In connection with the processing of data, the data controller (Közvillszer Kft.) Hereby informs the website that it uses the personal data processed on the website, its principles and practices regarding the processing of personal data, the organizational and technical measures taken to protect personal data and the rights of data subjects. ways and means of exercising it. The development of the provisions of this prospectus, taking into account the data controller, in Regulation 2016/679 of the European Parliament and of the Council (“General Data Protection Regulation” or “GDPR”), Act CXII of 2011 on the right to information self-determination and freedom of information. (“Information Act”), Act V of 2013 on the Civil Code (“Civil Code”), as well as Act XLVIII of 2008 on the Basic Conditions and Certain Restrictions of Economic Advertising Activities. provisions of the Act (“Grtv.”).
DATA CONTROLLER INFORMATION:
Company name: Közvillszer Ltd.
Headquarters: 118th Gyömrői road, Budapest, H-1183, Hungary
E-mail: [email protected]
Data Protection Officer: the controller is not obliged to appoint a Data Protection Officer under Article 37 of the GDPR.
For pre-registration of certain services provided on the website, the data controller has the opportunity to request a quote from our company for web development, reputation management or other services via the e-mail address provided on our website. Based on the received letters, their name and e-mail address will be registered. If you are not a customer of our company, we will delete this data without delay. If you submit an application to us for one of our open positions, we will process the data provided in your application (natural identity data, CV data). If you do not become an employee of our company, we will delete this data without delay.
As a general principle, we treat the personal data recorded in order to fulfil a legal obligation for the purpose of concluding a contract, as well as the data collected when visiting the website, in accordance with data protection legislation and European Union regulations, in accordance with this prospectus.
In the event that a service provider technically involved in the operation of the data controller’s website (such as an internet service provider and a hosting provider) carries out data management activities on the website without informing the data controller, such activities do not constitute data processing by the data controller. These external service providers are not entitled to process personal data.
Data subject: any natural person identified or identifiable, directly or indirectly, on the basis of personal data;
Personal data: data which can be contacted with the data subject, in particular the name, identification mark and knowledge of one or more physical, physiological, mental, economic, cultural or social identities of the data subject, and the inference that can be drawn from the data;
Consent: the voluntary and explicit expression of the will of the data subject, based on adequate information and giving his or her unambiguous consent to the processing of personal data concerning him or her, in full or in part;
Objection: a statement by the data subject objecting to the processing of his or her personal data and requesting the termination of the processing of the data or the deletion of the processed data;
Data controller: a natural or legal person or an organization without legal personality who, alone or together with others, determines the purpose of the processing of data, makes and implements decisions on data processing (including the means used) or implements it with a data processor entrusted by it;
Data management: any operation or set of operations on data, regardless of the procedure used, in particular the collection, recording, recording, systematisation, storage, alteration, use, interrogation, disclosure, coordination or aggregation, blocking, erasure and destruction of data, and prevent further use of the data, take photographs, sound or images and record physical features that can be used to identify the person (eg fingerprint or palm print, DNA sample, iris image);
Data transfer: making the data available to a specific third party;
Disclosure: making data available to anyone;
Data erasure: making data unrecognizable in such a way that it is no longer possible to recover it;
Data set: the totality of the data managed in one register;
Third-party: a natural or legal person or an entity without legal personality who is not the same as the data subject, the controller or the processor;
Specific data: (a) personal data concerning the racial origin, membership of a national or ethnic minority, political opinion or party affiliation, religion or belief, membership of an advocacy organization, sex life; (b) personal data concerning health status, pathological passion and criminal personal data;
Data management and legal basis for a registered user.
Data management, including the recording and storage of data on users registering on the website, is carried out to the extent necessary for the operation of the services available on the website, communication and information, and for the purpose of fulfilling the legal obligation of the data controller.
Data management is also necessary to create a contract between the data controller and the registering customer, to define and modify its content, to monitor its performance, to use the ordered service, to invoice the purchase price and to enforce the related receivables, to document compliance and to fulfil accounting obligations.
The processing of personal data is based on the voluntary and express consent of the data subjects. Users give their consent by using the website by registering on the website. The controller may process personal data processed by him without further consent and after the withdrawal of the data subject’s consent in order to fulfil his legal obligation (in particular with regard to accounting, legal obligations to prevent money laundering and terrorist financing).
In order to use the data controller’s website, the user must provide the following personal and other data during registration:
Authority registration number;
In the case of a company, the names of the beneficial owners;
Data management and legal basis for non-registering (visiting) users
When visiting the website of the data controller (even without registration), the following non-personally identifiable data may be recorded for statistical analysis: – visitor’s IP address – the start of visit (per page) – end of the visit (per page). Posting on any forum/blog, and the following technical information will be recorded during login: – IP address; – date. In addition to the above, automatic confirmation of any forum/blog registration that may be introduced will be sent to the e-mail address provided.
The user must also enter a password during registration. The data controller stores an imprint of the password that is only suitable for verifying the correctness of the password, but the password itself cannot be reset from it. When using the website, the data controller records the type of browser and operating system of the logged-in users. This data is logged continuously but is not linked to the data provided during registration or use. The data is used by the data controller anonymously, for statistical purposes only and to protect the security of the Website.
The data shall be processed only in the manner specified by law, to the extent necessary for the realization of the purpose, for the time and only with the personal data that are indispensable for the realization of the above purposes and suitable for the achievement of the purpose.
– analytics Cookie. This website uses Google Analytics, a data processing service provided by Google Inc. (“Google”). Google Analytics stores “cookies” – simple, short, small text files – on your IT device and uses them to analyze traffic to our website, thereby helping us improve our website. The website traffic data (including the date of the visit and your IP address) recorded in the “cookie” is transmitted and stored on Google’s servers in the United States. Google will use this information for the purpose of evaluating your reports on website traffic, compiling reports on it for data controllers and providing other services relating to the operation of the website and the Internet.
– Targeted or advertising cookies In order to provide our visitors with the marketing information that best suits their interests, we may also use personalized, ie targeted or advertising cookies, which require the express consent of the visitor to the website, which can be found in a separate text box. you can enter it by clicking the appropriate button. These cookies collect detailed information about your browsing habits. If the visitor has confirmed that they would like to continue to receive emails, marketing information and offers from us, cookies will work as follows:
they collect information about which articles and/or services a visitor has searched on our website, so they record information that allows us to identify the visitor and their settings, so there is no need to re-enter this information. When you visit our site again, they help identify the visitor.
you can limit the number of times a particular ad is viewed and measure the effectiveness of your ad campaigns.
– session cookie These are essential for navigating the website, operating key functions and for accessing protected content. These cookies store the information needed to fill out the forms and, in some cases, the language is chosen by the visitor, and do not collect any information about the visitor that could be used for marketing purposes or to remember what other websites you have visited. After closing the website, these cookies are automatically deleted and the session is closed.
– functional cookie In order to improve the user experience, these cookies detect the means by which we opened our website, remember the visitor’s previous user decisions (such as username, password, chosen language, logged in during a previous session, text size , font, or other customizable elements of the website User changes made by the visitor) to provide better and more personalized features to the visitor.
– third-party cookies We may display various content on our website using external web services, which may result in the storage of some cookies that we do not control, so we have no control over what data these websites or external domains collect about the visitor / how registrant uses this embedded content:
Google Analytics – visitor statistics
The e-mail address, as personal data, may also pass through foreign servers in connection with electronic notifications, but personal data will not be stored there. The data controller shall not make the processed data available to any other third party in any form (except in the case of mandatory disclosure to an authority authorized by law) and shall take all reasonable measures to preserve the confidentiality of the data or contract the customer’s business partner.
Duration of data management
The processing of mandatory data during registration starts with the registration and lasts until the data is deleted, except for the scope of data that must be retained for legal purposes (especially with regard to legal obligations to prevent money laundering and terrorist financing). Upon deregistration, the data provided during registration will be deleted from the electronic database of the data controller.
The Service Provider takes all necessary steps to ensure the security of the personal data provided by the users during both network communication and data storage and preservation.
Modifying or deleting data
The registrant can change his details on his profile after logging in. The user has the right to request the deletion of his data at any time via a deletion request sent to the data controller. The request may not relate to data which it is required to retain for the purposes of fulfilling its legal obligation to the controller (with particular regard to the legal obligations to prevent money laundering and terrorist financing) until the statutory deadlines.
Rights of the data subject
All data subjects – can request access, ie information on the processing of their data; – request a correction if any of your data has been recorded incorrectly or has changed; – request a restriction on data processing; – delete your data if they have been processed unlawfully or if the legal basis for the processing has lapsed (for example, if you have withdrawn your consent and no other legal basis has remained) – this is the so-called “right to be forgotten”; – carry your data, ie request the processed data in an “articulated, widely used, machine-readable format” in order to transfer it to another service provider; – object to the processing of your data.
Upon request, the data controller is obliged to provide the requested information and make changes / deletions without delay.
Modification of the Privacy Notice
In addition to informing the users in advance, the data controller is entitled to amend this information unilaterally. The amended provisions will take effect for the user on the first use after they have been published on the website. The amendment should not affect statutory data protection obligations.
Enforcement, complaint handling
The user can submit a complaint related to data management directly to the National Data Protection and Freedom of Information Authority (address: 1125 Budapest, Szilágyi Erzsébet fasor 22 / c .; phone: + 36-1-391-1400; e-mail: [email protected]; website: www.naih.hu).
Violation of the user’s rights may result in legal action. The court has jurisdiction to hear the case. The action may, at the option of the person concerned, be brought before the court for the place where the person concerned is domiciled or resident. Upon request, the data controller shall inform the user of the possibility and means of redress.
Közvillszer Ltd. 2018.