Information on data management
Information about data management
This document provides information about your personal data management and your rights in relation to, so in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and the domestic legislation, particularly, but not exclusively the Act CXII of 2011 on the Right of Informational Self-Determination and on the Freedom of Information.
I. NAME OF DATA CONTROLLER AND HOSTING PROVIDER
Data Controller:
Company name: APPON LINE Kft. (hereinafter: Data Controller)
Headquarters: Római street 1/1, Postcode 2120, Dunakeszi, Hungary
Company registration number: Cg. 13-09-229851
Tax number: 23137631-2-13
Representative: Roland János Sulcz, managing director (MD)
E-mail: info@appon.hu
Mobile: 0036-30-0960620
Hosting provider:
Company name: APPON LINE Kft.
Headquarters: Római street 1/1, Postcode 2120, Dunakeszi, Hungary
Company registration number: Cg. 13-09-229851
Tax number: 23137631-2-13
Representative: Roland János Sulcz, managing director (MD)
E-mail: info@appon.hu
II. TERMS
-
"Data subjet": any natural person who is identified or can be identifiable by any information regarding to that person.
-
"Personal data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly. With regard to the website: the contact person's name, email address, telephone number, IP address.
-
"Data processing": any operation or set of operations performed on personal data or data files, whether or not by automated means.
-
"Restriction of processing": marking stored personal data with a view to limiting their processing in the future.
-
"Recording system": any structured set of personal data which is accessible according to specific criteria.
-
"Data controller": a natural or legal person, public authority, agency, or any other body that, alone or jointly with others, determines the purposes and means of the processing of personal data.
-
"Data processor": a natural or legal person, public authority, agency, or any other body that manages personal data on behalf of the data controller; Our company does not use a data processor in connection with the website.
-
"Recipient": a natural or legal person, public authority, agency or any other body to whom personal data are disclosed. Public authorities which may receive personal data in the framework of a particular inquiry in accordance with European Union or Member State law shall not be regarded as recipients.
-
"Your consent": a voluntary, specific, and informed expression of your will, through which you indicate your agreement to the processing of your personal data by means of a statement or an unequivocal affirmative action.
-
"Data breach": a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
III. LEGAL BASIS FOR DATA PROCESSING
Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information (Infotv.).
https://net.jogtar.hu/jogszabaly?docid=a1100112.tv
REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (GDPR) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
IV. SCOPE OF MANAGED DATA, PURPOSE OF DATA PROCESSING, LEGAL BASIS:
Data processing enabling the identification of the Data subject does not take place solely as a result of visiting the website.
The website provides a direct contact option by clicking on the "Contact" menu item. In order to use the service available on the website (bulk SMS sending), prior registration is required, during which the personal data listed in the table below must be provided by the Data subject.
Please note the following regarding data reporting:
- You decide whether to provide an email address that contains information about your identity.
- Only persons turned 16 years old or older are entitled to provide data on the website.
- The Data Controller does not verify personal data. The person providing the data is solely responsible for its accuracy.
- By providing their email address, all data subjects assume responsibility for ensuring that they are the only ones using the service from the email address provided. The Data Controller is not obliged to verify whether the email address actually belongs to the person concerned who provided it, and is therefore entitled to assume that the processing of the personal data provided is lawful.
You can send us your registration request by clicking on the "REGISTRATION" icon after accepting the GTC and Data Management Information. You can then activate your registration via the link in the email sent to the email address you provided. Please note that the password you provide will not be disclosed to the Data Controller. If you forget your password, you can generate a new one by clicking on the "Forgot your password" icon, entering your email address, and following the link sent to that address.
DATA PROCESSED WHEN CONTACTING US
|
Scope of managed data |
Purpose of data processing |
Legal basis for data processing |
Duration of data processing |
Recipients of data |
|
Name |
Contacting the Data subject at their request |
GDPR Article 6, paragraph (1), b.) Prior to concluding the contract, for the purpose of contacting and informing the Data subject at their request |
a.) until the conclusion of the contract, failing which ba.) until a request for deletion is made, bb.) for the maximum of 30 days following the last contact |
Data Controller's executive officer |
|
|
||||
|
Telephone number |
DATA PROCESSING RELATED TO REGISTRATION
|
Scope of managed data |
Purpose of data processing |
Legal basis for data processing |
Duration of data processing |
Recipients of data |
|
|
Registration |
GDPR Article 6, paragraph (1), a.) |
Until the Data subject withdraws their consent, or after one year of inactivity |
Data Controller's executive officer |
|
Contact's name |
Maintaining contact during the use of the service, for the sake of it |
GDPR Article 6, paragraph (1), b.) Required for the performance of the contract |
Until the termination of the Agreement |
Data Controller's executive officer |
|
Billing information: |
Fulfillment of invoicing and retention obligations |
GDPR Article 6, paragraph (1), c.) Compliance with legal obligations |
8 (eight) years |
Data Controller's executive |
Method of data processing: The data you provide will be transferred from the password-protected database of the website to our email address info@appon.hu for the purpose of contacting you. The data is stored on an administrative interface, managed exclusively by the Data Controller's executive, employees, and agents.
V. DATA TRANSFER
Our company handles the tax and accounting obligations required by law (bookkeeping, taxation) and forwards the data appearing on the receipts of natural persons entering into a business relationship with it as customers, such as their name and place of residence, to the operator of the invoicing program and our company's accountant as data processors.
Our company is required to keep the financial statements, business reports, supporting inventory, valuation, general ledger extracts, as well as the journal and accounting documents directly and indirectly supporting the accounting records in a readable form for at least 8 years, therefore our company retains the data (name and place of residence), contained in the documents forwarded to the accountant for 8 years.
The data processors we use provide adequate guarantees to ensure compliance with the requirements of the GDPR for data processing and the implementation of appropriate technical and organizational measures to protect the rights of data subjects.
In the case of KBOSS-hu Kft (számlázz.hu), you can find more information about this at the following link:
https://www.szamlazz.hu/adatvedelem/
|
Scope of data affected by data transfer |
Recipient of data transfer |
Legal basis for data transfer |
|
Name |
KBOSS.hu Kft |
GDPR Article 6 paragraph (1), c.) Compliance with legal obligations |
|
Mihályné Fabulya |
VI. COOKIE MANAGEMENT
In order to provide personalized service, we place a small data package, known as a cookie, on your computer, we store it and read it back during subsequent visits. These are not stored by the Data Controller. If your browser returns a previously saved cookie, the cookie provider can link your current visit to previous visits, but only in terms of its own content.
Session cookies: these are necessary for browsing the website and using its features; among other things, they enable the website to remember the actions performed by the visitor on a given page, feature or service.
Statistical cookies: these collect information about how visitors use the website for the purpose of improving it. These cookies cannot identify users personally.
|
Type of cookies |
Scope of managed data |
Purpose of data management |
Legal basis for data processing |
Recipients of data |
|
|
Session cookie |
IP address |
ensuring the proper functioning of the website |
GDPR Article 6 paragraph (1), f.) legitimate interest in the smooth operation of the website |
until the end of the session or until the browser is closed |
Data Controller's executive officer |
|
Cookies for statistical purposes |
development of the website |
GDPR Article 6 paragraph (1), a.) the consent of the Data subject |
30 minutes after last use |
The Data subject has the right to delete cookies from their computer or disable cookies in their browser. Technical assistance and further information on this subject can be found at the following links:
Chrome (https://support.google.com/accounts/answer/61416?hl=hu)
Internet Explorer (https://support.microsoft .com/hu-hu/help/17442/windows-internet-explorer-deletemanage-cookies)
Microsoft Edge (https://privacy.microsoft .com/en-us/windows-10-microsoft -edge-and-privacy)
The Data Controller uses the services of Google Analytics in connection with the Website.
Google Analytics is an analytics service provided by Google Inc. ("Google"). Google Analytics uses cookies stored on the Data subject's computer to analyze user interactions on the Website. The legal basis for data processing for web analytics purposes is the voluntary consent of the Website user. Cookies for analytical purposes are anonymized and aggregated data, which make it difficult to identify the computer, but this cannot be ruled out.
The analytical information collected by Google Analytics cookies is transferred to and stored on Google's servers. Google processes this information on behalf of the Data Controller in order to evaluate users' browsing habits, compile reports on the frequency of use of the Website and provide other services related to usage to the Data Controller. Within the framework of Google Analytics, Google does not associate the IP address transmitted by the browser with any other data.
Google Analytics uses cookies for analytical purposes. Further information about the cookies used by Google Analytics can be found at the following link:
https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage#analyticsjs
VII. DATA SECURITY MEASURES
The Data Controller shall take appropriate measures to ensure that your personal data is protected against and among other things, unauthorized access or unauthorized alteration. Thus, the website database is protected by a strong security password.
Please note that we will not use or disclose the personal data you provide for purposes other than those specified above. Personal data will only be disclosed to third parties or authorities with your prior express consent, unless otherwise required by law.
VIII. YOUR RIGHTS REGARDING DATA PROCESSING
You have the following rights in relation to data processing:
1. Right of access and information
2. Right to rectification
3. Right to erasure
4. Right to block/right to restrict
5. The right to protest
6. Notification and information of data breaches
7. Right to legal remedy
For more information, please read our document entitled "Data Processing Notice about the Rights of Data Subjects."
IX. FINAL PROVISIONS
This Notice presented here is governed by the Hungarian law, in particular the provisions of Act CXII of 2011 on the right to self-determination in relation to information and freedom of information, as well as the GDPR.
The Data Controller is entitled to unilaterally modify this Notice presented here at any time, in addition to informing the User via the website.