in which we inform you, as a visitor of our website and user of our services, about our company's data management and data protection rules.
- What principles do we follow in our data management?
Our company follows the following basic principles in its data management:
- a) we handle personal data legally and fairly, as well as transparently for you.
- b) we only collect personal data for specific, clear and legitimate purposes and do not process them in a way that is incompatible with the purposes.
- c) the personal data we collect and manage are appropriate and relevant for the purposes of data management, and are limited to what is necessary.
- d) Our company takes all reasonable measures to ensure that the data we manage are accurate and, if necessary, up-to-date, and we delete or correct inaccurate personal data immediately.
- e) we store personal data in such a way that you can only be identified for the time necessary to achieve the goals of personal data management.
- f) by applying appropriate technical and organizational measures, we ensure adequate security of personal data against unauthorized or illegal processing, accidental loss, destruction or damage.
Our company your personal data
- a) on the basis of your prior informed and voluntary consent and only to the extent necessary and in all cases subject to purpose, i.e. we collect, record, systematize, store and use it.
- b) in some cases, the processing of your data is based on legal regulations and is mandatory, in such cases we draw your attention to this fact.
- c) and in certain cases, our Company or a third party has a legitimate interest in the management of your personal data, for example the operation, development and security of our website.
- Who are we?
The seat of our company is H-8341 Mihályfa, Petőfi u. 29.
Our company's central office: H-7624 Pécs, Rákóczi u. 1. IV. floor
Our Company's website: www.tartalyhaz.hu
Contact: Zsolt Horváth
Our postal address: H-9201 Mosonmagyaróvár, Pf. 100.
Our telephone number: +36 30 220 7926
Our e-mail address: info@tartalyhaz.hu
Our tax number: 14609190-2-20
Our company registration number: 20-09-069160
Based on Article 37 of the GDPR, our company is not obliged to appoint a data protection officer.
Our chamber membership: ZMKIK, ZMKIK Zalaegerszeg office, Zalaegerszeg, Petőfi u. 24.
Name, address and contact information of our company's hosting provider:
3 in 1 Hosting Bt., 2310 Szigetszentmiklós, Szivární u. 1., +36 21 200 0040
If we change the scope of our data processors, we will introduce the changes in this information.
The data we manage:
|
Name of activity and purpose of data management |
Legal basis |
Managed data |
Period |
|
Website visit |
It is a legitimate interest of our company |
Your IP address, the time of your visit, the data of the visited sub-pages, the type of operating system and browser you are using |
1 month |
|
Registration on the website |
contribution |
surname, first name, e-mail address |
until registration is canceled or consent is revoked |
|
Newsletter service |
contribution |
full name, date of birth (to prove 16 or 18 years of age) e-mail address other optional data, e.g. area of interest, place of residence, etc. |
until you unsubscribe from the newsletter |
|
Direct marketing service |
contribution |
full name, date of birth (to prove 16 or 18 years of age) e-mail address, phone number (optional) other optional data, e.g. area of interest, place of residence, etc |
from direct marketing service to opt-out |
|
|
legal obligation |
full name, e-mail address, phone number, mailing address, other personal message |
for 5 years |
|
Prize draw |
consent obligation |
depending on the prize draw: |
in the case of participants, until the end of the game; in the case of winners, up to 8 years |
We only ask our website visitors for their personal data if it is absolutely necessary to register or log in, to use our service, or to participate in a prize draw.
We cannot connect the personal data provided in connection with registration or the use of our marketing services, and the identification of our visitors is basically not our goal.
If you have questions about data management, you can request further information by e-mail or by post at info@tartalyhaz.hu.
- What are cookies and how do we manage them?
Cookies are small data files (hereinafter referred to as "cookies") that are transferred to your computer through the use of the website, saved and stored by your Internet browser. The majority of the most commonly used internet browsers (Chrome, Firefox, etc.) accept and enable the download and use of cookies by default, but it is up to you to refuse or block them by changing your browser settings, as well as the cookies already stored on your computer can delete it. The "help" menu item of each browser provides more information on the use of cookies.
There are cookies that do not require your prior consent. Our website provides brief information about these at the start of your first visit, such as authentication, multimedia player, load balancer, session cookies helping to customize the user interface, and user-centric security cookies.
Our Company will inform you about the cookies that require consent - if data management already starts when you visit the page - at the start of the first visit and we ask for your consent.
Our company does not use or allow cookies that allow third parties to collect data without your consent.
Acceptance of cookies is not mandatory, however, our Company does not assume responsibility if our website does not function as expected if cookies are not allowed.
What cookies do we use?
|
Type |
Contribution |
Description |
Target |
Validity |
|
system cookies |
does not require |
web application firewall session cookie to prevent cross-referencing abuse |
ensuring the operation of the website |
end of browser session |
|
tracking cookie |
need |
for personalization |
Remembering your settings increases the efficiency of our service |
90 days |
|
tracking cookies (from third parties) |
does not require |
to identify new sessions and visitors, the Google Analytics web tracking service is used |
when visiting the website, it is connected to the services of third parties (e.g. Google). |
180 minutes |
You can read more about third-party cookies here https://www.google.com/policies/technologies/types/ and about data protection here https://www.google.com/analytics/learn/privacy.html ?hl=en you can read
- What else do you need to know about our data management related to our website?
You voluntarily provide us with your personal data during registration and contact with our Company, which is why we ask that you gradually ensure that your data is truthful, correct and accurate, because you are responsible for these. Incorrect, inaccurate or incomplete data can be an obstacle to the use of our services.
If you do not provide your own personal data, but someone else's, we assume that you have the necessary authorization.
You can withdraw your consent to data management at any time free of charge
Ø by canceling the registration,
Ø by withdrawing consent to data management, or
Ø by withdrawing or requesting the blocking of consent to the management or use of any data that must be filled in during registration.
We undertake to register the withdrawal of consent - for technical reasons - within a deadline of ... days, however, we would like to draw your attention to the fact that in order to fulfill our legal obligations or enforce our legitimate interests, we may process certain data even after the withdrawal of consent.
In the event of the use of misleading personal data, or if one of our visitors commits a crime or attacks our Company's system, we will immediately delete the visitor's data at the same time as canceling their registration, and - if necessary - we will keep them for the duration of the establishment of civil liability or the conduct of criminal proceedings.
- What do you need to know about our data processing for direct marketing and newsletter purposes?
You can give your consent for us to use your personal data for marketing purposes by making a statement during registration or later, by changing your personal data stored on the newsletter and/or direct marketing registration interface (i.e. by clearly stating your intention to consent). In this case - until you withdraw your consent - we will also process your data for the purpose of direct marketing and/or sending newsletters and we will send you advertising and other mailings as well as information and offers and/or forward newsletters (Grtv. § 6).
You can give your consent to direct marketing and the newsletter together or separately, and you can withdraw it/them free of charge and at any time.
Cancellation of registration is always considered a withdrawal of consent. Withdrawal of consent to data management for direct marketing and/or newsletter purposes is not interpreted as withdrawal of consent to data management related to our website. How is this? what and on what basis do we keep it if the newsletter consent has been revoked? In the case of contributions, each contribution is for a specific purpose, so registering tomorrow and signing up for the newsletter are two separate purposes, two separate databases, the two cannot be related.
We undertake the registration of the withdrawal or cancellation of individual consents - for technical reasons - with a deadline of ... days.
- What do you need to know about sweepstakes?
Our company can organize prize games with a campaign character, the specific conditions of which are contained in a separate regulation. The rules of the current campaign can always be found on the opening page of our website, in a centrally located link.
- Other data management issues
We can only forward your data within the framework defined by law, and in the case of our data processors, we ensure by stipulating contractual conditions that they cannot use your personal data for purposes contrary to your consent. More information can be found in point 2.
Our company does not transfer data abroad.
The court, the prosecutor's office and other authorities (e.g. police, tax office, National Data Protection and Freedom of Information Authority) may contact our Company to provide information, provide data or make documents available. In these cases, we must fulfill our obligation to provide data, but only to the extent that is absolutely necessary to achieve the purpose of the request.
The contributors and employees of our company involved in data management and data processing are entitled to know your personal data to a predetermined extent - subject to the obligation of confidentiality.
We protect your personal data with appropriate technical and other measures, as well as ensure the security and availability of the data, as well as protect them from unauthorized access, alteration, damage, disclosure and any other unauthorized use.
As part of organizational measures, we check physical access in our buildings, we continuously train our employees and keep paper-based documents locked away with appropriate protection. As part of the technical measures, we use encryption, password protection and anti-virus software. However, we draw your attention to the fact that data transmission via the Internet cannot be considered a fully secure data transmission. Our company does everything in order to make the processes as safe as possible, however, we cannot assume full responsibility for data transmission through our website, but we adhere to strict regulations regarding the data received by our company in order to protect your data and prevent illegal access.
Regarding security issues, we ask for your help in carefully keeping your existing access password to our website and not sharing this password with anyone.
- What are your rights and remedies?
You about data management
Ø you can request information,
Ø you can request the correction, modification or addition of your personal data managed by us,
Ø you can object to data processing and request the deletion and blocking of your data (with the exception of mandatory data processing),
Ø you can take legal action in court,
Ø You can file a complaint with the supervisory authority or initiate a procedure (https://naih.hu/panaszuegyintezes-rendje.html).
Supervisory Authority: National Data Protection and Freedom of Information Authority
Ø Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.
Ø Mailing address: 1530 Budapest, Pf.: 5.
Ø Telephone: +36 (1) 391-1400
Ø Fax: +36 (1) 391-1410
Ø E-mail: ugyfelszolgalat@naih.hu
Website: https://naih.hu/
Upon your request, we provide information about the data you manage or process by us - or by our commissioned data processor
Ø about your data,
Ø about their source,
Ø the purpose and legal basis of data management,
Ø on its duration, and if this is not possible, on the aspects of determining this duration,
Ø about the name and address of our data processors and their activities related to data management,
Ø about the circumstances and effects of data protection incidents and the measures we have taken to prevent and eliminate them, and
Ø in case of forwarding your personal data, about the legal basis of the data transfer and the recipient.
We will provide our information as soon as possible, within ……… days (but no later than 1 month) from the submission of the application. The information is free of charge, unless you have already submitted an information request to us for the same data area in the current year. The reimbursement you have already paid will be refunded in the event that the data was handled unlawfully or the request for information led to a correction. Information can only be refused in cases provided for by law by indicating the legal place, as well as by providing information about the possibility of judicial remedy or turning to the Authority.
Our company will notify you, as well as all those to whom it previously forwarded the data for the purpose of data management, of the correction, blocking, marking and deletion of personal data, unless the failure to notify does not harm your legitimate interests.
If we do not comply with your request for correction, blocking or deletion, we will inform you in writing or - with your consent - electronically of the reasons for our refusal and inform you of the court remedy, as well as the About the possibility of turning to the authorities.
If you object to the processing of your personal data, we will examine the objection as soon as possible, within 10 days (but no more than 1 month) from the submission of the request, and we will inform you of our decision in writing. If we have decided that your protest is well-founded, in that case we will terminate the data management - including further data collection and transmission - and block the data, as well as notify all those to whom the personal data affected by the protest have been notified of the protest and the measures taken based on it. previously forwarded, and who are obliged to take action to enforce the right to protest.
We will refuse to comply with the request if we prove that the data processing is justified by compelling legitimate reasons that take precedence over your interests, rights and freedoms, or that are related to the presentation, enforcement or defense of legal claims. If you do not agree with our decision, or if we miss the deadline, you can go to court within 30 days from the notification of the decision or the last day of the deadline.
Adjudication of data protection lawsuits falls under the jurisdiction of the court, the lawsuit can also be initiated before the court of the residence or place of residence of the data subject - at the choice of the data subject. A foreign citizen can also file a complaint with the competent supervisory authority according to his place of residence.
We ask that you contact our company before filing your complaint with the supervisory authority or the court - in order to negotiate and resolve the problem as quickly as possible.
- What are the main governing laws for our activities?
Ø Regulation (EU) 2016/679 of the European Parliament and of the Council on the processing of personal data of natural persons (GDPR)
Ø CXII of 2011 on the right to information self-determination and freedom of information. law - (Info tv.)
Ø Act V of 2013 on the Civil Code (Ptk.)
Ø CVIII of 2001 on certain issues of electronic commercial services and services related to the information society. law - (Eker tv.)
Ø Act C of 2003 on electronic communications - (Ehtv)
Ø CLV of 1997 on consumer protection. law (Fogiv tv.)
Ø CLXV of 2013 on complaints and notifications of public interest. law. (Pktv.)
Ø XLVIII of 2008 on the basic conditions and certain limitations of economic advertising activity. law (Grtv.)
- Modification of data management information
Our company reserves the right to amend this Data Management Information, of which it will inform the affected parties in an appropriate manner. Information related to data management is published on the okofalu.eu website.
