Privacy policy

Table of Contents

1. Purpose and Scope of Privacy Policy

2. Information About the Data Controller

3. Terms Used in the Privacy Policy

4. Method and Principles of Data Processing

5. Handling Data of Those Who Subscribe to Newsletters and Other Online Marketing Materials

6. Data Handling Related to Contacting Us

7. Handling Personal Data with Cookies

8. Data Processing Related to Maintaining Social Media Pages

9. Using Data Processors

10. Access to Personal Data and Data Transfer

11. Data Processing as a Data Processor

12. The Rights of Data Subjects and the Process of Exercising Rights

    • Right to Access the Data

    • Right to Rectification

    • Right to Erasure

    • Right to Restriction of Processing

    • Right to Withdraw Consent

    • Right to Object to Processing

    • Assessment of Data Subject Requests

    • Legal Remedies

13. Security Measures

14. Handling Data Breaches

15. Modification of Privacy Policy

16. Applicable Laws

1. Purpose and Scope of Privacy Policy

This information aims to record the data protection and data management principles applied by Cinkostárs Limited Liability Company (headquarters: 1113 Budapest, Hamzsabégi út 60., E. building 2. house. 2nd floor 190. door, company registration number: 01-09-416272, tax number: 32288876-2-43) (hereinafter referred to as: Data Controller), and the data protection and data management policies developed by the Data Controller, which the Data Controller acknowledges as binding upon itself.

This privacy policy also aims to provide all natural persons affected by data management with the information based on which they can determine how their data is being handled, and ensure that their fundamental freedoms, rights related to the handling, protection, and respect for their personal data and privacy are respected throughout the entire duration of data processing.

This policy applies to the data processing activities performed by the Data Controller, as listed in the policy.

2. Information About the Data Controller

The data processing activities listed in this policy are performed by the Data Controller, and thus the Data Controller is considered the person responsible for handling personal data. The Data Controller informs the affected parties that a data protection officer has not been appointed at the Data Controller.

If the data subject has any questions or comments regarding the handling of their data, they can contact the Data Controller using the contact information below.

Company name: Cinkostárs Limited Liability Company
Headquarters and mailing address: 1113 Budapest, Hamzsabégi út 60., E. building 2. house. 2nd floor 190. door
Phone number: +36 30 561 6852
Email address: cinkostarskft@gmail.com

3. Terms Used in the Privacy Policy

Below is a brief explanation of the terms used in this Privacy Policy:

• Personal data: any information related to an identified or identifiable natural person – either directly or indirectly based on one or more identifiers, factors, or characteristics.

• Data processing: any operation performed on personal data regardless of the method used; accordingly, data processing includes collection, recording, organization, structuring, storage, transformation, alteration, retrieval, consultation, use, disclosure, transmission, dissemination, making available by other means, alignment, combination, restriction, deletion, destruction.

• Data Controller: the Cinkostárs Ltd., who independently determines the purpose and means of processing personal data.

• Data Processor: a natural or legal person who processes personal data on behalf of and in the name of the data controller.

• Consent: a freely given, specific, informed indication of the data subject's wishes by which they unambiguously signify agreement to the processing of personal data relating to them. 

• GDPR: the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council, containing mandatory provisions regarding the processing of personal data, as well as the exercise of rights arising in connection with the processing of personal data by data subjects.

• Restriction of data processing: the indication of stored personal data with the aim of limiting its future processing.

• Recipient: a natural or legal person, public authority, agency, or another body, to whom or with which personal data is disclosed.

• Anonymization: processes by which, following their execution, it is no longer possible to determine to which specific person the personal data relates, i.e., the data loses its personal nature, and no conclusions can be drawn about any identifiable natural person, the link between the data subject and the data cannot be restored.

• Pseudonymization: processes whereby further information is required to ascertain to which specific person the personal data relates, if the additional information is stored separately and technical measures ensure that the personal data cannot be associated with identifiable natural persons.

• Supervisory Authority: an independent authority established to protect the rights and freedoms of natural persons in relation to the processing of personal data and to facilitate the free flow of personal data within the Union; in Hungary, the National Authority for Data Protection and Freedom of Information.

• Data Security Breach: breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, access to, transmitted, stored, or otherwise processed personal data.

• Website: the online platform available at www.tabukvillaja.hu, through which the Data Controller makes the Tabuk Villája interface accessible and available to data subjects, and which data subjects visit for browsing the information and content published there, and using the functions integrated into the website (such as sending messages, booking appointments, subscribing to newsletters).

• Cookie: or