As a first step, for ease of understanding and overview, the following table summarises which personal data is used for which purpose.
What we use it for: E-mail address You will receive information via this address. Name We need your name so that we can contact you in our mailings. Your computer’s IP address and browser ID The Data Controller uses Google Analytics software to obtain independent website traffic and other web analytics data. Here we obtain visitor statistics. Links to social networking sites. For your convenience, we can ensure that we can communicate with each other not only by email but also on social networking sites (e.g. Facebook). Name of Data Controller: László Szabó
E-mail address of the data controller: email@example.com
Data Controller’s telephone number: 30-188-8065
The purpose of this notice is to set out the privacy and data management principles applied by igyfogokutazni.com. You undertake to ensure that any processing of data relating to your activities complies with the requirements set out in this Policy and the applicable national legislation and the European Union Regulation /GDPR/.
The obligation to inform data subjects in advance is also provided for in Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information.
The privacy notice is available at https://creatingdigitalwealth.com/mission-of-safir/
The Data Controller reserves the right to change this Privacy Notice at any time, subject to timely notification to the data subjects.
The site operator takes care to protect the privacy and security of personal data.
Laszlo Szabo treats personal data confidentially and takes all security, technical and organizational measures to guarantee the security of the data.
data protection: the set of principles, rules, procedures, instruments, and methods of data management that ensure the lawful processing of personal data and the protection of the individuals concerned.
personal data: any particular data relating to an identified or identifiable natural person [data subject] and any inference that can be drawn from that data relating to that data subject. Personal data shall retain this quality during processing for as long as the link with the data subject can be established. The link with the data subject may be re-established if the controller has the technical conditions necessary for such re-establishment.
data subject/contacted person: any natural person who is identified or otherwise identifiable, directly or indirectly, based on specific personal data. In particular, a person is identifiable if he or she can be identified, directly or indirectly, by name, an identifier, or one or more factors specific to his or her physical, physiological, mental, economic, cultural, or social identity.
special categories of data: personal data revealing racial or ethnic origin, political opinions or opinions, religious or philosophical beliefs, membership of an interest group, sex life, health, data concerning a person’s mental health or medical condition, data concerning a pathological condition or a criminal offense.
criminal personal data: personal data relating to the criminal offense or the criminal proceedings, obtained in the course of or before criminal proceedings, by the authorities competent to prosecute or investigate criminal offenses, by the law enforcement authorities, and personal data relating to the person concerned and criminal history.
data processing: any operation, regardless of the procedure used, which is performed on data, such as collection, recording, recording, organization, storage, alteration, use, consultation, retrieval, disclosure, alignment or combination, blocking, erasure, and destruction of data, prevention of their further use, taking of photographs, audio or video recordings, recording of physical characteristics that can be used to identify a person (fingerprints, palm prints, DNA samples, iris scans, etc.).
data controller: the person or entity that determines the purposes for which the data are processed, takes and implements the decisions concerning the processing (including the means used), or implements them through a processor on its behalf.
data processing: the performance of technical tasks related to data processing operations (regardless of the method and means used to perform the operations and the place of application).
data processor: the person or entity that processes the data based on a contract with the controller, including a contract entered into under a legal provision.
data subject’s rights: the data subject must be informed of all the details of the processing before the processing starts, but also at any time at his or her request. The data subject may also request the rectification and, in certain cases, the erasure of his or her data, and may object to the processing of his or her data in cases provided for by law.
the legal basis for processing: as a general rule, the data subject’s consent or compulsory processing by law.
consent: a voluntary and explicit expression of the data subject’s wishes, based on appropriate information, by which he or she gives his or her unambiguous agreement to the processing of personal data concerning him or her, either in full or about specific operations. For special data, a written form is required.
adequate information: the data subject must be informed before the processing starts whether the processing is based on his or her consent or whether it is mandatory, and must be informed clearly and in detail of all the facts relating to the processing of his or her data, in particular the purposes and legal basis of the processing, the identity of the controller and the processor, the duration of the processing and the persons who may access the data. The information shall also cover the rights and remedies of the data subject concerning the processing.
objection: a statement by the data subject objecting to the processing of his or her data and requesting the cessation of the processing or the deletion of the processed data.
data security: a system of technical and organizational solutions to protect against the unauthorized acquisition, modification, and destruction of data.
The basic concepts are also available on the NAIH website.
How we obtain and store personal data, the security of data processing in our business:
Purpose of data processing: sending newsletters
Data processed: name, e-mail address,
Data processing in connection with the sending of the newsletter
Legal background and legal basis for data processing:
The background of data processing is provided by Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.) and Act XLVIII of 2008 on the Basic Conditions and Certain Restrictions of Economic Advertising (Grt.). Article 5 (1) a) and the provisions of the Grt. 6(1) to (2) of the GDPR.
Purpose of the processing:
The purpose of processing the data is to provide information. Please be informed that the newsletter contains not only advertisements of the Data Controller, but also advertisements of other companies, but we do not transmit your data to them.
Data processed: name, e-mail address,
Duration of processing: until the data subject’s consent is withdrawn.
The background for data processing is provided by Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.) and Act V of 2013 on the Civil Code (Civil Code). In accordance with Article 5(1)(a) of the GDPR, your consent
Other data processing
If the Data Controller intends to carry out further processing, it shall provide prior information on the essential circumstances of the processing (legal background and legal basis of the processing, purpose of the processing, scope of the data processed, duration of the processing). You will be informed that written requests for data from public authorities based on a legal mandate must be complied with by the Data Controller. The Data Controller shall keep records of data transfers in accordance with Article 15 (2) to (3) of the Data Protection Act (to which authority, what personal data, on what legal basis when the Data Controller transferred the data), the content of which the Data Controller shall provide information on request unless the provision of information is excluded by law.
Data processing activities related to the sending of newsletters
Name of the company operating the mailing system: Bithuszárok Számítástechnikai és Szolgáltató Betéti Társaság
The company operating the mailing system is located at 2051 Biatorbágy, Damjanich street 8.
Phone number of the company operating the mailing system:+36 20 222 9856
E-mail address of the company operating the mailing system: info at bithuszarok dot hu
The Data Processor contributes to the sending of newsletters based on a contract with the Data Controller. In doing so, the Data Processor shall process the name and e-mail address of the data subject to the extent necessary for sending the newsletter and shall delete it without delay at the request of the data subject.
Information about using Cookie e-cards
What is a cookie (so-called “cookie”)?
Cookies can be “permanent” or “temporary” Cookies. Permanent Cookies are stored by the browser for a specified time, provided they are not deleted by the user before that time, while temporary Cookies are not stored by the browser and are automatically deleted when the browser is closed.
The Data Controller uses so-called cookies when you visit the website. A cookie is a set of letters and numbers that our website sends to your browser to save certain settings, facilitate the use of our website and help us to collect some relevant statistical information about our visitors. Cookies do not contain personal information and are not used to identify individual users. Cookies often contain a unique identifier – a secret randomly generated sequence of numbers – that is stored on your device.
Some cookies are deleted after the website is closed, some are stored on your computer for a longer time.
Legal background and legal basis of Cookie-contracting:
The background for data processing is provided by Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.) and Act CVIII of 2001 on Certain Aspects of Electronic Commerce Services and Information Society Services. In accordance with Article 5 (1) (a) of the Privacy Act.
The main features of the Cookies used by the website:
Session cookie: these cookies store the visitor’s location, browser language, payment currency, and their lifetime is until the browser is closed or for a maximum of 2 hours.
Last visited category cookie: fixed the last visited category. Last modified last time you checked.
Mobile version, design cookie: detects the device the visitor is using and switches to full view on mobile. Lifetime 365 days.
Cookie acceptance cookie: when you arrive at the site, you will be prompted to accept the cookie statement in the warning window. The cookie has a lifetime of 365 days.
Smart offer cookie: records the conditions under which smart offers are displayed (e.g. whether the visitor has been on the site before, whether they have placed an order). It has a lifetime of 30 days.
Exit cookie: The option to exit the visitor after 90 days. Lifetime 90 days.
Backed ID cookie: the ID of the backed server serving the site. It is the cookie that is used to identify the backed-up server.
Internet Explorer: http://windows.microsoft.com/en-us/internet-explorer/delete-managecookies#ie=ie-11 Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-yourcomputer Chrome: https://support.google.com/chrome/answer/95647?hl=en
Your rights in the processing of your data
For the duration of the processing, you are entitled to:
information, rectification, erasure, blocking, object You may request information from the Controller about the processing of your data within the period of processing. The Data Controller shall inform you in writing, in an intelligible form, of the data processing, the purposes, legal basis, and duration of the processing, as well as, where the data have been further processed, the persons to whom and for what purposes the data are or have been disclosed, as soon as possible after the request, but no later than 25 days from the date of the request.
You may request the Controller to correct your data within the period of processing. The Controller shall comply with your request within 15 days at the latest.
You can request the deletion of your data, which the Data Controller will comply with within 15 days at the latest. The right to erasure does not apply if the Controller is legally obliged to store the data further, nor in cases where the Controller is entitled to further process the personal data (for example in connection with billing) in accordance with Article 6(5) of the Data Protection Act.
You may request that the Controller block the personal data if the final deletion of the data would harm the legitimate interests of the data subject. Personal data blocked in this way may be processed only for as long as the purpose which precluded the deletion of the personal data continues to exist.
You may object to the processing of your data if the processing or transmission of the personal data is necessary solely for the fulfillment of a legal obligation to which the controller is subject or for the legitimate interests pursued by the Controller, the recipient, or a third party, except in the case of mandatory processing and the case provided for in Article 6(5) of the Data Protection Act; if the personal data is used or transmitted without your consent for direct marketing, public opinion polling or scientific research.
The Data Controller shall examine the objection within the shortest possible time from the date of the request, but no later than 15 days, decide whether the objection is justified, and inform you in writing of its decision. If the controller does not comply with the data subject’s request for rectification, blocking, or erasure, it shall, within 25 days of receipt of the request, communicate in writing or, with the data subject’s consent, by electronic means, the factual and legal grounds for refusing the request for rectification, blocking or erasure.
If you believe that the Data Controller has violated a legal provision on data processing or has failed to comply with a request, you may initiate an investigation procedure with the National Authority for Data Protection and Freedom of Information to stop the alleged unlawful processing.
(mailing address: 1530 Budapest, PO Box 5, e-mail: firstname.lastname@example.org).
You are also informed that you may take legal action against the Data Controller in the event of a breach of the legal provisions on data processing or if the Data Controller has not complied with a request.
Information about data processing not listed in this notice is provided at the time of collection.
We inform our customers that the court, the prosecutor, the investigating authority, the law enforcement authority, the administrative authority, the National Authority for Data Protection and Freedom of Information, the National Bank of Hungary, or other bodies authorized by law may contact the data controller to provide information, to disclose or transfer data, or to make documents available.