Majomkenyér.hu Limited Liability Company, as Data Controller, as the operator of the website available under the domain name www.mokyen.com (hereinafter: Website), hereby publishes information regarding the data management carried out within the framework of the Website and services related to the Website.
By starting to use the Website and using the services of the Data Controller, users visiting the Website and using the services of Majomkenyér Kft. (hereinafter: Data Subjects) accept all the conditions contained in this Data Management Information (hereinafter: Information), therefore we ask that the Website read this information carefully before using it or using the services.
The Majomkenyér.hu Limited Liability Company as Data Controller undertakes to carry out its data management activities – by adopting the appropriate internal rules, technical and organizational measures – in such a way that it complies with Regulation (EU) 2016/679 of the European Parliament and of the Council – natural persons on the protection of personal data and the free flow of such data, as well as on the repeal of Regulation 95/46/EC (general data protection regulation, hereinafter: Regulation) – also on the right to informational self-determination and freedom of information CXII of 2011. Act (hereinafter: Infotv.) provisions.
- Definitions
Data management: regardless of the procedure used, any operation or set of operations performed on Personal Data, in particular the collection, recording, organization, segmentation, storage, transformation, change, use, query, insight, use, communication, transmission, distribution or otherwise making it available, disclosing, coordinating or connecting, restricting, deleting and destroying it.
Data Controller: who determines the purposes and means of Data Management – independently or together with others. In the case of those referred to in this Data Protection Policy and Information Sheet, the following shall be considered Data Controller:
Data Controller: Majomkenyér.hu Kft.
Seat: 1063 Budapest, Szinyei Merse street 21. 1.st. floor. 5.
Represented by: Agócs István managing director
Registry number: 01-09-997731
Tax number: 24248796242
E-mail address: majomkenyer@majomkenyer.hu
Phone number: 0614260092
Data subject: any natural person identified or – directly or indirectly – identified on the basis of personal data.
Data processing: the performance of technical tasks related to data management operations, regardless of the method and tool used to perform the operations, as well as the place of application, provided that the technical task is performed on the data.
Data processor: the service provider that manages personal data on behalf of the Data Controller.
Personal data or data: any data or information on the basis of which a natural person can be identified – indirectly or directly.
Disclosure: making the data available to anyone.
Consent: the voluntary and firm statement of the data subject’s wishes, based on adequate information, and with which he gives his unequivocal consent to the processing of his personal data – in full or covering certain operations.
External service provider: third-party service partners used by the Data Controller in connection with the provision of individual Services, either directly or indirectly, to whom Personal Data is or may be transmitted in order to provide their services, or who may transmit Personal Data to the Data Controller. External service providers are also those service providers that do not cooperate with the Data Controller or the operators of the Services, but by accessing the websites of the Services, they collect data about the Data Subject, which, either independently or combined with other data, may be suitable for identifying the Data Subject. Furthermore, during the provision of hosting services, the Data Controller considers the Data Subject as an external service provider in terms of the data management activities carried out on the hosting used by him.
Data deletion: rendering the data unrecognizable in such a way that its recovery is no longer possible.
Data protection incident: unlawful handling or processing of personal data, including in particular unauthorized access, alteration, transmission, disclosure, deletion or destruction, as well as accidental destruction and damage.
- Data Management Cases
When we ask you to provide personal data in order to give you access to a function or service on the Site, we mark certain fields as mandatory, as this data is necessary to provide you with the service or to make the function in question available. Please note that if you choose not to provide us with this information, we may not be able to create your user registration or provide you with these services or features.
2.1 Customer correspondence, contact, contact
Scope of processed data: depending on the contact platform, surname, first name, e-mail address, telephone number, other (optional) data provided by the Data Subject.
Purpose of data management: if the Data Subject has any questions about the Website, the Data Controller’s services or products, they can contact the Data Controller via the contact information provided in this Information Sheet and on the Website’s interface. It serves to enable communication and contact between the Data Controller and the Data Subject in connection with the question that has arisen.
Time of data management: The Data Controller processes the received e-mails, postal letters with the sender’s name, e-mail address and other personal data provided in the message, starting from the date of data transmission, until the Data Subject’s question or comment has been resolved or answered.
Legal basis for data management: Data Subject’s voluntary consent based on Article 6 (1) point a) of the Regulation.
Source of data: taken directly from the Contact.
Possible consequences of failure to provide data: failure to maintain contact via customer correspondence.
2.2 Complaint
Scope of processed data: depending on the contact platform, surname and first name, e-mail address, telephone number, complaint submitted by the Data Subject.
Purpose of data management: if the Data Controller handles the Data Subject’s complaint in connection with the service provided, it also handles personal data during administration. The purpose of data management is to implement complaint management in accordance with legal regulations, and to establish and maintain contact between the Data Controller and the Data Subject in connection with the complaint that has arisen.
Time of data management: CLV of 1997 on consumer protection. pursuant to the rules defined by law, the Data Controller is obliged to keep the complaint for 3 years.
Legal basis for data management: fulfillment of the legal obligations stipulated in the Consumer Protection Act and the Civil Code based on Article 6 (1) point c) of the Regulation.
Source of data: taken directly from the Contact.
Possible consequences of failure to provide data: failure to handle a complaint, without providing personal data, the Data Controller cannot contact the Data Subject in connection with the given case and remedy the problem.
2.3 Newsletter
Scope of processed personal data: Name, email address
Purpose of data management: sending out a newsletter
Legal basis for data management: Data Subject’s voluntary consent based on point a) of Article 6 of the Regulation.
XLVIII of 2008 on the basic conditions and certain limitations of economic advertising activity. in accordance with the law, Majomkenyér.hu Limited Liability Company may send a newsletter to the e-mail address of the Data Subject at the request of the Data Subject only with the Data Subject’s express consent. The Data Subject’s declaration of consent can be revoked at any time without limitation or justification, free of charge. The Affected advertising shipment can be sent to a natural person as the recipient of the advertisement through direct business acquisition without the prior and express consent of the recipient, in which case the Data Controller ensures that the recipient of the advertisement can prohibit the sending of the advertisement at any time free of charge and without restrictions. In the event of a ban, advertising may no longer be sent to the affected person through direct business acquisition.
The Data Subject warrants that he has legally obtained the consent of the natural person concerned for the processing of personal data provided or made available by him about other natural persons during the use of the Services (e.g. during the publication of content generated by the Data Subject, etc.). All responsibility for shared user content uploaded by the Data Subject to the Services rests with the Data Subject.
When providing the e-mail address and data provided during registration (e.g. user name, ID, password, etc.), any Data Subject assumes responsibility for ensuring that the provided e-mail address or using the data provided by him, only he uses the service. In view of this assumption of responsibility, all liability related to logins to a specified e-mail address and/or data is the sole responsibility of the Data Subject who registered the e-mail address and provided the data.
2.4 General information
The personal data of a person under the age of 16 may only be processed with the consent of an adult exercising parental supervision over him. The Data Controller is not in a position to verify the authorization of the consenting person or the content of his statement, so the Data Subject or the person exercising parental supervision over him guarantees that the consent complies with the law. In the absence of a consent statement, the Data Controller does not collect Personal Data of the affected person under the age of 16, with the exception of the IP address used when using the Service, which is recorded automatically due to the nature of Internet services.
In the event of unlawful or misleading use of Personal Data or in the event of a crime committed by the Data Subject or an attack against the system, the Data Controller is entitled to immediately delete the Data Subject’s Personal Data at the same time as the Data Subject’s registration is terminated, and at the same time – in the event of suspicion of a crime or suspicion of civil liability – the Data Controller is entitled to use the Personal Data for the procedure to be carried out to keep for the duration.
- Data processing, data transmission
3.1 Data processing
The Data Controller handles Personal Data in accordance with the principles of good faith and fairness and transparency, as well as the provisions of the current legislation and this Information.
Personal data essential for the use of the Services are used by the Data Controller based on the Data Subject’s consent and only for a specific purpose.
The data controller may not use the personal data for purposes other than those indicated. For the purposes defined in point 3, only persons currently employed by the Data Controller may access the Data Subject’s personal data, they may not pass them on to third parties – with the exception of this point. The Data Controller may use a data processor for the provision of services and settlement with the Data Subject.
- STEMO Marketing (seat: 1133 Budapest, Pannónia utca 93. email: kerdes@berelj-marketingest.hu, web: https://berelj-marketingest.hu, activity: online marketing)
- Closte (www.closte.com, email: https://closte.com/contact-us, activity: hosting provider)
- Urvölgyi Ádám seat: 3100 Salgótarján, Rákóczi út 39, email: adam@urv.hu activity: website handling)
3.2 Data transmission
Personal data can be accessed primarily by the Data Controller and data processors commissioned by the Data Controller in order to perform their duties. In addition, the Data Subject’s personal data will be forwarded to another data controller in the following cases.
3.2.1 Authority request
The Data Controller informs the Data Subject that the release of Personal Data to third parties or authorities – unless the law provides otherwise – only on the basis of a legally binding official decision, or on the basis of the authorization of the law, other bodies may contact the Data controller.
If the authority has indicated the exact purpose and the scope of the data, the data controller will only release personal data to the authorities to the extent and to the extent that is absolutely necessary to achieve the purpose of the request.
If a court or authority legally orders the deletion of Personal Data, the deletion will be carried out by the Data Controller. Instead of deletion, the Data Controller – after informing the Data Subject – restricts the use of Personal Data, if the Data Subject requests this, or if, based on the available information, it can be assumed that the deletion would harm the Data Subject’s legitimate interests. The Data Controller will not delete the Personal Data as long as the data management purpose that precluded the deletion of the Personal Data exists.
Data provided by the Data Subject will not be forwarded for other purposes.
The Data Controller does not hand over the Personal data it manages to third parties other than the Data Processors specified in this Data Management Guide, as well as to the External Service Providers in some cases referred to in this Data Management Guide.
The Data Controller’s system may collect data about the Data Subject’s activity, which cannot be linked to other data provided by the Data Subject during registration, nor to data generated when using other websites or services.
Given the relevant provisions of the Regulation, the Data Controller is not obliged to appoint a data protection officer.
- Data security
Your personal data is stored on a server located at Closte.com’s current headquarters. The duration of data management is in accordance with the laws in force at all times.
Automatically recorded IP addresses are stored by the Data Controller for a maximum of 7 days after their recording. A backup is made of the stored data, which is stored by the hosting provider Closte.com. Backups are kept for 90 days, after which the data is automatically deleted from the backup.
In the case of e-mails sent by the Data Subject, if the Data Subject does not have registration anyway, the Data Controller will delete the e-mail address on the 90th day after the conclusion of the matter referred to in the request, unless in individual cases the Data Controller’s legitimate interest justifies the further processing of the Personal Data, until the existence of this legitimate interest of the Data Controller.
The Data Controller ensures the security of the Personal Data, takes the technical and organizational measures and establishes the procedural rules that ensure that the recorded, stored and managed data are protected, as well as prevent their accidental loss, unlawful destruction, unauthorized access, unauthorized its use and unauthorized alteration, unauthorized distribution. To fulfill this obligation, the Data Controller calls on all third parties to whom Personal Data is transmitted.
4.1 Principles of data security
The computer systems and other data storage locations of the Majomkenyér.hu Limited Liability Company are located in the server room at its headquarters. Majomkenyér.hu Limited Liability Company takes care when selecting, procuring and operating its IT equipment, and ensures that the processed personal data is accessible only to authorized persons, its origin can be verified and it is authentic. With technical, IT, organizational and internal measures, it ensures the security of data management and the appropriate protection level of risks related to data management. The IT system and network are both protected against computer-assisted fraud, espionage, sabotage, vandalism, fire and flood, as well as computer viruses, computer intrusions and denial-of-service attacks. Majomkenyér.hu Limited Liability Company informs the interested parties that electronic messages transmitted on the Internet, regardless of the protocol (e-mail, web, ftp, etc.) are vulnerable to network threats that lead to unfair activity, contract disputes, or information disclosure, lead to its modification. To protect against such threats, he takes all the precautions expected of him. Monitors systems to capture and provide evidence of any security deviations. Majomkenyér.hu Limited Liability Company does everything in its power to ensure that the data is not accidentally damaged or destroyed.
The Data Controller ensures the security of the data in the most modern way possible. The data controller undertakes to immediately suspend the service in the event of data protection incidents that occur despite the above-mentioned measures and to publish a statement until the error is rectified, and to keep a record of the data protection incidents and the measures taken.
- Rights
5.1 Information and right of access to personal data
The Data Subject may request that the Data Controller informs whether it processes the Data Subject’s personal data and, if so, to provide him with access to the Personal Data it manages. The Data Subject may request information on the processing of Personal Data at any time in writing, by registered letter or registered mail sent to the postal address of the Data Controller, 1063 Budapest, Szinyei Merse street 21. 1.st. floor. 5. Budapest, or by e-mail sent to the address majomkenyer@majomkenyer.hu. A request for information sent by letter is considered authentic by the Data Controller if the Data Subject can be clearly identified based on the sent request. The Data Controller considers a request for information sent by e-mail as authentic only if it is sent from the Data Subject’s registered e-mail address, but this does not preclude the Data Controller from identifying the Data Subject in other ways before providing the information. The request for information may cover the Data Subject’s data managed by the Data Controller, their source, the purpose, legal basis and duration of the Data Management, the name and address of possible Data Processors, the activities related to the Data Management, as well as, in the case of transmission of Personal Data, who received it and for what purpose and the Data Subject’s data. You have the right to request that your stored data be transferred to you or another party in a structured, commonly used and machine-readable format.
5.2. Right to correction and addition
The Data Subject may request the correction or modification of his/her Personal data managed by the Data Controller. Taking care the purpose of Data Management, the Data Subject may request the addition of incomplete Personal Data. The Personal Data provided by the Data Subject in connection with the given Service can be modified in the settings of the access control system of the Services and on the profile pages of each Service. Once a request to modify personal data has been fulfilled, the previous (deleted) data can no longer be restored.
5.3 Right to erasure
The Data Subject may request the deletion of his Personal Data managed by the Data Controller. Deletion may be refused (i) for the purpose of exercising the right to freedom of expression and information, or (ii) if the law authorizes the processing of Personal Data; and (iii) to present, enforce and defend legal claims. In each case, the Data Controller informs the Data Subject of the refusal of the deletion request, indicating the reason for the refusal of the deletion. After fulfilling the request to delete personal data, the previous (deleted) data can no longer be restored. Newsletters sent by the Data Controller can be unsubscribed via the unsubscribe link in them. In the event of unsubscribing, the data controller deletes the Data Subject’s Personal Data in the newsletter database.
5.4 Right to restriction
The Data Subject may request that the processing of his/her Personal Data be limited by the Data Controller if the Data Subject disputes the accuracy of the processed Personal Data. In this case, the limitation applies to the period that allows the Data Controller to verify the accuracy of the Personal Data. The Data Controller marks the Personal data it manages if the Data Subject disputes its correctness or accuracy, but the incorrectness or inaccuracy of the disputed Personal Data cannot be clearly established. The Data Subject may request that the processing of his Personal Data be restricted by the Data Controller even if the Data Processing is unlawful, but the Data Subject opposes the deletion of the processed Personal Data and instead requests a limitation of its use. The Data Subject may also request that the Data Controller limit the processing of their Personal Data if the purpose of the Data Processing has been achieved, but the Data Subject requires their processing by the Data Controller for the presentation, enforcement or defense of legal claims.
5.5 Right to data portability
If the data processing is necessary for the fulfillment of the contract or the data processing is based on the Data Subject’s voluntary consent, the Data Subject has the right to request that the data provided by the Data Subject to the Data Controller be received in a machine-interpretable form. The Data Controller makes the data available to the Data Subject in xml, JSON or csv format, and if it is technically feasible, the Data Controller can request that the Data Controller forward the data to another data controller in one of the formats indicated above.
In all cases, the authorization is limited to the data provided directly by the Data Subject, there is no possibility of portability of other data. (e.g. statistics. etc.)
The Data Subject’s personal data found in the Data Management system relating to him/her:
– entitled to receive it in a segmented, widely used, machine-readable format;
– entitled to transfer to another data controller;
– you can request the direct transmission of the data to the other data controller – if this is technically feasible in the Data Controller’s system.
The data controller fulfills the request for data portability only on the basis of a written request sent by e-mail or post. In order to fulfill the request, it is necessary for the Data Controller to make sure that the Data Subject who is entitled to it really wants to use this right. Within the scope of this right, the Data Subject may request the portability of the data that he/she has provided to the Data Controller. Exercising the right does not automatically result in the deletion of the data from the Data Controller’s systems, therefore the Data Subject will be registered in the Data Controller’s systems even after exercising this right, unless he also requests the deletion of his data.
5.6. Right to protest
The Data Subject may object to the processing of his Personal Data.
The Data Subject may object to the processing of his personal data by means of a statement addressed to the Data Controller, if the legal basis of the data processing
– Article 6 of the Regulation. You are in the public interest according to point e) of paragraph (1).
– legitimate interest according to Article 6 (1) point f) of the Regulation.
The Data Controller examines the legality of the Data Subject’s protest, and if it determines that the protest is well-founded, it terminates the Data Management and locks the processed Personal Data, and also notifies all those to whom the Personal Data affected by the protest were previously transmitted about the protest and the measures taken based on it.
5.7 Enforcement of the rights of a deceased Affected Person by someone else
Within five years of the Data Subject’s death, the deceased’s rights during his lifetime, such as the right to access, correction, deletion, limitation of data processing, data portability, and right to protest, were established by the deceased in an administrative order, or in a public document or a private document with full evidentiary force, with a statement made with the Data Controller an authorized person is entitled to validate. If the deceased made several such declarations to the Data Controller, the person named in the declaration made at a later date may assert these rights.
If the deceased did not make such a declaration, the rights defined in the previous paragraph to the deceased during his lifetime may be asserted by his next of kin according to the Civil Code within five years after the death of the next of kin (in the case of several next of kin, the next of kin is entitled to assert the above rights who is the first to exercise this right).
As a close relative, Ptk. 8:1. According to § (1) point 1, spouse, consanguineous relative, adopted child, stepchild and foster child, adoptive, stepparent and foster parent and sibling. The deceased’s next of kin must certify:
– the fact and time of death of the deceased Data Subject with a death certificate or court decision, and
– his own identity – and, if necessary, his status as a close relative – with a public document.
The person asserting the rights of the deceased – especially during proceedings before the Data Controller, the National Data Protection and Freedom of Information Authority, or the court – Info tv. and according to the Decree, – the deceased is entitled to the rights and obligations during his lifetime.
Upon written request, the data controller is obliged to inform the next of kin of the action taken, unless this was expressly prohibited in the statement of the deceased.
5.8 Deadline for completing the request
The Data Controller shall inform the Data Subject of the measures taken without undue delay, but in any case, within one month of receipt of any request pursuant to point 5. If necessary, taking care the complexity of the request and the number of requests, this deadline can be extended by another two months, but in this case, the Data Controller will inform the Data Subject within one month of receiving the request, indicating the reasons for the delay, and that the Data Subject may submit a complaint to with a supervisory authority and can exercise his right to judicial remedy.
If the Data Subject’s request is clearly unfounded or excessive (especially considering the repetitive nature), the Data Controller may charge a reasonable fee for fulfilling the request or refuse taking part based on the request. The Data Controller is responsible for proving this.
If the Data Subject submitted the request electronically, the Data Controller will provide the information electronically, unless otherwise requested by the Data Subject.
The Data Controller informs all recipients of all corrections, deletions or data management restrictions carried out by it, to whom or to whom the personal data was communicated, unless this proves to be impossible or requires a disproportionately large effort. At the request of the Data Subject, the Data Controller informs about these recipients.
5.9 Management and reporting of data protection incidents
The management of Majomkenyér.hu Limited Liability Company is responsible for preventing and handling data protection incidents and complying with the relevant legal regulations. Accesses and access attempts must be logged on the IT systems and analysed continuously. If the employees of the Data Controller who are entitled to control notice a data protection incident during the performance of their duties, they must immediately notify the executive.
The data protection incident can be reported to the Data Controller’s central e-mail address, where employees, contractual partners, and stakeholders can report the underlying events.
If a data protection incident is reported, the manager of the Data Controller – with the involvement of the employee responsible for data security – will immediately investigate the report, during which the incident must be identified and a decision must be made as to whether it is a real incident or a false alarm. It must be examined and determined:
- the time and place of the incident,
- the description, circumstances and effects of the incident,
- the range and number of dat, obtained without authorization during the incident,
- the range of persons affected by the incident,
- a description of the measures taken to prevent the incident,
- a description of the measures taken to prevent, eliminate and reduce the damage.
In the event of a data protection incident, the affected systems, persons, and data must be demarcated and separated, and evidence supporting the occurrence of the incident must be collected and preserved. After that, you can begin to repair the damage and restore legal operation.
In the case of conditions defined in data protection legislation, the Supervisory Authority must be notified.
The Data Controller informs the data subjects of the occurrence of a data protection incident, if it poses a high risk to the data rights and data freedom of the natural persons affected by it. In this case too, the information must be clear, unambiguous and understandable.
The Data Controller may refrain from informing the data subjects if:
- made it impossible for unauthorized persons to access the data affected by the data protection incident with appropriate technical and organizational measures,
- after the data protection incident occurred, he took measures to ensure that a high risk related to the rights and freedoms of the data subjects does not materialize,
- information could only be solved through disproportionate efforts, in which case a measure must be taken that ensures effective information to those concerned.
The register of data protection incidents is kept in electronic form by the person designated for this purpose. The register – with the exception of the name of the Employee or Member – does not contain the specific personal data, but the range of personal data.
A record of data protection incidents must be kept, which includes:
- the range of personal data concerned,
- the scope and number of those affected by the data protection incident,
- the date of the data protection incident,
- the circumstances and effects of the data protection incident,
- the measures taken to remedy the data protection incident,
- other data specified in the legislation prescribing data management.
Data relating to data protection incidents in the register must be kept for 5 years.
- The right to legal enforcement and the right to complain to a supervisory authority
For any questions or comments related to data management, please contact us at majomkenyer@majomkenyer.com or at 1063 Budapest, Szinyei Merse street 21. 1.st. floor. 5.
The Data Controller can direct his complaint regarding Data Management to the National Data Protection and Freedom of Information Authority (address: Hungary, 1055 Budapest, Falk Miksa utca 9-11; e-mail: ugyfelszolgalat@naih.hu; website: www.naih.hu).
In the event of a violation of the Data Subject’s rights, he may go to court. The adjudication of the lawsuit falls within the jurisdiction of the court. At the choice of the data subject, the lawsuit can also be initiated before the court of the data subject’s place of residence or residence. Upon request, the Data Controller informs the Data Subject of the possibility and means of legal redress.
All persons who have suffered material or non-material damage as a result of a violation of the Regulation are entitled to compensation from the Data Controller or the data processor for the damage suffered. The data processor is only liable for damages caused by data processing if it has not complied with the obligations specified in the law, which are specifically imposed on data processors, or if it has ignored the lawful instructions of the Data Controller or has acted contrary to them. The Data Controller or the data processor is exempted from liability if it proves that it is not in any way responsible for the event causing the damage.
The National Media and Communications Authority acts in relation to advertisements (Newsletter) sent electronically, the detailed regulation is provided by Act CXII of 2011 on the right to self-determination of information and freedom of information. Act, as well as CVIII of 2001 on certain issues of electronic commercial services and services related to the information society. can be read in law.
- Special rules for the COOKIES
In order to provide customized service, the data controller places a small data package (so-called „cookie”) on the Data Subject’s computer. The purpose of the cookie is to ensure the highest possible level of operation of the given page, provide personalized services, and increase the user experience. The Data Subject can delete the cookie from their own computer or set their browser to prohibit the use of cookies. By prohibiting the use of cookies, the Data Subject acknowledges that the operation of the given page is incomplete without cookies.
When providing personalized services, the Data Controller uses cookies to manage the following Personal data: demographic data, as well as interest information, habits, preferences (based on browsing history).
Data that is technically recorded during the operation of the systems: the data of the data subject’s computer that is generated during the use of the Service and which is recorded by the Data Controller’s system as an automatic result of the technical processes. The data that is automatically recorded is automatically logged by the system upon entry or exit without a separate declaration or action by the Data Subject.
7.1 How to check COOKIES?
All browsers allow changing the cookie settings. Most browsers automatically accept cookies by default, but these settings can usually be changed so that the browser can prevent automatic acceptance and offer the choice each time whether to allow cookies.
Since the purpose of cookies is to facilitate or enable the usability and processes of the Website, preventing or deleting the use of cookies may prevent you from being able to fully use the Website’s functions, or that the Website will function differently in your browser than intended.
By setting your browser appropriately, you can of course ensure that cookies are not placed on your end device at any time. The help function found in the menu bar of most web browsers describes how you can prevent your web browser from accepting new cookies, how you can instruct the browser to do so when a new cookie arrives, and how you can delete and further block existing cookies.
These settings can be made as follows:
Internet Explorer:
– In the „Tools” menu, select the „Internet settings” menu item.
– Click on the „Privacy” tab.
– Internet zone settings can be selected here. Here you can set whether the browser can accept cookies, if so, which ones and which ones you should reject.
– You can confirm the settings with the OK button.
Firefox:
– In the „Tools” menu, select the „Settings” menu item.
– Click on the „Privacy” tab.
– In the drop-down menu, select „Design according to user-defined settings”.
– Here you can set whether the system can accept cookies, how long the accepted cookies can be stored, and which websites you wish to permanently allow or prohibit the use of cookies.
– You can confirm the settings with the OK button.
Google Chrome:
– Click on the Chrome menu in the browser symbol bar.
– Select “Settings”.
– Click on „Show advanced settings”.
– In the „Privacy and security” area, click on „Content settings”.
In the „Cookies” (Cookies) menu, you can set the management of cookies in the following way:
– Delete cookies
– Permanent blocking of cookies
– Delete cookies and website data by default when the browser session ends
– Allow cookies for certain websites or domains as an exception
Please note that in this case you may not be able to fully use all the functions of that website.
7.2 Types of COOKIES
Session cookies: Session cookies are temporary cookie files that are deleted when you close your browser. If you restart your browser and then return to the website that created the cookie, the website will treat you as a new visitor.
Persistent cookies: Persistent cookies remain in the browser until you delete them manually or until the browser deletes them at the end of the expiration time set in the cookie. These cookies recognize you as a returning visitor.
Necessary cookies: Necessary cookies are essential for the operation of this website. You can use them to navigate the website and use its elements.
Functional cookies: The purpose of these cookies is to improve the user experience. they detect and store the device with which the website was opened, or the data previously provided by the data subject and requested to be stored: for example, user changes made by the data subject in the text size, font or other customizable elements of the website. these „cookies” do not track the data subject’s activities on other websites.
Legal basis for data management: The legal basis for data management is the voluntary consent of the data subject based on point a) of Article 6 (1) of the Regulation.
Source of data: Taken directly from the Contact.
Possible consequences of failure to provide data: incomplete use of the Website’s services, inaccuracy of analytical measurements.
Data that are automatically and technically recorded during the operation of the system are stored in the system for a period justified from the point of view of ensuring the operation of the system, starting from their generation. The Data Controller ensures that this automatically recorded data cannot be linked to other Personal Data, except in cases made mandatory by law.
It is your responsibility to set your computer to accept cookies or not. From your browser settings, you can choose to warn you before accepting cookies, or you can simply disable cookies.
Cookies are not necessarily necessary to use or navigate most of the www.majomkenyer.hu website, although if they are disabled, you will not be able to access all the functions of www.majomkenyer.hu. For instructions, click on the „help” button of your browser (e.g. Internet Explorer, Firefox). Remember, if you use different computers in different locations, you must set the cookie management of each browser. As web beacons are part of websites, they cannot be „disabled”, but they can be made unusable by disabling the cookies they set.
7.3 IP addresses
An IP address is the number that computers on your network use to identify your computer every time you go online. We may record IP addresses for the following purposes: (i) to eliminate technical errors, (ii) to maintain the safety and security of the website, (iii) to obtain more accurate information about how our websites are used, and (iv) to customize the content according to which country you are using the website from websites.
7.4 Log files
The collection of information by us (or by a third party acting on our behalf) may also be in the form of log files, which are used to record website activity and collect statistics about a user’s browsing habits. These log entries are generated anonymously and help us collect, among other things, the following information: (i) the browser type and operating system used by the user, (ii) information about the Data Subject’s session (e.g. from which URL it was accessed, at what time the on our website, which pages you viewed and for how long), (iii) and similar navigation or visitor path data.
7.5 Facebook
The Data Controller uses social plug-ins (plugins) of the Facebook social network operated by Facebook on the Website.
If the data subject accesses a page of the Website that contains such a plug-in, his browser establishes a direct connection with Facebook’s servers. Facebook transfers the content of the plugin directly to the browser of the person concerned and integrates it into the page. Such integration enables Facebook to receive the information that the Data Subject’s browser has accessed the appropriate page of the Website, even if the Data Subject does not have a profile on Facebook or was not even logged into Facebook at the given moment.
Please read Facebook’s notes on the purpose and extent of data collection by Facebook at the following link, as well as what rights you have in this regard, as well as the possible settings you can use to protect your privacy: https:// www.facebook.com/policy.php. You can find an overview of Facebook plugins and their appearance here: https://developers.facebook.com/docs/plugins
If you do not want Facebook to directly associate the data collected through the Website with your Facebook profile, you must log out of Facebook before visiting the Website. If extensions, e.g. If you use a „Facebook blocker” for your browser, you can completely prevent Facebook plug-ins from being downloaded.
7.6 Instagram Social Plugins
Plug-in social modules of Instagram („Plugins”) operated by Instagram are also used on the website. These modules are marked with the Instagram logo, for example in the form of the „Instagram Camera” mark.
If the Data Subject clicks on the Instagram Logo, he directly visits the Instagram page of the Website and his browser establishes a direct connection with Instagram’s servers. Instagram sends the content of the plugin directly to the visitor’s browser, embedded in the website. In this way, Instagram receives information that the browser has visited the relevant page of the Website, even if you do not have an Instagram profile or have not yet logged in to Instagram.
The data protection rules regarding the purpose and scope of data collection, as well as the further processing and use of data by Instagram, can be found in Instagram’s data protection statement:
https://help.instagram.com/155833707900388/.
7.7 COOKIES placed by Google Analytics
| Category | Name | Purpose of data management | Time of data management |
| Statistical | _ga | It contains a unique identifier that is used to generate statistics about the use of the website concerned. | 2 years |
| Statistical | _gat | It is used to control Google Analytics requests. | session |
| Statistical | _gid | It contains a unique identifier that is used to generate statistics about the use of the website concerned. | session |
| Statistical | __utmz | This cookie records whether the visitor came from a search engine (and if so, what keyword they used), a link or a previous page (such as a bookmark). | 6 months |
| Statistical | __utma | The cookie stores the number of visits (per visitor), the time of the first visit, the previous visit and the current visit. | 2 years |
| Statistical | __utmb, __utmc | These cookies can be used to check how quickly people leave the website: when the visit started and when it ended. | session |
| Marketing | __utmv | If you use custom reports in Google Analytics and have set custom segmentation on the website, the _utmv cookie will let Analytics know how to classify that visitor. | 2 years |
| Statistical | _ga | It contains a unique identifier that is used to generate statistics about the use of the website concerned. | 2 years |
| Statistical | _gat | It is used to control Google Analytics requests. | session |
| Statistical | _gid | It contains a unique identifier that is used to generate statistics on the use of the website concerned. | session |
| Statistical | __utmz | This cookie records whether the visitor came from a search engine (and if so, what keyword they used), a link or a previous page (such as a bookmark). | 6 months |
| Statistical | __utma | The cookie stores the number of visits (per visitor), the time of the first visit, the previous visit and the current visit. | 2 years |
| Statistical | __utmb, __utmc | These cookies can be used to check how quickly people leave the website: when the visit started and when it ended. | session |
| Marketing | __utmv | If you use custom reports in the Google Analytics service and have set custom segmentation on the website, the _utmv cookie will let Analytics know how to classify the visitor. | 2 years |
You can find information about the description of individual cookies HERE.
If the data subject does not want Google Analytics to measure the data in the manner and for the purpose described, install the blocking add-on in his browser.
More information on data management by Google Analytics can be requested at http://www.google.com/intl/hu/policies/. The document „How Google uses data when the Data Subject uses the site or application of one of our partners” is available at the following link: http://www.google.com/intl/hu/policies/privacy/partners/
7.8 Adjust
„adjust” only uses the user’s IP and MAC address in an anonymized form for analysis. From these data, it is not possible to trace back to the natural person. The program uses the data obtained during use exclusively to analyses the operation and use of the application based on anonymous evaluations. We use the analyses exclusively for our own market research purposes and to improve the application. This function can be turned off by setting the device accordingly. The legal basis for the use of data for this purpose is the Data Subject’s voluntary consent based on Article 6(1)(a) of the General Data Protection Regulation.
7.9 Localytics
For this purpose, the Data Subject’s data is used exclusively under a pseudonym, and the Data Controller cannot identify the Data Subject as a natural person. The legal basis for data management is the Data Subject’s voluntary consent based on point a) of Article 6 (1) of the Regulation. You can always disable the analysis by setting the appropriate settings on your device (in the IOS system, you can turn off the sending of usage data in the Settings menu, in the Android system directly in the settings of the application menu.)
- Protecting children
By providing data and information related to the use of the Services of the Data Controller, the Data Subject declares that his capacity to act is not limited in relation to the provision of the relevant data and information. If the Data Subject is considered to be legally „incapacitated” or „limited to act” in relation to the provision of data and information, and is not entitled to an independent declaration in this regard based on the relevant legislation, the Data Subject is obliged to obtain the consent of the third party named in the legislation (e.g. legal representative, guardian) to obtain in connection with the provision of information. The regulation of the validity of legal declarations, thus the validity of the consent given to the processing of minors’ data, is regulated by the Civil Code. and contained in the Regulation. The Civil Code 2:13 am. § and § 2:14. § (1) „a minor who has not reached the age of fourteen is incapable of acting. The legal declaration of a minor under the age of 14 is null and void, his legal representative can act on his behalf.”
The Civil Code 2:11 a.m. § and 2:12. According to § (1), „A minor who has reached the age of fourteen and is not incapable of acting is limited in his capacity to act. For the validity of the declaration of a minor with limited legal capacity – if the Civil Code. does not provide otherwise – the consent of his legal representative is required.” Regarding the processing of personal data based on consent, according to the Regulation, „the processing of personal data in connection with information society-related services offered directly to children is legal if the child has reached the age of 16. In the case of a child under the age of 16, the processing of the children’s personal data is only legal if and to the extent that the consent was given or authorized by the person exercising parental supervision over the child.”
If the Data Controller notices that its Services are intended to be used by a person who is clearly „incapacitated”, in particular a child under the age of 16 who is acting without parental or guardian permission, it will make every reasonable effort to delete all information that the child came into his possession and ensures that this information will not be forwarded or used to others.
We ask the Data Subjects to inform the Data Controller immediately if they find that a child has provided us with personal data or information about himself without the permission of his parent or guardian. We recommend that parents and guardians teach their children (especially when using the Internet) how to manage their personal data safely and responsibly.
- Other provisions
The Data Controller reserves the right to unilaterally amend this Data Management Information Sheet with prior notification to the Data Subject, especially, but not exclusively, in the event of a change in legislation. The amendments shall enter into force for the Data Subject on the date indicated in the notification, unless the Data Subject objects to the amendments.