Home
/
Website Terms of Use and Privacy Policy

Website Terms of Use and Privacy Policy

1. Website Operator

The operator of this website and the controller of personal data is:

MeasureDesign s.r.o.

Dvoudílná 202/7

190 00 Prague – Czech Republic

Company ID / IČO: 08694613

VAT ID / DIČ: CZ08694613

E-mail: info@measuredesign.cz

These Website Terms of Use and Privacy Policy set out the basic rules for the use of the website operated by MeasureDesign s.r.o. and explain how we handle the personal data of website visitors and newsletter subscribers.

2. Basic Terms of Use

This website is intended primarily for the presentation of MeasureDesign s.r.o., the publication of professional content, and enabling users to subscribe to our newsletter.

The content of this website is provided "as is." Although we strive to ensure that the information published on the website is accurate, up to date, and useful, we cannot guarantee its completeness, accuracy, or uninterrupted availability.

We are not liable for temporary website unavailability, technical outages, limited functionality, or any damage arising in connection with the use of this website, except where such liability cannot be excluded under applicable law (in particular for intentional or grossly negligent conduct).

All content published on this website, in particular texts, graphic elements, logos, photographs, illustrations, and other materials, is protected by applicable law, especially copyright and related rights. Without our prior written consent, such content may not be copied, modified, distributed, or otherwise commercially used, except where expressly permitted by law.

This website may contain links to third-party websites. We are not responsible for the content, availability, security, or personal data processing practices of such external websites.

We may reasonably update or amend these terms from time to time. The current version is always published on this website.

3. How We Handle Personal Data

When processing personal data, we act in accordance with applicable legal regulations, in particular:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR),
  • Act No. 110/2019 Coll., on the Processing of Personal Data,
  • Act No. 127/2005 Coll., on Electronic Communications, where relevant to cookies and similar technologies.

On our website, we process personal data only to the extent necessary for operating and securing the website, for producing aggregate statistics about its use, and for sending newsletters to individuals who subscribe to them voluntarily.

Where required, we have entered into data processing agreements with processors acting on our behalf. 

4. What Personal Data We Process

4.1 Regular Website Visits

When you visit the website, we process limited technical data connected with its operation, such as:

  • technical data about the device and browser (user agent, language, referrer),
  • basic operational logs.

We process this data for the purpose of ensuring the stability and proper functioning of the website, on the basis of our legitimate interest under Art. 6(1)(f) GDPR.

Certain low-level technical data, including connection metadata such as IP addresses, may be processed at the infrastructure level by our hosting and security providers (see Section 7) for delivery, security, and bot-protection purposes. We do not intentionally include IP addresses in our own analytics dataset. 

4.2 Limited Measurement of Website Use 

We also process a limited set of technical events describing how the website is used — in particular page views, session entries, clicks on navigation and content elements, and scroll depth. This processing is described in detail in Section 6.2. 

4.3 Newsletter Subscription

If you subscribe to our newsletter, we process in particular:

  • your e-mail address,
  • technical data related to the subscription, such as the date and time of registration, confirmation of subscription, source of subscription, and information about unsubscribing,
  • data related to the delivery and reading of the newsletter, such as whether an e-mail was delivered, opened, or whether links within it were clicked (see Section 5).

We process this data solely for the purpose of sending the newsletter and managing the subscription.

5. Newsletter

You may subscribe to our newsletter voluntarily through the form available on our website. The form submits your e-mail address directly to our newsletter provider, Ecomail (see Section 7).

After submitting the form, you will receive a confirmation e-mail for the purpose of verifying your subscription (double opt-in). This confirmation e-mail serves only to verify that the subscription is being requested by the actual owner of the e-mail address provided. It is not yet the newsletter itself, and therefore it may not contain an unsubscribe link. The actual sending of the newsletter begins only after the subscription has been confirmed.

The legal basis for sending the newsletter is your consent under Art. 6(1)(a) GDPR. This consent is voluntary and may be withdrawn at any time, in particular by clicking the unsubscribe link included in each newsletter e-mail or by sending a request to info@measuredesign.cz.

Our newsletter e-mails contain standard delivery and engagement tracking (a tracking pixel and wrapped links) that allow us to see whether messages are delivered, opened, and which links are clicked. We use this information in aggregate to understand which content resonates with subscribers and to improve future newsletters. If you do not wish to be tracked in this way, the most effective option is to unsubscribe; many modern e-mail clients also offer image-blocking or privacy-protection features that limit such tracking.

If you unsubscribe from the newsletter, we will stop sending it to you. The data necessary for sending the newsletter is stored for the duration of the subscription. Data necessary to demonstrate that consent was given or withdrawn may be retained even after the subscription ends, but only for the period strictly necessary to protect our rights and comply with our legal obligations.

6. Cookies and Measurement Technologies

6.1 Cookies

Cookies are small text files that websites store on your device through your web browser. They help ensure the proper functioning of the website, its security, and the management of technical settings.

In the current setup of our website, we use only one strictly necessary technical cookie — _cfuvid provided by Cloudflare. This cookie helps distinguish individual visitors who share the same IP address so that security and rate-limiting rules can be applied correctly. It is a session cookie used solely for technical and security purposes.

Because this cookie is necessary for the safe operation of the website, your consent is not required for its use under § 89 of the Czech Electronic Communications Act.

We do not use any advertising, profiling, or cross-site tracking cookies.

6.2 Limited Measurement of Website Use 

We use a limited first-party measurement setup designed not to use cookies, local storage, or other persistent identifiers and not to identify visitors across sessions or websites. We use this measurement solely to produce aggregate statistics about how our own website is used. 

These events are transmitted to our own data warehouse in Google BigQuery, where they are used solely to produce aggregate statistics about the use of this website (for example: how many people visit which pages, which content is engaged with, how users navigate the site).

We have designed this measurement to fall within the exemption from consent recognised for strictly limited audience measurement, in particular by applying the following safeguards:

  • No tracking cookies and no persistent identifiers. We do not set cookies, localStorage entries, or any other persistent identifiers for this measurement. We do not attempt to identify you across sessions or across websites.
  • No IP addresses. We do not intentionally include IP addresses in the analytics event payloads stored in our own analytics dataset. Connection metadata may nevertheless be processed by infrastructure and security providers as part of ordinary website delivery and protection. 
  • No third-party use. Data is stored in our own Google BigQuery project and is used exclusively by us for our own statistical purposes. Google acts only as a processor and does not use this data for its own purposes.
  • Limited retention. Event data is retained for a maximum of 13 months, after which it is automatically deleted.
  • Limited scope. The events are limited to basic measurement of how our website is used. We do not build individual user profiles and do not combine this data with any other dataset.

Although this measurement is designed to produce anonymous statistics and does not identify individual visitors, we treat it cautiously as potentially involving personal data within the meaning of GDPR, since certain technical details could theoretically, in combination, be identifying. The legal basis for this processing is our legitimate interest in understanding and improving our website under Art. 6(1)(f) GDPR. You have the right to object to this processing (see Section 10); on request, we will cease this processing in relation to you.

If we change this setup in the future — for example, by introducing analytics or marketing tools that set tracking cookies or create user profiles — we will update this policy and introduce an appropriate consent mechanism before doing so.

7. Who May Receive the Data

Personal data may be disclosed only to the extent necessary to entities that help us operate, secure, and maintain the website and distribute the newsletter. Where required, we have entered into data processing agreements with processors acting on our behalf:

  • Webflow, Inc. — provider of the website platform and hosting.
  • Cloudflare, Inc. — provider of security, CDN, and protective services for website operation.
  • Google Ireland Limited and, where relevant, Google LLC — provider of Google Tag Manager and Google BigQuery (data warehouse).
  • Ecomail.cz s.r.o. — provider of subscriber management and newsletter distribution services; receives newsletter subscription data directly via our subscription form.

These entities process personal data only to the extent necessary for the given purpose and on the basis of our instructions.

8. Transfers of Data Abroad

Some of the processors listed above (in particular Cloudflare, Google and Webflow) are established or operate in the United States. In connection with the use of their services, personal data may be transferred to or accessed from the USA or other third countries.

Such transfers take place under the safeguards provided by Chapter V GDPR, in particular:

  • the EU–U.S. Data Privacy Framework adequacy decision, where the recipient is certified under that framework, and/or
  • the Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR, supplemented by additional technical and organisational measures where appropriate.

9. How Long We Retain Data
  • Server and security logs: retained for the period necessary to ensure the security and integrity of the website, typically no longer than 6 months.
  • Measurement event data in BigQuery: retained for a maximum of 13 months, after which it is automatically deleted.
  • Newsletter subscription data (including the record of consent): retained for the duration of the subscription, i.e., until you unsubscribe or withdraw consent.
  • Records demonstrating that consent was given or withdrawn: after the subscription ends, retained only for the period strictly necessary to protect our rights and comply with our legal obligations.

10. Your Rights

In connection with the processing of personal data, and subject to the conditions set by applicable law, you have in particular the following rights:

  • the right to access your personal data,
  • the right to rectification of inaccurate or outdated data,
  • the right to erasure of personal data ("right to be forgotten"),
  • the right to restriction of processing,
  • the right to data portability,
  • the right to object to processing where the processing is based on legitimate interest (including the anonymous measurement described in Section 6.2),
  • the right to withdraw consent at any time where processing is based on consent (this does not affect the lawfulness of processing prior to withdrawal),
  • the right to lodge a complaint with a supervisory authority.

The supervisory authority in the Czech Republic is the Office for Personal Data Protection (Úřad pro ochranu osobních údajů), Pplk. Sochora 27, 170 00 Prague 7, www.uoou.cz.

11. How to Contact Us

If you have any questions about the processing of personal data or wish to exercise any of your rights, you may contact us at: info@measuredesign.cz.

We will deal with your request without undue delay, and in any event within the time limits set by GDPR.

12. Final Provisions

These Website Terms of Use and Privacy Policy may be updated from time to time, especially if the services we use, the way we process personal data, or the applicable legal requirements change.

The current version is always published on this website.

This version is effective as of 21 April 2026.