Barion Pixel
Weboldalunk használatával jóváhagyja a cookie-k használatát a Cookie-kkal kapcsolatos irányelv értelmében.
Modify settings Elfogadom
Menu
Your are here: > Home >

GDPR

GDPR

PRIVACY NOTICE

 

This Privacy Policy applies to the use, browsing, registration and shopping on the website www.cornides.hu (hereinafter referred to as the "Website").

the Webshop, Cornides Ltd. (hereinafter referred to as the "Data Controller") records the data processing activities and information relating thereto. Ágnes Cornides, the owner of Cornides Ltd., as the data controller, acknowledges the contents of this legal notice as binding on her.

Data Controller.

8258 Badacsonytomaj Petőfi u. 56.

E-mail address: info@cornides.hu

Company registration number: 19-09-521190

Tax number: 27945674-2-19

Statistical number: 27945674-4791-113-19

Name of registering authority: Ministry of the Interior

Telephone number: +36 30 1299764

Name, address, e-mail address of the hosting provider:

ShopRenter.hu Kft.

4028 Debrecen, Kassai út 129.

info@shoprenter.hu

Intronet Kft.

1123 Budapest, Alkotás u.3. a/3.

info@intornet.hu

This privacy policy applies to the following domains and their subdomains:

 

cornides.hu, cornides.eu, cornides.de, cornides.com

 

THE PURPOSES FOR WHICH PERSONAL DATA ARE PROCESSED

 

I process your personal data for the purposes of operating the webshop on the website https://cornides.hu/, selling the products offered by the webshop and for marketing activities.

The privacy policy relating to the processing of data by the controller is available here on an ongoing basis.

The Data Controller reserves the right to amend this policy at any time.

Data subjects will be informed of any changes in due time.

 

GENERAL DATA PROCESSING POLICY

The data processing of the Data Controller's activities is based on voluntary consent or on legal authorisation. In the case of processing based on voluntary consent, data subjects may withdraw their consent at any stage of the processing.

 

PERSONAL DATA TO BE PROVIDED DURING REGISTRATION

 

Registration is possible in the webshop module of the website, which facilitates the use of additional services by not requiring you to enter your data again.

 

Personal data processed during REGISTRATION:

Full name

E-mail address

Delivery address

Phone number

Purchase information (product, date, etc.)

Purpose of processing, intended use of the data processed: invoicing.

Legal basis for processing is voluntary consent.

Retention period: until revoked.

Data processed during PURCHASE:

If you make a purchase in the online shop, the following data must be provided in order to conclude the contract:

Full name

E-mail address

Phone number

E-mail address

Phone number

Billing name

Billing address

Purpose of the processing, intended use of the data processed: execution of contractual orders, invoicing

Legal basis for processing: contractual order, fulfilment of contract, processing of data, execution of order, processing of data, use of data for other purposes.

Retention period: statutory retention period: current year + 5 years

Personal data processed in the context of the GUARANTEE:

 

If you initiate a guarantee procedure, the processing of the data and the provision of the data are essential for the procedure.

Full name

E-mail address

Phone number

Complaint

Purpose of processing, intended use of the data processed: warranty management.

Legal basis for processing is voluntary consent.

Retention period: according to the Consumer Protection Act, current year + 5 years

Personal data processed during the handling of consumer complaints:

If you lodge a consumer complaint, the processing of data and the provision of the data is essential for the administration of the case.

 

Full name

E-mail address

Phone number

Complaint

Purpose of the processing, intended use of the data processed: handling consumer complaints.

Legal basis for data processing is voluntary consent.

Retention period: on the basis of the Consumer Protection Act, current year + 5 years

DATA RELATED TO THE NEWSLETTER

 

 

Where it is necessary for compliance with our legal obligations or for the establishment, exercise or defence of legal claims in administrative, judicial or other proceedings pending before a competent authority, the processing of personal data may be necessary beyond the time period specified above.

 

WHAT COOKIES DO

Cookies collect information about visitors and their devices; they remember visitors' individual preferences, which are used, for example, when making online transactions, so that they do not have to be re-entered; they facilitate the use of the website; they provide a quality user experience; and they are used to collect some statistical information about visitors.

In order to provide a personalised service, a small piece of data, called a cookie, is placed on the user's computer and read back during a subsequent visit. When the browser returns a previously saved cookie, the cookie provider has the possibility to link the user's current visit to previous visits, but only in relation to its own content.

Some of the cookies do not contain any personally identifiable information about the individual user, while others contain a secret, randomly generated sequence of numbers that are stored on the user's device and ensure the user's identity.

You can delete cookies at any time by using the "delete cookies" option in your browser.

 

LEGAL BASIS FOR THE PROCESSING OF COOKIES

The legal basis for the cookie processing is the consent of the website visitor, pursuant to Article 6(1)(a) of the applicable Regulation.

If you do not consent to the use of cookies, certain functions of the websites listed in section 3.2.3 will not be available when using the websites, or certain functions may not function properly.

 

RECIPIENTS OF PERSONAL DATA, DATA PROCESSORS, DATA TRANSFERS

Your personal data may be disclosed only to the Data Controller and to the data processors listed in this section (only to the extent necessary for the performance of their activities).

 

We use data processors for the following activities:

ShopRenter.hu

Address.

E-mail address: info@shoprenter.hu

Data collected: the content of the web pages on the domain and subdomains of cornides.hu, e-mails sent to e-mail addresses based on this domain.

Hosting service: Intronet Kft.

Address: 1123 Budapest, Alkotás u.3. a/3.

E-mail address: info@intornet.hu

Scope of data collected: sender's e-mail address of e-mails sent to agi@cornides.hu and info@cornides.hu.

Invoicing: Számlázz.hu - KBOSS.hu Kft.

Address: 1031 Budapest, Záhony utca 7/C.

Email: info@szamlazz.hu

Billing address, billing name

Accounting: László Szarka

Address: 8253 Révfülöp, Petőfi utca 76. 

Email: konyveljunk.hu@gmail.com

Data subjects: billing address, billing name

Listmaster BITHUSZÁROK Computer Technology and Services Limited Company

Address: 2051 Biatorbágy, Damjanich utca 8. attic 4.

E-mail address: info@bithuszarok.hu

Scope of data collected: name and e-mail address of subscriber

 

Data analysis by Google Analytics Google Inc.

Mountain View, California, USA.

Data collected: anonymised, non-personally identifiable IP addresses of visitors to cornides.hu and cornidesagnes.com.

Delivery.

Address: 2351 Alsónémedi Európa u. 2.

E-mail address: info@gls-hungary.com

Data collected: billing address, billing name

Your personal data will never be sold or traded.

 

ADATABILITY

The Data Controller shall take appropriate measures to protect the data against unauthorised access, alteration, disclosure, disclosure, erasure or destruction and against accidental destruction.

The controller shall ensure the security of processing by technical, organisational and organisational measures that provide a level of protection appropriate to the risks associated with the processing.

The controller shall, in the course of processing, maintain confidentiality: protect the information so that it is accessible only to those who are authorised to have access to it; integrity: protect the accuracy and completeness of the information and the method of processing; availability: ensure that the information is accessible and available when the authorised user needs it.

Passwords provided by users during registration are not stored in text form, but only in the form of a so-called 'hash trace'.

 

DATA SUBJECT'S RIGHTS AND MEANS OF ENFORCEMENT

The data subject may request information about the processing of his or her personal data, and may request the rectification, erasure or withdrawal of his or her personal data, except for mandatory processing, and may exercise his or her right to data portability and objection in the manner indicated when the data were collected, or by contacting the controller at the above contact details.

 

RIGHT TO INFORMATION

The controller shall take appropriate measures to provide data subjects with all the information referred to in Articles 13 and 14 of the GDPR and each of the notifications referred to in Articles 15 to 22 and 34 of the GDPR concerning the processing of personal data in a concise, transparent, intelligible and easily accessible form, in clear and plain language.

 

THE RIGHT OF ACCESS OF THE DATA SUBJECT

The data subject shall have the right to obtain from the controller feedback as to whether or not his or her personal data are being processed and, if such processing is taking place, the right to access the personal data and the following information:

the purposes of the processing;

the purposes for which the personal data are being processed; the categories of personal data concerned;

the recipients or categories of recipients to whom or with whom the personal data have been or will be disclosed, including in particular recipients in third countries or international organisations;

the envisaged period of storage of the personal data;

the right to rectification, erasure or restriction of processing and the right to object;

the right to lodge a complaint with a supervisory authority;

information on the data sources;

the fact of automated decision-making, including profiling, and clear information on the logic used and the significance of such processing and its likely consequences for the data subject.

 

The controller shall provide the information within a maximum of one month from the date of the request.

 

RIGHT OF RECTIFICATION

The data subject may request the correction of inaccurate personal data relating to him or her processed by the Controller and the completion of incomplete data.

RIGHT TO ERASURE

The data subject shall have the right, upon request and without undue delay, to obtain from the controller the erasure of personal data relating to him or her, on one of the following grounds: the personal data are no longer necessary for the purposes for which they were collected or otherwise processed; the data subject withdraws the consent on the basis of which the processing was carried out and there is no other legal basis for the processing; the data subject objects to the processing and there is no overriding legitimate ground for the processing; the personal data have been processed unlawfully; the personal data must be erased in order to comply with a legal obligation under Union or Member State law to which the controller is subject; the personal data were collected in connection with the provision of information society services.

The erasure of the data may not be initiated if the processing is necessary: for the exercise of the right to freedom of expression and information; for compliance with an obligation under Union or Member State law to process personal data or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; for public health purposes or for archiving, scientific or historical research purposes or statistical purposes in the public interest; or for the establishment, exercise or defence of legal claims.

 

THE RIGHT TO RESTRICTION OF PROCESSING

At the request of the data subject, the Data Controller shall restrict processing if one of the following conditions is met: the data subject contests the accuracy of the personal data, in which case the restriction shall be for a period which allows the accuracy of the personal data to be verified; the processing is unlawful and the data subject opposes the erasure of the data and requests instead that its use be restricted; the controller no longer needs the personal data for the purposes of the processing, but the data subject requires them for the establishment, exercise or defence of legal claims; or the data subject has objected to the processing; in which case the restriction shall apply for a period of time until it is established whether the legitimate grounds of the controller override the legitimate grounds of the data subject.

Where processing is subject to restriction, personal data, other than storage, may be processed only with the consent of the data subject or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or of an important public interest of the Union or of a Member State.

 

THE RIGHT TO DATA RETENTION

The data subject has the right to obtain the personal data concerning him or her which he or she has provided to the controller in a structured, commonly used, machine-readable format and to transmit these data to another controller.

RIGHT TO OBJECT

The data subject shall have the right to object at any time, on grounds relating to his or her particular situation, to processing of his or her personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or necessary for the purposes of the legitimate interests pursued by the controller or by a third party, including profiling based on those provisions. In the event of an objection, the controller may no longer process the personal data, unless there are compelling legitimate grounds for doing so which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.

 

 

AUTOMATED DECISION-MAKING ON INDIVIDUAL CASES,

INCLUDING PROFILING

The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her.

RIGHT OF WITHDRAWAL

The data subject has the right to withdraw his or her consent at any time.

RIGHT TO APPLY TO THE COURTS

The data subject may take legal action against the controller in the event of a breach of his or her rights.

8.11 Data Protection Authority Procedure Complaints may be lodged with the National Authority for Data Protection and Freedom of Information:

Name: National Authority for Data Protection and Freedom of Information

Registered office: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.

Address: 1530 Budapest, PO Box 5.

Phone: 0613911400

E-mail: ugyfelszolgalat@naih.hu

Website: http://www.naih.hu

If you believe that your personal data has not been processed in accordance with the Regulation and that your rights under the Regulation have been infringed, you may take legal action.

In Hungary, the courts have jurisdiction to hear data protection cases. As a general rule, the Veszprém Court of Jurisdiction will have jurisdiction in any action against us.

SOURCE OF PERSONAL DATA

You have provided us with your personal data when using our website.

 

Badacsonytomaj, 11.08.2021.

Cornides Ltd.