Privacy and data management information
The futniszep.hu website (hereinafter referred to as the Website) operated by Bowman and Becker Ltd. (hereinafter referred to as the Service Provider) operates applications developed for Facebook (hereinafter referred to as the Applications) for itself and its commissioning partners (hereinafter referred to as the Partners), and processes certain personal and other data of users (hereinafter referred to as the Users) who register in the Applications. In connection with the processing of data, the Service Provider hereby informs the Users about the personal data it processes on the Website and in the Applications, its principles and practices regarding the processing of personal data, the purpose and duration of the processing, as well as the means and possibilities for exercising the rights of the data subjects. The personal data collected will be treated confidentially, in accordance with data protection legislation and international recommendations, and in accordance with this Statement.
Please read this Prospectus carefully and if you have any questions, please contact us at the contact details below before you accept this Prospectus.
Please note that you have the right to object to the processing of your personal data at any time, if it is based on the legitimate interest of the Service Provider or for advertising purposes!
I. DATA OF THE SERVICE PROVIDER (DATA CONTROLLER)
Company name: Bowman and Becker Ltd.
Seat: 2462 Martonvásár, Dózsa György út 2.
Mailing address: 2040 Budaörs, Templom tér 19.
Website: www.bowmanandbecker.com
E-mail address: info(at)bowmanandbecker(dot)com
Represented by: Pál Mátyás Keczán and Máté Keczán Managing Directors
II. THE PURPOSE OF THE PROCESSING
When using the Website and the Applications, depending on the service used, the following data management purposes may arise:
# | Purpose of data processing | Description |
1. | Preparation of a quotation | To prepare the offer, you need to provide the most basic information that will help you identify and contact the contact person of the applicant. |
2. | Newsletter | The visitor has the option to subscribe to the Service Provider's newsletter, in which case the Service Provider will send an occasional newsletter containing advertising to the User's e-mail address. |
3. | Contact | On the Website, the User has the possibility to send a message to the Service Provider by filling in the form. |
4. | Shopping in the webshop | A prerequisite for making a purchase in the webshop available on the Website is that the User provides his/her billing and shipping details. |
III. LEGAL BASIS FOR PROCESSING
In all cases, the processing of data is voluntary on the part of the User. Contributionwill take place with the following exceptions. The User gives his/her consent by using the services of the Website and the Applications and by registering in the Facebook dialogue windows, knowing the contents of this Notice. Failure to give consent shall not be to the detriment of the User.
The processing is based on the service to be used, i.e. performance of the contract will take place following: request a quote, place an order, shop in the webshop. In these cases, the provision of the requested personal data is not mandatory, but in case of failure to provide it, the contract will not be concluded and the User will not be able to use the services indicated here.
The processing of personal data after the expiry of the above legal bases is referred to as. legitimate interestcan be based on the services typically related to the in pursuing legal claims. In this case, the Service Provider will process the User's personal data after careful consideration of its own legitimate interest and the User's rights. This may take place:
- dealing with outstanding debts (e.g. bills), or
- prevent possible abuse (e.g. by notifying the authorities), or
- when providing evidence in various official/judicial proceedings.
However, the data processing mentioned here is ad hoc, does not involve sensitive data and in most cases serves the interest of the User (e.g. in the settlement of a claim).
IV. THE SCOPE OF THE DATA PROCESSED
When using the Website and the Applications, depending on the service used, the Service Provider processes the following personal data of the User:
Purpose of data processing | Personal data processed | |
1. | Preparation of a quotation | To prepare the offer, you need to provide the most necessary information to identify and contact the contact person of the applicant: contact name, contact details, telephone number and name of the event / order. |
6. | Send newsletter | User's name, e-mail address. |
7. | Parcel delivery | The customer has the possibility to request the coins to be delivered to his/her home address, by providing the following information: name of the recipient, delivery address, recipient's telephone number, recipient's electronic contact details, other delivery notes. |
Technical data: For technical reasons, the Service Provider automatically records the User's IP address, the type of operating system and browser program used by the User and other information when using the Website and the Applications. The system continuously logs this data, but does not link it to the data provided during registration or use. The data obtained in this way is not accessible to the User, only to the Service Provider. The Service Provider may record the data of the websites from which the User has accessed the Site and Applications, as well as those visited from the Site and Applications, and the time and duration of the visit. The User's identity and profile cannot be inferred from this data. The computer of the visitors of the Website and Applications is identified by a so-called cookie. The above information is used by the Service Provider solely for the technical operation of the Website and Applications and for statistical purposes.
V. THE DURATION OF THE PROCESSING
During the use of the Website and the Applications, depending on the service used, the Service Provider may collect personal data of the User:
- with your consent: withdrawal of consent (e.g. cancellation of registration, unsubscribing from the newsletter), or deletion of the user account (in case of sending the newsletter, cancellation of the newsletter);
- in case of performance of a contract: until the end of the last service under the contract, but at least until the expiry of the time limit for keeping the documents provided for by the tax and accounting legislation in force[1]
handles.
After the above cases, the Service Provider will continue to process the User's personal data in the event that, in the case of a justified circumstance related to the service, the personal data are the possibility of enforcing a legal claim still exists.
VI. DATA PROCESSORS
The Service Provider uses the following data processors in the performance of its services:
Name, contact details | Purpose of data processing |
Magyar Posta Zrt.(1138 Budapest, Dunavirág utca 2-6.) | Home delivery of the parcel. |
FedEx Express International B.V. (The Netherlands, 2132 LS Hoofddorp, Taurusavenue 111.) | Home delivery of the parcel. |
PayPal (Europe) S.à r.l. et Cie, S.C.A. (R.C.S. Luxembourg B 118 349) | Shopping in the online shop: manage PayPal payment method. |
Bowman and Becker Ltd.(via Webgalamb software) | Sending newsletters. |
BlazeArts Ltd. (6090 Kunszentmiklós, Damjanich u. 36. 1/8) | Shared space service. |
SimplePay, OTP Mobil Kft. (1143 Budapest, Hungária krt. 17-19.) | Shopping in the webshop: managing the SimplPay payment method. |
VII. USER RIGHTS AND ENFORCEMENT OPTIONS
The User has the following rights and remedies (in the event of a complaint or dispute) in relation to the Service Provider's data management.
7.1. Withdrawal of consent
If the specific processing is based on the User's consent (see tables above), then the User has the right to withdraw this consent at any time, free of charge and without conditions. In such a case, the Service Provider will delete all personal data of the User that it has processed for the purposes of the processing. For example:if the User unsubscribes from the newsletter, all the data provided during the subscription will be deleted and the User will no longer receive newsletters from the Service Provider.
It is important to note that the withdrawal of consent does not affect the lawfulness of the processing that took place before the withdrawal! Moreover, in certain cases, there may be circumstances under which the Service Provider may lawfully process the User's personal data even in the event of withdrawal of consent - in such cases, the Service Provider will provide prior information.
7.2. Access to your personal data
The User is entitled to request at any time information on whether the Service Provider is processing his/her personal data for any purpose. If so, a copy will be sent to the User by electronic means (or on paper at the User's request) of any processing activities concerning him or her, and inform him or her of his or her rights in relation to such activities.
7.3. Correction
The User may at any time notify the Service Provider if he/she sees a mistake in any of the personal data processed, or request the Service Provider to complete or correct them, or to transfer the new data in his/her records (for example, in case of a change of address).
7.4. Deletion
The User may at any time request the Service Provider to delete some or all of the personal data processed by the Service Provider. The data will also be deleted if the User has withdrawn his/her consent as described above, or the period of data processing has expired, or the deletion is provided for by law, or the Service Provider no longer needs to process the personal data in question.
It is important to know that in some cases the processing of the User's personal data for a certain period of time is required by law (e.g. in the case of invoicing), in other cases it is necessary to retain the data in order to enforce our legal claims. If there is any obstacle to the deletion of your personal data, the Service Provider will inform you in advance.
7.5. Limitation of data processing
It may not be appropriate for the User to continue processing or to delete the data. In such cases, the User may request the restriction of his/her personal data: the personal data subject to the restriction are only stored by the Service Provider and no other operations are performed on them.
The User may request the restriction of processing if:
- the User believes that his or her personal data is inaccurately recorded in the database (in this case, the Service Provider will investigate the case and the restriction will last until the end of the investigation); or
- the User considers that the Service provider is unlawfully processing the User's personal data and objects to its deletion; or
- the Service Provider no longer needs to process the personal data, but the User requests that it not be deleted because the User will need it for the purpose of pursuing legal claims; or
- the User objects to the processing (see below; in this case, the Service Provider will investigate the case and the restriction will last until the end of the investigation).
It is important to note that the Service Provider is entitled to lift the data restriction imposed at the request of the User and to continue data processing if the User expressly consents to this or if it is necessary to enforce the Service Provider's legal claims or for important public interests required by law - in such cases the Service Provider will provide prior information.
7.6 Objection to the processing of your personal data
The User has the right to object to the processing of his/her personal data at any time on personal grounds, if the Service Provider has used them in the course of sending advertisements or if the legal basis for the processing has been declared as legitimate interest. In such cases, the Service Provider will delete the User's personal data.
It is important to note that if the legal basis for processing is legitimate interest, personal data may be processed even if the User objects. To do so, the Service Provider must prove that the processing is unavoidably necessary or indispensable for the Service Provider's legal claims - in such a case, the Service Provider will provide prior information.
7.7. Data storage
The User also has the right to receive the personal data provided by the User in an electronically editable format and to send it to another data controller or to request the Service Provider to send the data on the User's behalf.2.
However, you only have the option to do this, if the legal basis of the User's personal data is consent or performance of a contract, as indicated above. An additional condition is that these personal data are processed by the Service Provider in an automated way. In all other cases, the User will not have the possibility to store the data.
It is important to know that the Service Provider can only send your personal data directly to another data controller on your request if it is technically feasible in the specific case - in such a case the Service Provider will provide you with prior information.
7.8. Right to complain
If the User feels that the Service Provider has violated the legal provisions on the processing of personal data, the User may lodge a complaint with the National Authority for Data Protection and Freedom of Information (NAIH) using the contact details below:
- seat: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.
- postal address: 1530 Budapest, Pf.: 5.
- e-mail address: ugyfelszolgalat@naih.hu
- Website: http://www.naih.hu
7.9. Right to apply to the courts
If the User feels that the Service Provider has violated the User's rights in the course of data processing, the User may (at his/her option) apply to the competent court of law, i.e. the court of law of his/her place of residence or domicile. For more information on the court procedure, please consult the www.birosag.hu on the website.
VIII. OTHER PROVISIONS
8.1. Administration of applications
You may exercise the rights detailed above at any time by sending an e-mail to info(at)bowmanandbecker(dot)com. The User may initiate the procedures described in sections 9.8 and 9.9 directly with the NAIH or the competent court.
At the User's request (in particular in the case of data location correction), the Service Provider shall, without delay, but no later than. take action within 1 month of receiving the request. In the case of particularly complex or voluminous applications, this time limit may be extended by up to 2 months.
Prior to fulfilling the request, the Service Provider is entitled to identify the User in order to prevent the provision of data to unauthorised persons and the fulfilment of unauthorised requests (e.g. for data deletion). If the User's request is manifestly unfounded, excessive or abusive, or if the User's identity cannot be identified, the Service Provider shall refuse to take action.
8.2. Data security
The Service Provider shall take all reasonable steps to ensure the security of the personal data provided by Users, both during network communication and during the storage and safekeeping of the data. Access to personal data is strictly limited in order to prevent unauthorised access, unauthorised alteration or unauthorised use of personal data.
The data of the users of the Website are primarily accessible to the Service Provider and its internal staff, they are not published and are not disclosed to third parties. Data of users of the Applications are only stored by the Service Provider.
8.3. Responsibility of the User
In order to ensure the accuracy and protection of the personal data processed by the Service Provider, the User is expected to take all reasonable measures to ensure that his/her personal data are kept up to date in the Service Provider's databases:
- The Service Provider is not in a position to verify the accuracy of the personal data provided or whether they have been provided by the person authorised to do so, therefore the User is expected to provide only and exclusively his/her own personal data in any case. The Service Provider shall not be liable for any damage or loss resulting from the processing of personal data provided on behalf of another person.
- The User is expected to use secure technical means, software, network connections and strong passwords to prevent unauthorized persons from misusing his/her personal data (for example, to prevent the User from accessing his/her account and thus from unauthorized requests by the Service Provider).
- The User is expected to notify the Service Provider immediately if he/she notices any suspicious circumstances regarding his/her personal data or the services used.
- The User is expected to notify the Service Provider within 3 days if there is any change in the personal data provided.
IX. AMENDMENT OF THE PROSPECTUS
The Service Provider reserves the right to unilaterally modify this Policy by prior notice to Users. After the amendment has entered into force, the User acknowledges the amended Notice by continuing to use the Service.
For matters not covered by this Notice, the General Data Protection Regulation of the European Union 2016/679 (also known as the GDPR) and the applicable Hungarian legislation shall apply. Hungarian law shall apply to the Prospectus.
***
Budaörs, 1 June 2018.
[1]See details:
- 2000:C. Act on Accounting: § 169 (minimum 8 years)
- 2017:CL. on the Tax Code: § 78 (until the right to tax assessment is time-barred)
- 2007: CXXVII. tv. az VAT: § 179 (until the limitation period for the right to tax assessment)
1995: Act LXVI (...) on the Protection of Private Archives: § 3-4 (indefinitely).
[2] Data portability differs from the right of access referred to in section 8.2 in that in the former case, the Service Provider will only provide the User with personal data that the User has provided to the Service Provider, and also those that the Service Provider has recorded on the basis of the User's activities; however, not data that the Service Provider has created by derivation/conclusion from the data listed above.