Privacy policy

1. Purpose of the Legal and Privacy Statement and Policy

Anna Schandl individual entrepreneur (hereinafter referred to as the “Data Controller”), as the exclusive operator and maintainer of the www.schananda.hu Internet portal in Hungary, respects the fundamental constitutional right to the protection of personal data, which means that everyone has the right to decide on the disclosure and use of his or her personal data.

The Data Controller acknowledges that the contents of this legal notice are binding upon it. It undertakes to ensure that all processing of data relating to its activities complies with the requirements set out in this Policy and in the applicable national legislation and European Union acts.

The Controller reserves the right to modify at any time this Legal and Privacy Notice and Policy, which is permanently available at www.schananda.hu.

It will of course inform its audience of any changes in due time.

The Data Controller is committed to protecting the personal data of its customers and partners, and attaches the utmost importance to respecting the right of its customers to information self-determination. The Data Controller treats personal data confidentially and takes all security, technical and organisational measures to ensure the security of the data.

The Data Controller describes its data management practices below.

 

2. Data Controller’s data

Name: Anna Schandl (hereinafter referred to as “Data Controller”)

Registered office: 25/A Szamorodni Street, 1028 Budapest, Hungary

Tax number: 8396575061

E-mail: anna@schananda.hu

Data Protection Officer: Anna Schandl

Phone number: +36 30 3434 221

3. Purpose, method and legal basis of data processing, General data processing policy

The data processing activities of the Data Controller are based on voluntary consent and on legal authorisation. In the case of processing based on voluntary consent, data subjects may withdraw their consent at any time during the processing.

Its processing principles are in accordance with the applicable data protection legislation, in particular the following:

Act CXII of 2011 – on the Right to Informational Self-Determination and Freedom of Information (Infotv.);
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation – GDPR),
Act V of 2013 – on the Civil Code (Civil Code);
Act C of 2000 – on Accounting (Accounting Act);

4. Scope of personal data processed

4.1 Personal data

The website operated by the Data Controller (www.schananda.hu) does not in principle process personal data. However, when contacting us, customers may provide their real name, telephone number and e-mail address. The personal data provided during this contact and during the status check at the first meeting are processed by the Data Controller in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation (GDPR)) and the provisions of the Hungarian legislation in force. By providing the correct personal data, you consent to their recording and processing by schananda.hu.

The Data Controller attaches the utmost importance to the protection of personal data, and therefore only requests the amount and category of personal data corresponding to the principle of necessity and moderation in the course of its activities.

The identification of personal data strictly necessary for the performance of the activity is necessary for the following processing reasons:

Name (First and Last) for basic communication,
Address (Postal Code, City, Name of Public Area, Type of Public Area, House Number, Building, Floor, Door) for billing,
Telephone number for telephone contact,
E-mail address for written correspondence and electronic invoicing.

4.2 Technical data

The Data Controller selects and operates the IT tools used for the processing of personal data and for the provision of services related to its activities:

– is accessible to those authorised to access it (availability),

– its authenticity and authenticity are ensured (authenticity of processing),

– its integrity can be verified (data integrity),

– protected against unauthorised access (data confidentiality).

The controller shall take appropriate measures to protect the data against unauthorised access, alteration, disclosure, disclosure, erasure or destruction and against accidental destruction.

The controller shall ensure the security of data processing by technical, organisational and organisational measures that provide a level of protection appropriate to the risks associated with the processing.

The Controller shall retain during processing:

confidentiality: it protects information so that only those who are entitled to it have access to it,
integrity: protects the accuracy and completeness of the information and the method of processing,
availability: ensuring that the information is available and that the means to access it are available when the authorised user needs it.

4.3 Cookies (Cookies)

Like all websites, schananda.hu uses cookies. The use of certain cookies is essential for the proper functioning of the site. Some cookies are only temporarily present on the computer and disappear when the browser is closed, but there are also cookies that remain on the computer for a longer period of time.

In order to provide a personalised service, the website of the data controller (www.schananda.hu) places a small data packet, known as a cookie, on the user’s computer and reads it back during a subsequent visit. If the browser returns a previously saved cookie, the cookie management service provider has the possibility to link the user’s current visit to previous visits, but only in relation to its own content.

4.4 Strictly necessary session cookies

The purpose of these cookies is to enable visitors to browse the http://www.schananda.hu website, use its features and services, without interruption. This type of cookie is valid until the end of the session (browsing) and is automatically deleted from the computer or other browsing device when the browser is closed.

4.5 Third-party cookies (analytics)

The www.schananda.hu website also uses the following third-party cookies:

Google Analytics as a third party cookie (use and privacy policy: https://policies.google.com/privacy?hl=hu)
Envato Sites Pty Ltd. as a third-party cookie from the website developer (use and privacy policy: https://sites.envato.com/terms)
Third party cookies from Facebook Inc, for the purpose of linking the social media section of the social portal site https://www.facebook.com/nmptinstruktorbudapest to the social media section of the website http://www.schananda.hu (Use and Privacy Policy: https://www.facebook.com/privacy/explanation)

By using Google Analytics, Envato Sites Pty Ltd. and Facebook Inc. services for statistical purposes, http://www.schananda.hu may collect information about how visitors use its websites. The Data Controller uses the collected data for the purpose of improving the website and the user experience. These cookies will also remain on the visitor’s computer or other browsing device, browser until they expire or until they are deleted by the visitor.

4.6 Data related to online administration

Online administration is considered to be any process whereby the Data Controller, in the context of its activities, contacts its customers, clients and persons interested in its services/activities by means of electronic, computerised, Internet-based systems in order to fulfil its orders. Communication by means of the following systems may be considered as such administration:
E-mail
Online chat (Viber, Facebook Messenger, SMS, twak.to chat interface integrated into the Controller’s website, provided by Envato Sites Pty Ltd.)

4.7 Data related to the newsletter

The Data Controller does not send newsletters.

5. Intended use and retention period of the processed data

If a real telephone number is provided, the Data Controller will contact the person requesting the free callback on the telephone number provided. If no business contact is established, the processing will not start and the telephone number sent will not be recorded in any system. If a business connection is established, the telephone number will be stored in the mobile phone system of the Data Controller and will be processed as long as the business legal basis exists. Upon termination of the business relationship, the Data Controller may delete the recorded telephone number.

If a real telephone number/e-mail address is provided, the Data Controller will contact the person who initiated the contact at the telephone number or e-mail address provided. If no business contact is established, no processing will be initiated and the data sent will not be recorded in any system. If a business contact is established, the data will be stored in the Controller’s mobile phone system and e-mail system and will be processed for as long as there is a business or legal basis. Upon termination of a business relationship, the Data Controller may delete the recorded data, subject of course to compliance with other legal compliances (e.g. billing law).

The Data Controller stores and manages the billing data (Name, Address, E-mail address) of the customers to whom it issues an invoice in the billing system (mostszámlázz.hu). Electronic invoicing is carried out in accordance with legal compliance.

The Data Controller does not use any data processing services.

6. Physical storage locations of the data

Your personal data (i.e. the data that can be associated with your person) may be processed in the following ways: on the one hand, technical data relating to the computer, browser program, Internet address, pages visited, in connection with the maintenance of the Internet connection, are automatically generated in the computer systems connected to the visit of the website www.schananda.hu, and on the other hand, you may provide your name, contact details or other data if you wish to contact the Data Controller personally when using the website.

Physical storage locations in connection with the website:

Hungarian Hosting Ltd. – H-1132 Budapest, Victor Hugo u 18-22. 2.
Envato Sites Pty Ltd. – 121 King Street, Melbourne, Victoria 3000 Australia
IM Creator, 302A West 12th St, NYC, NY, United States of America
Google Inc 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States of America
Facebook Inc 1 Hacker Way Menlo Park, California 94025, United States

7. Data subject’s rights and means of enforcement

Upon request, the Data Controller shall provide the data subject with information about the data processed by the Data Controller, the purpose, legal basis and duration of the processing, the name, address (registered office) of the data processor and the activities related to the processing. The information may be requested at the postal address of the controller (1028 Budapest, Szamorodni u. 25/A), by e-mail to schananda.yoga@gmail.com and by telephone to +36-30-3434-221.

In the event of a request for information by the data subject, the Data Controller shall reply in writing within 30 days. The information shall be provided free of charge if the applicant has not yet submitted an information request to the Data Controller in the same field in the current year. Otherwise, the information shall be provided against reimbursement of the costs incurred.

The data subject may exercise his or her rights under the law by sending an email to garoschkft@gmail.com. In particular, they may, inter alia, at any time withdraw their consent to the processing of their personal data provided at the time of registration; request the rectification without delay of inaccurate personal data or the integration of incomplete personal data; request electronic or photocopies of their personal data; request the deletion without delay of their personal data.

Complaints may be lodged with the National Authority for Data Protection and Freedom of Information:

Name: National Authority for Data Protection and Freedom of Information
Registered office: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.
Postal address: 1530 Budapest, PO Box 5.
Phone: 0613911400
Fax: 0613911410
E-mail: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu

The data subject has the right to request the rectification of his/her personal data (indicating the correct data) and the erasure of his/her personal data (withdrawing his/her consent). The rectification or erasure may be requested by postal address or e-mail address of the controller.

The controller will make the rectification in its records and notify the data subject of the rectification.

The data subject may withdraw the consent already given, in whole or in part, at any time, without giving reasons. Exceptions are made for personal data whose processing is required by law or for the performance of a contractual obligation entered into with the data subject. The controller shall, without undue delay following the notification of the withdrawal of consent, ensure the cessation of processing, erase permanently from its records the personal data concerned by the withdrawal, notify the data processor and any data subjects involved in the transfer of the data of the erasure and notify the data subject of the erasure.

8. Responsibility

The Data Controller shall not be liable for the information provided by the user.

The Data Controller does not transfer personal data to third parties. This does not apply, however, to any mandatory transfers required by law, which may only take place in exceptional cases. The Data Controller shall verify whether there is a legal basis for the transfer of data for each individual data before executing each request for data from public authorities. The Controller shall cooperate with the authorities acting in such cases.

9. Other provisions

The current version of this Legal and Privacy Notice and Privacy Policy is available at www.schananda.hu. schananda.hu accepts no liability for any direct or indirect damage resulting from the use of this website. The website shall not be liable for any damages or costs arising from the use of the website, its malfunction, temporary malfunction or possible interference by unauthorised persons.

10. Scope

This Legal and Privacy Notice and Policy applies to the Data Controller in respect of the data obtained and processed in the course of its activities.

This Policy shall enter into force on 25 May 2018.