Print
Privacy Policy | Website
Privacy Policy (hereinafter: Privacy Policy) is intended to outline the data protection rules, procedures, and security measures applied by Katalin Kissné Pethő, Sole Proprietor, acting as the data controller (hereinafter: Data Controller). This applies to all data processing activities, particularly regarding personal data obtained through the website operated by the Data Controller (www.parkolomester.hu, hereinafter: Website), as well as data managed and processed within the Data Controller's organization.
Part I
Details of the Data Controller and Data Processors
Hosting Service Provider Information (Data Processor)
| Name | Net Világ Technology - Varga Jácint e.v. |
| Customer Service Address | 3700 Kazincbarcika Egressy Béni út 26. |
| Phone Number | 06 (48) 952 374 |
| Tax Identification Number | 57582232-1-25 |
| Registration Number | 56224061 |
| E-mail Address | info@net-vilag.hu |
| Customer Service Hours | Hétfő - Péntek 10:00 - 16:00 |
| Website | www.technology.net-vilag.hu |
Definitions / Interpretative Terms
Data Processing: The performance of technical tasks related to data management operations, regardless of the method, tools, or location of application, provided that the technical task is performed on the data.
Data Processor: Any natural or legal person, or organization without legal personality, who processes data on behalf of the Data Controller based on a contract (including contracts mandated by law).
Data Management: Any operation or set of operations performed on data, regardless of the procedure used, such as collection, recording, registration, organization, storage, alteration, use, retrieval, transmission, disclosure, alignment or combination, blocking, erasure, and destruction, as well as preventing further use of the data, taking photographs, audio or video recordings, and recording physical characteristics suitable for personal identification (e.g., fingerprints, DNA samples, iris images).
Data Controller: The natural or legal person, or organization without legal personality, who alone or jointly with others determines the purposes of data management, makes and executes decisions regarding data management (including the tools used), or has them executed by a commissioned Data Processor.
Data Transmission: Making data accessible to a specific third party.
Data Erasure: Making data unrecognizable in such a way that its recovery is no longer possible.
Data Blocking: Marking data with an identification tag for the purpose of restricting its further processing permanently or for a specified period.
Cookie: When the Data Subject visits the Website, a small file called a cookie is placed on their computer, which may serve multiple purposes. Some cookies are essential for the proper functioning of the site (process cookies), while others collect information regarding the use of the Website (statistics) to make it more convenient and useful. Some cookies are temporary and disappear when the browser is closed, while persistent versions remain on the computer for a longer period.
Data Subject/User: Any specific natural person identified or identifiable – directly or indirectly – based on personal data.
Third Party: A natural or legal person, or organization without legal personality, who is not identical to the Data Subject, the Data Controller, or the Data Processor.
Consent: A voluntary and firm expression of the Data Subject's will, based on adequate information, by which they give their unmistakable agreement to the management of their personal data – either in full or covering specific operations.
Special Categories of Data: Personal data revealing racial or ethnic origin, nationality, political opinions or party affiliation, religious or philosophical beliefs, trade union membership, sexual life, health status, pathological addictions, or criminal personal data.
Visitor: A natural person who loads the parkolomester.hu website into their browser
Disclosure: Making data accessible to anyone.
Personal Data: Any data that can be associated with the Data Subject – particularly their name, identification mark, and one or more physical, physiological, mental, economic, cultural, or social identifiers – as well as conclusions regarding the Data Subject drawn from the data.
Objection: A statement by the Data Subject by which they object to the management of their personal data and request the termination of data management or the erasure of the managed data.
Part II
Description of Data Processing Activities
4. Scope of Personal Data Processed
You may access and browse the Website without providing personal data; however, browsing requires the acceptance of the Cookie Policy, and subscribing to the newsletter requires acceptance of the Privacy Policy.
4.1. Communication Data Related to Online Administration
Data Subjects: Users sending any message to us via the Website, e-mail, social media, or any other form of communication.
Legal Basis: Voluntary consent of the Data Subject.
Purpose of Processing: Answering questions, sending price quotes, responding to comments or complaints, and providing a basis for decisions in case of legal claims.
Data Processed: Name, e-mail address, phone number, message content
4.2. Buyer and User Data Related to Online Orders
Data Subjects: Users placing an order or registering on the Website.
Legal Basis: Performance of a contract.
Purpose of Processing: Fulfillment of orders, issuing invoices.
Data Processed: Name, e-mail address, billing address, shipping address, phone number, purchased product/service details.
4.3. Data Related to Contractual Relationships
Data Subjects: Natural and legal persons entering into a contractual relationship with the Data Controller for service fulfillment.
Legal Basis: Performance of a contract.
Purpose of Processing: Conclusion of contracts, fulfillment of the requested service.
Data Processed: Name, e-mail address, phone number, billing address, mailing address, tax number, company registration number, date of contract.
4.4. Newsletter-Related Data
Data Subjects: Users subscribed to the newsletter list via the Website.
Legal Basis: Voluntary consent of the Data Subject.
Purpose of Processing: Sending newsletters, including promotional electronic messages, information on current updates, products, sales, and new features.
Data Processed: E-mail address.
4.5. Statistical and Technical Data
Data Subjects: Visitors to the Website.
Legal Basis: Voluntary consent of the Data Subject.
Purpose of Processing: Analysis of user habits, maintaining secure website operation, understanding the utility of marketing decisions.
Data Processed: IP address, login information, browser data, time spent on pages, page views and navigation paths, number and timing of visits, time zones, and device information used to view the site.
4.6. Marketing Data Related to Advertising
Data Subjects: Visitors and subjects who have purchased products or utilized services from the Data Controller.
Legal Basis: Voluntary consent of the Data Subject.
Purpose of Processing: Providing relevant ads on the Facebook platform and various dynamic advertising surfaces, measuring the effectiveness of ads.
Data Processed: IP address, name, e-mail address.
The Data Controller DOES NOT collect sensitive data such as ethnicity, religious views, sexual life/orientation, political opinions, trade union membership, health background, or genetic/biometric information.
5. Additional Information Regarding Data Processing
5.1. Adatgyűjtés módjai
5.1. Methods of Data Collection The Data Controller may collect personal data in the following ways:
Directly provided by the User (e.g., placing an order or sending a message).
Automatically collected during Website use (e.g., via cookies and similar technologies). These only activate after the user provides consent. For more information, please see our Cookie Statement.
Received from third-party partners, such as analytical providers like Google (non-EU partner), advertising networks like Facebook™ (non-EU partner), and payment service providers.
5.2. Duration of Data Processing User data is stored only as long as legal/accounting/reporting obligations require it or as necessary for the operation of the service.
Anonymized data may be stored indefinitely for statistical purposes.
Consent may be withdrawn at any time via e-mail or post. However, certain data may still be processed for the necessary duration to fulfill legal obligations or enforce legitimate interests.
5.3. General Data Management Principles Data processing is performed in accordance with the specified purposes and legal bases. It occurs based on legitimate interest, legal obligation, or voluntary consent.
5.4. Applicable Data Protection Legislation
Regulation (EU) 2016/679 (GDPR)
Act V of 2013 on the Civil Code (Ptk.)
Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.)
Act CVIII of 2001 on electronic commerce services
Act XLVII of 2008 on the prohibition of unfair commercial practices
Act XLVIII of 2008 on the basic conditions and certain restrictions of economic advertising activity
Act C of 2003 on electronic communications
Opinion 16/2011 on EASA/IAB recommendations for best practice in behavioral online advertising
Part III
Data Transfer, Data Processing, and Persons with Access to Data
6. Persons with Access to Data The Data Controller grants access to the processed data only to persons whose activities, carried out under an employment contract or other legal relationship, are directly necessary to achieve the purpose of the data processing. Apart from the Data Controller's organization, your personal data may only be accessed by the Data Processors identified in Part I, Section 2.
Part IV
Data Security
7. Data Security The Data Controller takes all reasonable steps to protect your personal data. Certain data is stored in encrypted form, while other data can only be accessed by the Controller following identification. Data is stored on multiple, independent devices, utilizing the services of several separate companies and organizations. To protect data generated and collected on the Website, an SSL certificate is used, and premium security software is applied to protect the Website against attacks. Access to personal data is strictly limited to persons or proxies potentially involved in the given task and only to the extent necessary for their duties, subject to confidentiality and non-disclosure obligations. Such task performance and data processing by external parties are always recorded in the current contract.
Part V
Your Rights Regarding Data Processing
8. Rights of the Data Subject and Enforcement Options The data subject may request information about the processing of their personal data and may request the rectification or – with the exception of mandatory data processing – the erasure or withdrawal of their personal data. They may exercise their right to data portability and objection in the manner indicated at the time of data collection or via the Data Controller's contact details provided above.
8.1. Right to Information The Data Controller shall take appropriate measures to provide data subjects with all information referred to in Articles 13 and 14 of the GDPR and each piece of communication under Articles 15–22 and 34 in a concise, transparent, intelligible, and easily accessible form, using clear and plain language.
8.2. Right of Access by the Data Subject The data subject has the right to obtain confirmation from the controller as to whether or not personal data concerning them are being processed, and where that is the case, access to the personal data and the following information: purposes of processing; categories of personal data; recipients or categories of recipients; planned period of storage; the right to rectification, erasure, or restriction; the right to lodge a complaint with a supervisory authority; information on data sources; the existence of automated decision-making, including profiling. The controller shall provide information within one month of the request.
8.3. Right to Rectification The data subject may request the rectification of inaccurate personal data and the completion of incomplete data managed by the Data Controller.
8.4. Right to Erasure ("Right to be Forgotten") The data subject is entitled to have their personal data erased without undue delay if:
The data is no longer necessary for the original purpose.
Consent is withdrawn and there is no other legal basis.
The subject objects to the processing and there are no overriding legitimate grounds.
The data has been processed unlawfully.
Erasure is required by EU or Member State law.
Data collection was related to the offering of information society services.
Exceptions: Freedom of expression, legal obligations, public interest in health/research, or establishment of legal claims.
8.5. Right to Restriction of Processing At the request of the data subject, the Controller restricts processing if:
Accuracy is contested (for the period of verification).
Processing is unlawful but the subject opposes erasure.
The Controller no longer needs the data, but the subject requires it for legal claims.
The subject has objected to processing (pending verification of legitimate grounds).
8.6. Right to Data Portability The data subject has the right to receive their personal data in a structured, commonly used, and machine-readable format and to transmit those data to another controller.
8.7. Right to Object The data subject has the right to object at any time to processing based on public interest or legitimate interests of the controller, including profiling. The controller shall no longer process the data unless they demonstrate compelling legitimate grounds.
8.8. Automated Individual Decision-making, Including Profiling The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects them.
8.9. Right to Withdraw Consent The data subject has the right to withdraw their consent at any time.
8.10. Right to Judicial Remedy In the event of a violation of their rights, the data subject may take legal action against the Data Controller. However, before turning to court, the User is obliged to request the Data Controller to fulfill the requirements via the contact details provided in Section 1, precisely specifying the perceived violation.
Compliance with data protection legislation is supervised by the National Authority for Data Protection and Freedom of Information (NAIH). If you believe our data management does not comply with relevant laws, you may lodge a complaint:
Name: Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH)
Address: 1055 Budapest, Falk Miksa utca 9-11.
Mailing Address: 1363 Budapest, Pf. 9.
Phone: +36 (1) 391-1400
E-mail: ugyfelszolgalat@naih.hu
Website: www.naih.hu
Supervisory Authority: NAIH Contact Details
| Name of Authority | National Authority for Data Protection and Freedom of Information (NAIH) |
| Purpose | Supervisory body for data protection complaints via written submission. |
| Headquarters | 1055 Budapest, Falk Miksa utca 9-11., Hungary |
| Mailing Address | 1363 Budapest, Pf.: 9. |
| Phone Number | +36 (1) 391-1400 |
| Fax Number | +36 (1) 391-1410 |
| Central E-mail Address | ugyfelszolgalat@naih.hu |
| Website URL | http://www.naih.hu |
| Official Digital Gateway (KRID) | NAIH, KRID: 429616918 |
| Name of Authority | Nemzeti Adatvédelmi és Információszabadság |
| Online Administration | https://naih.hu/online-ugyinditas |
| Data Protection Officer (DPO) | dr. Kiss Attila |
| DPO Phone Number | +36 (1) 391 1470 |
| DPO E-mail Address | dpo@naih.hu |
Part VI
Other Provisions
9. Marketing Communication Based on the European Union's Privacy and Electronic Communications Regulations (PECR), the Data Controller may send marketing messages to users only if they have expressly consented to receive them. The Data Controller ensures that the option to suspend consent or unsubscribe is always clearly visible. An unsubscribe link is provided at the bottom of every e-mail, or removal from the database can be requested via the contact details provided in Section 1. Note: Even if you unsubscribe from marketing, the Data Controller may still send messages regarding the fulfillment of specific orders.
10. Links to Other Websites This site may occasionally contain links to external sites or embedded code snippets that ensure the functioning of third-party services. Clicking these links or using embedded solutions may allow third-party partners to collect data about users. The Data Controller has no control over these websites and cannot be held responsible for their content or their personal data management. For your security, it is recommended to read the privacy policy of any website accessed through our Website.
11. Management of Cookies For more information on the management of cookies, please visit our Cookie Policy page.
12. Cooperation with Authorities In the event of a request from an authority or other organization based on legal obligations, the Data Controller may be required to disclose data. In such cases, the Data Controller strives to disclose only the amount and type of personal data strictly necessary for the fulfillment of the legal obligation.
13. Amendments to the Policy The Owner reserves the right to unilaterally amend this Privacy Policy. Any modifications made by the Owner or required by law will be published and updated on the Website. Amendments are effective and enter into force automatically upon publication. We encourage you to review the latest version available on the website.
14. Customer Service During telephone customer service, no retrievable audio recordings are made. The telephone service processes the caller's name, phone number, e-mail address, and company name. The service operates an answering machine where callers may voluntarily provide any of the above information so that customer service can contact them later.
Data Retention: Data from the answering machine is stored for a maximum of 72 hours.
Personal Communication: Personal data generated during direct communication with customer service is managed for 1 year.