GENERAL CONTRACT TERMS AND DATA PROTECTION INFORMATION

GENERAL TERMS AND CONDITIONS

 

Company details:

 

ILS-NRG Consulting Limited Liability Company

Company register number: 13 09 225004

Tax number: 32185924-2-13

Headquarters: Hungary, 2363 Felsőpakony, Géza fejedelem str. 6.

Központi telefonszám:+36703835059

e-mail cím: info [kukac] itop.hu

 

1. 1. The primary language of the itop.hu site is Hungarian, the language of the contract is Hungarian. In case of special request, according to agreed conditions, the contract can be concluded in another language, on the basis of the conditions agreed in advance and subsequently included therein.
2. 2. The customer / customer can contact the company via the contact details (Contact) on the itop.hu website, which will primarily provide information about the requested service.
3. 3. On the basis of the consultation contained in point 1, needs assessment, contract conclusion, implementation, operation, and other activities may take place, for the purpose of which a contract is drawn up in advance based on the provisions of the Civil Code in force at all times. From now on, the terms and conditions contained in the contract are governing in addition to the provisions of the law.
4. 4. The customer/customer can complain to:
   1. 1. to the manager / contact person of the company
   2. 2. Clerk of the Mayor's Office of Felsőpakony Municipality

2363 Felsőpakony, Petőfi S. u. 9.;  jegyzo@felsopakony.hu, +36-29/317-131 /13-as mellék

3. Pest County Conciliation Board, 1364 Budapest, Pf.: 81 pmbekelteto@pmkik.hu pmbekelteto@pmkik.hu

4. Gyáli Járasi Hivatal Authority Department 2360 Gyál, Kőrösi út 112-114.(29) 544-100, e-mail: gyal.jarasihivatal@pest.gov.hu 2360 Gyál, Kőrösi út 112-114.(29) 544-100, e-mail: gyal.jarasihivatal@pest.gov.hu

• Regulatory environment:

 

Questions not regulated in these GTC and the interpretation of these GTC are governed by Hungarian law, in particular Act V of 2013 on the Civil Code ("Ptk") and certain issues of electronic commercial services and services related to the information society CVIII of 2001 (Elker. tv.) Act and 45/2014 on the detailed rules of contracts between the consumer and the business. (II. 26.) to the relevant provisions of Government Decree. The mandatory provisions of the relevant legislation apply to the parties without special stipulations.

 

 

 

 

PRIVACY POLICY:

 

If you use the Website, you hereby confirm that you have fully read, familiarized yourself with and understood the contents of this Data Management Notice.

 

1. 1. Prologue

 

The purpose of the following Data Protection Policy is to provide you with information on how we use your personal data, in connection with which we comply with Act CXII of 2011 on the right to informational self-determination and freedom of information. Act (hereinafter: Infotv.) and the General Data Protection Regulation (REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (April 27, 2016)) - on the protection of natural persons with regard to the processing of personal data and the freedom of such data flow, as well as the repeal of Regulation 95/46/EC (General Data Protection Regulation), hereinafter GDPR) regulations and requirements.

ILS-NRG Consulting Kft. is entitled and obliged to handle the data in accordance with the following legal bases and regulations:

CXII of 2011 Act - on the right to self-determination of information and freedom of information (Infotv.)

Act V of 2013 - on the Civil Code (Ptk.);

CLV of 1997. law - on consumer protection (Fgytv.);

2017 XC. law - on criminal procedure (Be.);

> Act C of 2000 - on accounting (Accounting Act);

CVIII of 2001 Act - on certain issues of electronic commercial services and services related to the information society (Eker. tv.);

Act C of 2003 - on electronic communications (Eht.);

CXXXIII of 2005 law - on the rules for the protection of persons and property, as well as private investigative activities (SzVMt.);

XLVIII of 2008 Act - on the basic conditions and certain limitations of economic advertising activity (Grt.)

2012 CLIX. law - on postal services

Regulation (EU) 2016/679 of the European Parliament and of the Council (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free flow of such data and repealing Regulation 95/46/EC

According to the GDPR, other data protection legislation in EU member states and other data protection regulations, the data manager:

ILS-NRG Consulting Limited Liability Company

Company register number: 13 09 225004

Tax number: 32185924-2-13

Headquarters: Hungary, 2363 Felsőpakony, Géza fejedelem str. 6.

Central telephone number:

e-mail cím: info [kukac] itop.hu

 

Since the data controller does not comply with the mandatory appointment of a data protection officer based on the points below, no data protection officer has been appointed:

1. a) if the data management is carried out by public authorities or other bodies performing public duties (except for courts acting in the scope of their judicial duties);
2. b) if the main activities of the data manager or the data processor include data management operations that require regular and systematic, large-scale monitoring of the data subjects;
3. c) if the main activities of the data manager or the data processor include the processing of a large number of special categories of personal data, or data related to the determination of criminal liability and crimes.

 

III. Concepts:

„személyes adat”"personal data": any information relating to an identified or identifiable natural person ("data subject"); a natural person can be identified directly or indirectly, in particular on the basis of an identifier such as a name, number, location data, online identifier or one or more factors relating to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person identifiable;

„adatkezelés”"data management": any operation or set of operations performed on personal data or data files in an automated or non-automated manner, such as collection, recording, organization, segmentation, storage, transformation or change, query, insight, use, communication, transmission, distribution or otherwise by making available, coordinating or connecting, limiting, deleting or destroying;

„adatkezelő”"data controller": the natural or legal person, public authority, agency or any other body that determines the purposes and means of processing personal data independently or together with others; if the purposes and means of data management are determined by EU or member state law, the data controller or the special aspects regarding the designation of the data controller may also be determined by EU or member state law;

„adatfeldolgozó”"data processor": the natural or legal person, public authority, agency or any other body that processes personal data on behalf of the data controller;

„címzett”"recipient": the natural or legal person, public authority, agency or any other body to whom or to which the personal data is communicated, regardless of whether it is a third party. Public authorities that have access to personal data in accordance with EU or Member State law in the context of an individual investigation are not considered recipients; the management of said data by these public authorities must comply with the applicable data protection rules in accordance with the purposes of data management;

„az érintett hozzájárulása”: "consent of the data subject": the voluntary, specific and clear declaration of the will of the data subject based on adequate information, with which the data subject indicates by means of a statement or an act clearly expressing the confirmation that he gives his consent to the processing of personal data concerning him;

„adatvédelmi incidens”"data protection incident": a breach of security that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to, personal data transmitted, stored or otherwise handled.

A személyes adatok kezelésének köre A személyes adatait csak olyan körben gyűjtjük és használjuk fel, amelyben az szükséges a weboldal működéséhez és a tartalmaink és szolgáltatásaink nyújtásához, például, amikor meglátogatja oldalunkat, vagy velünk felveszi a kapcsolatot. A személyes adatait a következő célokra gyűjtjük, kezeljük és használjuk fel: Szerződések létrehozása és teljesítése

We only collect and use your personal data in the scope in which it is necessary for the operation of the website and the provision of our content and services, for example, when you visit our site or contact us.

We collect, manage and use your personal data for the following purposes:

Creation and performance of contracts

• • Customer service and support
• • provision of accounting services

We can process your personal data based on the following legal principles: Article 6, paragraph (1) point a) of the GDPR serves as the basis for data management, for which we obtain your consent for certain data management purposes. GDPR Article 6 (1) point b) regulates that personal data can be processed in order to fulfill a contract, e.g. in connection with the purchase of a product.

We can process your personal data based on the following legal principles: Article 6, paragraph (1) point a) of the GDPR serves as the basis for data management, for which we obtain your consent for certain data management purposes. GDPR Article 6 (1) point b) regulates that personal data can be processed in order to fulfill a contract, e.g. in connection with the purchase of a product. The same applies to the data management activities that are necessary for activities prior to the conclusion of the contract, such as e.g. handling inquiries about products or services. GDPR Article 6 (1) point c) applies in cases where a legal obligation requires us to process data, for example in connection with tax obligations. GDPR Article 6 (1) point d) states that personal data may be processed to protect the vital interests of you or other natural persons. Article 6(1)(f) GDPR applies to our legitimate interest, for example when we use service providers to fulfill orders (e.g. delivery services), when we conduct statistical surveys and analyses, or when we log logins or their attempts.

Storage period of personal data and their deletion

Personal data can only be processed or stored as long as they are necessary for the purpose of data management, or as long as required by law or other provisions. If the purpose ceases or is fulfilled, the personal data will be deleted or we will restrict access. Limited access means that the data will be deleted as soon as the retention periods specified in legislation, articles of incorporation or contracts have passed, unless otherwise there is a reason on the basis of which we can assume that the deletion would endanger your legitimate interest and provided, that deletion does not require a disproportionately burdensome resource expenditure due to the unique conditions of storage.

VII. Collection of general data and information (log files) In accordance with point f) of Article 6 (1) of the GDPR, our website collects a number of general data and information about each access and these are temporarily stored in the server's log files. Log files are created by computer system automatic logging. The following data can be collected: • Website access (date, time and frequency) • How you arrived at the website (sending page, hyperlink, etc.) • Amount of data sent The browser you are using and its version number • The operating system you are using • Your internet service provider • The IP address assigned to your computer by the Internet service provider when you connect to the Internet The technical background of our website is provided by the website www.dotroll.com, whose data management information can be accessed here: https://dotroll.com/wp-content/uploads/2020/01/adatkezelesi-szabalyzat.pdf

In accordance with point f) of Article 6 (1) of the GDPR, our website collects a number of general data and information about each access and these are temporarily stored in the server's log files.

Log files are created by computer system automatic logging. The following data can be collected:

• Weboldalhoz való hozzáférés (dátum, idő és gyakoriság)
• How did you arrive at the website (sending page, hyperlink, etc.)
• Amount of data sent The browser you are using and its version number
• The operating system you are using
• Your ISP
• The IP address assigned to your computer by your Internet service provider when you connect to the Internet

The technical background of our website is provided by the website www.dotroll.com, whose data management information can be accessed here: https://dotroll.com/wp-content/uploads/2020/01/adatkezelesi-szabalyzat.pdf

 

VIII. Cookies, web analytics services and social media Cookies are small text, image or software files that we place and store on your computer, smartphone or other devices used to access the Internet when browsing websites. Cookies are extremely useful tools that allow a website to recognize you and to log the times when you visit a particular site. In addition, they allow you to establish a secure connection with the website, and they also increase the user experience by improving your experience with the website, ensuring the connection and/or adapting the content of a particular page to your interests. The information stored by cookies on your computer for a short time may refer to the following: the websites you visited with your computer containing the cookie; the ads you clicked on; the type of browser you are using; your IP address; and the information provided by you for the given website (by using cookies, it is possible to avoid re-entering the information). Cookies, web analytics services and social media plug-ins are subject to a separate Cookie Policy. Management of cookies

Cookies are small text, image or software files that we place and store on your computer, smartphone or other devices used to access the Internet when browsing websites. Cookies are extremely useful tools that allow a website to recognize you and to log the times when you visit a particular site. In addition, they allow you to establish a secure connection with the website, and they also increase the user experience by improving your experience with the website, ensuring the connection and/or adapting the content of a particular page to your interests.

The information stored by cookies on your computer for a short time may refer to the following:

the websites you visited with your computer containing the cookie;

the ads you clicked on;

the type of browser you are using;

your IP address;

and the information provided by you for the given website (by using cookies, it is possible to avoid re-entering the information).

Cookies, web analytics services and social media plug-ins are subject to a separate Cookie Policy. Management of cookies

CXII of 2011 on the right to information self-determination and freedom of information. Based on Article 20 (1) of the Act, the following must be defined within the cookie data management of the webshop website: 1. the fact of data collection, 2. the range of stakeholders, 3. purpose of data collection, 4. duration of data management, 5. the identity of possible data controllers authorized to access the data, 6. description of the rights of data subjects related to data management.

1. a) the fact of data collection,
2. b) the range of stakeholders,
3. c) purpose of data collection,
4. d) duration of data management,
5. e) the identity of potential data controllers authorized to access the data,
6. f) description of the rights of data subjects related to data management.

(The general rule that does not apply to itop.hu.hu: Cookies specific to online stores are the so-called "cookie used for a password-protected session", "cookies required for the shopping cart" and "security cookies", the use of which is not necessary request prior consent from those concerned.)

The fact of the data management, the scope of the managed data: unique identification number, dates, times Scope of stakeholders: All stakeholders visiting the website. Purpose of data management: identification of users, registration of the "shopping basket" and tracking of visitors. Duration of data management, deadline for data deletion: In the case of session cookies, the duration of data management lasts until the end of the website visit. Person of the possible data controllers entitled to access the data: Personal data can be managed by the employees of the data controller, in compliance with the above principles. Description of data processing rights of data subjects: The data subject has the option to delete cookies in the Tools/Settings menu of browsers, usually under the settings of the Data Protection menu item. Legal basis for data management: Consent from the data subject is not required if the sole purpose of using cookies is the transmission of information via an electronic communication network or if the service provider absolutely needs it to provide a service related to the information society specifically requested by the subscriber or user. The Service Provider measures the visitor data of the page using the Google Analytics service. When using the service, data is transmitted. The transmitted data are not suitable for identifying the data subject. More information on Google's data protection principles can be found here: http://www.google.hu/policies/privacy/ads/

Scope of stakeholders: All stakeholders visiting the website.

Purpose of data management: identification of users, registration of the "shopping basket" and tracking of visitors.

Duration of data management, deadline for data deletion: In the case of session cookies, the duration of data management lasts until the end of the website visit.

Person of the possible data controllers entitled to access the data: Personal data can be managed by the employees of the data controller, in compliance with the above principles.

Description of data processing rights of data subjects: The data subject has the option to delete cookies in the Tools/Settings menu of browsers, usually under the settings of the Data Protection menu item.

Legal basis for data management: Consent from the data subject is not required if the sole purpose of using cookies is the transmission of information via an electronic communication network or if the service provider absolutely needs it to provide a service related to the information society specifically requested by the subscriber or user.

The Service Provider measures the visitor data of the page using the Google Analytics service. When using the service, data is transmitted.

The transmitted data are not suitable for identifying the data subject. More information on Google's data protection principles can be found here: http://www.google.hu/policies/privacy/ads/

1. 1. For special offers and other messages related to our products and services, such as providing information about newsletters. We use your information to send the information you request about our products, services and other special offers to the email address you provide. We do this only with your prior consent, or if permitted by law. Consent to such communications is subject to Article 6(1)(a) and Article 7 of the GDPR. Signing up for newsletters on our website: it does not currently provide a newsletter subscription option. It is not possible to unsubscribe from certain informational messages that are necessary for the performance of contracts and the operation of our website, including service emails (e.g. registration confirmation, customer service notices) or information related to purchases (e.g. order confirmation, contract documents, payment data management) . These notifications will be sent to the contact information provided by you. Management of personal data when contacting, registering and placing orders for visitors Contact When you contact us by phone, e-mail or via the contact form, the data you provide is stored on the basis of Article 6 (1) point a) of the GDPR. We log the contact so that we can prove it according to legal requirements. We obtain your consent for data management when you fill out the form and this Privacy Policy can also be viewed at that time. The data related to this will be deleted when the communication in question ends and the matter is considered resolved.

We use your information to send the information you request about our products, services and other special offers to the email address you provide. We do this only with your prior consent, or if permitted by law. Consent to such communications is subject to Article 6(1)(a) and Article 7 of the GDPR.

Signing up for newsletters on our website: it does not currently provide a newsletter subscription option.

It is not possible to unsubscribe from certain informational messages that are necessary for the performance of contracts and the operation of our website, including service emails (e.g. registration confirmation, customer service notices) or information related to purchases (e.g. order confirmation, contract documents, payment data management) . These notifications will be sent to the contact information provided by you.

Management of personal data when contacting, registering and placing orders for visitors

Contatct

When you contact us by phone, e-mail or via the contact form, the data you provide is stored on the basis of Article 6 (1) point a) of the GDPR.

We log the contact so that we can prove it according to legal requirements. We obtain your consent for data management when you fill out the form and this Privacy Policy can also be viewed at that time. The data related to this will be deleted when the communication in question ends and the matter is considered resolved.

Registration Our website does not currently provide registration options. When you visit us, we store and use your personal data and technical information in accordance with Article 6 (1) c) and f) of the GDPR, where this is necessary to prevent or investigate abuse or other illegal behavior on our website, e.g. maintaining data security in the event of an attack on our IT systems. This can also be done according to the order of public administrative authorities or courts to the extent that we are required to do so by law and to protect our rights and interests and to the extent that this is necessary to defend against claims. XII. Transmission of personal data to third parties When transmitting your personal data, we always provide the highest possible level of security, therefore we only transmit your data to service providers and partners with contractual obligations that have been carefully selected in advance. We only transfer data to organizations that are established in the European Economic Area and are therefore subject to strict EU data protection legislation or to organizations that are subject to equivalent security regulations. We do not currently transfer data to third countries and have no intention of doing so. Forwarding to affiliated companies of our company is in accordance with Article 6 (1) point b) of the GDPR In order to conclude contracts related to the services and deliveries available on our website, we forward your personal data to companies in Hungary that have a business relationship with our company. Data transfer to product partners According to Article 6, paragraph (1) point b) of the GDPR, no data is currently transferred to product partners.

Our website does not currently provide registration options.

When you visit us, we store and use your personal data and technical information in accordance with Article 6 (1) c) and f) of the GDPR, where this is necessary to prevent or investigate abuse or other illegal behavior on our website, e.g. maintaining data security in the event of an attack on our IT systems. This can also be done according to the order of administrative authorities or courts to the extent that we are required to do so by law and to protect our rights and interests and to the extent that this is necessary to defend against claims.

XII. Transmission of personal data to third parties

When transmitting your personal data, we always provide the highest possible level of security, therefore we only transmit your data to service providers and partners with contractual obligations that have been carefully selected in advance. We only transfer data to organizations that are established in the European Economic Area and are therefore subject to strict EU data protection legislation or to organizations that are subject to equivalent security regulations. We do not currently transfer data to third countries and have no intention of doing so. Forwarding to affiliated companies of our company is in accordance with Article 6 (1) point b) of the GDPR

In order to conclude contracts related to the services and deliveries available on our website, we forward your personal data to companies in Hungary that have a business relationship with our company.

Data transfer to product partners According to Article 6, paragraph (1) point b) of the GDPR, no data is currently transferred to product partners.

XIII. Social media If you have a Facebook account, you can share our page. In this case, please note that Facebook's Privacy Policy applies to the Facebook account (http://www.facebook.com/about/privacy/; Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA) . In the case of a Twitter account, the following Twitter link to our shared page can be validated from a data protection point of view: https://twitter.com/en/privacy In the case of a Pinterest account, the following Pinterest link to our shared page contains the privacy policy: https://policy.pinterest.com/en/privacy-policy In the case of a Google account, the following link of Google Inc. can be used for our shared page http://www.google.hu/policies/privacy/ads XIV. Contact If you wish to contact us with an inquiry, you can do so via the contact information provided in point I of this information sheet. Our company deletes all e-mails received with the sender's name, e-mail address, date and time data and other personal data provided in the message after a maximum of five years from the date of communication. The purpose of the data management is to enforce the rights of the customers and the data controller, to provide evidence for the resolution of possible legal disputes, retrospective provability and subsequent proof of agreements, quality assurance. Legal basis for data management: the voluntary consent of the person concerned. Scope of processed data: letters and personal data provided during correspondence Data deletion deadline: 5 years (general limitation period according to the Civil Code) Data processor: Name: ILS-NRG Consulting Kft.. (according to the criteria written in point I) For your own security, we reserve the right to request additional information to verify your identity when responding to an inquiry or before completing an order. If identification is not possible, we reserve the right to refuse to answer the request or to fulfill the order.

If you have a Facebook account, you can share our page. In this case, please note that Facebook's Privacy Policy applies to the Facebook account (http://www.facebook.com/about/privacy/; Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA) .

In the case of a Twitter account, the following Twitter link to our shared page can be validated from a data protection point of view: https://twitter.com/en/privacy

In the case of a Pinterest account, the following Pinterest link to our shared page contains the privacy policy: https://policy.pinterest.com/en/privacy-policy

In the case of a Google account, the following link of Google Inc. can be used for our shared page http://www.google.hu/policies/privacy/ads

 

XIV. Contact

If you wish to contact us with an inquiry, you can do so via the contact information provided in point I of this information sheet. Our company deletes all e-mails received with the sender's name, e-mail address, date and time data and other personal data provided in the message after a maximum of five years from the date of communication.

The purpose of the data management is to enforce the rights of the customers and the data controller, to provide evidence for the resolution of possible legal disputes, retrospective provability and subsequent proof of agreements, quality assurance.

Legal basis for data management: the voluntary consent of the person concerned.

Scope of processed data: letters and personal data provided during correspondence

Data deletion deadline: 5 years (general limitation period according to the Civil Code

Data processor: Name: ILS-NRG Consulting Kft.. (according to the criteria written in point I)

 

For your own security, we reserve the right to request additional information to verify your identity when responding to an inquiry or before completing an order.

 

If identification is not possible, we reserve the right to refuse to answer the request or to fulfill the order.

 

Your rights: Right to information: You have the right to request information from us about the personal data stored about you. Right to rectification: You are entitled to request the immediate correction and/or addition of personal data stored about you. The right to restrict data processing: You have the right to request that we limit the processing of your personal data if you dispute the accuracy of the data stored about you, if the data processing is illegal and we no longer need the data, but you do not want us to delete the data and you need them to present, assert or enforce legal claims or to defend against them or if you objected to data processing. Right to erasure: You have the right to request the deletion of your personal data stored by us, unless the preservation of the data is necessary for the free expression of opinion, freedom of information, compliance with legal obligations, public interest, presenting or defending against legal claims or exercising rights Right to information: If you have asserted your right to rectification, erasure or restriction of data processing, we will notify all recipients of your personal data about how we have corrected or deleted the data or that there is now a restriction on the processing of the data, unless this is impossible or requires a disproportionate effort. Right to data portability: You have the right to request a copy of your data provided to us and to request that we send it to you or a third party in a segmented, widely used and machine-readable format. If you request that the data be sent directly to another data controller, we will only do so if this is technically possible. Right to protest: If we process your personal data on the basis of a legitimate interest in accordance with Article 6 (1) point f) of the GDPR, you have the right to object to data processing at any time in accordance with Article 21 of the GDPR. Right to withdraw consent: You have the right to withdraw your consent at any time regarding the collection of data with effect for the future. This does not affect the data collected until withdrawal. We hope you understand that it may take some time to process the withdrawal of consent for technical reasons and that you may still receive messages from us during this time. The right to submit a complaint to a regulatory authority If the handling of your personal data violates data protection legislation, or if your data protection rights have been violated in any other way, you can file a complaint with the regulatory authority. National Data Protection and Freedom of Information Authority postal address: 1530 Budapest, Pf. 5. seat: 1125 Budapest, Szilágyi Erzsébet fasor 22/c Telephone: 06/1/391-1400 Fax: 06/1/391-1410 E-mail: ugyfelszolgalat@naih .hu URL: http://naih.hu The fastest, easiest and most convenient way to exercise the right to rectification and deletion is to log into your account and directly edit or delete the data stored there. Please note that when your data is deleted, you will no longer be able to access the services of our product partners through our website. We only restrict access to that data, but do not delete the data, if we are obliged to store the data based on legal, founding deed or contractual obligations, in order to prevent the data from being used for other purposes.

Right to information:

Ön jogosult tájékoztatást kérni tőlünk az Önnel kapcsolatosan tárolt személyes adatokról.

Right to rectification:

You are entitled to request the immediate correction and/or addition of personal data stored about you.

The right to restrict data processing:

You have the right to request that we limit the processing of your personal data if you dispute the accuracy of the data stored about you, if the data processing is illegal and we no longer need the data, but you do not want us to delete the data and you need them to present, assert or enforce legal claims or to defend against them or if you objected to data processing.

Right to erasure:

You have the right to request the deletion of your personal data stored by us, unless the preservation of the data is necessary for the free expression of opinion, freedom of information, compliance with legal obligations, public interest, presenting or defending against legal claims or exercising rights

Right to information:

If you have asserted your right to rectification, erasure or restriction of data processing, we will notify all recipients of your personal data about how we have corrected or deleted the data or that there is now a restriction on the processing of the data, unless this is impossible or requires a disproportionate effort.

Right to data portability:

You have the right to request a copy of your data provided to us and to request that we send it to you or a third party in a segmented, widely used and machine-readable format. If you request that the data be sent directly to another data controller, we will only do so if this is technically possible.

Right to protest:

If we process your personal data on the basis of a legitimate interest in accordance with Article 6 (1) point f) of the GDPR, you have the right to object to data processing at any time in accordance with Article 21 of the GDPR. Right to withdraw consent: You have the right to withdraw your consent at any time regarding the collection of data with effect for the future. This does not affect the data collected until withdrawal. We hope you understand that it may take some time to process the withdrawal of consent for technical reasons and that you may still receive messages from us during this time.

The right to submit a complaint to a regulatory authority

If the handling of your personal data violates data protection legislation, or if your data protection rights have been violated in any other way, you can file a complaint with the regulatory authority.

National Data Protection and Freedom of Information Authority postal address: 1530 Budapest, Pf. 5. seat: 1125 Budapest, Szilágyi Erzsébet fasor 22/c Telephone: 06/1/391-1400 Fax: 06/1/391-1410 E-mail: ugyfelszolgalat@naih .hu URL: http://naih.hu

The fastest, easiest and most convenient way to exercise the right to rectification and deletion is to log in to your account and directly edit or delete the data stored there.

Please note that when your data is deleted, you will no longer be able to access the services of our product partners through our website.

We only restrict access to that data, but do not delete the data, if we are obliged to store the data based on legal, founding deed or contractual obligations, in order to prevent the data from being used for other purposes.

XVI. Data transfer CXII of 2011 on the right to information self-determination and freedom of information. based on Article 20 (1) of the Act, the following must be defined as part of the data transfer activity of the webshop website: 1. a) the fact of data collection, 2. b) the range of stakeholders, 3. c) purpose of data collection, 4. d) duration of data management, 5. e) the identity of possible data controllers authorized to access the data, 6. f) description of the rights of data subjects related to data management. The fact of data management, the scope of the managed data. Scope of transmitted data in order to carry out the delivery: Delivery name, delivery address, telephone number, amount to be paid. Scope of transmitted data in order to complete the online payment: Billing name, billing address, amount to be paid. Scope of stakeholders: All stakeholders requesting home delivery/online shopping. Purpose of data management: Delivery of the ordered product to your home/processing of the online purchase. Duration of data management, deadline for data deletion: Lasts until home delivery/online payment is completed. Person of possible data controllers entitled to access the data: Personal data may be processed by the following, in compliance with the above principles: Magyar Posta ZRt. Headquarters: 1138 Budapest, Dunavirág utca 2-6, Cg. 01-10-042463, tax number: 10901232-2-44 mailing address: 1540 Budapest website: www.posta.hu Privacy information: https:// www.posta.hu/adatkezelesi_tajekoztato OTP Bank NyRt. 1051 Budapest, Nádor utca 16. Tel.: 06-1-473-5000 Fax: 06-1-473-5955 Data protection information: https://www.otpbank.hu/portal/hu/JogiEtikaiNyilatkozat Data of the hosting provider: Name: DotRoll Kft. Headquarters: 1148 Budapest, Fogarasi út 3-5. Company registration number: Cg. 01-09-882068 Registered and kept by: Company Court of the Capital City Court Email address: support@dotroll.com Website: www.dotroll.com Tax number: 13962982-2-42 XVII. Data security The security of personal data is of the utmost importance to us, we protect the data provided with appropriate technical measures, while using appropriate security software, we prevent the possibility of unauthorized third-party acquisition. The data is transmitted based on coding according to various standard specifications. We inform users that electronic messages transmitted on the Internet, regardless of the protocol (email, web, ftp, etc.), are vulnerable to network threats that lead to unfair activity, contract disputes, or the disclosure or modification of information. In order to protect against such threats, the data controller takes all necessary precautions. Monitors systems to capture any security discrepancies and provide evidence for any security incidents. In addition, system monitoring also makes it possible to check the effectiveness of the precautions used. ILR-NRG Consulting Kft., as a data controller, records any data protection incidents, indicating the facts related to the data protection incident, its effects and the measures taken to resolve them. XVIII Links to websites of external companies Our website contains links to the websites of other companies. We are not responsible for the data security practices of other websites accessed through these links. In this regard, please inquire about the governing data protection policies of these external websites. XIX Amendments to the Data Protection Policy In order to ensure that our Privacy Policy complies with the legal regulations in force at all times, we reserve the right to amend it at any time. This data protection policy is valid from 13 February 2024 in order to comply with the GDPR regulation of 25 May 2018 and other legal requirements!

CXII of 2011 on the right to information self-determination and freedom of information. Based on Article 20 (1) of the Act, the following must be defined within the cookie data management of the webshop website: 1. the fact of data collection, 2. the range of stakeholders, 3. purpose of data collection, 4. duration of data management, 5. the identity of possible data controllers authorized to access the data, 6. description of the rights of data subjects related to data management.

1. a) the fact of data collection,
2. b) the range of stakeholders,
3. c) purpose of data collection,
4. d) duration of data management,
5. e) the identity of potential data controllers authorized to access the data,
6. f) description of the rights of data subjects related to data management.

The fact of data management, the scope of the managed data.

Scope of transmitted data in order to carry out the delivery: Delivery name, delivery address, telephone number, amount to be paid.

Scope of transmitted data in order to carry out the delivery: Delivery name, delivery address, telephone number, amount to be paid.

Scope of stakeholders: All stakeholders requesting home delivery/online shopping. Purpose of data management: Delivery of the ordered product to your home/processing of the online purchase.

Duration of data management, deadline for data deletion: Lasts until home delivery/online payment is completed

Person of the possible data controllers entitled to access the data: Personal data can be managed by the employees of the data controller, in compliance with the above principles.

Magyar Posta ZRt. Headquarters: 1138 Budapest, Dunavirág utca 2-6, Cg. 01-10-042463, tax number: 10901232-2-44 mailing address: 1540 Budapest website: www.posta.hu Privacy information: https:// www.posta.hu/adatkezelesi_tajekoztato OTP Bank NyRt. 1051 Budapest, Nádor utca 16. Tel.: 06-1-473-5000 Fax: 06-1-473-5955 Data protection information: https://www.otpbank.hu/portal/hu/JogiEtikaiNyilatkozat

Data of the hosting provider:

Neve: DotRoll Kft.

Székhely: 1148 Budapest, Fogarasi út 3-5.

Cégjegyzékszáma: Cg. 01-09-882068

Nyilvántartásba vette és nyilvántartja: Fővárosi Törvényszék Cégbírósága

Email cím: support@dotroll.com

Honlap: www.dotroll.com Adószám: 13962982-2-42 

 

XVII. Data security

The security of personal data is of the utmost importance to us, we protect the data provided with appropriate technical measures, while using appropriate security software, we prevent the possibility of unauthorized third-party acquisition. The data is transmitted based on coding according to various standard specifications.

We inform users that electronic messages transmitted on the Internet, regardless of the protocol (email, web, ftp, etc.), are vulnerable to network threats that lead to unfair activity, contract disputes, or the disclosure or modification of information. In order to protect against such threats, the data controller takes all necessary precautions. Monitors systems to capture any security discrepancies and provide evidence for any security incidents. In addition, system monitoring also makes it possible to check the effectiveness of the precautions used.

ILS-NRG Consulting Kft., as a data controller, records any data protection incidents, indicating the facts related to the data protection incident, its effects and the measures taken to resolve them.

XVIII Links to websites of external companies

Our website contains links to the websites of other companies. We are not responsible for the data security practices of other websites accessed through these links. In this regard, please inquire about the governing data protection policies of these external websites.

XIX Amendments to the Data Protection Policy

In order to ensure that our Data Protection Policy complies with the legal regulations in force at all times, we reserve the right to amend it at any time.

This data protection policy is valid from 13 February 2024 in order to comply with the GDPR regulation of 25 May 2018 and other legal requirements!