← Back to the homepage

Personal Data Protection

Last updated: June 1, 2026

1. Personal data controller

The personal data controller is Michal Sorát, a natural person (non-entrepreneur), contact support@trenerdesk.com (hereinafter the "Controller"). The Controller processes personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and applicable data protection law.

TrenerDesk is currently in a free beta version. Data entered during testing may be changed or deleted during development.

2. Scope of processed data

As part of providing the TrenerDesk service, we process the following categories of data:

  • Trainer (User) data — name, e-mail, login credentials
  • Client data — name, age, gender, training goals, injuries, workout logs, nutrition data
  • Technical data — IP address, browser type, access time, cookies

3. Purpose of processing

We process personal data for the following purposes:

  • Providing and operating the TrenerDesk service
  • Managing the user account and authentication
  • Communicating with users (e-mail notifications, support)
  • Improving the service and analytics (anonymized data)

4. Legal basis for processing

We process personal data on the following legal bases under Art. 6(1) GDPR:

  • Performance of a contract (Art. 6(1)(b)) — for providing the service and managing the account
  • Legitimate interest (Art. 6(1)(f)) — for improving the service and preventing misuse
  • Consent (Art. 6(1)(a)) — for marketing communication and analytics cookies

5. Data retention period

We retain personal data for the duration of the use of the Service. After account cancellation, data will be deleted within 30 days, unless legal regulations require longer retention.

6. Data recipients

Personal data may be shared with the following categories of recipients:

  • Cloud infrastructure providers (hosting, databases)
  • Analytics tool providers (anonymized data)
  • Public authorities (where required by law)

Personal data is not transferred to third countries outside the EU/EEA unless an adequate level of protection is ensured.

7. Rights of the data subject

As a data subject, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase data (the "right to be forgotten")
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent (where processing is based on consent)
  • Lodge a complaint with the data protection authority

8. Data security

The Controller has implemented appropriate technical and organizational measures to protect personal data, including encryption of data in transit (TLS), encryption of data at rest, regular security audits and access management.

9. Contact

If you have any questions regarding the protection of personal data, contact us at support@trenerdesk.com.