Data protection

Effective from 31 May 2022

Last amendment: 29 March 2024

Thank you for choosing to use the services provided by MASTIFF Kft. Please be informed that it is very important to our company that your personal data is properly protected and respected. 

To achieve the above purposes, this data processing notice (hereinafter referred to as “Notice”) contains, in accordance with Regulation 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as “GDPR”), information related to the processing of personal data provided to:

Company name: MASTIFF Korlátolt Felelősségű Társaság

Registered office: 4030 Debrecen, Bujdosó utca 5/A.

Address of establishment: 4225 Debrecen-Józsa, Vállalkozók útja 7.

Company registration number: 09-09-031706

Tax number: 27949616-2-09

Registered by: Court of Registration of the Regional Court of Debrecen

Represented by: Tamás László Varjú, managing director

E-mail: email">email     

Telephone number: +36 30 393 2266

(hereinafter referred to as “Provider”)

by its reseller partners (hereinafter referred to as “Partner”) and the persons, potential partners visiting the Website or connecting the Provider by e-mail or telephone or any other way, e.g., through the Website, as well as persons ordering Products (hereinafter referred to as “Data Subject”) related to the cargo bikes and other accessories (hereinafter collectively referred to as “Product”) sold by the Provider on the https://mastiffcargobike.com website (hereinafter referred to as  “Website”).    

The purpose of this Notice is to provide you with an accurate information on why and how we process personal data relating to the Partner’s contact person and the Data Subjects who come into contact with the Provider for any of the purposes described in this Notice, and for how long.

I. TERMS

I.1. Terms relating to data protection

Personal data

Any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing

Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Controller

The natural or legal person, public authority, agency or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or the specific criteria for the controller’s designation may also be determined by Union or Member State law.

The Provider is the controller of your data.

Processor

A natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller.

Third party

A natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor or the persons who, under the direct authority of the controller or processor, are authorized to process personal data.

Transmission

Making the data available to a specific third party.

Data subject

Anyone who shares his/her personal data with the Provider on the Website or elsewhere, or whose personal data is otherwise processed by the Provider. For example, you who are reading this Notice.

Consent of the data subject

A freely given, specific, informed and clear indication of the data subject’s will by which he/she indicates, by a statement or by an act expressing his/her clear consent, that/or she gives his/her consent to the processing of personal data concerning him/her.

Sensitive data

Personal data revealing racial or ethnic origin, nationality, political opinion or party affiliation, religion or beliefs, membership in an interest representation group, sexual life, health status, pathological addiction and criminal personal data.

Genetic data

Any personal data relating to the inherited or acquired genetic characteristics of a natural person which contain specific information about the physiology or health of that person and which result primarily from the analysis of a biological sample from that natural person.

Biometric data

Any personal data relating to the physical, physiological or behavioral characteristics of a natural person obtained by means of specific technical processing which allows or confirms the unique identification of that natural person, such as facial image or dactyloscopic data.

Personal data breach

A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.

Most of the above terms are also used in the GDPR. The text of the GDPR is available at http://eur-lex.europa.eu/legal-content/HU/TXT/?uri=celex:32016R0679 . The list is not exhaustive. Please contact us if you need more information.

Please be informed that we do not process or request any sensitive, genetic or biometric data from you in the course of our processing.

I.2. Other terms

IP address 

Short for Internet Protocol address, a sequence of numbers that uniquely identifies the computers and mobile devices of the Partners accessing the Internet. IP addresses can even be used to geolocate the visitor using a particular computer. The address of the pages visited and the date and time data alone are not suitable for identifying the data subject, but in combination with other data (e.g., data provided during registration) they can be used to draw conclusions about the Partner.

Registration 

A process initiated by the provision of personal data on the Website, as detailed below, whereby the Partner creates his/her own personal profile, protected by a password.

II. PRINCIPLES OF PROCESSING

The Provider processes the personal data of the Partner or the person designated by it and of the Data Subject in accordance with the principles set out in Article 5(1) of the GDPR: 

  • it processes the personal data lawfully and fairly and in a transparent manner for the data subject (“lawfulness, fairness and transparency”);
  • It collects personal data only for specified, explicit and legitimate purposes and does not process them in a way incompatible with those purposes (“purpose limitation”);
  • The personal data processed are adequate, relevant and limited to what is necessary for the purposes for which they are processed (“data minimization”);
  • It ensures that the personal data is accurate and, where necessary, kept up to date and take all reasonable steps to erase or rectify without undue delay any personal data that is inaccurate for the purposes for which it is processed (“accuracy”);
  • It stores the personal data in a form which permits identification of the Data Subjects for no longer than is necessary for the purposes for which the personal data are processed (“storage limitation”);
  • It processes personal data in a manner that ensures appropriate protection of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures (“integrity and confidentiality”),
III. CASES OF PROCESSING OF PERSONAL DATA 

The Provider processes the personal data of the Partner or the person designated by the Partner and the Data Subject in the following cases, taking into account the principles set out in Article 5(1) of the GDPR:

  • Browsing the Website
  • Registration
  • Request for quotation
  • Orders
  • Shipping
  • Contract-related communication
  • Payment, billing
  • Contacting, customer service
  • Notification of withdrawal
  • Enforcement of warranty rights, guarantee
  • Placement of cookies on the Website
IV. WHAT DATA IS PROCESSED, ON WHAT BASIS, FOR WHAT PURPOSE AND FOR HOW LONG?

In each of the cases set out above, the legal basis for the processing of personal data may be the following:

  • Pursuant to Article 6(1)(a) of the GDPR, the voluntary informed consent of the Partner’s contact person or of the Data Subject to the processing of personal data (hereinafter: “Consent”);
  • Pursuant to Article 6(1)(b) of the GDPR, processing is necessary for the performance of a contract to which the Partner or the Data Subject is a party or in order to take steps at the request of the data subject prior to entering into the contract (hereinafter: “Performance of the Contract”);
  • Pursuant to Article 6(1)(c) of the GDPR, processing is necessary for compliance with a legal obligation to which the controller is subject: “Performance of a Legal Obligation”);
  • Pursuant to Article 6(1)(f) of the GDPR, processing is necessary for the purposes of the legitimate interests pursued by the controller or a third party (hereinafter: “Legitimate Interest”);

Given that we cannot limit the scope of the personal data that each Data Subject sends to us in the context of each method of communication, as we have no control over the personal data that the Partner or the Data Subject may voluntarily provide, we ask you to pay close attention to only sharing the most necessary data and information required by the Provider in this Notice when you wish to contact us in any way, and in no case should you share with us any personal information that we do not request or intend to process in accordance with this Notice.  If, despite our express request under this clause, you send us information that is not necessary for the processing of personal data and, in this context, our company may suffer damage, you undertake, by accepting this Notice, to indemnify our company against any possible harmful consequences, in particular the payment of fines, and to compensate us for such damage.

IV.1. Browsing the Website 

Scope of processed data Purpose of processing Legal basis for processing Designation of legitimate interest Duration of processing
IP address of the Data Subject Protection of the Service Provider’s information technology systems and security of the Website Legitimate interest Secure operation of the Website 30 days from the last visit

The Website can be freely visited and browsed by anyone without providing any personal data to the Provider. When starting to use the Website, the Data Subject launches a request from his/her computer or mobile device to the Provider. It’s like sending a letter to which you want to receive the content of the Website in reply. However, the Provider will only be able to respond to the request if the data subject provides his/her address. This address is the Internet identification address of the Data Subject, i.e. his/her IP address. The Provider’s server sends the requested Website to this IP address. This is an automatic process: by typing the address of the Website into the browser or clicking on any link published anywhere on the Website, the data subject consents to the transmission of his/her IP address and to its processing by the Provider. In order to ensure that the communication described above between the Provider and the Data Subject when the Website is opened is smooth, the Provider’s server stores the IP address of the Data Subject in so-called log files. 

The identification and storage of the IP address are necessary for the protection of the Provider’s IT systems and the secure operation of the Website. Protection against possible malicious activity against the Website is ensured in part by the fact that the Provider logs the operation of the Website and lists in this log the IP addresses from which requests are sent to its servers. If the Provider detects any activity from an IP address that interferes with the secure operation of the Website, it will place the IP address on a block list. It is used to prevent and legally settle any malicious activity. If nothing abnormal has occurred, the Server deletes the log files and the IP addresses with them. IP addresses stored in log files will not be used by the Provider for any other purpose and will be automatically deleted within 30 days, and will only be retained by the Provider if the IP address concerned has been used for any prohibited activity. These activities are either one of the activities listed above or other activities that violate the rules of local, state, national or international law.

IV.2. Registration

In order to place an order, the Partner must register on the Website, whereby the Partner can create his/her own password-protected user account. The Service Provider processes the following personal data in connection with the Registration.

Scope of processed data Purpose of processing Legal basis for processing Duration of processing
First and last name of the Partner’s contact person Identification of the Partner, conclusion and performance of the contract Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
E-mail address of the Partner’s contact person Identifying the Partner, concluding and performing the contract, contacting the Partner, logging into the account Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Telephone number of the Partner’s contact person Identification of the Partner, conclusion and performance of the contract, communication Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Position of the Partner’s contact person Verification of the authority of the person designated as contact person by the Partner Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Password set by the Partner’s contact person Identifying the Partner, concluding and performing the contract, contacting the Partner, logging into the account Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Time of Registration Proof of the conclusion and time of conclusion of the contract Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)

Registration requires providing the above data of the Partner’s contact person, as these data are essential for the maintenance of the Partner relationship and for the performance of the contract by the Provider.

However, to access the user account, you will only need the e-mail address you entered during Registration and the password you set. 

IV.3. Request for quotation

The Provider provides several channels to the Data Subjects to request a quotation for the services and products sold by the Provider, including the possibility to request a quotation by e-mail or by using the contact form placed on the Website.

IV.3.1. Request for quotation by e-mail

If the Data Subject wishes to contact the Provider by e-mail, he/she may do so by sending a message to the e-mail addresses shown on the Website. The Provider draws the attention of the Data Subject to that by sending an e-mail, in addition to the data indicated below, additional personal information may be unintentionally shared, as the e-mail sent contains the e-mail address of the Data Subject, as well as the name entered in the e-mail client and the name that is to be displayed in each e-mail. If you think it would be easier to contact us by sending us your telephone number, the Provider will be happy to receive it. In addition to the above, you may also share your social media contact details with the Provider in case your “signature” in your e-mail contains this information. If this is the case, the Provider will process data of such type as well. By sending this information by e-mail, the Provider presumes your voluntary consent to the processing of the data.

Scope of processed data Purpose of processing Legal basis for processing Designation of legitimate interest Duration of processing
First and last name of the Data Subject Identification of the Data Subject, execution of the request Legitimate interest  The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the e-mail in order to be able to refer to our previous offer as a reference in a subsequent procedure.
E-mail address of the Data Subject Identification of the Data Subject, execution of the request Legitimate interest The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the e-mail in order to be able to refer to our previous offer as a reference in a subsequent procedure.
Telephone number of the Data Subject Contacting Legitimate interest The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the e-mail in order to be able to refer to our previous offer as a reference in a subsequent procedure.
Any social media contact details provided by the Data Subject in his/her “signature Consent Until the consent is withdrawn or 3 years from the date of receipt of the e-mail in order to be able to refer to our previous offer as a reference in a subsequent procedure.

In the case of a request for quotation sent by e-mail, the Provider will process the telephone number of the above data only if the Data Subject has included it in the request. 

IV.3.1. Request for quotation via the contact form on the Website

If the Data Subject contacts the Provider via the contact form on the Website and requests a quotation, the following personal data will be processed.

Scope of processed data Purpose of processing Legal basis for processing Designation of legitimate interest Duration of processing
First and last name of the Data Subject Identification of the Data Subject, execution of the request Legitimate interest  The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the message in order to be able to refer to our previous offer as a reference in a subsequent procedure.
E-mail address of the Data Subject Identification of the Data Subject, execution of the request Legitimate interest The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the message in order to be able to refer to our previous offer as a reference in a subsequent procedure.
Telephone number of the Data Subject Contacting Legitimate interest The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the message in order to be able to refer to our previous offer as a reference in a subsequent procedure.
Name of the company represented by the Data Subject  Identification of whether the Data Subject is contacting the Provider on behalf of a company or as an individual Legitimate interest The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships 3 years from the date of receipt of the message in order to be able to refer to our previous offer as a reference in a subsequent procedure.
Message ID In relation to the request for quotation, identification of the Data Subject and the request Legitimate interest Linking to a given Data Subject and proper identification of the request, quality assurance 3 years from the expiry of the binding effect of the quotation

The name of the company represented by the Data Subject is processed by the Provider only if the Data Subject requests a quotation on behalf of a company, the provision of this data is optional. 

In the case of a request for a quotation by using the form, the Provider adds an identification number to the request for a quotation sent by the Data Subject for the sake of identification and manageability, which is albeit not provided by the Data Subject to the Provider but is processed by the Provider in relation to the Data Subject and, thus, constitutes personal data under the GDPR. 

Whichever method the Data Subject chooses to request a quotation or contact the Provider, the Provider hereby requests the Data Subject to share only the most necessary data and information with the Provider at that time when you wish to contact the Provider, given that the Provider cannot limit the personal data sent by each Data Subject to the Provider, and in no case should you share with the Provider any personal information beyond the above in your e-mail or the contact form, in particular, if the Provider does not explicitly and specifically request it from the Data Subject. The Provider will delete any unsolicited personal data without delay and will not be liable for any damages.

IV.4. Orders

Scope of processed data Purpose of processing Legal basis for processing Duration of processing
First and last name of the Partner’s contact person Identification of the Partner, performance of the contract Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
E-mail address of the Partner’s contact person Identification of the Partner, performance of the contract, communication Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Telephone number of the Partner’s contact person Identification of the Partner, performance of the contract, communication Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)

If the Partner places an order with the Provider, the above data will be processed in connection with the order in order to fulfill it. The above data have already been provided to the Provider by the person designated by the Partner during the Registration process, and the Provider will also process them in connection with the order. 

IV.5. Shipping

Scope of processed data Purpose of processing Legal basis for processing Duration of processing
First and last name of the Partner’s contact person / Data Subject Identification of the Partner / Data Subject, performance of the contract, data required for delivery Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
E-mail address of the Partner’s contact person / Data Subject Identification of the Partner / Data Subject, performance of the contract, communication, data required for shipping Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Telephone number of the Partner’s contact person / Data Subject Identification of the Partner / Data Subject, performance of the contract, communication, data required for shipping Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Address / delivery address of the Data Subject Performance of the contract, data required for delivery Performance of the contract Until the end of the 5th year after the termination of the contract (general limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)

Processing of the above data is necessary for the Provider or a third party commissioned by it to deliver the ordered Products. 

IV.6. Contract-related communication

Scope of processed data Purpose of processing Legal basis for processing Designation of legitimate interest Duration of processing
First and last name of the Partner’s contact person  Communication for the performance of the contract Legitimate interest Disclosure of information to the Partner to perform the contract Until an objection to the processing is raised or a new contact person is appointed but, for asserting a claim, at the latest by the end of the 5th year after the termination of the contract (limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
E-mail address of the Partner’s contact person Communication for the performance of the contract Legitimate interest Disclosure of information to the Partner to perform the contract Until an objection to the processing is raised or a new contact person is appointed but, for asserting a claim, at the latest by the end of the 5th year after the termination of the contract (limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)
Telephone number of the Partner’s contact person Communication for the performance of the contract Legitimate interest Disclosure of information to the Partner to perform the contract Until an objection to the processing is raised or a new contact person is appointed but, for asserting a claim, at the latest by the end of the 5th year after the termination of the contract (limitation period for claims, Section 6:22(1) of the Hungarian Civil Code)

If a contractual relationship has been established between the Provider and its Partner, the personal data of the person designated by the Partner for communication, as detailed above, will be included in the contract concluded. In these cases, the legal basis for processing is the legitimate interest of the Provider, and the purpose is to provide information and other communications to the Partner in connection with issues that may arise during the contractual relationship. Partners acknowledge that it is the Partner’s duty and responsibility to obtain the consent of the person designated for communication to provide his/her data to the Provider.

The Provider will only process the above-mentioned data as personal data if the e-mail address provided contains the name of a natural person. If the e-mail address provides is in a general format (e.g., info@példa.hu or penzugy@példa.hu), the Provider will process the data, but the data will not be considered personal data.

IV.7. Payment and billing

IV.7.1 If the invoice for the consideration payable for the Products distributed by the Provider is issued to a legal person, the Provider will process the following personal data.

Scope of processed data Purpose of processing Legal basis of processing Duration of processing
E-mail address of the Partner’s contact person Sending invoice to the Partner Fulfilling a legal obligation Until the termination of the contract or erasure requested by the Partner

The Provider will process the e-mail address as personal data only if the e-mail address specified by the Partner for communication contains a natural person’s name. If the e-mail address provides is in a general format (e.g., info@példa.hu or penzugy@példa.hu), the Provider will process the data, but the data will not be considered personal data.

IV.7.2. If the invoice for the payment of the consideration for the Products distributed by the Provider is issued to a natural person or a sole trader, the Provider will process the following personal data:

Scope of processed data Purpose of processing Legal basis of processing Duration of processing
First name and last name of the Data Subject  Billing Fulfilling a legal obligation 8 years, as specified in Section 169(2) of Act C of 2000 on Accounting
Address / registered office address (billing address) of the Data Subject Billing Fulfilling a legal obligation 8 years, as specified in Section 169(2) of Act C of 2000 on Accounting
Tax number of the Data Subject Billing Fulfilling a legal obligation 8 years, as specified in Section 169(2) of Act C of 2000 on Accounting
E-mail address of the Data Subject Sending invoice to the Partner Fulfilling a legal obligation Until the end of the 5th year after sending the invoice (limitation period for claims, Section 6:22(1) of the Civil Code)

The mandatory data content of invoices and the duration of storage of invoices are prescribed by law, so the Provider processes these data in order to fulfill its legal obligations.

If the invoice is not sent to the Data Subject other than by e-mail, the Provider does not request or process this data.

IV.8. Contacting and customer service

To provide assistance to the Partners and the Data Subjects about the service provided and the Products sold by the Provider, the Provider enables them to contact the Provider, even without having a contractual relationship with the Provider, by e-mail or through the contact form on the Website. 

IV.8.1. For e-mail inquiries

If the Partner or the Data Subject contacts the Provider on the email">email e-mail address, the following data must be processed in order for the Provider to be able to fulfill the request with appropriate quality assurance:

Scope of processed data Purpose of processing Legal basis for processing Designation of legitimate interest Duration of processing
First name and last name of the Partner’s contact person / Data Subject Identification of the Data Subject / Data Subject, responding to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry
E-mail address of the Partner’s contact person / Data Subject Identification of the Data Subject / Data Subject, responding to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry
Telephone number of the Partner’s contact person / Data Subject Identification of the Data Subject / Data Subject, responding to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry
Any social media contact details provided by the Partner’s contact person / Data Subject in his/her “signature Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry

Of the above data, providing the telephone number is optional, so it will only be processed if the Data Subject has provided it to the Provider.

IV.8.2. When using the contact form placed on the Website

Scope of processed data Purpose of processing Legal basis for processing Designation of legitimate interest Duration of processing
First name and last name of the Partner’s contact person / Data Subject Identification of the Data Subject / Data Subject, responding to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry
E-mail address of the Partner’s contact person / Data Subject Identification of the Data Subject / Data Subject, responding to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry
Telephone number of the Partner’s contact person / Data Subject Identification of the Data Subject / Data Subject, responding to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) The legitimate interest of the Provider to provide its service at an adequate level and its legitimate interest to establish new business relationships Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry
Message identifier Identification of the Partner’s contact person / Data Subject in relation to the inquiry Performance of the contract (in case of an existing business relationship) / Legitimate interest (without an existing business relationship) Linking the inquiry to and proper identification of the Partner, Data Subject, quality assurance Until an objection to the processing is raised or, for quality assurance reasons, for 6 months of receipt of the inquiry

Of the above data, providing the telephone number is optional, so it will only be processed if the Data Subject has provided it to the Provider.

IV.9. Notification of withdrawal

If the Data Subject is considered a consumer within the meaning of the applicable legislation and if the Data Subject is entitled to enforce his/her consumer rights against the Provider and not against the Provider’s reseller partner, and if he/she exercises his/her right of withdrawal towards the Provider as a distributor in relation to the Product ordered from the Provider, provision of the following personal data is mandatory.

Scope of processed data Purpose of processing Legal basis for processing Duration of processing
First and last name of the Data Subject Identification of the Data Subject Fulfillment of legal obligation under Section 20(1) of Government Decree 45/2014. (II. 26.) For a maximum of 14 days after receipt of the notice of withdrawal by the Provider in accordance with Section 23(1) of Government Decree 45/2014. (II. 26.) 
Address / billing address of the Data Subject Identification of the Data Subject Fulfillment of legal obligation under Section 20(1) of Government Decree 45/2014. (II. 26.) For a maximum of 14 days after receipt of the notice of withdrawal by the Provider in accordance with Section 23(1) of Government Decree 45/2014. (II. 26.)
Bank account number of the Data Subject To refund the consideration paid by the Data Subject Fulfillment of legal obligation under Section 20(1) of Government Decree 45/2014. (II. 26.) For a maximum of 14 days after receipt of the notice of withdrawal by the Provider in accordance with Section 23(1) of Government Decree 45/2014. (II. 26.)
E-mail address of the Data Subject Identification of the Data Subject, sending confirmation Fulfillment of legal obligation under Section 20(1) of Government Decree 45/2014. (II. 26.) For a maximum of 14 days after receipt of the notice of withdrawal by the Provider in accordance with Section 23(1) of Government Decree 45/2014. (II. 26.)

The Provider will process the e-mail address of the Data Subject only if the Data Subject sends the notice of withdrawal other than by post.

Providing the Data Subject’s bank account number is necessary to enable the Provider to refund to the Data Subject the value of the products ordered by the Data Subject but affected by the withdrawal.

IV.10. Enforcement of warranty rights, guarantee

If the Data Subject is considered a consumer within the meaning of applicable legislation and if the Data Subject is entitled to enforce his/her consumer rights against the Provider and not against the Provider’s reseller Partner, and if he/she wishes to enforce a warranty claim against the Provider as a distributor, provision of the following personal data is necessary.

Scope of processed data Purpose of processing Legal basis for processing Duration of processing
First and last name of the Data Subject Identification of the Data Subject Fulfillment of legal obligations under Sections 6:159(1) and 6:168(1) of Act V of 2013 on the Civil Code Until the end of the limitation period of the warranty claim, i.e., two years from the date of performance (Section 6:163(2) of Act V of 2013 on the Civil Code)

With regard to guarantee, the guarantee period is 1 year for products with a sales price of not less than HUF 10,000 but not exceeding HUF 100,000, 2 years for products with a sales price exceeding HUF 100,000 but not exceeding HUF 250,000, and 3 years for products with a sales price exceeding HUF 250,000, or until the time of extension provided by law (Sections 2(1) and (4) of Government Decree 151/2003. (IX. 22.) on mandatory guarantee for certain consumer durables) 

 

Address / billing address of the Data Subject Identification of the Data Subject Fulfillment of legal obligations under Sections 6:159(1) and 6:168(1) of Act V of 2013 on the Civil Code Until the end of the limitation period of the warranty claim, i.e., two years from the date of performance (Section 6:163(2) of Act V of 2013 on the Civil Code)

With regard to guarantee, the guarantee period is 1 year for products with a sales price of not less than HUF 10,000 but not exceeding HUF 100,000, 2 years for products with a sales price exceeding HUF 100,000 but not exceeding HUF 250,000, and 3 years for products with a sales price exceeding HUF 250,000, or until the time of extension provided by law (Sections 2(1) and (4) of Government Decree 151/2003. (IX. 22.) on mandatory guarantee for certain consumer durables)

Telephone number of the Data Subject Notification of the Data Subject of the assessment of the warranty claim Fulfillment of legal obligations under Sections 6:159(1) and 6:168(1) of Act V of 2013 on the Civil Code Until the warranty/guarantee claim has been assessed or the User has been notified thereof
E-mail address of the Data Subject Notification of the User of the assessment of the warranty claim Fulfillment of legal obligations under Sections 6:159(1) and 6:168(1) of Act V of 2013 on the Civil Code Until the warranty/guarantee claim has been assessed or the User has been notified thereof

Providing the Data Subject’s telephone number or e-mail address is necessary to enable the Provider to inform the Data Subject of the assessment of his/her warranty claim. However, it is sufficient to provide one of the two data, at the choice of the Data Subject.

IV.11. Handling consumer complaints

If the Data Subject as a consumer has a complaint against the Provider as a distributor of the Products sold by the Provider, the following data may be processed:

Scope of processed data Purpose of processing Legal basis for processing Duration of processing
First and last name of the Data Subject Identification of the Data Subject, mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)a) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Address of the Data Subject  Identification of the Data Subject, mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)a) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Telephone number of the Data Subject Identification of the Data Subject, mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)b) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
E-mail address of the Data Subject Identification of the User, mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)b) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Place, time and manner of lodging the complaint Mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)b) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Detailed description of the Data Subject’s complaint, a list of the documents and other proof presented by the consumer Mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)c) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Signature of the Data Subject (in case the complaint is lodged in person) Mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)e) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Place and time of recording of the minutes Mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)f) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)
Unique identification number of the complaint (for complaints made by telephone or electronically) Mandatory content of the minutes recorded about the complaint Fulfillment of legal obligations under Section 17/A(5)g) of Act CLV of 1997 on Consumer Protection 3 years from the date of recording the minutes about the complaint (Section 17/A(7) of Act CLV of 1997 on Consumer Protection)

The Provider draws the attention of the Partners and the Data Subjects to that the Partners and the Data Subjects are responsible for the truthfulness and accuracy of the personal data provided, as the Provider does not have control over it. If the person designated by the Partner or the Data Subject provides false or inaccurate information, the Provider shall not be liable for any resulting delay or damage. If the person designated by the Partner or the Data Subject becomes aware that the personal data provided by him/her is inaccurate, he/she has the right to have the data clarified, rectified or modified. If the Partner or the Data Subject notices the latter, he/she can modify his/her data in his/her Partner profile or request clarification, rectification or modification of his/her data from the Provider at the email">email e-mail address.

The Provider also draws the attention of the Partners and the Data Subjects to that if the Partner or the Data Subject provides the Provider with any personal data in addition to those specified in Clauses IV.1. to IV.11. above, the Provider will immediately render them unrecognizable and irretrievably delete them, and excludes its liability with regard to the data that the Partner and/or the Data Subject voluntarily provided to the Provider without the Provider’s request.

V. WHAT IS A COOKIE AND WHY DO WE USE IT?

A cookie is a data packet that is sent to your computer by the web server when you visit our website and is stored there for a certain time, depending on the type of cookie.

Cookies do not pose any security risk to your computer and do not cause any disruption to its operation.

To ensure the smooth use of the Website, certain cookies (known as session cookies) are automatically installed on your computer when you visit the Website. The purpose of such cookies is to guarantee the security of the Website, to store the data recorded in our online forms, to display multimedia content and to balance the load on the Website. We process the personal data collected through the use of these cookies (in particular, the IP address of your computer) on the basis of our legitimate interest in the secure and smooth operation of the Website, for no longer than the time you are staying on our Website. When you close the browser, they are automatically deleted from your computer.

Based on your consent given on the Website, the following types of cookies may be installed on your computer for the following purposes:

  • Technically necessary session cookies: without which the site would simply not function. They are needed to identify you as a Partner, for example, to manage whether you have logged in, what you have added to your shopping cart in an online shop, etc. This is typically the storage of a session-id, while the rest of the data is stored on the server, which is more secure. There is a security implication: if the “value” of the session cookie is not generated correctly, there is a risk of session hijacking attack, so it is imperative that these values are generated correctly. Other terminology call all cookies session cookies, which are deleted when you exit the browser (a session is a browser session from start to exit).
  • Cookies for statistical purposes and for web analytics measurements (e.g., Google Analytics). These are important to us because they allow us to know the characteristics of our visitors (IP address, city, type of the device, browser, operating system you use, and the subpages of our website you have visited and the time you spent on them). We use the anonymous data to generate general statistics and reports on the number of visitors to the Website, to improve it and to improve our marketing strategy.

You can find out more about Google Analytics cookies here:

https://deve1opers.google.com/ana1ytics/deguides/co1lection/ana1yticsjs/cookie-usage     

  • Cookies for remarketing purposes (e.g., Google Adwords), which allow us to analyze how you use our website and, accordingly, display personalized content and advertisements to you, even on online platforms other than our website (e.g., other websites or social media).

You can find out more about Google AdWords cookies here:

https://support.google.com/adwords/answer/2407785?h1=hu 

In addition, we distinguish between session cookies (the technically essential session cookies mentioned above) and persistent cookies. A cookie valid for one session only lasts until the Data Subject closes the browser. Persistent cookies are persistent and are not automatically deleted when you close your browser. Persistent cookies help the site work faster, remembering things that the data subject has set for himself/herself on the Website.

You may withdraw your consent at any time, free of charge and without restriction, by revisiting the Website by clicking on the pop-up window that appears when the Website is loaded.

Accepting or authorizing the use of cookies is not mandatory. You can reset your browser settings to reject all cookies or to prompt you when the system is sending a cookie. You can also manage cookies in your browser settings. The settings depend on the type of browser.

You can find out about cookie settings in the most popular browsers by following the links below:

During the visit to the Website, the Provider may record and process the following data about the Data Subject as a visitor to the Website and the device used for browsing:

  • IP address of the device used by the visitor,
  • Type of browser used,
  • Operating system features of the device used for browsing (e.g., language set),
  • Time of visit,
  • Subpage, feature or service visited,
  • Click
VI. HOW CAN YOU WITHDRAW YOUR CONSENT IN THE CASE OF PROCESSING BASED ON CONSENT?

Where the legal basis for processing under this Notice is the consent of the Data Subject, the Data Subject has the right to withdraw consent. Withdrawal of consent can take place in different ways depending on the purposes of the processing. You can withdraw your consent granted during browsing at any time, free of charge and without restriction, by revisiting the Website by clicking on the pop-up window that appears when the Website is loaded. In addition, if it is not possible to withdraw consent in the previous way, you can withdraw your consent by sending a message to the email">email e-ail address or by sending a letter to the Provider’s registered address or, in the case of subscribing to a newsletter, by clicking on the “Unsubscribe” button at the bottom of the letter.

Please note that the withdrawal of consent does not affect the lawfulness of the processing prior to the withdrawal. 

VII. WHERE AND HOW DO WE STORE YOUR DATA?

VII.1. Website hosting

The Provider uses the server services of Tárhely.eu, whose servers are located in Budapest, Hungary, i.e., within the European Union, for the electronic storage of its Website and the data provided through it. Contact details of Tárhely.eu:

Company name: Tárhely.Eu Szolgáltató Korlátolt Felelősségű Társaság

Registered office: 1144 Budapest, Ormánság utca 4. X. em. 241.

Postal address: 1538 Budapest, Pf.: 510.

Company registration number: 01-09-909968

Tax number: 14571332-2-42

E-mail: email">email 

Telephone number +36 1 789 2789

Represented by: Zoltán László Kárpáti, managing director

(hereinafter referred to as “Tárhely.eu”)

The data protection notice of Tárhely.eu is available at the following link: https://tarhely.eu/dokumentumok/adatvedelmi_szabalyzat.pdf 

Tárhely.eu ensures the protection of data on several levels, including keeping servers in a locked room, monitored by security guards and technicians 24 hours a day, 365 days a year, restricting access to the server rooms among its employees, security locks on the server rooms, and an alarm system operating in the server rooms. It protects against possible power outages with uninterruptible power supplies, the servers are firewall-protected and encryption is applied for any data transfer from the servers. Tárhely.eu also has several international certificates proving the adequacy of protection. Further information on the protection mechanisms applied by Tárhely.eu is available in the data protection notice referred to above. 

Notwithstanding the above, the Provider is not be liable for any damage or destruction of or unauthorized access to the data in the event of technical failure, natural disaster, terrorism or crime.

VII.2. Google Drive

The Provider stores certain data electronically using Google’s Google Drive hosting service. Google’s contact details:

  • Company name: Google Ireland Ltd
  • Registered office: Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland
  • Registration number: 368047
  • Represented by: Elizabeth Margaret Cunningham, director
  • Telephone number: +353 1 436 1000
  • Server center: Dublin, Ireland

(hereinafter referred to as “Google”) 

Google processes your data within the European Union on its servers in Dublin, i.e., within the European Union. Google may not access, modify, delete, use or otherwise process any data stored by Google on servers provided by Google in connection with the Partners and the Data Subjects. For more information about Google’s processing practices, please visit: https://policies.google.com/privacy/frameworks 

If for any reason Google processes personal data outside the European Union, the Partner’s and Data Subject’s data will still be protected by the GDPR, subject to the European Commission’s adequacy decision on EU-US data flows.

Google protects data at several levels, such as physically protecting the servers that store the data, which are kept in a locked location and monitored by security guards and technicians, restricting access to server rooms among its employees, using uninterruptible power supplies and other advanced tools at the infrastructure level, restricting access at the data level, continuous monitoring of the system, encryption and firewall protection. Google’s privacy policy is available at https://policies.google.com/privacy .

VII.3. Data storage in the office management system

The Provider stores certain data related to its business, such as Partners’ contact details, in the cloud-based administration and sales and customer relationship management system called Pipedrive, whose provider is:

  • Company name: Pipedrive OÜ
  • Registered office: Mustamäe tee 3a, Tallinn, 10615, Estonia
  • Registration number: 11958539
  • Tax number: EE101382096
  • Represented by: Timo Rein, director
  • E-mail: email">email, email">email 
  • Telephone: +37 2577 04478
  • Server center: Frankfurt, Germany

(hereinafter referred to as “Pipedrive”) 

Pipedrive’s data protection notice is available at https://www.pipedrive.com/en/privacy .

VIII. DATA SUBJECT’S RIGHTS IN RELATION TO PROCESSING

Request for information (right of access): You can ask us for information about the processing of your personal data at any time in person at our registered office, or in writing by registered mail or mail with notice of receipt sent to the address of our registered office or by e-mail to the  email">email e-mail address.

Under Article 15(1) of the GDPR, the request for information may cover the data processed, their source, the purposes, legal basis and duration of the processing, the names and addresses of any data processors, the activities related to the processing and your rights in relation to the processing. In the case of a transfer, who has received or is receiving your data and for what purposes.

A request for information is considered authentic if you can be clearly identified from the request. If the request is made by e-mail or post, only e-mails sent from an e-mail address registered with us will be considered authentic and we will only be able to send information to the postal address registered with us. Unless you voluntarily verify your identity in another way, we cannot send information to an e-mail or postal address that is not registered in our records, in order to protect the security of your data.

Rectification: You may also request the rectification, modification or supplementation of your data at any time by using the methods described above. Again, this can only be done on the basis of a request from a credible source presented at the time of the request for information.

Restriction: In particular, you may request that we restrict the processing of your personal data if:

a) You contest the accuracy of the personal data processed. In this case, the restriction applies for the period during which the accuracy of the data is verified.
b) We no longer have a legal basis for processing the data, but you request in writing that we retain them for a limited period for the establishment, exercise or defense of legal claims.

Right to object: If we process your personal data based on legitimate interest under this notice, you may object to the processing of your personal data at any time. In such cases, we will examine the lawfulness of your objection and, if we find that the objection is justified, we will stop the processing and notify the objection and the action taken on it to any third parties to whom the personal data to which the objection relates may have been previously disclosed.

Erasure (“Right to be forgotten”): You may request us to erase your personal data at any time on any of the grounds set out in Article 17(1) of the GDPR.

We may refuse to erase the personal data if we are required by law to process it or if it is necessary for the exercise of our legal claims. In any case, you will be informed of any refusal to erase your data. Once erased, the erased data can no longer be restored.

Transfer of personal data (Data portability): You can ask us at any time to transfer your personal data in a structured, commonly used, machine-readable format or to transmit them to another controller.

We ask you not to exercise the above rights inappropriately, but only if there is a real basis for doing so or if one of the conditions set out in the GDPR is actually met.

IX. ACCESS TO PERSONAL DATA, DATA TRANSFER

IX.1. Correspondence (e-mail)

The Provider uses Google Inc.’s Gmail GSuites business service for communicating by e-mail.  For detailed information about Google, please see Section VII.2 of this Notice.

IX.2. Shipping

If the ordered Products are delivered other than by the Provider, the Provider uses the services of GLS courier service, whose contact details are:

  • Company name: GLS General Logistics Systems Hungary Csomag-Logisztikai Korlátolt Felelőssségü Társaság
  • Registered office: 2351 Alsónémedi, GLS Európa utca 2.
  • Company registration number: 13-09-111755
  • Tax number: 12369410-2-44
  • Represented by: Krisztina Éva Tarnóczi and Gergely Farkas, managing directors, and György Oreskó and Attila Csaba Balázs, company directors
  • Telephone number: +36 29 886 670
  • Facsimile: +36 29 886 610
  • E-mail: email">email  
  • Web: https://gls-group.eu/HU/hu/home  
  • Data protection officer’s name: Dr. Rita Katona
  • Contact details of the data protection officer: email">email 

(hereinafter referred to as “GLS”)

The data protection notice of GLS is available here: https://gls-group.eu/HU/hu/adatkezelesi-tajekoztato

IX.3. Invoice-related data transmission

The Provider issues its invoices using one of the largest online billing software in Hungary, szamlazz.hu. If the Data Subject is a natural person or a sole trader, since his/her billing data are considered personal data, as described above, they are subject to processing by the Provider. Operator of the szamlazz.hu website:

  • Company name: KBOSS.hu Kereskedelmi és Megbízott Korlátolt Felelősségű Társaság
  • Registered office: 1031 Budapest, Záhony utca 7.
  • Company registration number: 01-09-303201
  • Registered by: Court of Registration of the Regional Court of Budapest
  • Tax number: 13421739-2-41
  • E-mail: email">email  
  • Represented by Balázs Ángyán, managing director

(hereinafter referred to as “KBOSS”)

KBOSS has a GDPR-compliant data protection policy, available at the https://www.szamlazz.hu/adatvedelem/ link.

IX.4. Payment-related data transmission

If the Partner or the Data Subject makes any payment to the Provider, the payments will be received on the Provider’s bank account kept with CIB Bank Zrt., whose contact details are as follows:

  • Company name: CIB Bank Zrt.
  • Registered office: 1024 Budapest, Petrezselyem utca 2-8.
  • Company registration number: 01-10-041004
  • Tax number: 10136915-4-44
  • E-mail address: email">email 
  • Telephone number: +36 1 424 2242
  • Contact details of the data protection officer: mailing address: 1024 Budapest, Petrezselyem utca 2-8., telephone number: +36 1 423 1112, e-mail: email">email)

(hereinafter referred to as “CIB Bank”)

CIB Bank’s data protection notice is available at the https://www.cib.hu/Maganszemelyek/tajekoztatok/adatkezelesi-tajekoztatok.html link.

IX.5. Data transmission in connection with accounting

To the company below, performing accounting services for the Provider:

IX.5.1. Meyer & Levinson Kft.

  • Company name: Meyer & Levinson Korlátolt Felelősségű Társaság
  • Registered office: 1052 Budapest, Deák Ferenc tér 3. (MEYER & LEVINSON floor)
  • Company registration number: 01-09-902076
  • Registered by: Court of Registration of the Regional Court of Budapest
  • Tax number: 14398209-2-41
  • Represented by: Zoltán István Kristó, managing director
  • E-mail address: email">email  

IX.5.2. Meyer & Levinson Accounting Kft.

  • Company name: Meyer & Levinson Accounting Korlátolt Felelősségű Társaság
  • Registered office: 1052 Budapest, Deák Ferenc tér 3. (MEYER & LEVINSON floor)
  • Company registration number: 01-09-928027
  • Tax number: 14964303-2-41
  • Registered by: Court of Registration of the Regional Court of Budapest
  • Represented by: Zoltán István Kristó, managing director
  • E-mail address: email">email  

IX.5.3. Riport Applications Kft.

  • Company name: Riport Applications Korlátolt Felelősségű Társaság
  • Registered office: 1052 Budapest, Deák Ferenc tér 3. (MEYER & LEVINSON floor)
  • Company registration number: 01-09-982509
  • Registered by: Court of Registration of the Regional Court of Budapest 
  • Tax number: 23878149-2-41
  • Represented by: Zoltán István Kristó, managing director
  • E-mail: email">email 
  • Web: https://www.quick.riport.app/ 

(hereinafter referred to as “Riport”)

Riport’s data protection notice is available here: https://www.helloquick.riport.app/adatvedelem

IX.6. Data transmission in relation to complaint handling

In the event of a consumer dispute between the Provider and the Data Subject, the data of the Data Subject may be forwarded to the consumer protection arbitration board competent for the registered office of the Service Provider, whose contact details are as follows:

  • Name: Hajdú-Bihar Vármegyei Békéltető Testület (Hajdú-Bihar County Arbitration Board) 
  • Registered office: 4025 Debrecen, Vörösmarty u. 13-15.
  • Represented by: Dr. Zsolt Hajnal, chairman
  • Telephone number: +36 52 500 710, +36 52 500 745
  • E-mail: email">email  
  • Web: https://www.hbmbekeltetes.hu/ 

(hereinafter referred to as “Arbitration Board”)

In addition to the above, if legal proceedings are initiated related to the consumer dispute, the data may also be transmitted to the court in charge.

IX.7. Data transfers related to the enforcement of claims

If the Provider wishes to enforce a legitimate claim, it may transmit documents that contain personal data. The Provider is entitled to transfer personal data to a legal representative, authority or court for the purpose of enforcing a claim.

X. WHAT THIRD-PARTY SOCIAL PLUG-INS CAN YOU FIND ON THE WEBSITE?

On the Website, we use plug-ins from social networking sites, i.e., third-party service providers, to provide feedback on our content and share our content. The plug-ins will only be activated if you explicitly click on the button, i.e., you allow the plug-in to connect to social networking sites. On the Website you will find plug-ins for the following social sites: Facebook, Instagram, LinkedIn, Youtube.

If you are logged in to any of these sites when you browse, that social networking site may associate your visit with your social networking account. If you click the appropriate button, your browser will transmit the relevant information directly to the relevant social networking site and store it there.

Information about the scope and purpose of data collection, the further processing and use of your data by the relevant social networking site, your rights and preferences regarding the protection of your personal data can be found in the data protection statements of the social networking sites, which are available at the links below:

Facebook: https://www.facebook.com/policy.php 

Instagram: https://privacycenter.instagram.com/policy 

LinkedIn: https://www.linkedin.com/legal/privacy-policy 

Youtube: https://policies.google.com/privacy

XI. TO WHOM AND IN WHAT CIRCUMSTANCES ARE WE OBLIGED TO DISCLOSE PERSONAL DATA?

We are obliged to disclose the personal data we process to the competent authority upon request by the authority. We cannot be held liable for any such transfer and the consequences thereof. You will always be informed about the transfer.

XII. WHAT RESPONSIBILITIES MAY ARISE IN RELATION TO THE PERSONAL DATA PROVIDED?

When you provide us with your personal data, you take responsibility for that the data and the consents are yours and that they are accurate.

Please only provide us with third-party data if you have been expressly authorized to do so by the third party. We are not liable for any claims arising from this.

If a third party raises a credible objection to the processing of personal data by providing proof of his or her identity, the personal data will be erased without delay and without any further notice to you. You should only provide third-party personal data if you have informed the third party of the availability of this Notice.

XIII. HANDLING OF PERSONAL DATA BREACH

In accordance with the law, we notify the supervisory authority of a data protection breach within 72 hours of becoming aware of it and we keep records of data protection breaches. In the cases provided for by law, we also inform the Data Subjects about the breach.

XIV. AMENDMENTS TO THE DATA PROCESSING NOTICE

If the scope of the data processed, the legal basis for processing or other circumstances change, we will amend this Notice in accordance with the GDPR within 30 days and publish it on the Website and notify the Data Subject of the change. Please always read the changes to the data processing notice carefully as they contain important information about the processing of your personal data.

XV. DATA PROTECTION OFFICER (DPO)

The designation of a DPO is mandatory under Article 37 of the GDPR where:

(a) processing is carried out by a public authority or other body, except for courts acting in their judicial capacity;

(b) the main activities of the controller or processor involve processing operations which, by their nature, scope and/or purposes, require systematic and large-scale monitoring of data subjects;

(c) the main activities of the controller or processor involve the processing of large amounts of data relating to special categories of personal data within the meaning of Article 9 and to decisions on criminal liability and criminal offenses referred to in Article 10.

Given that the Provider does not fall into any of the mandatory categories identified above and there is no other compelling reason, no data protection officer is appointed at the Provider.  

XVI. WHO CAN YOU CONTACT WITH QUESTIONS ABOUT YOUR PERSONAL DATA OR TO EXERCISE YOUR RIGHTS?

Data Subjects have the right to exercise their rights against the Provider as a controller in relation to the processing of their personal data. If the data subject wishes to exercise his/her rights, he/she must notify the Provider in the first instance. For any questions, please contact us at the email">email e-mail address.

If your rights are violated, you can lodge a complaint with the National Authority for Data Protection and Freedom of Information:

Name: Nemzeti Adatvédelmi és Információszabadság Hatóság (National Authority for Data Protection and Freedom of Information)
Registered office: 1055 Budapest, Falk Miksa utca 9-11.
Mailing address: 1363 Budapest, Pf.: 9.
Telephone: +36 1 391 1400
E-mail: email">email
Website: https://www.naih.hu/   

In the event of a legal dispute arising out of or in connection with this Notice, its breach, validity or interpretation, you may bring the dispute to the court competent under Act CXXX of 2016 on the Code of Civil Procedure (Code of Civil Procedure):

Name: Regional Court of Debrecen
Address: 4025 Debrecen, Széchenyi utca 9.
Mailing address: 4001 Debrecen, Pf. 131.

Telephone: +36 52 526 710
E-mail: email">email
Website: https://debrecenitorvenyszek.birosag.hu/ 

  • Perfectly adaptable to each work task

  • One cargo bike - for hundreds of tasks. Tailor your cargo bike to your needs, choosing from a wide range of options and accessories. Design your unique MASTIFF.

    Configurator