Privacy Policy
Last updated: 16 July 2026
1. Who we are
This website, amahi.co (the “Site”), is operated by Amahi s.r.o., a limited liability company registered in the Czech Republic under Company ID (IČO) 29494621, D-U-N-S 351703607, with its registered office at Kurzova 2222/16, Stodůlky, 155 00 Praha 5, Czech Republic (“Amahi”, “we”, “us”).
Amahi s.r.o. is the controller of the personal data described in this policy within the meaning of Regulation (EU) 2016/679 (GDPR). You can reach us at marketa@amahi.co.
2. What personal data we collect
We collect only the data you give us or that is technically necessary to run the Site:
- Contact enquiries — when you contact us through the form on the Site or by email, we receive your name, email address and the content of your message.
- Newsletter — when you subscribe to our newsletter, we receive your email address.
- Technical data — our hosting providers process standard server logs (IP address, browser type, date and time of access) as needed to deliver the Site securely and reliably.
We do not collect any special categories of personal data, and the Site is not directed at children.
3. Why we process it and on what legal basis
- Responding to your enquiry and communicating about a potential project — performance of, or steps prior to entering into, a contract (Art. 6(1)(b) GDPR) and our legitimate interest in responding to business enquiries (Art. 6(1)(f) GDPR).
- Sending the newsletter — your consent (Art. 6(1)(a) GDPR). You can withdraw it at any time via the unsubscribe link in any email or by writing to us; withdrawal does not affect processing carried out before it.
- Operating and securing the Site — our legitimate interest in keeping the Site available and safe (Art. 6(1)(f) GDPR).
- Complying with legal obligations, e.g. accounting and tax rules where our communication leads to a contract (Art. 6(1)(c) GDPR).
4. Cookies and analytics
The Site does not use analytics, advertising or other tracking cookies. Only technically necessary cookies or similar storage may be set to make the Site function correctly.
5. Who has access to your data
We do not sell or share your personal data for marketing purposes. It is accessed only by the service providers who run the Site’s infrastructure on our behalf as processors — in particular our hosting and form-processing provider (Netlify, Inc.), our content-management infrastructure (Sanity AS) and our email providers — and by public authorities where the law requires it.
6. International transfers
Some of our providers are based in the United States. Where personal data is transferred outside the European Economic Area, we rely on safeguards recognised by the GDPR, such as the EU–U.S. Data Privacy Framework or the European Commission’s Standard Contractual Clauses.
7. How long we keep your data
- Contact enquiries — for the duration of our communication and up to 2 years afterwards, unless the enquiry leads to a contract (in which case statutory retention periods apply).
- Newsletter — until you unsubscribe or we discontinue the newsletter.
- Server logs — for the short period set by our hosting providers for security purposes.
8. Your rights
Under the GDPR you have the right to:
- access the personal data we hold about you,
- have inaccurate data rectified,
- have your data erased,
- restrict processing,
- receive your data in a portable format,
- object to processing based on legitimate interest,
- withdraw consent at any time where processing is based on consent.
To exercise any of these rights, email us at marketa@amahi.co. You also have the right to lodge a complaint with the Czech Office for Personal Data Protection (Úřad pro ochranu osobních údajů, Pplk. Sochora 27, 170 00 Praha 7, uoou.gov.cz) or with your local supervisory authority.
9. Changes to this policy
We may update this policy from time to time, for example when we change service providers. The current version, with its effective date, will always be published on this page.