Sibeeria

Are you 18 or older?

Sibeeria Brewery sells alcoholic beverages. By entering, you confirm that you are of legal age.

Beer Merch Brewery One Tap &Friends Česky

Privacy policy

1. Introductory provisions

1.1. This document describes how PowerBrew s.r.o., Company ID No.: 06044905, VAT ID No.: CZ06044905, with its registered office at Kučerové 1201/48, Prague 8, 182 00, Czech Republic, registered with the Municipal Court in Prague, file No. C 274904 (hereinafter referred to as the “Controller”), processes the personal data of customers and visitors of the website https://sibeeria.cz.

1.2. The Controller’s contact and operating address is: Kolbenova 438/7, Vysočany, 190 00 Prague, Czech Republic, unless stated otherwise on the website.

1.3. The Controller’s contact details are:

1.4. The Controller processes personal data in accordance with legal regulations, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council, the General Data Protection Regulation (“GDPR”), and the related legal regulations of the Czech Republic.

1.5. This document applies in particular to the processing of personal data when using the online store, creating and managing a customer account, processing an order, delivering goods, handling complaints, communicating with customers, sending commercial communications and using the website.

2. What personal data we process

2.1. The Controller processes only such personal data that is necessary for a specific processing purpose or that the customer provides to us themselves.

2.2. When an order or customer account is created, we may process in particular the following personal data:

  • first name and surname,
  • billing and delivery address,
  • e-mail address,
  • telephone number,
  • details of the ordered goods,
  • payment and billing details,
  • details necessary for handling a complaint or withdrawal from the contract,
  • information about communication between the customer and the Controller.

2.3. For business customers, we may also process the entrepreneur’s identification details, in particular business name, Company ID No., VAT ID No. and registered office or place of business.

2.4. When using the website, we may also process technical data, such as IP address, device type, browser type, operating system, information about website usage and data obtained through cookies and similar technologies.

2.5. If the customer gives consent to receive commercial communications, we process for this purpose mainly their e-mail address, and, where applicable, their name and information about their purchasing preferences, if needed to personalize the content of such communications.

2.6. The Controller does not knowingly process special categories of personal data within the meaning of the GDPR, such as data concerning health, political opinions, religious beliefs or biometric data.

3. For what purposes we process personal data

3.1. We process personal data mainly for the following purposes:

  • receiving and processing an order,
  • concluding and performing the purchase contract,
  • delivering goods to the customer,
  • processing payment and issuing a tax document,
  • maintaining a customer account, if the customer creates one,
  • communicating with the customer regarding the order, availability of goods, delivery or payment,
  • handling complaints, returns of goods or withdrawal from the contract,
  • fulfilling legal obligations, especially accounting and tax obligations,
  • protecting the rights and legitimate interests of the Controller, for example when resolving disputes or recovering claims,
  • sending commercial communications, if the statutory conditions are met,
  • analysing and improving the functioning of the website, where possible according to cookie settings and legal regulations.

4. Legal grounds for processing personal data

4.1. We process personal data only where there is an appropriate legal ground for the processing.

4.2. The processing of personal data for the purposes of receiving and processing an order, concluding and performing the purchase contract, delivering goods, communicating regarding the order and managing the customer account is necessary for the performance of a contract or for taking steps prior to entering into a contract.

4.3. The processing of personal data for accounting, tax records, archiving tax documents and fulfilling other legal obligations is necessary for compliance with the Controller’s legal obligations.

4.4. The processing of personal data for the purposes of protecting the Controller’s rights, resolving disputes, preventing fraud, recovering claims, basic website administration and system security is based on the Controller’s legitimate interest.

4.5. Commercial communications may be sent to customers on the basis of the Controller’s legitimate interest if they concern an offer of similar goods or services and the customer has the option to refuse such communications at any time. In other cases, we send commercial communications on the basis of the customer’s consent.

4.6. The processing of personal data through analytical, marketing or other optional cookies takes place only on the basis of consent, unless legal regulations allow another procedure.

5. Payments and the Comgate payment gateway

5.1. Online payments are processed through the Comgate payment gateway, operated by Comgate Payments, a.s.

5.2. When making an online payment, the customer enters payment details directly in the secure interface of the payment gateway. The Controller does not have access to the customer’s full payment card details, and such details are not transferred to or stored by the Controller.

5.3. The Controller processes only the information necessary for matching and recording the payment, in particular the order identification, amount, currency, payment status and, where applicable, the transaction identifier.

6. Recipients of personal data

6.1. Personal data may be transferred to third parties only to the extent necessary to fulfil a specific processing purpose or where required by legal regulations.

6.2. We may transfer personal data in particular to the following categories of recipients:

  • carriers and pickup point providers for the purpose of delivering goods,
  • the payment gateway operator and payment service providers for the purpose of processing payment,
  • providers of e-shop, hosting, server and technical solutions,
  • providers of accounting, tax and legal services,
  • providers of e-mailing and marketing tools, if we use them,
  • public authorities, where such obligation is imposed on us by legal regulations.

6.3. All personal data processors are selected so that they provide sufficient guarantees for the protection of personal data and process personal data only according to the Controller’s instructions and in accordance with legal regulations.

7. Retention period of personal data

7.1. We retain personal data only for the period necessary for the purpose for which it was collected, or for the period required by legal regulations.

7.2. Data related to an order, purchase contract, delivery of goods and customer communication is retained for the period necessary for the performance of the contract and subsequently for the period during which rights arising from defective performance, complaints or other legal claims may be exercised.

7.3. Data included in tax and accounting documents is retained for the period specified by the relevant accounting and tax legal regulations.

7.4. Data processed on the basis of consent is retained for the duration of the consent, but no longer than until its withdrawal, unless there is another legal ground for its further processing.

7.5. Data processed for the purpose of sending commercial communications is retained until the recipient unsubscribes, withdraws consent or objects to such processing.

7.6. Technical data and data from cookies is retained for the period stated in the cookie settings or in separate cookie policies, if provided on the website.

8. Customer account

8.1. If the customer creates a customer account, we process personal data necessary for its creation, operation and management, in particular identification and contact details, login details and order history.

8.2. The customer is obliged to provide true and up-to-date information in the customer account and to protect their login details against misuse.

8.3. The customer may cancel the customer account at any time, unless prevented by the Controller’s legal obligations or the need to retain data for the protection of the Controller’s rights.

9. Commercial communications and newsletter

9.1. The Controller may send customers commercial communications concerning similar goods or services, if permitted by legal regulations and if the customer has not refused such communications.

9.2. In other cases, we send newsletters or other commercial communications only on the basis of the customer’s consent.

9.3. The customer may unsubscribe from commercial communications at any time, either via the link included in each commercial communication or by sending a request to info@sibeeria.cz.

9.4. Unsubscribing from commercial communications does not affect the processing of personal data for the purposes of processing an order, performing a contract, handling complaints, accounting or fulfilling legal obligations.

10. Cookies and similar technologies

10.1. The website may use cookies and similar technologies that enable the proper functioning of the website, remembering user settings, measuring traffic, analysing website usage or displaying relevant content and advertising.

10.2. Necessary cookies are required for the proper functioning of the website and e-shop, for example for storing the contents of the shopping cart, logging into the customer account, ensuring security or completing the ordering process. These cookies may be used even without the user’s consent.

10.3. We use analytical cookies mainly through the Google Analytics service, operated by Google Ireland Limited. These cookies help us measure website traffic, understand how visitors use the website, evaluate the functionality of individual pages and improve the content and services of the e-shop.

10.4. We may use marketing cookies and similar technologies mainly through the Meta Pixel tool, operated by Meta Platforms Ireland Limited. Meta Pixel helps us evaluate the effectiveness of advertising campaigns, measure conversions and display more relevant advertising on Meta platforms, in particular Facebook and Instagram.

10.5. Google Analytics, Meta Pixel and other analytical or marketing tools are used only on the basis of the user’s consent, unless legal regulations allow another procedure. Optional analytical and marketing cookies are not activated before consent is given.

10.6. The user may change or withdraw their consent to the use of cookies at any time through the cookie settings on the website, if such settings are available, or through the settings of their internet browser.

10.7. More detailed information about the cookies used, their purpose, retention period and providers may be provided in a separate document or in the cookie banner on the website.

11. Transfer of personal data outside the European Union

11.1. The Controller endeavours to process personal data primarily within the European Union or the European Economic Area.

11.2. If, in connection with the use of certain technical, analytical or marketing services, personal data is transferred outside the European Union or the European Economic Area, such transfer will take place only under the conditions laid down by legal regulations, in particular on the basis of appropriate safeguards under the GDPR.

12. Security of personal data

12.1. The Controller adopts appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, misuse or unauthorised disclosure.

12.2. Access to personal data is granted only to persons who need it for the performance of their work or contractual duties and who are bound by confidentiality obligations.

12.3. Communication with the website and the payment gateway takes place through a secure connection, where technically possible and appropriate to the nature of the processing.

13. Rights of data subjects

13.1. A person whose personal data we process has, under the conditions laid down by legal regulations, in particular the following rights:

  • the right of access to personal data,
  • the right to rectification of inaccurate or incomplete personal data,
  • the right to erasure of personal data, if the statutory conditions are met,
  • the right to restriction of processing,
  • the right to data portability,
  • the right to object to processing based on legitimate interest,
  • the right to withdraw consent, if the processing is based on consent,
  • the right to lodge a complaint with the supervisory authority.

13.2. If the processing of personal data is based on consent, the data subject has the right to withdraw such consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before its withdrawal.

13.3. If personal data is processed for direct marketing purposes, the data subject has the right to object to such processing at any time. In such a case, personal data will no longer be processed for direct marketing purposes.

13.4. The data subject may exercise their rights by sending a request to info@sibeeria.cz or in writing to the Controller’s registered office address.

13.5. The Controller is entitled to request reasonable verification of the applicant’s identity if necessary to protect personal data and prevent its disclosure to an unauthorised person.

14. Supervisory authority

14.1. If the data subject believes that legal regulations in the field of personal data protection are being violated, they have the right to lodge a complaint with the supervisory authority.

14.2. The supervisory authority in the Czech Republic is:

Office for Personal Data Protection
Pplk. Sochora 27
170 00 Prague 7
Website: https://uoou.gov.cz

15. Final provisions

15.1. The Controller is entitled to amend these Personal Data Protection Policy, especially in the event of changes to legal regulations, the method of processing personal data or the services used.

15.2. The current version of the Personal Data Protection Policy is always available on the website https://sibeeria.cz.

15.3. These Personal Data Protection Policy are effective from 01.06.2026.