Privacy Policy
for website visitors and registered users
October 2023
Introduction
The data controller processes the data of persons registered on the website during the operation of the website for the purpose of providing them with appropriate services. The data controller fully intends to comply with the legal requirements regarding the processing of personal data, particularly those set out in Regulation (EU) 2016/679 of the European Parliament and of the Council. This privacy policy has been prepared based on Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, taking into account the content of Act CXII of 2011 on the right to informational self-determination and on freedom of information.
Name of the Data Controller:
Contact details of the Data Controller:
| Name: |
Balázs Fekete |
| Address: |
Fuerte Borbón 565, Asunción, Paraguay |
| Mailing address: |
Fuerte Borbón 565, Asunción, Paraguay |
| E-mail: |
shop@bitcoinbazis.hu |
| Phone: |
|
Definitions
-
- GDPR (General Data Protection Regulation) is the European Union’s Data Protection Regulation;
- data processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
- data processor: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;
- personal data: any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
- data controller: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
- consent of the data subject: any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
- data protection incident: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.
- recipient: a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
- third party: a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
Data Processing Principles
The data controller declares that it processes personal data in accordance with the provisions of this privacy policy and complies with the requirements of the relevant legislation, with particular attention to the following: The processing of personal data shall be carried out in a lawful and fair manner and in a transparent manner for the data subject. The collection of personal data may only take place for specified, explicit and legitimate purposes. The purposes of the processing of personal data shall be appropriate and relevant and limited to what is necessary. Personal data must be accurate and up to date. Inaccurate personal data must be deleted without delay. Personal data must be stored in a form which permits identification of data subjects for no longer than is necessary. Personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes. The processing of personal data must be carried out in such a way as to ensure appropriate security of the personal data by the implementation of appropriate technical or organisational measures, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage. The principles of data protection shall apply to any information concerning an identified or identifiable natural person.
Important Data Processing Information
The purpose of the data processing is to enable the data controller to provide appropriate additional services to persons registered on the website during the operation of the website. The legal basis for the data processing is the consent of the data subject. The scope of data subjects involved in the data processing is the registered users of the website. The duration of the data processing and the deletion of the data. The duration of the data processing always depends on the specific purpose of the user, but the data must be deleted without delay once the originally specified purpose has been achieved. The data subject may withdraw his or her consent to the data processing at any time by sending a letter to the contact e-mail address. If there is no legal obstacle to the deletion, the data will be deleted in this case. The persons authorised to access the data are the data controller and its employees. The data subject may request from the data controller access to, rectification, erasure or restriction of processing of personal data concerning him or her, and may object to the processing of such personal data, as well as the data subject’s right to data portability. The data subject may withdraw his or her consent to the data processing at any time, but this shall not affect the lawfulness of processing based on consent before its withdrawal. The data subject may lodge a complaint with the supervisory authority. The data subject is entitled to request that the data controller rectify or complete inaccurate personal data concerning him or her without undue delay. The data subject is entitled to request that the data controller erase personal data concerning him or her without undue delay, and the data controller is obliged to erase personal data concerning the data subject without undue delay if there is no other legal basis for the processing. The modification or deletion of personal data can be initiated by e-mail, phone or letter using the contact details provided above.
Registration on the Website
The purpose of the data processing is to provide additional services and to establish contact. The legal basis for the registration data processing is your consent. The scope of data subjects involved in the data processing is the registered users of the website. The duration of the data processing. The data processing takes place until the withdrawal of the consent. You may withdraw your consent to the data processing at any time by sending a letter to the contact e-mail address. The deletion of the data takes place upon withdrawal of the consent to the data processing. You may withdraw your consent to the data processing at any time by sending a letter to the contact e-mail address. The persons authorised to access the data are the data controller and its employees. The method of data storage: electronic. The modification or deletion of personal data can be initiated by e-mail, phone or letter using the contact details provided above.
| Scope of processed data |
Specific purpose of the data processing |
| Name |
Contact, invoicing. |
| Address |
Contact, invoicing, delivery |
| E-mail |
Contact. |
| Phone |
Contact. |
| Registration date |
Technical informational operation. |
| IP address |
Technical informational operation. |
The user can give his or her consent to the data processing by intentionally checking the empty checkbox provided for this purpose on the website. You, as the data subject, may object to the processing of your personal data; in this regard, you are entitled to proceed in accordance with the data processing information detailed above and this policy, as well as the legislation described in the policy.
Cookies
Cookies are placed on the user’s computer by the visited websites and contain information such as site settings or login status. Cookies are therefore small files created by the visited websites. They improve the user experience by saving browsing data. Cookies help the website remember site settings and offer locally relevant content. The service provider’s website sends a small file (cookie) to the visitor’s computer in order to determine the fact and time of the visit. The service provider informs the website visitor about this. The scope of data subjects involved in the data processing is the website visitors. The purpose of the data processing is additional services, identification, tracking of visitors. The legal basis for the data processing. The user’s consent is not required if the service provider absolutely needs to use cookies. Scope of data: unique identification number, date, setting data. The user has the option to delete cookies from browsers at any time in the Settings menu. Data controllers authorised to access the data. The data controller does not process personal data using cookies. The method of data storage: electronic.
Google Analytics
Our website uses the Google Analytics application
usesdoes not use In case of using Google Analytics: Google Analytics uses internal cookies to compile reports for its clients on website users’ habits. On behalf of the website operator, Google uses the information to evaluate how users use the website. As an additional service, it prepares reports related to the website’s activity for the website operator to perform further services. The data is stored in encrypted format on Google’s servers to prevent and hinder data abuse. Disabling Google Analytics can be done as follows. Quote from the site: Website users who do not want Google Analytics JavaScript to report their data can install the Google Analytics opt-out browser add-on. The add-on prevents Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sending information to the Google Analytics system. The browser add-on can be used in most newer browsers. The Google Analytics opt-out browser add-on does not prevent data from being sent to the website itself and other web analytics services.
https://support.google.com/analytics/answer/6004245?hl=en Google’s privacy policy:
https://policies.google.com/privacy?hl=en Detailed information on the use and protection of data is available at the above links. Data protection in detail:
https://static.googleusercontent.com/media/www.google.com/en//intl/en/policies/privacy/google_privacy_policy_en.pdf
Data Processors
Hosting Provider:
| Name / company name: |
Profitárhely Kft. |
| Registered office: |
Kecskemét, Szolnoki út 23., 6000 |
| Phone: |
+36 20 254 0866 |
| E-mail: |
ugyfelszolgalat@profitarhely.hu |
The data you provide is stored on a server operated by the hosting provider. Only our employees and the employees operating the server have access to the data, but all are responsible for the secure handling of the data. Name of the activity: hosting service, server service. The purpose of the data processing: ensuring the functioning of the website. Data processed: personal data provided by the data subject The duration of the data processing and the deadline for deletion of the data. The data processing lasts until the end of the website’s operation, or according to the contractual agreement between the website operator and the hosting provider. If necessary, the data subject may also request the deletion of his or her data by contacting the hosting provider. The legal basis for the data processing is the consent of the data subject or data processing based on law.
Rights Related to Data Processing
Right to Request Information
You can request information from us via the provided contact details about what data our company processes, on what legal basis, for what data processing purpose, from what source, and for how long. Upon your request, we will send information without delay, but within a maximum of 30 days, to the e-mail address you provided.
Right to Rectification
You can request us via the provided contact details to modify any of your data. Upon your request, we will take action without delay, but within a maximum of 30 days, and send information to the e-mail address you provided.
Right to Erasure
You can request us via the provided contact details to erase your data. Upon your request, we will do this without delay, but within a maximum of 30 days, and send information to the e-mail address you provided.
Right to Restriction
You can request us via the provided contact details to restrict your data. The restriction lasts as long as the reason you indicated necessitates the storage of the data. Upon your request, we will do this without delay, but within a maximum of 30 days, and send information to the e-mail address you provided.
Right to Object
You can object to the data processing via the provided contact details. We will examine the objection within the shortest possible time from the submission of the request, but no later than 15 days, decide on its validity, and inform you of the decision via e-mail.
Possibility of Legal Enforcement Related to Data Processing
In the event of unlawful data processing experienced by you, please notify us, so that there is an opportunity to restore the lawful state within a short time.
We will do everything in your interest to solve the outlined problem. If, in your opinion, the lawful state cannot be restored, please notify the authority at the following contact details: National Authority for Data Protection and Freedom of Information Postal address: 1530 Budapest, Pf.: 5. Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c Phone: +36 (1) 391-1400 Fax: +36 (1) 391-1410 E-mail: ugyfelszolgalat@naih.hu URL:
https://naih.hu coordinates: N 47°30’56”; E 18°59’57”
Legislation Underlying the Data Processing
- REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
- Act CXII of 2011 on the right to informational self-determination and on freedom of information.
- Act LXVI of 1995 on public records, public archives and the protection of private archival material.
- Government Decree 335/2005 (XII. 29.) on the general requirements for records management by public bodies.
- Act CVIII of 2001 on certain issues of electronic commerce services and information society services.
- Act C of 2003 on electronic communications.
