Privacy Policy and Data Processing Information for Website Visitors | Ellipsum Élmény- és Strandfürdő

Miskolci Fürdők Kft. (hereinafter referred to as the Company or Data Controller), in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regards to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter referred to as GDPR), hereby informing you of the processing of your personal data and all data processing. By participating in the process, you become subject to our data processing in accordance with this process description.

DATA CONTROLLER DESCRIPTION AND CONTACT INFORMATION:

Name:  Miskolci Fürdők Korlátolt Felelősségű Társaság

Operator:  Miskolci Fürdők Kft.

Company Registration #: 05-09-014955

Headquarters: 3519 Miskolc-Tapolca, Pazár István sétány 1.

E-mail: titkarsag@miskolcifurdok.hu | sales@miskolcifurdok.hu

Data Controller Representative: Judit Németh, managing director

DATA PROTECTION OFFICER NAME AND CONTACT:

L Tender- Consulting Kft. (Molnár Gábor)

molnar.gabor@ltender.hu

PURPOSE OF DATA MANAGEMENT:

Automatic, personalized data recording of user habits of website visitors utilizing Google Analytics, as well as cookies

LEGAL BASIS FOR DATA PROCESSING:

In accordance with Article 6 (1) GPDR

DATA COVERED:

IP address, local time data, geographic data, user habits, computer settings such as browser and operating system information

DATA PROCESSORS INVOLVED IN DATA MANAGEMENT AND DESIGNATION OF DATA PROCESSING OPERATION:

The Company employs a data processor in data management:

Miskolc Holding Zrt. (3530 Miskolc, Petőfi utca 1-3.)

Activities related to data management: Tasks related to computer systems and website maintenance.

LEGAL DISCLOSURE OF DATA TO THIRD PARTIES DURING DATA PROCESSING:

The Company does not transfer data to third parties; however, it should be noted that personal data may be subject to disclosure to courts and authorities as required by law. In the event that the Company is required by law to disclose personal data by court orders or other authorized proceedings, the Company will meet its statutory obligation by providing such data to the courts or authorities.

PERSONAL DATA STORAGE TIME LIMITS:

Data is stored until data management goal has been met or up to a maximum of 2 years from the time it was recorded.

DATA MANAGEMENT PROCESS:

The Company uses the website http://miskolcifurdok.hu/ for sharing and publishing its contents.

The process of entering and exiting the website is facilitated by small bits of data packages, so-called cookies (hereinafter referred to as "cookies"), depending on the setting, which are placed on the visitor’s device by the website to get information readings from these devices. Cookies are used to optimize user experience in order to provide more efficient service and to collect data anonymously.

Cookies can be deleted by the visitors from their device or by closing the browser, even automatically depending on user settings. The browser can also be set to block these cookies.

By visiting the website and clicking on the “Accept” button, the user agrees to the terms set forth by the Company. The user agrees that the Company may use cookies by external service providers or cookies managed by the Company in connection with the operation of the website which may be used to record data outlined in this agreement.

Such data include User device information which, by using our website, is automatically generated and recorded with the help of cookies.

This data is automatically recorded every time the User enters or exits our website without a separate consent by the User.

The Company’s Cookie Policy can be viewed on our website.

AUTOMATED DECISION-MAKING:

Automated decision-making does not take place during data processing

APPLICABLE RULES AND REGULATIONS:

By verifying your identity, you have the following rights under the GDPR Policy:

You have the right to:

  • Request information about how we process your personal information
  • Request correction of your personal data
  • Withdraw consent to data processing
  • Request that we delete your personal information (in accordance with Article 17(1) of the GDPR)
  • Request restrictions on processing your personal data
  • Exercise your right to data portability (if data processing is automated)

The Company takes measures to ensure data security and implements all technical and organization security measures according to GDPR data security and privacy regulations. It protects against unauthorized access, alteration, data transfer, disclosure, deletion or destruction, and accidental destruction or data loss.

The Company strives to ensure to provide you with concise, transparent, comprehensible, easily accessible, clear and straightforward information as set forth by the GDPR.

If you wish to exercise your rights under the GDPR for the purposes listed here, you may submit your request in writing to the Data Protection Officer listed above. However, if you wish to talk to us, you may request information from an authorized employee after providing proof of identity, as long as the employee has access to this information. In all other cases, your request will be recorded by our staff and we will inform you about your request no later than one month from the receipt of the request. This time limit may be extended by a maximum of two additional months where the complexity of the request or the number of applications currently being processed so warrants, but this will be communicated electronically within one month from receipt of your request.

In the event that we do not respond to your request or you do not accept our action, you may have legal rights. You may file a complaint with the National Data Protection and Freedom of Information Authority or at your discretion, at your local jurisdiction.

Please note, however, that the National Data Protection and Freedom of Information Authority will only accept your complaint if you first contact the data controller, specifically our Company in this case, and only if we do not take action upon your request or you do not accept our action. We therefore recommend that you contact our Company first.