Privacy statement .

and privacy notice for visitors and users of the www.publica.hu website

1. Introduction

The operator of www.publica.hu - hereinafter referred to as the Website - Publicity AIM Kft (hereinafter referred to as the Data Controller), as the Data Controller, publishes this Privacy Statement and Privacy Notice (hereinafter referred to as the Privacy Statement), which describes the principles of data management, which the Data Controller acknowledges as binding. The Controller shall take all measures reasonably necessary to ensure the security of the personal data it processes.

Before using our Website, please read this Privacy Statement, which explains in plain language how we handle your personal data. In the Privacy Statement, the Data Controller informs the data subject clearly and in detail about all relevant facts concerning the processing of data.

The Data Controller processes the data of the persons registered on the website in the course of its operation, in order to provide them with an appropriate service. The Service Provider intends to fully comply with the legal requirements for the processing of personal data, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council.

This Privacy Notice has been prepared pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of personal data of natural persons and on the free movement of such data, taking into account the content of Act CXII of 2011 on the right to information self-determination and freedom of information.

Name of service provider, data controller

  • Name: Publicity AIM Kft
  • Registered office: 7800 Siklós, Felszabadulás u. 7/a
  • Location: 1095 Budapest, Soroksári út 48, building 7, office 1
  • Tax number: 14543502-2-02
  • Company registration number: 02-09-080559
  • Owner, Managing Director: Krisztina Szabó

Contact details of the controller

 

2. Definitions

  • personal data - any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person 
  • data subject: any specified natural person who is identified or can be identified, directly or indirectly, on the basis of personal data
  • data subject's consent: a voluntary, specific, informed and unambiguous indication of the data subject's wishes by which he or she signifies his or her agreement to the processing of personal data concerning him or her by means of a statement or an unambiguous act of affirmation;
  • controller: the natural or legal person, public authority, agency or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or the specific criteria for the controller's designation may also be determined by Union or Member State law.
  • 'processing' means any operation or set of operations which is performed upon data, regardless of the procedure used, in particular any collection, recording, recording, organisation, storage, alteration, use, retrieval, disclosure, transmission, alignment or combination, blocking, erasure or destruction of data, prevention of their further use, taking of photographs, sound recordings or images and recording of physical characteristics which can be used to identify a person (e.g. fingerprints, palm prints, DNA samples, iris scans)
  • erasure: making data unrecognisable so that it is no longer possible to recover it
  • processor: a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller;
  • 'processing' means the performance of technical tasks related to data processing operations, irrespective of the method and means used to perform the operations and the place of application, provided that the technical task is performed on the data
  • dataset: the set of data managed in a single register
  • data breach: a breach of security that results in the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.
  • recipient: the natural or legal person, public authority, agency or any other body, whether or not a third party, to whom or with whom the personal data are disclosed. Public authorities which may have access to personal data in the context of an individual investigation in accordance with Union or Member State law are not recipients; the processing of those data by those public authorities must comply with the applicable data protection rules in accordance with the purposes of the processing;
  • third party: a natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor or the persons who, under the direct authority of the controller or processor, are authorised to process personal data.
  • information society services: services provided electronically to remote users, usually for remuneration, and to which the recipient of the service has individual access
  • e-commerce service: an information society service for the purpose of the sale, purchase, exchange or other use of a negotiable movable tangible property, including money and securities, and natural resources which can be used as property, services, immovable property, rights of pecuniary value (hereinafter together referred to as "goods"), in the course of a commercial activity.
  • GDPR (General Data Protection Regulation): the European Union's new Data Protection Regulation

 

3. Scope of users

A User is a natural person who is registered on the Site, as well as a natural person who is not registered but uses the services of the Site and is identified or identifiable, directly or indirectly, on the basis of any specific personal data.

4. Principles of data management

The controller declares that it will process personal data in accordance with the provisions of the Privacy Notice and will comply with the applicable laws, in particular with regard to:

  • The processing of personal data must be lawful, fair and transparent for the data subject.
  • Personal data may only be collected for specified, explicit and legitimate purposes.
  • The purposes for which personal data are processed must be adequate, relevant and limited to what is necessary.
  • Personal data must be accurate and up to date.
  • Inaccurate personal data must be deleted immediately.
  • Personal data must be stored in a form which permits identification of data subjects for no longer than is necessary. Personal data may be stored for longer periods only if the storage is for archiving purposes in the public interest, scientific and historical research purposes or statistical purposes.
  • Personal data must be processed in such a way as to ensure adequate security of personal data, including protection against unauthorised or unlawful processing, accidental loss, destruction or damage, by using appropriate technical or organisational measures.
  • The data protection principles apply to all information relating to an identified or identifiable natural person.

5. Important information on data access

  • Purpose of processing: to maintain contact, provide information and additional services.
  • Legal basis for processing: consent of the data subject.
  • The data subjects concerned by the processing are: registration users of the website (newsletter subscribers, enquirers via the form).
  • Duration of data processing and deletion of data - the duration of data processing always depends on the specific purpose of the user, but data must be deleted immediately once the original purpose has been achieved. The data subject may withdraw his or her consent to the processing at any time by sending an e-mail to the contact e-mail address. If there is no legal obstacle to the deletion, your data will be deleted.
  • The data may be accessed by: the controller and its employees.
  • The data subject may request the controller to access, rectify, erase or restrict the processing of personal data relating to him or her and may object to the processing of such personal data and the data subject's right to data portability.
  • The data subject may withdraw his or her consent at any time, but this does not affect the lawfulness of the processing carried out on the basis of the consent prior to its withdrawal.
  • The person concerned may exercise the right to lodge a complaint with the supervisory authority.
  • If the data subject wishes to benefit from the registration, i.e. to use the services of the website, he or she must provide the requested personal data. The data subject is not obliged to provide personal data and will not suffer any disadvantage if he/she does not provide such data. However, it is not possible to use certain functions of the website without registration.
  • The data subject shall have the right to obtain from the controller, upon his or her request and without undue delay, the rectification or integration of inaccurate personal data relating to him or her.
  • The data subject shall have the right to obtain from the controller, upon his or her request, the erasure of inaccurate personal data relating to him or her without undue delay and the controller shall be obliged to erase personal data relating to him or her without undue delay, unless there is another legal basis for the processing.
  • You may request the modification or deletion of your personal data by e-mail, telephone or letter using the contact details provided above.

6. Fill in the contact form on the website

The Data Controller uses the data collected through the contact form submitted via the website solely for the purpose of maintaining contact and providing information, and does not store the data in a database.

7. Sending of newsletters

As the operator of this website, we declare that the information and descriptions published by us fully comply with the relevant legal provisions. We also declare that when subscribing to a newsletter, we are not in a position to verify the authenticity of the contact details or to establish whether the details provided relate to an individual or a company. Companies that contact us will be treated as a customer partner.

The purpose of data processing is to send you professional brochures, electronic messages containing advertising, information and newsletters, from which you can unsubscribe at any time without any consequences. You may also unsubscribe without any consequences if your business has ceased to exist, you have left the business or someone has provided us with your contact details.

The legal basis for processing is your consent. Please be informed that the user may give his/her prior and explicit consent to be contacted by the service provider with promotional offers, information and other mailings to the e-mail address provided at the time of registration. As a consequence, the user may consent to the processing of the necessary personal data by the service provider for this purpose.

Please note that if you wish to receive a newsletter from us, you must provide the necessary information. If you do not provide this information, we will not be able to send you a newsletter.

Duration of processing: processing will continue until consent is withdrawn. You may withdraw your consent to the processing at any time by sending an e-mail to the contact e-mail address.

The data will be deleted when consent to data processing is withdrawn. You can withdraw your consent to data processing at any time by sending an e-mail to the contact e-mail address.

You can also withdraw your consent by following the link in the newsletters sent to you.

The data may be accessed by: the controller and its employees.

Data storage method: electronic.

Changes or deletion of data may be initiated by e-mail, telephone or letter using the contact details provided above.

The specific purposes for which the data are processed:

Email: identification, contact

Date of subscription: technical information operation

IP address: technical information operation

Please note that the e-mail address does not need to contain any personal information. For example, it is not necessary that the e-mail address contains your name. You are entirely free to choose whether or not to provide an e-mail address that contains information that identifies you. The e-mail address, which is used to contact you, is absolutely necessary to ensure that any newsletter or professional information sent to you is received.

The person authorised to process personal data is Publicity AIM Kft (Registered Office: 7800 Siklós, Felszabadulás u. 7/a, Company Registration Number: 02-09-080559, Tax Number: 14543502-2-02, hereinafter referred to as the "Data Processor") as the Data Processor. The personal data to be processed may be known to the respective legal representative(s), employees/agents/contractors of the Data Processor. The Processor shall not disclose personal data to third parties, except with the express consent of the data subject.

 

8. The person authorised to process the data

Hosting
Name/company name: Rackhost Zrt.
Registered office: 6722 Szeged, Tisza Lajos körút 41.
E-mail: info@rackhost.hu

The data you provide is stored on a server operated by the hosting provider. Only our staff or the staff operating the server have access to the data, but they are all responsible for the security of the data.

  • The activity is called hosting, server services.
  • The purpose of the processing: to ensure the functioning of the website.
  • Data processed: personal data provided by the data subject
  • Duration of data processing and time limit for deletion of data
  • Data processing until the end of the website's operation or in accordance with the contractual agreement between the website operator and the hosting provider. If necessary, the data subject may request the deletion of his/her data by contacting the hosting provider.
  • Legal basis for processing: consent of the data subject or processing based on law.

 

9. Duration of processing

The Data Controller shall process personal data provided on the basis of the User's consent until the purpose of the processing is fulfilled or the User's consent is withdrawn. The Data Controller shall process the personal data provided by the User during registration until the termination of the use of the Website, in particular until the cancellation of the registration.

Unless otherwise provided by law, the Data Controller may process the personal data collected a) for the purpose of complying with a legal obligation to which it is subject, or b) for the purposes of the legitimate interests pursued by the Data Controller or a third party, where such interests are proportionate to the restriction of the right to the protection of personal data, without further specific consent and even after the withdrawal of the data subject's consent./ Act CXII of 2011, § 6 ( 5) /

The Data Controller shall retain and process the personal data provided by the User for the purpose of fulfilling the accounting obligations pursuant to Article 169 of Act C of 2000 for a period of 8 years, or within the limitation period set forth in Act XCII of 2003 on the Rules of Taxation.

 

10. Data transmission, data linking

The Data Controller does not sell, rent or in any way make available personal data or information about the User to other companies or individuals.

The Data Controller shall ensure adequate security of the data to the extent that it can be expected to do so, and shall take the technical and organisational measures necessary to ensure the enforcement of data protection rules and principles and to facilitate the security of personal data.

We inform the Users that the Data Controller will only transfer personal data to a third person or persons with the consent of the data subject.

 

11. Cookies

Cookies are placed on the user's computer by the websites visited and contain information such as the page settings or login status.

Cookies are therefore small files created by the websites you visit. They improve the user experience by saving browsing data. Cookies help the website to remember your website settings and offer you locally relevant content.

A small file (cookie) is sent by the provider's website to the website visitors' computer in order to establish the fact and time of the visit. The provider informs the website visitor of this.

  • Data subjects concerned: visitors to the website.
  • Purpose of data processing: additional services, identification, tracking of visitors.
  • Legal basis for processing: the user's consent is not required if the use of cookies is strictly necessary for the service provider.
  • The scope of the data - unique ID number, time, configuration data.
  • The user has the possibility to refuse cookies by
  • You can delete it from your browsers at any time in the Settings menu.
  • Data controllers entitled to know the data - no personal data is processed by the data controller through the use of cookies.
  • Data storage method: electronic.

 

12. Social sites

A social networking site is a media tool where the message is spread through social users. Social media uses the Internet and online publishing to transform users from content receivers to content editors.

Social media is the interface of web applications that hosts user-generated content, such as Facebook, Google+, Twitter, etc.

Social media can take the form of public speeches, presentations, demonstrations, product or service launches.

The information published on social media can take the form of forums, blog posts, images, video, audio, message boards, email messages, etc.

As stated above, the scope of the data processed may include, in addition to personal data, the public profile picture of the user.

  • Data subjects: all registered users.
  • The purpose of data collection is to promote the website or a related website.
  • The legal basis for processing is the voluntary consent of the data subject.
  • Duration of data processing: according to the rules available on the relevant community site.
  • Deadline for deletion of data - according to the rules available on the relevant Community site.
  • Those entitled to access the data - according to the rules available on the relevant Community site.
  • Data processing rights: according to the rules available on the relevant community site.
  • Data storage method: electronic.
  • It is important to note that when a user uploads or submits personal data, he or she is giving the social networking site operator worldwide a valid permission to store and use such content. Therefore, it is very important to make sure that the user has full permission to disclose the information posted.

 

13. Google Analytics

Our website uses Google Analytics.

When using Google Analytics:

Google Analytics uses internal cookies to compile reports for its customers on the habits of website users.

On behalf of the website operator, Google will use this information to evaluate how users use the website. As an additional service, the website operator will compile reports on website activity for the website operator so that it can provide additional services.

Data is stored on Google's servers in encrypted format to make it more difficult and prevent misuse.

You can disable Google Analytics by. Quote from the page:

Site users who do not want Google Analytics to generate JavaScript reports about their data can install the Google Analytics browser add-on to disable it. The extension will prevent Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sending information to Google Analytics. The browser extension can be used in most recent browsers. The Google Analytics browser add-on does not prevent data from being sent to the website itself and other web analytics services.

https://support.google.com/analytics/answer/6004245?hl=hu

Google Privacy Policy: https://policies.google.com/privacy?hl=hu

More information on the use and protection of data can be found in the links above.

DATA PROTECTION IN DETAIL

https://static.googleusercontent.com/media/www.google.com/en//intl/hu/policies/privacy/google_privacy_policy_hu.pdf

 

14. Rights in relation to Data Processing

The right to request information

You may request information from us, via the contact details provided, about what data our company processes, on what legal basis, for what purpose, from what source and for how long. Upon your request, we will send you information without delay, but within 30 days at the latest, to the e-mail address you have provided.

The right to rectification

You can ask us to change any of your details using the contact details provided. Upon your request, we will promptly, but within 30 days at the latest, inform you of this by e-mail to the e-mail address you have provided.

The right to erasure

You can ask us to delete your data using the contact details provided. Upon your request, we will do so without delay, but within 30 days at the latest, by sending you an e-mail to the e-mail address you have provided.

The right to blocking

You can ask us to block your data using the contact details provided. The blocking will last as long as the reason you have given us makes it necessary to store the data. Upon your request, we will do so without delay, but within a maximum of 30 days, by sending you an e-mail to the e-mail address you have provided.

The right to protest

You may object to the processing of your data by using the contact details provided. We will examine the objection within the shortest possible time from the date of the request, but no later than 15 days, decide whether it is justified and inform you of our decision by e-mail.

 

15. Enforceability of data processing

If you experience unlawful processing, please notify us so that we can restore the lawful status within a short period of time. We will do our utmost to resolve the problem in your interest.

If you consider that the lawful status cannot be restored, please notify the authority using the following contact details:

National Authority for Data Protection and Freedom of Information
Postal address: 1530 Budapest, PO Box 5.
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.
Phone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
E-mail: ugyfelszolgalat@naih.hu
URL: https://naih.hu
Coordinates: É 47°30'56"; K 18°59'57"

 

16. Laws on which the processing is based

REGULATION (EU) No 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation).

Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information.

Act LXVI of 1995 on public records, public archives and the protection of private archival material.

Government Decree 335/2005 (XII. 29.) on the general requirements of document management by public bodies.

Act CVIII of 2001 on certain aspects of electronic commerce services and information society services.

Act C of 2003 on electronic communications.

Effective date of this Privacy Notice: 25.09.2024.

The controller reserves the right to make changes.