Skip to main content
Skip table of contents

Information about Personal Data Processing

The web application operated on the domain the National Electronic Tool is an electronic tool pursuant to the Act No. 134/2016 Coll., on Public Procurement (hereinafter referred to as the "ZZVZ"), which is certified in compliance with the Decree No. 260/2016 Coll., on the certification of electronic tools.

All personal data are processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as the "GDPR").

Administrator of structured personal data

Ministry of Regional Development of the Czech Republic,
Staroměstské náměstí 6 110 15 Praha 1
Email: spravcenen@mmr.cz

Purpose of processing, categories of affected personal data, and storage duration

In the NEN system, personal data are processed for the following purposes:

  • creation (registration) and administration of user accounts;

  • preparation and implementation of procurement processes and related performance within the scope necessary to fulfil legislative requirements;

  • establishment of an account in the ServiceDesk serving for communication with the NEN System User Support;

  • protection from misuse of access.

The following categories of personal data are processed:

  • identification data - name, surname;

  • contact/address details - email address, self-employed individual’s address, phone, fax;

  • other potentially personal data - IP address of internet requests.

No sensitive personal data as defined in Article 9 of the GDPR is processed.

There is no automated decision-making, including profiling as defined in Article 22 of the GDPR.

Personal data are preserved in the NEN system for:

  • 10 years from the moment when the data subject last actively participated in the implementation of procurement processes or related performances (fulfillment of legal obligations pursuant to the ZZVZ);

  • the duration of the consent for personal data processing (i.e., until it is revoked) in cases where the previous conditions of legal obligation for personal data processing are not met.

Sources of personal data

The primary source of personal data is the data subject within the scope of registration, or, as applicable, activation of a user account and the management of their user profile, and when using electronic signature.

Other sources of personal data may include:

  • co-called pre-registration where a rightfully registered NEN System User with corresponding authorization enters their contact details into the NEN system, particularly an email address to which the email with instructions for registration completion or user account activation is sent;

  • inputs from contracting authorities within the preparation and implementation of procurement processes and related performances pursuant to the ZZVZ and internal regulations of their contracting authority.

Recipients of personal data

Based on a legal request, personal data may also be disclosed to third parties that have the legal authority to demand transferring the relevant personal data.

Personal data are not transmitted by the NEN system to third countries or international organizations.

Rights of the data subject (registered NEN System Users)

Right to rectification is primarily ensured within the administration of user accounts - each NEN System User can, after logging in, edit or supplement personal data within their user profile. In case of incomplete pre-registration, it is possible to contact the NEN System Administrator by email (contact information provided at the beginning of this document).
Right to erasure ("right to be forgotten") is primarily ensured within the administration of user accounts - each NEN System User can, after logging in, make a request within their user profile.
Right to restriction of processing is primarily ensured within the administration of user accounts - each NEN System User can, after logging in, remove selected personal data within their user profile. In case of incomplete pre-registration, it is possible to contact the NEN System Administrator by email (contact information provided at the beginning of this document).
Right to data portability is primarily ensured within the administration of user accounts - each NEN System User can, after logging in, display the recorded personal data within their user profile.
Right to object to the processing of personal data concerning it, pursuant to Article 21 of the GDPR, to the email address of the NEN System Administrator (contact information provided at the beginning of this document).
Right of access by the data subject their personal data are ensured by this document and the aforementioned procedures and features.
Right to lodge a complaint with a supervisory authority, which is the Personal Data Protection Office.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close