Data protection

DATA PROTECTION NOTICE

(Continuation of GTC)

Privacy terms:

Personal data: data that can be associated with any specific natural person (hereinafter: Data subject), conclusions about the data subject that can be drawn from the data. During data management, personal data will retain its quality as long as the relationship with the data subject can be restored. A person can be considered identifiable in particular if he can be identified directly or indirectly based on a name, identification mark, or one or more factors characteristic of his physical, physiological, mental, economic, cultural or social identity.
Consent: the voluntary and firm declaration of the data subject's will, which is based on adequate information, and with which he gives his unequivocal consent to the processing of his personal data - in full or covering certain operations.
Objection: the statement of the data subject objecting to the processing of their personal data and requesting the termination of data processing or the deletion of the processed data.
Data controller: the natural or legal person or organization without legal personality who, independently or together with others, determines the purpose of data management, makes and implements decisions regarding data management (including the device used), or implements them with the Data Processor.
Data management: regardless of the procedure used, any operation performed on the data or the set of operations, including in particular collection, recording, recording, organization, storage, change, use, query, transmission, disclosure, coordination or connection, locking, deletion and destruction, and preventing further use of the data, taking photographs, audio or video recordings, and recording physical characteristics suitable for identifying the person.
Data transmission: making the data available to a specific third party.
Disclosure: making the data available to anyone.
Data erasure: making data unrecognizable in such a way that recovery is no longer possible.
Data marking: providing the data with an identification mark for the purpose of distinguishing it.
Data blocking: providing the data with an identification mark for the purpose of limiting its further processing permanently or for a specified period of time.
Data destruction: Complete physical destruction of the data carrier containing the data.
Data processing: performing technical tasks related to data management operations, regardless of the method and tool used to perform the operations, as well as the place of application, provided that the technical task is performed on the data.
Data processor: a natural or legal person, or an organization without legal personality who processes data on the basis of a contract, including a contract concluded under the provisions of the law.
Data file: the totality of the data managed in a register.
Third party: any natural or legal person or organization without legal personality who is not the same as the data subject, data controller or data processor.
EEA state: a member state of the European Union and another state that is a party to the Agreement on the European Economic Area, as well as the state whose citizen is the European Union and its member states, as well as a state that is not a party to the Agreement on the European Economic Area, on the basis of the European Economic Area He enjoys the same legal status as a citizen of a state party to the Territorial Agreement.
Third country: any state that is not an EEA state.
Data protection incident: unlawful handling or processing of personal data, including in particular unauthorized access, alteration, transmission, disclosure, deletion or destruction, as well as accidental destruction and damage.

24. Name and contact details of data controller

Name of the data controller: Burst Maria (hereinafter: Data Controller)

The data controller's mailing address is: 34 Késmárki u. 2143 Kistarcsa.

The e-mail address of the data controller is: info@nepalitermekek.com

The telephone number of the data controller is: 0620-662-9148

Website: www.nepalitermekek.com

25. Legal background and legal basis of data management

The background of data management is the CXII of 2011 on the right to self-determination of information and freedom of information. Act (Infotv.) and the provisions of Act C of 2000 on accounting (Act.). The legal basis for data management is Infotv. In accordance with Section 5 (1) point a) of your consent, as well as - in case of withdrawal of your consent - Infotv. Pursuant to point a) of § 6, paragraph (5), the fulfillment of the legal obligation imposed on the Data Controller, set forth in the Sztv.

26. Purpose of data management

Issuing an invoice in accordance with the legislation and fulfilling the obligation to keep accounting records. The Sztv. Pursuant to § 169, paragraphs (1)-(2), economic companies must keep the accounting documents directly and indirectly supporting the accounting.

27. Scope of processed data

Name, address, e-mail address, telephone number.

28. Duration of data management

The invoices issued by Sztv. Based on § 169, paragraph (2), it must be kept for 8 years from the date of issue of the invoice. We would like to inform you that if you withdraw your consent to the issuance of the invoice, the Data Controller, Infotv. Based on point a) of § 6, paragraph (5), you are entitled to keep your personal data obtained during the issuance of the invoice for 8 years.

29. Data management related to the delivery of goods

29.1. Legal background and legal basis of data management:

The background of data management is the CXII of 2011 on the right to self-determination of information and freedom of information. are the provisions of the Act (Infotv.). The legal basis for data management is Infotv. Your consent in accordance with Section 5 (1) point a).

29.2. Purpose of data management

In the case of goods delivery, the purpose of data management is to deliver the ordered goods to you in accordance with your needs with the cooperation of our contractual partner.

29.3. Scope of managed data

Name, address, e-mail address, telephone number.

29.4. Duration of data management

The Data Controller manages the data until the delivery of the ordered goods.

29.5. Data processors

WEBSHIPPY Hungary Logistics and Transport Limited Liability Company (headquarters: 1044 Budapest, Ezred utca 2. B2. building 13., company registration number 01-09-282775, tax number: 25569421-2-41) data management statement

GLS General Logistics Systems Hungary Csomag-Logisztikai Kft. (Head office:
2351 Alsónémedi GLS Európa u. 2., Company registration number: 13-09-111755, Tax number: 12369410-2-44) Data protection policy

FoxPost Private Limited Company (3200 Gyöngyös, Batsányi János utca 9. Tax number: 25034644210 Company registration number: 10 10 020309) Data management policy

Additional data processing service providers:

  • Simple Pay: OTP Mobil Kft. (1093 Budapest, Közraktár u. 30-32),
  • Google Analytics (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)
  • Facebook Ireland Ltd. (4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland)
  • Shopify Inc. (33 New Montgomery St. Ste 750, San Francisco, CA, USA, 94105)
30. Data management associated with registration

30.1 Legal background and legal basis of data management

The background of data management is the CXII of 2011 on the right to self-determination of information and freedom of information. Act (Infotv.) and Act V of 2013 on the Civil Code (Ptk.). The legal basis for data management is Infotv. Your consent in accordance with Section 5 (1) point a).

30.2. Purpose of data management

By storing the data entered during registration, the Data Controller can provide a more convenient service (e.g. the data subject does not have to be entered again when making a new purchase)

30.3. Scope of managed data

During data management, the Data Controller manages your name, address, telephone number, e-mail address, the characteristics of the purchased product and the date of purchase.

30.4. Duration of data management

Until you withdraw your consent.

31. Your rights during data management

Within the period of data management, you are entitled to:

§ the right to information,

§ the right to correct the data,

§ the right to delete data,

§ the right to block data,

§ the right to protest.

Within the period of data management, you can request information from the Data Controller about the management of your personal data. The Data Controller will inform you in writing, in an understandable form, as soon as possible from the submission of the request, but no later than 25 days, about the processed data, the purpose, legal basis and duration of the data processing, and - if the data has also been forwarded - about who and for what purpose receive or have received the data.

Within the period of data management, you can request that the Data Controller correct your personal data. The Data Controller will comply with your request within 15 days at the latest.

You have the option to request the deletion of your personal data, which the Data Controller will comply with within 15 days at the latest. The right to deletion does not extend to the case where the Data Controller is obliged by law to continue storing the data, or in the event that Infotv. In accordance with Section 6 (5), the Data Controller is entitled to further process personal data (for example, in connection with invoicing).

You can request that the Data Controller block the personal data if the permanent deletion of the data would harm the legitimate interests of the data subject. The personal data locked in this way can only be processed as long as the purpose that precluded the deletion of the personal data exists.

You can object to the processing of your personal data,

§ if the processing or forwarding of personal data is necessary solely for the fulfillment of a legal obligation for the Data Controller or for the enforcement of the legitimate interests of the Data Controller, data receiver or third party, except in the case of mandatory data processing and Infotv. in the case provided for in paragraph (5) of § 6;

§ if personal data is used or forwarded - without your consent - for the purpose of direct business acquisition, public opinion polls or scientific research.

The Data Controller examines the objection as soon as possible, but no later than 15 days after the submission of the request, makes a decision on its merits, and informs you of its decision in writing. If the data controller does not comply with the data subject's request for rectification, blocking or deletion, within 25 days of receiving the request, it shall communicate the factual and legal reasons for rejecting the request for correction, blocking or deletion in writing or with the consent of the data subject electronically.

31.1. Remedies

If, in your opinion, the Data Controller has violated a legal provision regarding data management or has not fulfilled any of your requests, you can initiate the investigation procedure of the National Data Protection and Freedom of Information Authority (address: 1530 Budapest, Pf.: 5., e- email: ugyfelszolgalat@naih.hu).

We would also like to inform you that in the event of a violation of the legal provisions on data management, or if the Data Controller has not fulfilled any of your requests, you may apply to the Court against the Data Controller.

32. Information regarding the use of cookies

32.1. What is a cookie?

The Data Controller uses so-called cookies when visiting the website. The cookie is an information package consisting of letters and numbers that our website sends to your browser with the aim of saving certain settings, facilitating the use of our website and helping us to collect some relevant, statistical information about our visitors. Cookies do not contain personal information and are not suitable for identifying an individual user. Cookies often contain a unique identifier - a secret, randomly generated number - stored on your device. Some cookies are deleted after closing the website, and some are stored on your computer for a longer period of time.

32.2. Legal background and legal basis of cookies

The background of data management is the CXII of 2011 on the right to self-determination of information and freedom of information. Act (Infotv.) and CVIII of 2001 on certain issues of electronic commercial services and services related to the information society. are the provisions of the law. The legal basis for data management is Infotv. Your consent in accordance with Section 5 (1) point a).

33. Other provisions

Shopping on the Website presupposes the Buyer's knowledge of the technical and technical limitations of the Internet and acceptance of the potential for errors associated with the technology.

The Operator is not responsible for any damage caused by connecting to the Website. The Buyer is responsible for protecting his computer and the data on it.

The Operator is entitled to unilaterally modify the terms of these General Terms and Conditions at any time. The possible modification will enter into force at the same time as it appears on the Website.

The online store cannot be held responsible under any circumstances in case of force majeure or in connection with any event beyond its control. The online store is free to file a lawsuit against any person , who commits or attempts to commit fraud. However, the kisbuddhabolt.hu web store cannot be held responsible for any fraud committed by a third party at the expense of a participant.

34. Warning

The products sold in the online store may cause allergic reactions for those who are sensitive to them. Our products are not suitable for human or animal consumption!

Do not give the products to children!

It is forbidden to pull the speakers over the heads of people or animals!

It is forbidden to put the products in the microwave!

Iratkozzon fel hírlevelünkre!