This Privacy Statement explains the type of personal data that Company for trade and services CEVAHIR RETAIL GROUP DOOEL Skopje with registration no. 7729642 and seat at st.”Mateja Matevski” no.20/303, Skopje – Aerodrom, Republic of North Macedonia   (hereinafter: “Controller”), collects them from you when visiting the Controller’s premises at its registered seat and how the Controller uses this data. 

 

1. Why we collect (process) personal data?  

The controller collects personal data through the video surveillance system for the following reasons (purposes): 

• to control the access to the facility (building, entrance, premises ...) and to ensure the security of the facility, the safety of the Controller’s employees and visitors, as well as the property and information that are located or stored in the premises; 

• to prevent, deter and, if necessary, investigate unauthorized physical access, including unauthorized access to security and protected premises, IT infrastructure or operational information; and 

• to prevent, detect and investigate theft of equipment or assets owned by the Controller, visitors or staff, or to threaten the safety of staff working on the premises (e.g. fire, physical assault) 

The video surveillance system is not used for any other purpose, such as monitoring the work of employees or their presence. The video cameras are positioned so that they do not cover the surrounding public space. The cameras aim to give a general overview of what is happening in certain places, but not to recognize faces. 

The video surveillance system is also not used as an investigative tool or to obtain evidence in internal investigations or disciplinary proceedings, unless it is a security incident that has established video surveillance under the Law on Personal Data Protection. (In exceptional circumstances, the data may be transferred to the investigating authorities as part of a formal disciplinary or criminal investigation). 

The video surveillance system covers the area which is shown in the Layout plan of the video surveillance system for each of the premises of the Controller. 

 

2. What kind of data does the Controller collect? 

The controller only collects images captured on the cameras, and no audio recording is performed. 

 

3. Who is responsible for data processing? 

The controller is an entity that performs the processing of personal data and that determines the purposes of processing, only in accordance with the Law on Personal Data Protection. 

 

4. What is the legal basis for processing personal data through the video surveillance system? 

The controller uses video surveillance equipment to (specify one or more of the stated purposes): 

• protection of the life and health of people; 

• protection of property; 

• protection of the life and health of employees due to the nature of work; 

• providing control of people entering and leaving the Controller’s business premises. 

 

Therefore, the processing is legal in accordance with Article 90 of the Law on Personal Data Protection. 

In addition, at the entrance of the Controller, there is a visible and clearly displayed notification about the video surveillance which allows the personal data subjects to get acquainted with the performance of the video surveillance, as well as the name of the Controller who performs the video surveillance and the manner to get information on where and how long the video surveillance system is stored.

 

5. Who can see my personal information? 

The videos can only be accessed by the video surveillance authorities (for example: members of the Controller's security staff or by the hired Private Security Agency).  

Access to the digital device or disk on which the videos are stored is restricted, protected by the application of technical data security measures (password, record of each event or action by employees, i.e. authorized persons).  

The data, i.e. the videos cannot be accessed without authorization by the Controller. 

 

6. Can I access my data? 

You have the right to access your data at any time and free of charge. 

 

7. Can I change my data? 

Editing of the video surveillance footage is not allowed. 

 

8. Can I request a restriction on the processing of my data? 

You have the right to restrict the processing of your personal data at any time, when you dispute the accuracy of your personal data, or when the Controller no longer needs the data to perform its tasks. You can also block processing when the operation is illegal and you object to deleting the data. However, blocking is not possible in any case of an official investigation. 

 

9. Can I delete my data? 

You have the right to delete your data at any time when the processing is illegal. 

 

10. Do I have the right to object? 

Yes, you have the right to object and to oppose the processing at any time when you have legitimate reasons for your specific situation. The controller will act upon your request within 15 days from the day of submitting the request. 

 

11. How can I excise my rights? 

• The first step is to notify the Controller and his data protection officer by sending an email to hayriye@cevahir.com.tr or a letter to the address of Company for trade and services CEVAHIR RETAIL GROUP DOOEL Skopje  at st.”Mateja Matevski” no.20/303, Skopje – Aerodrom, Republic of North Macedonia.

• At any time you can submit a request to the Agency for Personal Data Protection www.azlp.mk www.azlp.mk which will act upon your request and will take the necessary measures.

 

12. When will the processing of my personal data through the video surveillance system start? 

The processing starts at the moment when you visit the premises of the Controller. 

 

13. Is my personal information shared with other people? 

Your data is stored in the Controller and may be shared with competent authorities. 

 

14. Security of personal data 

The controller is dedicated to protecting your personal data. Therefore, use security technologies and procedures that protect your personal information primarily from unauthorized access, use or disclosure. We store your data on restricted computer systems and in a controlled environment. 

 

15. How long do we store your data? 

The controller will retain the video surveillance recordings for a maximum of 30 calendar days after your visit to our premises, after which all recorded videos will be automatically deleted. By exemption, the Controller may retain the video surveillance recordings for a longer period, in accordance with personal data protection regulations.