PRIVACY POLICY
1. INTRODUCTION
CLOUDBRIKZ Ltd. (3300 Eger, Cecey Éva Str. 59., hereinafter referred to as the Service Provider, data controller), as the data controller, recognizes the content of this legal notice as binding. It undertakes to ensure that all data processing related to its activities complies with the requirements set out in this policy and the applicable laws and regulations.
CLOUDBRIKZ Ltd.’s data protection policies related to the data management of its services available at manookadesign.hu can be accessed continuously at https://www.cloudbrikz.com/impressum.
CLOUDBRIKZ Ltd. reserves the right to change this information at any time. Any changes will be communicated to the public in due time.
If any user has a question that is not clear based on this announcement, please contact us, and our colleague will answer the question.
CLOUDBRIKZ Ltd. is committed to protecting the personal data of its users and partners and attaches great importance to respecting its customers’ right to self-determination. Insight Consulting Ltd. handles personal data confidentially and takes all necessary security, technical and organizational measures to guarantee data security.
CLOUDBRIKZ Ltd. outlines its data processing principles below, presents the expectations it has formulated for itself as a data controller, and adheres to. Its data management principles are in line with the current laws and regulations related to data protection, particularly:
- Act CXIX of 2011 – on the processing of name and address data for the purpose of research and direct marketing (Katv.);
- Act C of 2000 – on accounting (Számv. tv.);
- Act CVIII of 2001 – on certain issues related to electronic commerce services and services related to the information society (Eker. tv.);
- Act XLVIII of 2008 – on the basic requirements and certain limitations of economic advertising activities (Grt.);
- Act CXII of 2011 – on the right to informational self-determination and freedom of information (hereinafter: Infotv.)
2. DEFINITIONS
2.1 Personal data:
any data that can be related to the data subject, in particular the name, identification mark, and any knowledge of physical, physiological, mental, economic, cultural, or social identity characteristic of the data subject, as well as any conclusion that can be drawn from the data regarding the data subject;
2.2 Consent:
the voluntary and explicit expression of the data subject’s wishes, based on appropriate information, by which the data subject gives unambiguous consent to the processing of his or her personal data – in full or for certain operations;
2.3 Objection:
the data subject’s statement that he or she objects to the processing of his or her personal data and requests that the processing of the data be terminated and the data be deleted;
2.4 Data controller:
any natural or legal person or organization without legal personality who determines the purposes and means of data processing individually or jointly with others; in the case of this policy, the Service Provider is the data controller;
2.5 Data processing:
any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction;
2.6 Data processor:
any natural or legal person or organization without legal personality who processes personal data on behalf of the data controller.
3. DATA MANAGEMENT
Personal data can only be processed if: a) the data subject has given their consent, or b) it is required by law or a local government decree within the scope defined therein.
The consent of the legal representative is required for a minor who is legally incompetent or partially legally competent to make a statement, except for those parts of the service where the statement aims to register mass activities in everyday life and does not require special consideration.
Personal data can only be processed for specific purposes, for the exercise of rights, and for fulfilling obligations. At every stage of data management, it must comply with this purpose.
Only personal data that is essential to achieving the purpose of data management may be processed, in a way that is suitable for achieving the goal, only to the extent and for the duration necessary to achieve the goal. Personal data can only be processed with informed consent.
The data subject must be informed clearly, understandably, and in detail about all facts related to the management of their data, particularly the purpose and legal basis of data management, the person authorized to process the data, the duration of data management, and who can access the data. The information must also extend to the data subject’s rights and options for redress related to data management.
Processed personal data must meet the following requirements: a) Recording and processing must be fair and lawful; b) Accurate, complete, and timely if necessary; c) The method of storage must be suitable for identifying the data subject for only the necessary period.
The use of an unrestricted, general, and uniform personal identifier is prohibited.
Personal data may only be transmitted and different data management processes may only be linked if the data subject has given their consent or the law allows it, and if the conditions for data management are met for each personal data item.
Personal data (including special data) may be transferred to a data controller or data processor in a third country, regardless of the data carrier or method of transfer, if the data subject has expressly consented to it or if the law allows it, and if the transferred data are adequately protected at the destination country during their management or processing. The transmission of data to EEA member states shall be deemed to be a transmission within the territory of the Hungarian Republic.
4. SCOPE OF PERSONAL DATA, PURPOSE, LEGAL BASIS AND DURATION OF DATA PROCESSING
The data processing activities of CLOUDBRIKZ Ltd. are based on voluntary consent. In certain cases, however, the processing, storage, and transmission of data of a given circle are mandatory by law, which we inform our audience separately about.
We draw the attention of data providers to CLOUDBRIKZ Ltd. that if they do not provide their own personal data, it is the obligation of the data provider to obtain the consent of the data subject.
4.1. Data of visitors to the www.cloudbrikz.com website
Purpose of data processing: During the visit of the www.cloudbrikz.com portal, CLOUDBRIKZ Ltd. records visitor data to perform the service, monitor its operation, and prevent abuses.
Legal basis of data processing: the consent of the data subject, as well as Section 13/A (3) of Act CVIII of 2001 on certain issues of electronic commerce services, information society services.
Scope of processed data: date and time of visit, IP address of the visitor’s computer, browser type, the address of the viewed and previously visited website.
Duration of data processing: 3650 days from viewing the website.
The HTML code of the portal available at www.cloudbrikz.com contains external links pointing to and coming from external servers that are independent of CLOUDBRIKZ Ltd. Providers of these links are capable of collecting user data due to the direct connection to their server.
External servers help to independently measure and audit the website’s traffic and other web analytics data (Google Analytics). Data controllers can provide detailed information on the management of measurement data. Their availability: www.google.com/analytics/.
Under European Union law, we must draw your attention to the fact that this website uses cookies to provide personalized content to you. Cookies are small, completely harmless files that the website places on your computer to make browsing easier for you. You can disable cookies in your browser settings. By clicking on the “OK” button, you accept the use of cookies.
For customized service, the provider and the designated external providers place and read back a small data packet, called a cookie, on the user’s computer. If the browser sends back a previously saved cookie, the cookie handling provider can link the data saved during the user’s current visits to previous ones, but only with the user’s consent.
4.2. Website registration, purchase
Purpose of data processing: identification and differentiation of users, communication, personalized service for users, authorization for using some services, creating user statistics, management of orders and purchases, fulfilling contractual obligations and exercising rights arising from purchases, accounting obligation, sending newsletters.
Legal basis for data processing: voluntary consent of the data subject, Act CVIII of 2001 on certain issues of electronic commerce services and information society services, Section 13/A and Act XLVIII of 2008 on the basic conditions and certain restrictions of commercial advertising activity, Section 6 (5).
Scope of processed data: username, password, first and last name, email addresses, telephone numbers, fax numbers, company name, position, company website domain name, consent to newsletter subscription, registration date and time, order date and time, order data.
Deadline for deletion of data: 10 years from the last login, and until the withdrawal of consent for newsletter subscriptions. Accounting documents are kept for 8 years in accordance with Section 169 (2) of Act C of 2000 on accounting.
Data transfer:
In order to fulfill the invoicing obligation of CLOUDBRIKZ Ltd., during the fulfillment of purchases made by users on manookadesign.hu, the following billing information: company name, country, city, street name, house number, and tax number are transferred to the online invoicing system operated by KBOSS.hu Ltd., www.szamlazz.hu.
In case of online payment, the transaction ID, amount, date and time of purchase will be forwarded to PayPal (Europe) S.à r.l. et Cie, S.C.A., which manages the transaction. Personal data can be modified in the “Data modification” menu.
Personal data can be requested to be deleted – with the exception of accounting documents – at the contact details specified in point 6 of this information.
4.3. Newsletter of www.cloudbrikz.com
Purpose of data processing: Sending email newsletters containing economic advertisements to interested parties, providing information on current information and products.
Legal basis for data processing: The voluntary consent of the data subject and Section 6 (5) of Act XLVIII of 2008 on the basic conditions and certain restrictions of economic advertising activities.
Scope of processed data: identification number, name, email address, date, time.
Deadline for data deletion: Until the revocation of consent.
To prohibit the transmission of newsletters and to request the deletion or modification of personal data, click on the link provided in the sent newsletter, or make a request by post to the address specified in point 6 of this information.
CLOUDBRIKZ Ltd. does not provide the data provided to any third parties.
4.4. Customer correspondence of the service
If you have any questions or problems during the use of our services, you can contact the editors of the service in the Customer Service section provided.
CLOUDBRIKZ Ltd. deletes incoming emails, along with the name and email address of the sender and any other voluntarily provided personal data, after a maximum of five years from the settlement of the case.
4.5. Other data processing
We provide information about data processing that is not listed in this information sheet at the time of data collection.
We inform our customers that the data controller may be contacted by the court, the prosecutor’s office, the investigating authority, the administrative authority, the data protection commissioner, or other authorities authorized by law for the purpose of providing information, disclosure, transfer of data, or providing documents.
CLOUDBRIKZ Ltd. only discloses personal data to authorities to the extent that is essential for achieving the purpose of the request, provided that the authority has specified the exact purpose and scope of the data.
5. METHOD OF STORING PERSONAL DATA, DATA SECURITY
The computer systems and other data storage locations of CLOUDBRIKZ Ltd. are located at its headquarters, data processors, and on servers operated by Magyar Hosting Ltd. (Address: 1132 Budapest, Victor Hugo u. 18-22., Company registration number: Cg. 01-09-968314).
CLOUDBRIKZ Ltd. selects and operates the IT tools used for personal data processing during the provision of services in such a way that the processed data: a) is accessible to authorized personnel (availability); b) is ensured for its accuracy and authentication (data processing credibility); c) is verifiable for its immutability (data integrity); d) is protected against unauthorized access (data confidentiality).
CLOUDBRIKZ Ltd. ensures the security of data processing through technical, organizational and organizational measures, which provide the appropriate level of protection for the risks associated with data processing.
CLOUDBRIKZ Ltd. preserves during data processing: a) confidentiality: protects information so that only those authorized have access; b) integrity: protects the accuracy and completeness of information and processing methods; c) availability: ensures that when the authorized user needs it, they can actually access the desired information and the associated tools are available.
The IT system and network of CLOUDBRIKZ Ltd. and its partners are protected against computer-assisted fraud, espionage, sabotage, vandalism, fire and flood, as well as computer viruses, computer hacking, and denial-of-service attacks. The operator provides security through server-level and application-level defense procedures.
Users are informed that electronic messages transmitted over the Internet, regardless of the protocol (e-mail, web, ftp, etc.), are vulnerable to network threats that may lead to unfair activities, disputes, or disclosure or modification of information. To protect against such threats, the service provider takes all reasonable precautions. The systems are monitored to record any security deviations and provide evidence of any security events. In addition, system monitoring allows for the effectiveness of the measures taken to be checked.
6. COOKIES
6.1. Introduction
This Cookie Policy explains how we use cookies on our website to provide you with a better browsing experience and to comply with GDPR.
6.2. What Are Cookies?
Cookies are small text files that are stored on your device when you visit a website. They allow the website to remember your preferences and improve your browsing experience.
6.3. How We Use Cookies
We use cookies to:
- Remember your preferences, such as language settings
- Analyze how you use our website, such as which pages you visit and how long you stay on each page
- Improve our website and services
- Display personalized advertisements
We also use third-party cookies, such as Google Analytics and Mailchimp, to help us analyze how you use our website and to provide you with targeted advertisements.
6.4. Types of Cookies We Use
We use the following types of cookies on our website:
- Strictly Necessary Cookies: These cookies are essential for the website to function properly and cannot be turned off. They include cookies that enable you to log in, use the shopping cart, and access secure areas of the website.
- Functional Cookies: These cookies allow the website to remember your preferences and provide you with a better browsing experience. They include cookies that remember your language settings and login details.
- Analytical Cookies: These cookies help us understand how you use our website and improve our services. They include cookies that track how long you stay on our website and which pages you visit.
- Advertising Cookies: These cookies are used to display personalized advertisements based on your browsing history and interests. They include cookies that track your online activity and help us display relevant ads.
6.5. How to Control Cookies
You can control cookies by adjusting your browser settings to block or delete cookies. However, please note that blocking or deleting cookies may affect your browsing experience and may prevent you from accessing certain features of our website.
You can also opt-out of personalized advertisements by visiting the Network Advertising Initiative opt-out page or the Digital Advertising Alliance opt-out page.
6.6. Updates to this Policy
We may update this Cookie Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes to this Cookie Policy by posting a notice on our website.
6.7. Contact Us
If you have any questions or concerns about this Cookie Policy or our use of cookies, please contact us.
7. DATA OF THE DATA CONTROLLER, CONTACT INFORMATION
Name: CLOUDBRIKZ Ltd.
Headquarters: 3300 Eger, Cecey Éva u. 59.
Company registration number: 10-09-038266
Name of the registering court: Heves County Court as company court
Tax identification number: 28778635-1-10
Email: hello@cloudbrikz.com
Phone number: +36-70-938-6460
Data protection registration number: NAIH-110242
8. DATA OF THE DATA PROCESSOR, CONTACT INFORMATION
Name: Magyar Hosting Korlátolt Felelősségű Társaság
Headquarters: 1132 Budapest, Victor Hugo u. 18-22.
9. POSSIBILITIES FOR REMEDY
The data subject may request information on the processing of their personal data, as well as request correction of their personal data, and – with the exception of data processing ordered by law – deletion of their personal data in the manner indicated at the time of data collection.
Upon request by the data subject, CLOUDBRIKZ Ltd., as the data controller, provides information on the data it processes and the data processed by its data processors, the purpose, legal basis, duration of the data processing, the name and address (registered office) of the data processor, and the activities related to data processing, as well as who and for what purpose the data has been or will be transferred to. The data controller shall provide the information in writing and in a clear and understandable manner within the shortest possible time, but not later than 30 days from the date of the request. This information is free of charge if the data subject has not previously submitted a request for information on the same subject matter to the data controller during the current year. Otherwise, CLOUDBRIKZ Ltd. will charge a fee.
CLOUDBRIKZ Ltd. shall delete personal data if its processing is unlawful, the data subject requests it, the purpose of data processing has ceased, or the statutory storage period for the data has expired, or it has been ordered by a court or the Data Protection Commissioner.
CLOUDBRIKZ Ltd. shall notify the data subject and all those to whom the data was previously transmitted for the purpose of data processing about the rectification and deletion. The notification shall be omitted if, in view of the purpose of data processing, it does not violate the legitimate interests of the data subject.
The data subject may object to the processing of their personal data if: a) the processing (transmission) of personal data is necessary solely for the enforcement of the data controller’s or the data recipient’s right or legitimate interest, except where data processing has been ordered by law; b) the use or transmission of personal data is for direct marketing, public opinion research, or scientific research purposes; c) the right to object is otherwise provided by law.
CLOUDBRIKZ Ltd. – suspending data processing at the same time – shall examine the objection within the shortest possible time, but not later than 15 days from the submission of the request, and inform the applicant in writing of the result. If the objection is justified, the data controller shall cease data processing, including further data collection and data transmission, lock the data, and inform all those to whom the personal data affected by the objection has been previously transmitted, and who are required to take action to enforce the right to object.
In case of violation of their rights, the data subject may turn to the court against the data controller. The court shall handle the case out of turn.
Manooka Gift Ltd. compensates for any damage caused to others by the illegal processing of the data of the data subject or by the violation of technical data protection requirements. The data controller shall be exempt from liability if the damage was caused by an unavoidable reason outside the scope of data processing.
The data controller does not compensate for damage to the extent that it arose from the intentional or grossly negligent behavior of the injured party.
The National Data Protection and Freedom of Information Authority can be contacted for legal remedies or complaints at the following contact details:
Name: National Data Protection and Freedom of Information Authority
Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22/C
Website: www.naih.hu
Telephone: 06.1.391.1400
Telefax: 06.1.391.1410
E-mail: ugyfelszolgalat@naih.hu