1. Purpose of the regulations
The purpose of these regulations is to establish the data protection and data management policy of the individual entrepreneur Ádám Fenyvesi (registered office: 9700 Szombathely, Nárai utca 25., tax number: 55811439-1-38), taking into account the data protection and data management principles specified by law. respect for the personal rights of data subjects, in particular the right to the protection of personal data during the processing and handling of personal data of data subjects.
2. Interpretative provisions
2.1. Data controller: a natural or legal person or an organization without legal personality who, alone or together with others, determines the purpose of data processing, makes and implements decisions on data processing (including the means used), or implements it with the data processor.
2.2. Data management: any operation or set of operations on data, regardless of the procedure used, in particular the collection, recording, recording, systematisation, storage, alteration, use, interrogation, disclosure, coordination or aggregation, blocking, erasure and destruction of data, and to prevent further use of the data, to take photographs, sound or images and to record physical characteristics (eg fingerprints or palm prints, DNA samples, irises) that can be used to identify the person.
2.3. Personal data: data which can be contacted with the data subject, in particular the name, identification mark and knowledge of one or more physical, physiological, mental, economic, cultural or social identities of the data subject, and the inference that can be drawn from the data.
2.4. Consent: the voluntary and unequivocal expression of the will of the data subject, based on adequate information and giving his or her unambiguous consent to the processing of personal data concerning him or her in full or in part.
2.5. Data processing: the performance of technical tasks related to data management operations, regardless of the method and means used to perform the operations and the place of application, provided that the technical task is performed on the data.
2.6. Data processor: a natural or legal person or an organization without legal personality who processes data under a contract, including a contract concluded in accordance with the provisions of law.
2.7. Data subject: Any natural person identified or identifiable, directly or indirectly, on the basis of personal data.
3. Name of the data controller
Ádám Fenyvesi is a self-employed person (registered office: 9700 Szombathely, Nárai utca 25., tax number: 55811439-1-38)
E-mail: – email@example.com – hereinafter Service Provider
During the handling of the Customer’s personal data, the Service Provider complies with the provisions of Act CXII of 2011 on the right to self-determination of information. law. Due to the fact that the data management applies to users who have a customer relationship with the data controller, it is not necessary to register the data management in the data protection register of 2011 CXII. Pursuant to Section 65 (3) (a) of the Act: The Authority does not keep a data protection register on data processing that a) with the exception of customers of organizations, public utility service providers and electronic communications service providers. The Customer is entitled to disable data processing at any time.
4. The natural and legal persons entitled to access the data are the data processors
The data controller and its employees have the right to access the data, the data will not be published or disclosed to third parties.
5. Scope of personal data processed
6. Legal basis and purpose of data processing
6.1. The data will be processed on the basis of a duly informed statement from the seller following the voluntary completion of the seller’s and buyer’s questionnaires on the Website, which includes the express consent of the users to the use of their personal data provided during the use of the site. The legal basis for data processing is the voluntary consent of the data subject. The User gives his / her consent to the processing of the data indicated above by expressly accepting these data protection regulations – by checking the appropriate box – or by voluntarily providing the data in question.
6.2. The purpose of data management is to ensure the provision of the services available on the Website. The Service Provider stores the data provided by the Customer for a specific purpose, only for the purpose of proving the conditions of any order that may be created later. The method of using the e-mail addresses (e-mail addresses) provided during the completion of the questionnaire by the data controller is as follows: the e-mail addresses are used to identify the customer, to contact them and to send a professional newsletter to the customer. The data controller shall provide the customer with information on the services provided by him / her and other similar services in electronic form by e-mail. With the express consent of the customer, the data controller will send newsletters containing marketing services or advertisements for marketing purposes to the e-mail address provided during registration. We process the Customer’s data only with data processing performed with a computer device.
6.3. The purpose of the automatically recorded data is the production of statistics, the technical development of the IT system, and the protection of users’ rights.
6.4. The data controller may not use the personal data provided for purposes other than those described in these sections. The disclosure of personal data to third parties or authorities is only possible with the prior express consent of the user, unless otherwise required by law.
6.5. The data controller does not check the personal data provided to him. The person who provided the data is solely responsible for the accuracy of the information provided. When providing an e-mail address to any Customer, it is also responsible for ensuring that only the Customer receives service from the e-mail address provided. In view of this responsibility, all responsibility for logging in to a given email address rests solely with the user who registered the email address.
7. Duration of data management
7.1. The processing of the data required during registration starts with the registration and lasts until it is deleted. In the case of non-mandatory data, the data processing lasts from the date of providing the data until the deletion of the data in question.
7.2. The above provisions do not affect the fulfillment of retention obligations specified in legislation (eg accounting legislation).
8. Persons entitled to access the data
8.1. The data are primarily accessible to the Service Provider and the Service Provider’s internal employees, however, they are not published or passed on to third parties.
8.2. The Service Provider may use a data processor (eg system operator, accountant) for the operation of the underlying IT system, the fulfillment of orders and the settlement of settlements. The Service Provider is not responsible for the data management practices of such external actors.
8.3. In addition to the above, the transfer of personal data concerning the Customer may only take place in cases specified by law or with the consent of the Customer.
9. Customer rights
9.1. The Customer is entitled to request information about the personal data processed by the Service Provider at any time. Customer is also entitled to request the deletion of its data via the contact details provided in this section.
9.2. At the request of the Customer, the Service Provider shall provide information about the data processed by it, the purpose, legal basis and duration of the data processing, as well as who receives or has received their data. The Service Provider shall provide the requested information in writing within 30 days of the submission of the request.
9.3. The data subject may exercise his / her rights at the following contact details: Mailing address: Ádám Fenyvesi, 9700 Szombathely, Nárai utca 25. The Customer may contact the employee of the Service Provider with any questions or remarks related to data management via the above contact information.
9.4. The Customer has the right at any time to request the correction or deletion of incorrectly recorded data by sending a letter to the above address. The cancellation does not apply to the data processing required by law (eg accounting regulations), the Service Provider will keep them for the required period of time.
9.5. The customer can enforce his rights in court and also seek the assistance of the Data Protection Commissioner.
9.6. If the Customer provided the data of a third party during the completion of the questionnaire in order to use the service, or caused damage in any way during the use of the Website, the Service Provider is entitled to enforce compensation against the Customer. In such a case, the Service Provider shall provide all possible assistance to the acting authorities in order to establish the identity of the infringing person.
10. Other provisions
10.1. The Service Provider’s system may collect data on the activity of users, which cannot be linked to other data provided by users during registration, or to data generated when using other websites or services.
10.2. In all cases where the Service Provider wishes to use the provided data for a purpose other than the purpose of the original data collection, it shall inform the user thereof and obtain his or her prior express consent, or provide him or her with the opportunity to prohibit the use.
10.3. The Service Provider undertakes to ensure the security of the data and to take the technical measures to ensure that the recorded, stored and processed data are protected and to do everything possible to prevent their destruction, unauthorized use and unauthorized alteration. It also undertakes to call on any third party to whom the data may be transferred or transferred to fulfill its obligations in this regard.
10.4. The Service Provider reserves the right to unilaterally amend these Regulations with prior notice to the Clients. After the entry into force of the amendment, the Customer accepts the provisions of the amended Regulations by implicitly using the service.