For visitors and registered users of the https://www.webergoline.hu website.

Introduction

The service provider/data controller, during the operation of the website, processes the data of individuals registered on the site for the purpose of providing them with appropriate services.

The service provider fully intends to comply with the legal requirements for the handling of personal data, especially those set forth in the Regulation (EU) 2016/679 of the European Parliament and of the Council.

This data processing information has been prepared based on Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, taking into account the contents of Act CXII of 2011 on Informational Self-Determination and Freedom of Information.

Service Provider, Data Controller

Company Name: Webergoline Kft.
Headquarters: 1123 Budapest, Győri út 2/C, 2. emelet 6.
VAT number: HU23889864
Website Name and address: https://www.webergoline.com
Data processing information accessibility (HUN): https://www.webergoline.hu/adatkezelesi_tajekoztato.pdf

Contact Information of the Data Controller

Company Name: Webergoline Kft.
Headquarters: 1123 Budapest, Győri út 2/C, 2. emelet 6.
Mailing Address: 1123 Budapest, Győri út 2/C, 2. emelet 6.
E-mail cím: contactkukacwebergoline.com
Telefonszám: +36 1 700 4170

Definitions

  • GDPR: (General Data Protection Regulation) is the new Data Protection Regulation of the European Union;
  • Data processing: any operation or set of operations performed on personal data or data files, whether automated or not, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction;
  • Data processor: any natural or legal person, public authority, agency, or other body which processes personal data on behalf of the data controller;
  • Personal data: any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person;
  • Data controller: the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the data controller or the specific criteria for its nomination may be provided for by Union or Member State law;
  • The data subject's consent: the data subject's voluntary, specific, informed, and unambiguous expression of will by which the data subject, through a statement or a clear affirmative action, signifies agreement to the processing of personal data relating to them;
  • Data protection incident: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored, or otherwise processed;
  • Recipient: the natural or legal person, public authority, agency, or another body to which the personal data are disclosed, whether a third party or not. Public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
  • Third party: a natural or legal person, public authority, agency, or body other than the data subject, data controller, data processor, and persons who, under the direct authority of the data controller or processor, are authorized to process personal data.

Data Processing Principles

The data controller declares that the processing of personal data is carried out in accordance with the provisions of this data processing information and complies with the relevant legal requirements, with particular attention to the following:
The processing of personal data must be lawful, fair, and transparent to the data subject.

The collection of personal data must only occur for specified, explicit, and legitimate purposes.

The purpose of data processing should be adequate and relevant, limited to what is necessary.

Personal data must be accurate and up-to-date. Inaccurate personal data must be erased without delay.

Personal data should be stored in a manner that allows identification of data subjects for no longer than necessary. Storage of personal data beyond this period may only occur for public interest archiving, scientific and historical research, or statistical purposes.

The processing of personal data should be conducted in a way that ensures appropriate security, including protection against unauthorized or unlawful processing, accidental loss, destruction, or damage, using appropriate technical or organizational measures.

The principles of data protection should be applied to any information relating to an identified or identifiable natural person.

Important Data Processing Information

The purpose of data processing is to provide additional services to the individuals registered on the website during its operation by the service provider/data controller.

The legal basis for data processing is the consent of the data subject.

The scope of data processing includes users registered on the website.

Duration of data processing and deletion of data: The duration of data processing is always dependent on the specific user's purpose, but data must be deleted immediately once the original purpose has been achieved. The data subject may withdraw their consent to data processing at any time by sending a letter to the contact email address. If there is no legal obstacle to deletion, then the data will be deleted.

Those entitled to access the data are the data controller and their employees.

The data subject may request access to their personal data from the data controller, as well as request the correction, deletion, or restriction of processing of their personal data, and may object to the processing of such personal data, and also has the right to data portability.

The data subject may withdraw their consent to data processing at any time; however, this does not affect the legality of data processing carried out based on consent before its withdrawal.

The data subject has the right to lodge a complaint with a supervisory authority.

If the data subject wishes to use the benefits provided by registration, i.e., to avail of the website's services in this regard, the provision of requested personal data is necessary. The data subject is not obliged to provide personal data, and the failure to provide data does not entail any adverse consequences. However, the use of certain functions of the website is not possible without registration.

The data subject has the right to request the data controller to rectify or complete their inaccurate personal data without undue delay.

The data subject has the right to request the data controller to delete their inaccurate personal data without undue delay, and the data controller is obliged to delete the personal data concerning the data subject without undue delay if there is no other legal ground for the data processing.

The modification or deletion of personal data can be initiated via email, phone, or letter using the contact options provided above.

Website Registration

The purpose of data processing is to provide additional services and contact.

The legal basis for registration data processing is your consent.

The scope of data processing includes users registered on the website.

Duration of data processing: Data processing occurs until the withdrawal of consent. You may withdraw your consent to data processing at any time by sending a letter to the contact email address.

The deletion of data occurs when the consent to data processing is withdrawn. You may withdraw your consent to data processing at any time by sending a letter to the contact email address.

Those entitled to access the data are the data controller and their employees.

The method of data storage: electronic.

Modification or deletion of personal data can be initiated via email, phone, or letter using the contact options provided above.

The provision of personal data is absolutely necessary for identification in databases and for contact. The accurate company name and address are required for invoicing, which is a legal obligation.

Scope of Processed Data Specific Purpose of Data Processing
Name Identification, contact, invoicing.
Company name Identification, contact, invoicing.
Address Identification, contact, invoicing.
E-mail Identification, contact.
Phone Number Identification, contact.
Date of Registration Technical informational operation.
IP Address Technical informational operation.

The user can give their consent to data processing by intentionally checking the designated empty checkbox on the website.

As a data subject, you have the right to object to the processing of your personal data, in this regard, you are entitled to the procedures detailed in the above data processing information and this information notice, as well as the laws outlined in the information notice.

Newsletter Sending

As the website operator, we declare that we fully comply with the relevant legal provisions in the information and descriptions we publish. Furthermore, we declare that we are unable to verify the authenticity of contact details upon newsletter subscription and cannot determine whether the provided data relates to an individual or a business. Businesses that contact us are treated as customer partners.

The purpose of data processing is to send professional summaries, electronic messages containing advertisements, information, newsletters, from which you can unsubscribe at any time without consequences. You can unsubscribe without any consequences even if your business has ceased, you have left the business, or someone has shared your contact details with us.

The legal basis for data processing is your consent. We inform you that the user can expressly and priorly consent to being contacted by the service provider with promotional offers, information, and other mailings to the email address provided at registration. Consequently, the user can consent to the service provider processing the necessary personal data for this purpose.

We inform you that if you wish to receive a newsletter from us, you are obliged to provide the necessary data. If you fail to provide the data, we cannot send you a newsletter.

Duration of data processing: Data processing occurs until the withdrawal of consent. You may withdraw your consent to data processing at any time by sending a letter to the contact email address.

The deletion of data occurs when the consent to data processing is withdrawn. You may withdraw your consent to data processing at any time by sending a letter to the contact email address.

Consent can also be withdrawn based on the link provided in the sent newsletters.

Those entitled to access the data are the data controller and their employees.

The method of data storage: electronic.

Modification or deletion of personal data can be initiated via email, phone, or letter using the contact options provided above.

Scope of Processed Data Specific Purpose of Data Processing
Name Identification, contact.
E-mail Identification, contact.
Date of Subscription Technical informational operation.
IP address Technical informational operation.

We inform you that neither the username nor the email address needs to contain personal identification data. For example, it is not necessary for the username or email address to include your name. You are completely free to decide if you want to provide a username or email address that contains information indicating your identity. The email address, which serves for contact, is absolutely necessary to ensure that the newsletter or professional information sent to you reaches its destination.

Cookies

Cookies are small files placed on the user's computer by visited websites, containing information such as page settings or login status.

Thus, cookies are small files created by visited websites. By saving browsing data, they enhance the user experience. Cookies help the website remember site settings and offer locally relevant content.

The service provider's website sends a small file (cookie) to the computers of website visitors in order to determine the fact and time of the visit. The service provider informs the visitor of this.

The scope of data processing includes the visitors of the website.

The purpose of data processing is additional service, identification, and tracking of visitors.

The legal basis for data processing: User consent is not necessary if the use of cookies is absolutely necessary for the service provider.

The scope of data: unique identifier, timestamp, settings data.

Users have the option to delete cookies at any time in their browser's settings menu.

Data controllers entitled to access the data: Data controllers do not process personal data with the use of cookies.

Method of data storage: electronic.

Social Media

Social media is a media tool where the message is spread through social network users. Social media uses the internet and online presence opportunities to transform users from content receivers to content creators.

Social media platforms are internet applications where user-generated content is found, such as Facebook, Google+, Twitter, Pinterest, etc.

Forms of social media presence can include public speeches, presentations, demonstrations, descriptions of products or services.

Forms of information presented on social media may include forums, blog posts, images, videos, audio materials, message boards, email messages, etc.

Accordingly, the scope of data processed may extend beyond personal data to include the user's public profile picture.

The scope of data subjects: all registered users.

The purpose of data collection is to promote the website or related services.

The legal basis for data processing is the voluntary consent of the data subject.

Duration of data processing: as per the regulations viewable on the respective social media site.

The deadline for data deletion: as per the regulations viewable on the respective social media site.

Those entitled to access the data: as per the regulations viewable on the respective social media site.

Rights related to data processing: as per the regulations viewable on the respective social media site.

Method of data storage: electronic.

It is important to note that when a user uploads or submits any personal data, they grant a worldwide valid permission to the social media site operator to store and use such content.

Therefore, it is very important to ensure that the user has full rights to publish the shared information.

Google Analytics

Our website uses Google Analytics.

Google Analytics compiles reports for its clients on website users' habits based on internal cookies.

On behalf of the website operator, Google uses the information to evaluate how users use the website. As an additional service, it creates reports related to website activity for the website operator, enabling the provision of further services.

Data is stored in encrypted form on Google's servers to hinder and prevent misuse of the data.

Disabling Google Analytics can be done as follows. Quote from the site: "Website users who do not want Google Analytics JavaScript to report on their data can install the Google Analytics opt-out browser add-on. The add-on prevents Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sending information to Google Analytics. The browser add-on is usable in most newer browsers. The Google Analytics opt-out browser add-on does not prevent data from being sent to the website itself and other web analytics services."
https://support.google.com/analytics/answer/6004245?hl=hu

Google's privacy policy: https://policies.google.com/privacy

Detailed information on data use and protection is available at the above links.

Detailed Data Protection: https://static.googleusercontent.com/media/www.google.com/en//intl/hu/policies/privacy/google_privacy_policy_hu.pdf

Microsoft Clarity

We partner with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replay to improve and market our products/services. Website usage data is captured using first and third-party cookies and other tracking technologies to determine the popularity of products/services and online activity. Additionally, we use this information for site optimization, fraud/security purposes, and advertising. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement.

Data Processors

Hosting Providers:

Name Websupport Magyarország Kft.
Headquarters H-1132 Budapest, Victor Hugo utca. 18-22.
E-mail info@ezit.hu
Phone Number +36 (1) 700 40 30

The data you provide are stored on servers operated by the hosting provider. Only our employees and those operating the server have access to the data, and they are all responsible for the secure handling of the data.

Activity Name: hosting service, server service.

Purpose of Data Processing: to ensure the operation of the website.

Processed Data: personal data provided by the data subject.

Duration of Data Processing and Deadline for Data Deletion: Data processing lasts until the end of the website's operation or as per the contractual agreement between the website operator and the hosting provider. The data subject can request the deletion of their data from the hosting provider if necessary.

Legal Basis for Data Processing: the consent of the data subject or data processing based on law.

Rights Related to Data Processing

  • Right to Information:
    You can request information from us through the provided contact details on what data of yours we process, on what legal basis, for what data processing purpose, from what source, and for how long. We will provide this information to your specified email address without delay, but no later than 30 days upon your request.
  • Right to Rectification:
    You can request us to modify any of your data through the provided contact details. We will act on your request without delay, but no later than 30 days, and inform you about it on your specified email address.
  • Right to Deletion:
    You can request the deletion of your data from us through the provided contact details. We will comply with your request without delay, but no later than 30 days, and inform you about it on your specified email address.
  • Right to Restriction:
    You can request us to restrict the processing of your data through the provided contact details. The restriction lasts as long as the reason you specify requires data storage. We will comply with your request without delay, but no later than 30 days, and inform you about it on your specified email address.
  • Right to Object:
    You can object to data processing through the provided contact details. We will examine your objection as soon as possible, but no later than 15 days, make a decision on its validity, and inform you about the decision via email.

Enforcement of Rights Related to Data Processing

In case of unlawful data processing experienced by you, notify our company, thus providing an opportunity to restore the lawful state shortly. We will do everything in your interest to solve the outlined problem.

If you believe that the lawful state cannot be restored, please notify the authority at the following contact details:

Hungarian National Authority for Data Protection and Freedom of Information (NAIH)Mailing Address: 1374 Budapest, Pf. 603.
Address: 1055 Budapest, Falk Miksa Street 9-11
Phone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Email: ugyfelszolgalat (@) naih.hu
URL: https://naih.hu

Sharing and Transferring Personal Data to Countries Outside the EEA (Third Countries)

The website operator may transfer personal data of its partners to countries outside the EEA only in the following cases:

  • If necessary for the performance of a task (after obtaining prior consent);
  • Data transfer to a country outside the EEA (third country) can occur under strict conditions, provided that the level of protection for personal data assured within the EU is not compromised when transferred outside the Union. To this end, the Data Controller applies general data protection contractual clauses approved by the European Commission, which exclude the infringement of natural persons' data.

The Data Controller cannot act contrary to the guiding rules and use personal data, namely, cannot make it accessible or transfer it to unauthorized third parties without prior consent. This does not affect the Data Controller's obligations to transfer personal data based on law (e.g., in criminal proceedings or tax proceedings).

Underlying Legal Provisions for Data Processing

  • REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
  • Act CXII of 2011 on Informational Self-Determination and Freedom of Information. (Hungary)
  • The 1995 Act LXVI on Public Documents, Archives, and the Protection of Private Archive Material. (Hungary)
  • Government Decree 335/2005. (XII. 29.) on the General Requirements for Document Management of Bodies Performing Public Tasks. (Hungary)
  • Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Services Related to the Information Society. (Hungary)
  • Act C of 2003 on Electronic Communications. (Hungary)

Created: 2021.03.29.