Privacy Statement
Privacy Statement of Caseking Hungary Kft.
Effective from: 26 August 2019
1. Introduction
Caseking Hungary Kft. is committed to the protection of the personal data of its customers and partners, and considers it extremely important to respect the right of informational self-determination. Caseking Hungary Kft. processes personal data confidentially, and takes all the necessary measures to guarantee the security of data.
Caseking Hungary Kft., as controller, acknowledges the content of this notice as binding. It undertakes to ensure that all data processing related to its activity meets the requirements set out in this policy and in all applicable legislation. Caseking Hungary Kft. reserves the right to amend this Notice and undertakes to notify its partners in good time of any such amendment. If requested by the partners of Caseking Hungary Kft., after identification, Caseking Hungary Kft. shall disclose to them the personal data collected and available and, upon the request of the user, shall erase or amend them.
The processing principles are in line with the effective legislation on data protection:
- Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information (hereinafter: ‘Info tv.’ or ‘Data Privacy Act’)
- and the Regulation of the European Parliament and of the Council (EU) 2016/679 (27 April 2016) on the Protection of Natural Persons with Regard to the Processing of Personal Data and on the Free Movement of Such Data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR)
Caseking Hungary Kft. describes its data processing practices below.
2. The Controller
Name: Caseking Hungary Kft.
Registered office: 1139 Budapest, Váci út 95
Managing Director: Gergely Iván Balassa
Phone: +36 1 288 1000
E-mail: adatvedelem@caseking.hu
Tax number: HU25001527
EU tax number: HU18009413
Homepage of Caseking Hungary Kft.: //www.caseking.hu
If the user has any question, the answer to which is not clear based on this information, they may request additional information by sending a letter to adatvedelem@caseking.hu. We respect your rights and request and do our utmost to fulfil them within the statutory 30-day deadline.
3. Purpose and principles of the processing
3. 1. Purpose of the processing
The processing activity forming part of the activity of Caseking Hungary Kft. (hereinafter: ‘Controller’) is based on voluntary consent and statutory authorisation. In the case of processing base on voluntary consent the data subjects may withdraw their consent during any phase of the processing. The legal ground for which is provided by Section 5 (1) of the previously referenced Act CII of 2011 (Info tv.) and by the Data Protection Regulation of the European Union (General Data Protection Regulation – GDPR).
In some cases however, the processing, preservation and transfer of a particular set of data is mandatory by law, regarding which we notify our audience separately. Please note that if the data providers providing data to Caseking Hungary Kft. are providing the data of a third party, it is their obligation to obtain the consent of the third party concerned.
3. 2. Principles of the processing
The Controller processes Personal Data in accordance with the principles of good faith, fairness and transparency, as well as the provisions of the effective legal regulations and the provisions of this Notice.
The Controller uses the Personal Data absolutely necessary for using the Services on the basis of the consent of the data subject User and only for the limited purpose.
The Controller processes Personal Data only for purposes defined in this Notice and the applicable legal regulations. The scope of the processed Personal Data is proportionate with the purpose of processing and may not exceed it (data minimisation).
Caseking Hungary Kft. does not process the data of persons under the age of 16, therefore parental consent is not required. In addition, educational services provided directly to persons under 18 years of age do not require parental consent.
The Controller does not transfer the Personal Data processed by it to any third party other than the Processors defined in this Notice and to third parties other than External Service Providers in certain cases referred to in this Notice. The use of data in a statistically aggregated form is an exception from the provision of this Section and may not contain in any form the name or any other data suitable for the identification of the data subject User, therefore it is not deemed processing or transfer of data.
The Controller makes accessible the available Personal Data of data subject Users to third parties in certain cases such as an official request from a court or the police, legal proceedings based on the violation of copyrights, property rights or other rights or a thorough suspicion thereof, infringement of the Controller’s interests, threat to the supply of Services, etc.
The Controller’s system may collect data about the Users’ activity, which may not be linked to the other data provided by the Users during registration or with the data generated during the use of other websites or services.
The Controller informs the data subject User and those to whom it previously transferred the Personal Data for processing of the rectification, restriction or erasure of the processed Personal Data. Notification is not required if it does not violate the legitimate interest of the data subject in light of the purpose of processing.
The Controller ensures the security of the Personal Data and takes all technical and organisational measures and puts in place the procedural rules that ensure the protection of all collected, stored and processed data, as well as prevents the accidental loss, unlawful destruction, unlawful access to, unlawful use and unlawful alteration and distribution of data. The Controller instructs each third party to whom it transfers Personal Data to perform that obligation.
In view of the applicable provisions of the GDPR, the Controller is not obliged to appoint a data protection officer.
The Controller is responsible for compliance with these principles.
4. Processed personal data:
If You register on our website, we shall collect the following data described below.
4.1. Personal Data to be provided during registration
For security reasons we log the following data for each of our services:
– Visited page and the time of the visit
– Browser cookie
4. 1. 1. Newsletter
Purpose of the processing: the interested party subscribes to the newsletters and informative materials, where they regularly receive information on professional news, products and the activities of Caseking Hungary Kft.
Legal ground of the processing: the consent of the data subject, which they can withdraw at any time by clicking the unsubscribe link at the bottom of each e-mail.
Processed data: company name, name of contact person, e-mail address.
Person authorised to handle and process data: the managing director, the marketing employee and the purchasing employee of Caseking Hungary Kft.
Duration of the processing: indefinite, until the unsubscription of the interested party.
The erasure or modification of personal data may be initiated in the following ways:
- by clicking the ‘unsubscribe’ link located at the bottom of the newsletter
- by post at 1139 Budapest, Váci út 95,
- by sending an e-mail to adatvedelem@caseking.hu.
4. 1. 2. Website
With the help of Google Analytics we track the activity of our partners in order to optimise the efficiency of our website.
4. 1. 3. Billing
The purpose of the processing: legal obligation
Processed data: name, postal address, tax number, EU tax number, payment method, bank account number, name of contact person, phone number, e-mail address
Person authorised to handle and process data: the employee of Caseking Hungary Kft. in charge of billing
Duration of the processing: according to accounting laws
The erasure or modification of personal data may be initiated in the following ways:
- by post at 1139 Budapest, Váci út 95,
- by sending an e-mail to adatvedelem@caseking.hu
4. 1. 4. Other processing
Information on data processing not listed in this Notice will be provided when the data are recorded.
We would like to inform our customers that the court, the prosecutor’s office, the investigation authority, the offence authority, the administrative authority, the National Authority for Data Protection and Freedom of Information and, based on an authorisation granted by law, other agencies may approach the Controller for information, for the disclosure and transfer of data or the supply of documents.
When the authority specifies the exact objective and scope of the data, Caseking Hungary Kft. discloses personal data only to such an extent that is absolutely necessary for achieving the objective of the request.
4. 2. Technical data
Caseking Hungary Kft. selects and operates its own IT equipment and subcontracting tools used for processing personal data and providing services making sure that the processed data:
a) are accessible by the authorised parties (availability);
b) are authentic and genuine (authenticity of processing);
c) remain certifiably unchanged (data integrity)
d) are protected against unauthorised access (data confidentiality).
Caseking Hungary Kft. protects the data by implementing the necessary measures against unauthorised access, alteration, transfer, disclosure, erasure or destruction, as well as inadvertent destruction and damage, along with inaccessibility due to changes occurring in the technology used.
For the protection of data sets stored in its different electronic records Caseking Hungary Kft. implements suitable technical solutions to prevent - unless this is permitted by law - the linking of the stored data with the data suitable for the identification of the data subject.
In the course of processing Caseking Hungary Kft. maintains
a) confidentiality: by protecting the information and making it accessible only to authorised parties;
b) integrity: by protecting the accuracy and completeness of the information and the processing method;
c) availability: by ensuring that when an eligible user requires it, they can actually access the required information and that the related devices are available.
4. 3. Web analytics performed on the website
What is a cookie?
Cookies are small data files stored on the user's computer by the browser upon the request of the site that are equipped with a unique identifier, thus allowing a distinction to be made between computers and other devices that download the site. We use the data and settings stored by the cookies to maintain and develop the services of the website and to improve user experience.
Internet browsers allow users to modify the settings in their browser to reject certain types of cookies or even a specific cookie, but the user can also delete them either manually or automatically.
Our website uses session and analytics cookies.
The information collected by the cookies is not sold, leased or otherwise disclosed to third parties by the website, except to the extent required to provide the services for which you have provided this information in advance and voluntarily. This site may include links to third party sites that are under the control of and maintained by third parties. Since the website does not control the use of such information by such third parties, in all such cases, the provisions of the third party’s Privacy Policy shall be applied, for which the site does not assume responsibility and may not be held legally liable.
You can find detailed information about cookies here.
5. Storage method of personal data, security of processing
5. 1. Confidential processing
Caseking Hungary Kft. shall treat the recorded data confidentially and shall do its utmost to ensure the security of the data and use it in a manner necessary for the proper functioning of the Website. This includes, but is not limited to, sending an e-mail to you and to the contact details you provided, for which the message will be sent through the given service provider.
Caseking Hungary Kft. will never sell or lend your personal data to third parties for marketing purposes. However, it may disclose your personal data and other relevant information if required by a summons, court order or within the framework of a legal procedure.
In addition, Caseking Hungary Kft. may assert and enforce its statutory rights and defend itself against legal actions.
Caseking Hungary Kft. selects the IT tools used to process the data in such a way that the data being processed is accessible only by Caseking Hungary Kft. - as the authorised person - during operation, the authenticity of the data is maintained, no changes to the recorded data - other than the data recording process - occur, and that the recorded data are protected from unauthorised access.
The data processed by Caseking Hungary Kft. may be transferred upon an authority or court order and in accordance with legal requirements, in relation to which Caseking Hungary Kft. will notify its users by e-mail, provided that this is not contrary to the authority or court order or the applicable legal requirements.
5. 2. Access of our colleagues to personal data
Through Mailchimp:
We provide our employees with access only to the personal data processed by us, which is strictly necessary for their job.
Through an enterprise management system:
Our employees have access only to the personal data processed by them, which is protected by a user password.
5. 3. Technical data
Caseking Hungary Kft. selects and operates its own IT equipment used for processing personal data and providing services making sure that the processed data:
a) are accessible by the authorised parties (availability);
b) are authentic and genuine (authenticity of processing);
c) remain certifiably unchanged (data integrity)
d) are protected against unauthorised access (data confidentiality).
Caseking Hungary Kft. protects the data by implementing the necessary measures against unauthorised access, alteration, transfer, disclosure, erasure or destruction, as well as inadvertent destruction and damage, along with inaccessibility due to changes occurring in the technology used.
For the protection of data sets stored in its different electronic records Caseking Hungary Kft. implements suitable technical solutions to prevent - unless this is permitted by law - the linking of the stored data with the data suitable for the identification of the data subject.
In the course of processing Caseking Hungary Kft. maintains
a) confidentiality: by protecting the information and making it accessible only to authorised parties;
b) integrity: by protecting the accuracy and completeness of the information and the processing method;
c) availability: by ensuring that when an eligible user requires it, they can actually access the required information and that the related devices are available.
6. Duration of processing, data transfer
6. 1. Duration of data processing
In accordance with the GDPR, we process your data with a predetermined limitation period for each processed data set.
Personal data are processed for up to 365 days from the date of your last contact, except where a longer period is required for compliance with statutory requirements or for the performance of a contract.
6. 2. Data Transfer
We are entitled and obligated to transfer any personal data available and regularly stored by us to the competent authorities, the transfer of which is our legal obligation, is imposed by the law or by an effective order of an authority. The Controller may not be held liable for such data transfer or any consequences thereof.
The information systems and networks of Caseking Hungary Kft. and its partners are protected against computer supported fraud, spying activities, sabotage, vandalism, fire and flood, as well as attacks by computer viruses, intrusion and service refusal. The operator applies protection procedures at server and application level to guarantee security.
We also inform our users that, irrespective of the protocol (e-mail, web, ftp, etc.) the electronic message sent online are vulnerable to network threats that may lead to unlawful activities, dispute of the contract or disclosure or modification of information. In order to protect the users from such threats, the service provider takes all reasonable precautionary measures. It monitors its systems to be able to record any security discrepancy and to provide evidence for each security event. In addition, the system monitoring also helps in checking the efficiency of the applied precautionary measures.
7. Legal remedy options
You may exercise the rights detailed below. We will respond to your request in relation thereto within a maximum of 1 month in compliance with the GDPR, but we shall do our utmost to respond to you sooner.
7. 1. Right to information
You may request to be informed of, and request access to, your personal data that we process, and may request the rectification of your personal data at any time, or, with the exception of the processing required by law, you may request their erasure as indicated at the time of recording or by contacting the Controller on its contact details provided (by e-mail on the adatvedelem@caseking.hu e-mail address).
We considers any request for information sent by letter authentic when the user can clearly be identified from the submitted request. We considers any request for information sent by e-mail authentic only if it is sent from the registered e-mail address, but prior to providing the information we may also identify you by some other means.
The request for information may be extended to the data processed by us, their sources, the purpose and legal ground as well as duration of processing, the name and address of the processors, the activities relating to processing and, when Personal Data are transferred, the parties who received or still receive your data and the related purpose.
7. 2. Access right
If you request information on whether your Personal Data are being processed, and if the response to your request is yes, you may be granted access to the purpose of the processing, the categories of data, the recipients, the preservation period, the data subject rights, legal remedy and the source of the data. The Controller shall provide the information within a maximum of one month from the submission of the request.
7. 3. Right to rectification
You may request the rectification or modification of your Personal Data in writing at any time, sending us a letter by registered mail with confirmed receipt or by sending an e-mail to the following address: logisztika@ogisztika.hu. Taking into account the purpose of the processing, you may request to have incomplete Personal Data supplemented.
7. 4. Right to be forgotten (Right to erasure)
You may request the erasure of your Personal Data processed by us. Caseking Hungary Kft. shall erase without delay the personal data of its partners if:
· the personal data requested to be erased are no longer required for the purpose they were obtained for or processed;
· the data subject revokes their consent forming the basis for processing, and there is no other legal ground for the processing activity;
· the data subject objects to the processing, and there is no prevalent legitimate reason for the processing of the data
· the personal data are being processed unlawfully