have the right to:

  • access the personal data we hold about you (Article 15),
  • have inaccurate data corrected (Article 16),
  • have your data erased (Article 17),
  • restrict how we process it (Article 18),
  • receive the data you gave us in a portable format (Article 20),
  • object to processing (Article 21), and
  • withdraw your consent at any time (Article 7(3)), as described above.

To exercise any of these rights, email [email protected]. We will respond within one month.

You also have the right to lodge a complaint with the Slovak supervisory authority: Úrad na ochranu osobných údajov Slovenskej republiky (Office for Personal Data Protection of the Slovak Republic), Hraničná 12, 820 07 Bratislava 27, Slovak Republic, dataprotection.gov.sk.

Do you have to provide your data?

No. Providing your data is entirely voluntary and is not a statutory or contractual requirement. If you choose not to provide it, the only consequence is that we cannot receive or answer your enquiry.

No automated decision-making

We do not use your personal data for automated decision-making or profiling of any kind.

Cookies, analytics and tracking

This website does not set cookies, does not use analytics or advertising trackers, and does not embed third-party content that collects data about your visit. Fonts are served from our own servers, not from a third-party font service. That is why you do not see a cookie banner here.

Changes to this notice

If we change how this website handles personal data — for example, by adding analytics — we will update this notice and the date at the top of this page before the change takes effect.