en
CONTACT US
en
CONTACT US

Data Protection Notice

(hereinafter referred to as “Notice” or “Privacy Notice”)

1. Basic provisions

1.1. History

The new European Union General Data Protection Regulation (GDPR) No. 2016/679 (hereinafter referred to as the “ Regulation ” or “ GDPR ”) is now directly applicable in Hungary. A data controller is considered a data controller under the Regulation, meaning that the Regulation also applies to the data processed by the Data Controller.

1.2 Purpose of the Information

The purpose of the Notice is to establish the data protection and data management provisions, principles, and the data protection and data management policy of the data controller, followed and applied by the Kövesdi Szilvia sole proprietorship (hereinafter referred to as the “ Data Controller ” ).

1.3 Legislation

When determining the content of the Information Notice, the data controller took into account, in addition to the Regulation, the provisions of Act CXII of 2011 on the right to informational self-determination and freedom of information (“Infotv.”), Act V of 2013 on the Civil Code (“Ptk.”), and Act XLVIII of 2008 on the basic conditions and certain limitations of economic advertising activities (“Grtv.”).

1.4 Scope

The scope of the Notice relates to the data controller's sales activities (including www.bebrandresearch.huIt covers data processing related to the website operating under the domain name – hereinafter referred to as the “ Website ”).

The scope of the Information does not include the services and data processing of those legal entities and websites to which any link on the Website(s) operated by the data controller points, nor the data processing of those legal entities from whose information, newsletter, or advertising letter the Data Subject learned about the Website.

1.5. Amendment of the Information

1.5.1. The data controller reserves the right to modify the Information by unilateral decision.

1.5.2. By accessing the Website, the Data Subject accepts the provisions of the Information in force at all times; further consent of the Data Subject is not required.

2. Definitions

The terms used in this Privacy Policy have the following meanings:

2.1. Data processing : any operation or set of operations which is performed on personal data or data files, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

2.2. Data controller : the natural or legal person, public authority, agency or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

2.3. Personal data or data : any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, a number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

2.4. Data Processor : the natural or legal person, public authority, agency or service provider who processes personal data on behalf of the Data Controller.

2.5. Data Subject: the natural person who registers on the Website and, in this context, provides the data listed in points 8 and 9 below.

2.6. External service provider: third-party service providers used by the Data Controller or the Website operator in connection with the provision of certain services - either directly or indirectly - to whom Personal Data is or may be transferred in order to provide their services, or who may transfer Personal Data to the data controller. Service providers that are not in cooperation with either the sole proprietor or the service operators, but that, by accessing the Website, collect data about the Data Subjects, which, either independently or in combination with other data, may be suitable for identifying the Data Subject, are also considered to be External service providers. When providing hosting services, the sole proprietor also considers the Data Subject to be an External service provider in terms of the data processing activities carried out on the hosting space used by him.

2.7. Information : this data processing information of the data controller.

3. Person and activity of the data controller

Name: Szilvia Kövesdi, sole proprietor

Registered office: HUNGARY, 1156 BUDAPEST 15th district, PÁSKOMLIGET STREET 48, 10th floor, 41st floor

Registration number: 52581755, registered by the Register of Individual Entrepreneurs.

Phone: +36 20/2516030

E-mail: adatvedelem@Bebrandresearch.hu

4. Basic principles of data processing

4.1. Legality, fairness

The processing of data must be carried out lawfully and fairly, and in a manner that is transparent to the data subject. The data controller shall only process data as specified in the law or as provided by the Data Subjects, for the purposes specified below. The scope of the Personal Data processed shall be proportionate to the purpose of the processing and shall not go beyond it.

4.2 Accuracy

The data must be necessary and relevant for the purposes of the processing, and must be accurate and, where necessary, kept up to date.

4.3. Purposefulness

In all cases where the data controller intends to use Personal Data for a purpose other than the purpose of the original data collection, the Data Subject shall be informed thereof and their prior, express consent shall be obtained, or the Data Subject shall be given the opportunity to prohibit the use.

4.4. Compliance

The data controller does not verify the Personal Data provided to it. The person providing the Personal Data is solely responsible for the accuracy of the Personal Data provided.

4.5 Limited storage capacity

It must be stored in a form that allows identification of data subjects only for the time necessary to achieve the purposes of processing personal data.

4.6. Protection of data of persons under the age of 16

The Personal Data of a data subject under the age of 16 may only be processed with the consent of an adult exercising parental supervision over the data subject. The Data Controller is not able to verify the eligibility of the consenting person or the content of his/her declaration, so the Data Subject or the person exercising parental supervision over the data subject guarantees that the consent complies with the law. In the absence of a consenting declaration, the Data Controller shall not collect Personal Data relating to a data subject under the age of 16.

4.7. The data controller shall not transfer the Personal data it processes to any third party other than the Data Processors and External Service Providers specified in the Notice. The data shall be processed in such a way that the appropriate security of the personal data is ensured by applying appropriate technical and/or organizational measures.

An exception to the provision contained in this point is the use of data in a statistically aggregated form, which may not contain any other data capable of identifying the Data Subject in any form.

In certain cases – due to an official court or police request, legal proceedings, copyright, property or other infringement or reasonable suspicion thereof, harm to the interests of the Data Controller, endangerment of the provision of the service, etc. – the Data Controller makes the Data Subject's available Personal Data accessible to third parties.

4.8. The data controller shall notify the Data Subject, as well as all those to whom the Personal Data was previously transmitted for the purpose of Data Management, of the correction, restriction or deletion of the Personal Data it processes. The notification may be omitted if this does not violate the legitimate interests of the Data Subject, taking into account the purpose of Data Management.

4.9. Based on the Regulation, the data controller is not obliged to appoint a data protection officer, as the Data Controller is not considered a public authority or a body performing public tasks, the activities of the sole proprietor do not include operations that require regular and systematic, large-scale monitoring of the Data Subjects, and the Data Controller does not process sensitive data or personal data related to decisions establishing criminal liability and crimes.

5. Legal basis for data processing

5.1 Article 6 of the GDPR states in which cases the personal data of Data Subjects may be processed:

a) the data subject has given consent to the processing of his or her personal data for one or more specific purposes;

b) the processing is necessary for the performance of a contract to which the data subject is a party, or in order to take steps at the data subject's request prior to entering into a contract;

c) the processing is necessary for compliance with a legal obligation to which the controller is subject;

d) the processing is necessary to protect the vital interests of the data subject or of another natural person;

e) the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.”

5.2. Taking into account the nature of the data controller's activity, the legal basis for data processing is primarily the voluntary, informed and explicit consent of the Data Subject (Article 5(1)(a) of the Data Protection Act), following the establishment of any contractual obligation between the data controller and the Data Subject, point 5.1.b) of the Regulation above and point 5.1.c) of the Regulation above. The Data Subject voluntarily contacts the sole proprietor, voluntarily registers, voluntarily uses the services of the sole proprietor, voluntarily participates in market research and answers the questions asked or participates in focus group discussions. In the absence of the consent of the Data Subjects, the Data Controller shall only process data if clearly authorised to do so by law.

5.3 Where processing is based on consent, the controller must be able to demonstrate that the data subject has consented to the processing of their personal data.

5.4. The Data Subject has the right to withdraw his/her consent at any time in relation to all data processing the legal basis of which is the Regulation, point 5.1.a) above. The withdrawal of consent does not affect the lawfulness of the data processing based on consent, prior to the withdrawal, and in accordance with points 5.1.b) and/or c) above of the Regulation.

5.5. Data Transfer to Data Processors specified in the Information may be carried out without the specific consent of the Data Subject. The release of personal data to third parties or authorities – unless otherwise provided by law – is possible only on the basis of a final authority decision or with the prior, express consent of the Data Subject.

6. Purpose of data processing

The processing of data must be carried out lawfully and fairly, and in a manner that is transparent to the Data Subject. The data controller strives to process only personal data that is essential for the purpose of the processing and is suitable for achieving the purpose. Personal data may only be processed to the extent and for the period necessary for the purpose.

The purpose of data processing based on the above is:

  • identification of the Data Subject, contact with the Data Subject

  • control of data collection in market research projects

  • provide concise, transparent, understandable and easily accessible information to the Data Subject

  • the establishment and performance of legal transactions between the data controller and the Data Subject within the scope of the individual entrepreneur's activities

  • In case of using a service subject to payment of a fee, collection of the fee and invoicing

  • fulfillment of the obligations incumbent on the Data Controller, exercise of the rights of the Data Controller

  • analyses, statistics, development of services - for this purpose, the data controller only uses anonymized data and aggregates that are not suitable for personal identification

  • protection of the rights of the Data Subject.

7. Source of data

The data controller only processes Personal Data provided by Data Subjects and does not collect data from other sources.

8. Scope of processed data

The data controller only processes personal data provided by the Data Subjects. The data processed are as follows:

The data processed by the data controller can be classified into the following groups based on the purpose of the data processing:

  • Data required for registration . During registration, the Data Subject provides their e-mail address, which will be the username, the Data Subject freely chooses a password. The legal basis for data processing is the Data Subject's consent, the primary purpose of data processing is registration and the provision of the Website's services.

  • Data provided during public opinion polls: during public opinion polls conducted by the data controller, the data provided by the Data Subject will be processed, recorded and used later. The sole proprietor is entitled to process such data pursuant to Article 9(2)(e) of the GDPR.

  • Uploaded documents . The Data Subject has the option, and in some cases the obligation, to upload images of certain personal documents. The Data Controller recommends that personal data not required for the conclusion of a legal transaction between the parties and not requested by the Data Controller be deleted from these documents (as described in point 10 below). If the Data Subject publishes an image of a document containing personal data, the legal basis for data processing is the Data Subject's consent. In the case of photographs, the purpose of data processing is to provide the services of the Website.

  • Billing data . If the Data Subject pays consideration to the Data Controller, the Data Controller processes data related to payment and billing (method of payment, data of the payment instrument used, in the case of billing, the name, address, tax number of the buyer). The legal basis for data processing is partly the consent of the Data Subject, partly the legislation on taxation and accounting. The purpose of data processing is invoicing and collection of fees.

  • Data and documents provided during verification . Data subjects have the opportunity to verify themselves, as described in point 11 below. The documents are processed as described in point 11. The purpose of data processing is to verify the identity of the advertiser and the advertised car.

    • Data, information, photographs provided when applying for a job advertisement . The data controller informs all data subjects who wish to fill a position with the sole proprietor and who wish to disclose their personal data to this end or who communicate this to the sole proprietor that the Data Controller will not process their personal data or consider the application for the job as received until the data subjects have become familiar with the content of this information and instructions and have acknowledged the fact of acquaintance in writing, at least by e-mail or by means of a statement recorded in the CV or job application sent to the Company.

The data controller also informs the data subjects that, pursuant to Article 6(b) of the Regulation, the processing of the personal data provided by the data subject to the Company in order to fill a position with the Company and/or prepare an employment contract is considered data processing necessary to take steps at the data subject's request prior to the conclusion of the contract, therefore the Company is entitled to process these data without consent until the employment relationship with the data subject is established, but for a maximum of three months.

If the employment relationship with the data subject is not established for any reason, or if the period specified in the previous paragraph has elapsed, the data controller is entitled to store the above personal data of the data subject for two years, provided that the legal basis for this data processing is the data subject's consent, which is, however, governed by the provisions of point 2 above. The purpose of this data processing based on consent is that in a future situation where the Company may consider the data subject suitable for the employment relationship or other legal relationship aimed at work that the Company intends to establish, the personal data enable the Company to formulate this position and to contact the data subject directly.

In the case of consent-based data processing pursuant to this point, the data controller obliges its Employees to upload the personal data appearing in their email system to the Company's central storage as soon as possible and to delete it from other storage locations.

In addition to the above, the data controller processes technical data, including the IP address, as described in point 13.

9. Description of the data processing process

The source of the data is the Data Subject, who provides the data during the completion of the market research questionnaire, during registration, or later, by logging into the Website. The provision of data on the registration form is mandatory, unless expressly stated otherwise.

The Data Subject provides the data independently, the Data Controller does not provide any binding guidelines in this regard, and does not impose any content requirements. The Data Subject expressly consents to the processing of the data provided by him/her. The Data Subject is entitled to provide other data in his/her profile in addition to the data requested by the Data Controller, and the legal basis for the processing of the data in this case is also the voluntary consent of the Data Subject.

  1. If the Data Subject registers for a promotion organized by the Data Controller (e.g. on Facebook) and provides the requested data there, he/she accepts the data processing information related to the given promotion. In this case, by providing the data, the Data Subject does not register on the Website, but consents to the processing of the provided data as specified in the promotion information.

10. Data processing related to documents

In the event of an opportunity on the Website, or a mandatory invitation on the Website, there is an obligation for the Data Subject to provide the Data Controller with their personal documents in order to facilitate the conclusion of a legal transaction between the parties.

The Data Subject – unless required by the Data Controller – has the option to publish the documents by deleting the personal data. If the Data Subject does not delete the data, he/she consents to the publication of the data in the event of publication.

If the Data Controller does not require the publication of documents with personal data and provides the option to delete the data, the Company shall not be liable for any possible publication.

11. Authentication

The purpose of the authentication process is to enable the Data Controller to verify the authenticity of the Data Subject. The Company verifies that the Data Subject indicating the indicated intention to conclude a contract is indeed a natural person. After the verification, the Company deletes the photos and data from the Website, but stores them in another storage location until the legal basis for data processing ceases. The purpose of data processing is to authenticate the Data Subjects and to facilitate the creation and lawful performance of the legal transaction once it has been created.

12. Data processing for advertising purposes, sending newsletters

If the Data Subject consents, the Data Controller will contact the Data Subject at the provided contact details and send him/her advertising by direct inquiry. The advertising may be sent by post, telephone (including SMS), or e-mail (including Messenger), in each case subject to the Data Subject's consent. The Data Subject may withdraw his/her consent at any time without giving reasons.

13. Cookies

the Data Controller's system may automatically record the IP address of the Data Subject's computer, the start time of the visit, and in some cases - depending on the computer's settings - the type of browser and operating system. The data recorded in this way cannot be linked to other personal data. The data is processed for statistical purposes only.

Cookies enable the Website to recognize, identify and record previous visitors. Cookies help the Data Controller, as the operator of the Website, to optimize the Website and to tailor the Website services to the habits of the Data Subjects. Cookies are also suitable for:

  • remember the settings so that the Data Subject does not have to re-enter them when accessing a new page,

  • they remember previously entered data, so you don't have to type it in again,

  • analyze the use of the website in order to ensure that, as a result of the developments carried out using the information obtained in this way, it functions as much as possible according to the expectations of the Data Subject, the Data Subject can easily find the information they are looking for, and

  • they monitor the effectiveness of our ads.

If the Data Controller displays various contents on the Website using external web services, this may result in the storage of some cookies that are not controlled by the Company, so it has no influence on what data these websites or external domains collect. Information about these cookies is provided in the policies applicable to the given service.

The Data Controller uses cookies to display advertisements to Data Subjects via Google and Facebook. Data processing takes place without human intervention.

The Data Subject has the option to delete cookies in their browser (usually in the privacy section of the settings). By prohibiting the use of cookies, the Data Subject acknowledges that the Website cannot function fully without cookies.

14. Data transfer

The Company will only transfer personal data to a third party if the Data Subject has clearly consented to this - knowing the scope of the data transferred and the recipient of the data transfer - or if the law authorizes the transfer of data.

The Company is entitled and obliged to forward all Personal Data in its possession and duly stored by it to the competent authorities, which Personal Data it is obliged to forward by law or a legally binding official obligation. The Company cannot be held liable for such Data Forwarding and the consequences arising therefrom.

The Company documents data transfers in all cases and keeps records of data transfers.

15. Data processing

The Company is entitled to use a data processor to perform its activities. Data processors do not make independent decisions, they are entitled to act only in accordance with the contract concluded with the Company and the instructions received. The Company monitors the work of data processors. Data processors are entitled to use additional data processors only with the consent of the Company. The Company may only use data processors who, or which provide adequate guarantees for the implementation of appropriate technical and organizational measures ensuring the compliance of data processing and the protection of the rights of data subjects.

The data processor may not use additional data processors without the prior written or general authorization of the Company. In the case of general written authorization, the data processor shall inform the Company of any planned changes that affect the use of additional data processors or their replacement, thereby providing the Company with the opportunity to object to these changes.

The Company indicates the data processors used in the Notice.

Data processors used by the Company: The Company does not currently use any data processors.

16. External service providers

The Company uses External Service Providers, with which the Company cooperates.

Personal data processed in the systems of External Service Providers shall be governed by the External Service Providers' own data protection regulations. The Company shall do its utmost to ensure that the External Service Provider processes the Personal data transmitted to it in accordance with the law and uses it exclusively for the purposes specified by the Data Subject or set out below in the Notice.

The Company informs Data Subjects about the transfer of data to External Service Providers in the Notice.

External service providers: The Company does not currently use any external service providers.

17. Data security related tasks

The Company ensures the security of data, takes the technical and organizational measures and develops the procedural rules that are necessary to enforce the applicable laws, data protection and confidentiality rules. The Company protects the data with appropriate measures against unauthorized access, alteration, transmission, disclosure, deletion or destruction, as well as against accidental destruction and damage, and against inaccessibility resulting from changes in the technology used.

The Company and the data processor shall implement appropriate technical and organizational measures, taking into account the state of science and technology and the costs of implementation, the nature, scope, circumstances and purposes of data processing, and the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to guarantee a level of data security appropriate to the degree of the risk.

Within the framework of the above, the Company:

  • ensures measures to protect against unauthorized access, including the protection of software and hardware devices, as well as physical protection (access protection, network protection);

  • takes measures to ensure the possibility of restoring data files, including regular backups;

  • takes care of virus protection.

18. Duration of data processing

The Company deletes the Personal Data,

a) If it turns out that the data is being processed unlawfully, the Company will delete it immediately.

b) If requested by the Data Subject (except for data processing based on legal provisions);

The Data Subject may request the deletion of data processed based on the Data Subject's voluntary consent. In this case, the Company will delete the data. Deletion may only be refused if the processing of the data is authorized by law. The Company will always provide information about the refusal of the deletion request and the law permitting the processing of the data.

c) If it turns out that the data is incomplete or incorrect – and this condition cannot be legally remedied – provided that deletion is not precluded by law;

d) If the purpose of data processing has ceased to exist or the statutory period for storing the data has expired;

Deletion may be refused (i) if the processing of Personal Data is authorized by law; and (iii) for legal protection and enforcement.

In all cases, the Company will inform the Data Subject of the denial of the deletion request, indicating the reason for the denial of the deletion. After the request for deletion of personal data has been fulfilled, the previous (deleted) data can no longer be restored.

Newsletters sent by the Company can be unsubscribed via the unsubscribe link in them. In case of unsubscription, the Company will delete the Data Subject's Personal Data from the newsletter database.

e) It has been ordered by the court or the National Data Protection and Freedom of Information Authority

If a court or the National Authority for Data Protection and Freedom of Information orders the deletion of the data with final effect, the deletion will be carried out by the Data Controller.

Instead of erasure, the Company – informing the Data Subject – blocks the personal data if the Data Subject requests it or if, based on the information available to it, it can be assumed that the deletion would harm the legitimate interests of the Data Subject. Personal data blocked in this way may only be processed for as long as the purpose of the data processing that precluded the deletion of the personal data exists. The Company marks the personal data it processes if the Data Subject disputes its correctness or accuracy, but the incorrectness or inaccuracy of the disputed personal data cannot be clearly established.

In the case of data processing ordered by law, the deletion of data is governed by the provisions of the law.

In the event of deletion, the Company will make the data unidentifiable. If required by law, the Company will destroy the data carrier containing the personal data.

19. Rights of Data Subjects in relation to data processing

19.1. The Company shall inform the Data Subject about the processing of the data at the same time as the contact is made. The Data Subject shall also have the right to request information about the processing of the data at any time.

The Data Subject has the right to receive feedback from the Company as to whether his/her personal data is being processed and, if such processing is taking place, to have access to the personal data and information on the purposes of the processing, the categories of personal data concerned, the recipients or categories of recipients to whom or to whom the personal data have been or will be disclosed, the planned period for which the personal data will be stored or, if that is not possible, the criteria for determining such period. The Data Subject has the right to request from the Data Controller rectification, erasure or restriction of processing of personal data concerning him/her and to object to the processing of such personal data. He/she also has the right to lodge a complaint with a supervisory authority and, if the data were not collected from the Data Subject, all available information on their source.

19.2. The Data Subject shall have the right to obtain from the Controller, upon request, the rectification of inaccurate personal data concerning him or her without undue delay. Taking into account the purpose of the processing, the Data Subject shall have the right to request the completion of incomplete personal data, including by means of a supplementary statement.

19.3. The Data Subject may request the Company to delete personal data concerning him or her without undue delay, with the exception of data processing operations required by law. The Company shall inform the Data Subject of the deletion.

19.4. The Data Subject may object to the processing of his or her personal data as specified in the Privacy Act.

19.5. The Data Subject may submit his/her request for information, correction or deletion in writing, in a letter addressed to the Company's registered office or premises, or by sending a letter to the Company's dataprotection@BeBrand.hu sent by email to.

19.6. The Data Subject may request that the Company restrict the processing of his/her Personal Data if the Data Subject disputes the accuracy of the Personal Data processed. In this case, the restriction shall apply for a period of time that allows the Company to verify the accuracy of the Personal Data. The Company shall mark the Personal Data processed by it if the Data Subject disputes its correctness or accuracy, but the incorrectness or inaccuracy of the disputed Personal Data cannot be clearly established.

The Data Subject may request that the Company restrict the processing of his/her Personal Data even if the Data Processing is unlawful, but the Data Subject opposes the deletion of the processed Personal Data and instead requests the restriction of their use.

The Data Subject may also request the restriction of the processing of his/her Personal Data by the Company if the purpose of the Data Processing has been achieved, but the Data Subject requires the Company to process them for the purpose of submitting, enforcing or defending legal claims.

19.7. The Data Subject has the right to receive the personal data concerning him or her, which he or she has provided to a data controller, in a structured, commonly used and machine-readable format and has the right to transmit these data to another data controller without hindrance from the data controller to which the personal data have been provided.

19.8. If the Company does not comply with the Data Subject's request for rectification, blocking or erasure, it shall provide the Data Subject with the reasons for rejecting the request for rectification, blocking or erasure in writing within 30 days of receipt of the request. In the event of rejection of the request for rectification, blocking or erasure, the data controller shall inform the Data Subject of the possibility of seeking judicial redress and of contacting the National Data Protection and Freedom of Information Authority.

19.9. The Data Subject may make the above declarations regarding the exercise of his/her rights at the contact details of the data controller as stated in point 2.

19.10. The Data Subject may file a complaint directly with the National Data Protection and Freedom of Information Authority (address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.; telephone: +36-1-391-1400; e-mail: ugyfelszolgalat@naih.hu ; website: www.naih.hu) also. The Data Subject has the right to apply to court in the event of a violation of his or her rights pursuant to Section 22 (1) of the Infotv. The adjudication of the lawsuit falls within the jurisdiction of the court. The lawsuit may also be initiated – at the choice of the Data Subject – before the court of the place of residence or residence of the Data Subject. Upon request, the Data Controller shall inform the Data Subject in detail about the possibility and means of legal remedy.

Reakty website is owned by Reakty, which is a data controller of your personal data.

We have adopted this Privacy Policy, which determines how we are processing the information collected by Reakty, which also provides the reasons why we must collect certain personal data about you. Therefore, you must read this Privacy Policy before using Reakty website.

We take care of your personal data and undertake to guarantee its confidentiality and security.

Personal information we collect:

When you visit the Reakty, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the installed cookies on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products you view, what websites or search terms referred you to the Site, and how you interact with the Site. We refer to this automatically-collected information as “Device Information.” Moreover, we might collect the personal data you provide to us (including but not limited to Name, Surname, Address, payment information, etc.) during registration to be able to fulfill the agreement.

Why do we process your data?

Our top priority is customer data security, and, as such, we may process only minimal user data, only as much as it is absolutely necessary to maintain the website. Information collected automatically is used only to identify potential cases of abuse and establish statistical information regarding website usage. This statistical information is not otherwise aggregated in such a way that it would identify any particular user of the system.

You can visit the website without telling us who you are or revealing any information, by which someone could identify you as a specific, identifiable individual. If, however, you wish to use some of the website’s features, or you wish to receive our newsletter or provide other details by filling a form, you may provide personal data to us, such as your email, first name, last name, city of residence, organization, telephone number. You can choose not to provide us with your personal data, but then you may not be able to take advantage of some of the website’s features. For example, you won’t be able to receive our Newsletter or contact us directly from the website. Users who are uncertain about what information is mandatory are welcome to contact us via narmol.piackutatas@gmail.com.

Your rights:

If you are a European resident, you have the following rights related to your personal data:

  • The right to be informed.

  • The right of access.

  • The right to rectification.

  • The right to erasure.

  • The right to restrict processing.

  • The right to data portability.

  • The right to object.

  • Rights in relation to automated decision-making and profiling.

If you would like to exercise this right, please contact us through the contact information below.

Additionally, if you are a European resident, we note that we are processing your information in order to fulfill contracts we might have with you (for example, if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information might be transferred outside of Europe, including Canada and the United States.

Links to other websites:

Our website may contain links to other websites that are not owned or controlled by us. Please be aware that we are not responsible for such other websites or third parties' privacy practices. We encourage you to be aware when you leave our website and read the privacy statements of each website that may collect personal information.

Information security:

We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We keep reasonable administrative, technical, and physical safeguards to protect against unauthorized access, use, modification, and personal data disclosure in its control and custody. However, no data transmission over the Internet or wireless network can be guaranteed.

Legal disclosure:

We will disclose any information we collect, use or receive if required or permitted by law, such as to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

Contact information:

If you would like to contact us to understand more about this Policy or wish to contact us concerning any matter relating to individual rights and your Personal Information, you may send an email to narmol.piackutatas@gmail.com.