UNITED Forms Kft.

Privacy statement



1. INTRODUCTION


www.unitedforms.hu - hereinafter: Website - is operated by UNITED Forms Kft. (Hereinafter: Data Manager), as Data Controller, by publishing this Privacy Statement and Data Management Information (hereinafter: Data Protection Statement), he / she describes the principles of his / her data management, which the Data Controller acknowledges to be binding on him / her.

Before using our Website, please read this Privacy Statement, which explains how we handle your personal information! In the Privacy Statement, the Data Controller shall clearly and in detail inform the data subjects of all important facts related to the processing of the data.

During the operation of the website, the Data Controller manages the data of the persons registered on the website in order to provide them with a suitable service. The service provider wishes to comply fully with the legal requirements for the processing of personal data, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council.

This data management notice is based on Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals' personal data and the free movement of data, subject to 2011 CXII.. the law on the right to information self-determination and freedom of information.

Name of service provider, data controller​

Name:  UNITED Forms Kft.
Headquarters: 1165 Budapest, Újszász utca 47. C. ép.
Tax number: 27045994-2-42
Company registration number: 01-09-346526
Owner, managing director: Deák Ferenc

Contact details of the data controller

Name:    UNITED Forms Kft
Headquarters: 1165 Budapest, Újszász utca 47. C. ép  
Website name, address: www.unitedforms.hu
E-mail:  info@unitedforms.hu
Telefon:  +36 20 399 3494

2. DEFINITION OF TERMS


personal data: any information relating to an identified or identifiable natural person (data subject); identify a natural person who, directly or indirectly, in particular by means of an identifier such as a name, number, location, online identifier or a natural, physiological, genetic, mental, identifiable by one or more factors relating to his / her economic, cultural or social identity;

data subject: any natural person identified or identifiable, directly or indirectly, on the basis of personal data.

Consent of the data subject: a voluntary, specific and well-informed and unambiguous statement of the will of the data subject to indicate his or her consent to the processing of personal data concerning him or her by means of a statement or unambiguous statement of consent;

controller: means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of the processing are defined by Union or Member State law, the controller or the specific criteria for the designation of the controller may be determined by Union or Member State law.

data management: any operation or set of operations on data, regardless of the procedure used, in particular the collection, recording, systematization, storage, alteration, use, interrogation, disclosure, coordination or aggregation, blocking, erasure and destruction of data, and prevent further use of the data, take photographs, sound or images, and recording physical identifiers (e.g. fingerprint or palm print, DNA sample, iris image).

data erasure: making data unrecognizable in such a way that it is no longer possible to recover it

data processor: any natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller;

data processing: the performance of technical tasks related to data management operations, regardless of the method and means used to perform the operations and the place of application, provided that the technical task is performed on the data.

data set: the set of data managed in one register

data protection incident: a breach of security resulting in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to, personal data transmitted, stored or otherwise handled.

recipient: any natural or legal person, public authority, agency or any other body to whom personal data are disclosed, whether a third party or not. Public authorities that may have access to personal data in the framework of an individual investigation in accordance with Union or Member State law shall not be considered as recipients; the processing of such data by those public authorities must comply with the applicable data protection rules in accordance with the purposes of the processing;

third party: a natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor or persons who have been authorized to process personal data under the direct control of the controller or processor.

information society service: a service provided electronically, to persons in absentia, for consideration, to which the recipient of the service has individual access.

e-commerce service: an information society service for the purpose of holding a movable item, including money and securities, and natural resources that can be used as such, a service, real estate, property right (hereinafter collectively referred to as a commodity) sale, purchase, exchange or other use.

GDPR (General Data Protection Regulation): the new Data Protection Regulation of the European Union.

3. RANGE OF USERS


User is both a natural person registered on the Site and a natural person who is not registered but uses the services of the Website and is identified or - directly or indirectly - identifiable on the basis of any specific personal data.

4. PRIVACY POLICY


The data controller declares that he / she handles the processing of personal data in accordance with the provisions of the data management information and complies with the requirements of the relevant legislation, paying particular attention to the following:

The processing of personal data must be carried out lawfully and fairly and in a way that is transparent to the data subject.

Personal data may only be collected for specified, explicit and legitimate purposes.

The purpose of the processing of personal data must be appropriate and relevant and only to the extent necessary.

Personal information must be accurate and up to date. Inaccurate personal data must be deleted immediately.

Personal data must be stored in a form which permits identification of data subjects for no longer than is necessary. Personal data may be stored for a longer period only if the storage is for the purpose of archiving in the public interest, for scientific and historical research purposes or for statistical purposes.

The processing of personal data must be carried out in such a way as to ensure adequate security of the personal data, including protection against unauthorized or unlawful processing, accidental loss, destruction or damage, by means of appropriate technical or organizational measures.

The principles of data protection shall apply to all information concerning an identified or identifiable natural person.

5. IMPORTANT DATA MANAGEMENT INFORMATION


The purpose of data management is to provide contact, information and additional services.

Legal basis for data processing: consent of the data subject.

The group involved in data management: the registered users of the website (newsletter subscribers, those interested through the form).

Duration of data management and deletion of data: The duration of data management always depends on the specific user purpose, but the data must be deleted immediately if the original purpose has already been achieved. The data subject's consent to the processing may be revoked at any time by sending a letter to the contact e-mail address. If there is no legal impediment to the deletion, your data will be deleted.

The data controller and its employees have the right to access the data.

The data subject may request the controller to access, rectify, delete or restrict the processing of personal data concerning him or her and to object to the processing of such personal data and to the data subject's right to data portability.

The data subject may withdraw his or her consent to the processing at any time, but this shall not affect the lawfulness of the data processing carried out on the basis of the consent prior to the withdrawal.

The person concerned may exercise the right to lodge a complaint with the supervisory authority.

If the person concerned wishes to take advantage of the benefits of registration, i.e. to use the services of the website for this purpose, it is necessary to provide the requested personal data. The data subject is not obliged to provide personal data, and there are no adverse consequences for non-disclosure. However, it is not possible to use certain functions of the website without registration.

The data subject shall have the right, at the request of the controller, to correct or supplement inaccurate personal data concerning him or her without undue delay.

The data subject shall have the right, at the request of the controller, to delete inaccurate personal data concerning him or her without undue delay, and the controller shall delete the personal data concerning him or her without undue delay, unless there are other legal bases for the processing.

Modification or deletion of personal data may be initiated by e-mail, telephone or letter using the contact details provided above.

6. COMPLETE THE CONTACT FORM ON THE WEBSITE


The Data Controller uses the data accessed by the contact form received through the website only for the purpose of providing contact and providing information, and does not store the data in a database.

7. SENDING A NEWSLETTER


As the operator of the website, we declare that we fully comply with the relevant legal provisions in the information and descriptions we publish. We also state that when you sign up for a newsletter, we are unable to verify the veracity of your contact information or determine whether the information you provide relates to an individual or business. We treat companies that contact us as customer partners.


The purpose of data management is to send professional brochures, electronic messages containing advertisements, information, newsletters, about which you can unsubscribe at any time without consequences. You can unsubscribe without any consequences if your business has been terminated, left the business, or someone has provided us with your contact information.


The legal basis for data processing is your consent. We inform you that the user may give prior and express consent to contact the service provider with advertising offers, information and other items at the e-mail address provided during registration. As a result, the user may consent to the service provider processing the necessary personal data for this purpose.


We would like to inform you if you want to receive a newsletter from us, you must provide the necessary information. We will not be able to send you a newsletter if you do not provide this information.

Duration of data processing: Data processing will take place until the withdrawal of consent. You can withdraw your consent to data management at any time by sending an e-mail to the contact e-mail address.

The data will be deleted when the consent to the data processing is revoked. You can withdraw your consent to data management at any time by sending an email to the contact email address.

Consent can also be revoked based on a link in the newsletters we send out.

The data controller and its employees have the right to access the data.

Method of data storage: electronic.

Modification or deletion of data can be initiated by e-mail, telephone or letter using the contact options provided above.

The data processor used: PaprikaSoft Kft.

Scope of data processed The specific purpose of data management data

Email Identification, contact

Subscription Date Technical Information Operation

IP address Technical information operation

Please note that the email address does not need to contain any personally identifiable information. For example, the email address does not need to include your name. You are completely free to choose an email address that contains information about your identity. The e-mail address you need to contact us is absolutely necessary for you to receive the newsletter or professional information sent to you.

8. PERSON RESPONSIBLE FOR DATA PROCESSING



The person authorized to process personal data is PaprikaSoft Kft. (Headquarters: 8600 Siófok, Aradi vértanúk útja 36., Company registration number: 14 09 311722, Tax number: 23457300-2-14, hereinafter: Data Processor) as a Data Processor. The personal data to be processed may be disclosed to the current legal representative (s), employees / agents / contributors of the Data Processor. The processor shall not transfer personal data to third parties unless the data subject has given his or her express consent.

Hosting provider

Name / company name: PaprikaSoft Kft.

Headquarters: 8600 Siófok, Aradi Martyrs' Road 36.

Phone: +36 20 414 0284

Email: office@paprikasoft.com


The information you provide is stored on a server operated by your hosting provider. The data can only be accessed by our employees and the employees operating the server, but they are all responsible for the secure handling of the data.

The name of the activity: hosting services, server services.

The purpose of data management is to ensure the operation of the website.

Data processed: personal data provided by the data subject.

Duration of data management and deadline for deleting data: Data management until the end of the operation of the website or in accordance with the contractual agreement between the operator of the website and the hosting provider. If necessary, the person concerned may also request the deletion of his data by contacting the hosting provider.

Legal basis for data processing: consent of the data subject or data processing based on law.


9. DURATION OF DATA PROCESSING


The Data Controller handles the personal data provided on the basis of the User's consent until the purpose of data processing is achieved or the User's consent is revoked. The Data Controller handles the personal data provided during the User's registration until the use of the Website is terminated, in particular until the registration is canceled.

Unless otherwise provided by law, the Data Controller a) for the purpose of fulfilling its legal obligation, or b) for enforcing the legitimate interest of the Data Controller or a third party, if the enforcing of such interest is proportionate to the restriction of personal data protection without further consent, and after the withdrawal of the data subject's consent. / 2011 CXII. Section 6. § (5) of the Act /

In order to fulfill the accounting obligations, the Data Controller shall provide the personal data provided by the User for 8 years pursuant to Section 169. § of Act C of 2000 and pursuant to Section XCII of 2003 on the Taxation Procedure. retained and managed within the statutory limitation period.

10. DATA TRANSMISSION, DATA LINKING


The Data Controller does not sell, rent or make available in any form personal data or information about the User to any other company or individual.

The Data Controller shall ensure the appropriate security of the data in the manner expected of it and shall take the technical and organizational measures that guarantee the enforcement of data protection rules and principles and promote the security of personal data.

We would like to inform the Dear Users that the Data Controller transfers personal data to third parties or persons only with the consent of the data subject.

11. COOKIES


Cookies are placed on the user's computer by the websites visited and contain information such as the page's settings or login status.

Cookies are therefore small files created by the websites you visit. Saving your browsing data improves the user experience. With the help of cookies, the website remembers the settings of the website and offers locally relevant content.

The website of the service provider sends a small file (cookie) to the computer of the visitors of the website in order to determine the fact and time of the visit. The service provider informs the visitor of the website about this. 

Data management affected: visitors to the website.

The purpose of data management: additional services, identification, tracking of visitors.

Legal basis for data management: The consent of the user is not required if the service provider absolutely needs the use of cookies.

The scope of the data: unique identification number, time, setting data.

The user has the option to delete cookies from their browsers at any time in the Settings menu.

Data controllers entitled to access the data: The data controller does not process personal data using cookies.

Method of data storage: electronic.

12. Social Medi Sights


A social site is a media device where a message is distributed through social users. Social media uses the Internet and online publishing to help users move from content recipients to content editors.

Social media is an interface for web applications that contain user-generated content, such as Facebook, Google+, Twitter, and more.

Social media can take the form of public speaking, presentations, presenting the products or services.

Social media information can take the form of forums, blog posts, images, videos, and audio, message boards, e-mail messages, and more.

In addition to the personal data, the scope of the data processed in accordance with the above may also be the public profile image of the user.

Affected: all registered users.

The purpose of data collection is to promote the website or a related website.

The legal basis for data processing is the voluntary consent of the data subject.

Duration of data management: according to the regulations that can be viewed on the given social site.

Deadline for deleting data: according to the regulations that can be viewed on the given social network.

They have the right to access the data: according to the regulations that can be viewed on the given social site.

Rights related to data management: according to the regulations that can be viewed on the given social site.

Method of data storage: electronic.

It is important to note that when a user uploads or submits any personal information, they grant worldwide permission to the operator of the social network to store and use such content. Therefore, it is very important to make sure that the user has full authority to disclose the published information.

13. GOOGLE ANALYTICS


Our website uses Google Analytics.

When using Google Analytics:

​Google Analytics uses internal cookies to generate a report for its customers about the habits of its users.

On behalf of the website operator, Google uses the information to evaluate how users use the website. As an additional service, it generates reports related to the activity of the website for the website operator in order to perform the additional services.

Data is stored on Google's servers in an encrypted format to make it more difficult to prevent data misuse.

Here's how to disable Google Analytics. Quote from the page:

Website users who do not want Google Analytics to run a JavaScript report on their data can install the Google Analytics Opt-out Add-on browser extension. The extension prevents Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sending information to Google Analytics. The browser extension is available for most newer browsers. Google Analytics Opt-out Add-on browser extension does not prevent data from being sent to the site itself or other web analytics services. 

https://support.google.com/analytics/answer/6004245?hl=en

Google Privacy Policy: https://policies.google.com/privacy?hl=en

Information on the use and protection of your data can be found in detail at the links above.

DATA PROTECTION IN DETAIL

https://static.googleusercontent.com/media/www.google.com/en//intl/hu/policies/privacy/google_privacy_policy_en.pdf

14. RIGHTS RELATED TO DATA PROCESSING


Right to request information

You can request information from us through the contact details provided, what data our company handles, on what legal basis, for what data processing purpose, from what source, for how long. Upon your request, we will send you information about the e-mail address you have provided without delay, but no later than within 30 days.

Right to rectification

You can ask us to change some of your details via the contact details provided. We will take care of this immediately upon your request, but within a maximum of 30 days, we will send you information by e-mail to the e-mail address you have provided.

The right to cancel

You can request us to delete your data via the contact details provided. Upon your request, we will do this immediately, but within a maximum of 30 days, and we will send you the e-mail to the contact information you provided. 

The right to block

You can ask us to block your data via the contact details provided. The block lasts for as long as the reason you specify requires the data to be stored. Upon your request, we will do this immediately, but within a maximum of 30 days, and we will send you the e-mail to the contact information you provided. 

Right to protest

You can object to the data processing via the contact details provided. We will investigate the protest as soon as possible, but no later than 15 days from the submission of the application, we will make a decision on the merits of it and we will inform you about its decision by e-mail.

15. POSSIBILITY OF ENFORCEMENT RELATED TO DATA PROCESSING


In the event of any unlawful data processing that you experience, please notify our company so that the legal status can be restored in a short time. We will do our best to solve the problem.

If you feel that the legal status cannot be restored, please inform the authority at the following contact details:

Nemzeti Adatvédelmi és Információszabadság Hatóság

Postal address: 1530 Budapest, Pf.: 5.

Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c 

Phone: +36 (1) 391-1400 

Fax: +36 (1) 391-1410 

E-mail: ugyfelszolgalat (@) naih.hu 

URL https://naih.hu 

Coordinates: É 47°30'56''; K 18°59'57'' 

16. LEGISLATION UNDERLYING DATA PROCESSING


- REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL April 27 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Regulation 95/46/EK (general data protection regulation).

- Act CXII. 2011. on the Right to Information Self-Determination and Freedom of Information.

- Act LXVI. of 1995. on Public Documents, Archives and the Protection of Private Archival Material law.

- Decree 335/2005 on the general requirements for the records management of bodies performing public tasks. (XII. 29.) Government Decree.

- Act CVIII. of 2001. on Certain Issues in Electronic Commerce Services and Information Society Services.

- Act C of 2003. on Electronic Communications.

​Date of entry into force of this Privacy Statement: 01/08/2020

The data controller reserves the right to make changes

Back to top