PRIVACY POLICY

MOPP

 

Juhász és Csvila ügyvédi iroda logója

 

 

11. September 2019.

Dr. Péter Juhász

attorney at law

 

 

 

1. Introduction

Melinda Scheffer and Csaba Radó run a private cleaning company called MOPP („MOPP”). MOPP provides its customers an online system through the following website: www.mopp.hu („mopp.hu”), where customers can find out more about MOPP’s cleaning services and request quotes. MOPP provides cleaning services to individuals and companies such as offices, restaurants, private practice, condominiums.

As a data controller, MOPP will process your personal data as a data subject (hereinafter referred to as “data subject”) in accordance with this Privacy Policy (”Information” or “Policy”). MOPP’s data management complies with all applicable laws and regulations.

If any part of this policy is incomprehensible or if you have any questions, please feel free to contact us through the contact details in the Contact section of this policy to answer your questions.

MOPP will only process your personal data for the purposes of the data processing as set out in this Policy. We process your information only to the extent, for the time and in the manner that we require, as we attach great importance to your privacy and respect for your right to self-determination. To maintain the security of your data, MOPP will take all necessary and available security measures, both technically and in the course of the proceedings of the persons involved in the data management and activity.

This guide describes the details and rules of MOPP’s data management, which apply to both data controllers and their data processing partners.

MOPP manages the above personal information primarily to provide a high quality service to its customers. In the processing of your personal data, the data controller is the MOPP.

Data Controller” means the natural or legal person who, individually or jointly, determines the purposes and means of the processing of personal data.

In the data management implemented by MOPP, several persons and / actors are participating.

With respect to data management, MOPP may seek assistance from other businesses to accomplish data management purposes (e.g., home delivery, accounting, server service, etc.). In this case, the participating affiliate company will be involved in the processing of your personal data as a data processor.

Data Controller” means a natural or legal person who, on behalf of the controller, manages personal data and, in most cases, only executes instructions and / or issues instructions. makes no decisions regarding data management, or it is not the data processor that defines the data management tools.

The primary responsibility for data management with customers lies with the data controller MOPP. The data processor shall only be liable for damages if he has breached the rules applicable to the data processor or has not followed the lawful instructions of the data controller. The controller is solely responsible for any errors made by the controller. MOPP will therefore receive your personal information directly from you.

 

You may object to the data management

As a data subject, you have the right to object to the processing of your personal data at any time for reasons related to your situation. In this case, the controller, that is, the MOPP, may not further process personal data unless the controller demonstrates that the processing is justified by compelling legitimate reasons, which take precedence over the interests, rights and freedoms of the data subject, or validation, or defense.

 

2. The individual Data Management

2.1. Data management related to MOPP service and activities

Purpose of data management

MOPP provides cleaning services to individuals and companies. MOPP offers its customers an online system on the mopp.hu website, through which their customers can request a quote or order services. The mopp.hu website provides an opportunity for customers to request information and ask questions about MOPP services.

MOPP’s commercial activities require data management in order for you to use MOPP’s services and we provide the service of your choice. We will process your personal information in order to provide the service you wish to use.

 

Expected impact of data management on the customer (data subject)

For the customer, the data management does not result in any particular impact or any significant risk. Data management is required to perform the service.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

Who use the services of MOPP. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject’. In this data management, stakeholders are typically customers of MOPP services.

 

Personal data processed

MOPP manages the following personal information about you in order to provide the service:

personal information: Customer’s name, business name, address
contact information: Customer’s email address, phone number

 

Legal basis for data management

The management of your data is necessary for the performance of the contract. We will only process your personal information in connection with the performance of the contract.

The processing of personal data is lawful under Article 6 (1) (b) of the GDPR where such processing is necessary for the performance of a contract to which the data subject is party or to take action at the request of the data subject prior to the conclusion of the contract; and Act CVIII of 2001 on Certain Issues in Electronic Commerce Services and Information Society Services. 13 / A. §, the controller is entitled to manage your personal data in connection with the data management.

This is based on Article 6 (1) (f) of the GDPR. (F) processing is necessary for the protection of the legitimate interests of the controller or of a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject. , especially if child is concerned.

 

Who has access to the customer’s (data subject) personal information

The Customer’s personal data as defined above may be accessed by the data processing MOPP and its staff. In addition, the following data processors may have access to your personal data:

Hosting provider

Business name: Tárhely.Eu Kft.

Address: 1144 Budapest, Ormánság utca 4. X. em. 241.

E-mail provider

Business name: SalesAutopilot Kft.

Address: 1024 Budapest, Margit körút 31-33. félemelet 4-5.

Business name: Rocket Science Group LLC.

Address: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

Whether the customer (data subject) is required to provide personal data

You are not required to provide any personal information necessary to use the service. However, if you do not provide this personal information, you will not be able to use the services of MOPP. Therefore, it is in our common interest to provide the above personal information.

 

Data management and storage time

The data of the data subject will be processed during the term of the contract. Upon termination of this Agreement, MOPP may process your personal information necessary to assert its legitimate interests. On this basis, your personal data may be processed for the general 5-year limitation period in order to assert their legitimate interests in relation to the services used.

 

Transfer of personal data to a third country

Customer’s personal information will not be transferred to a third country. Third country refers to countries that are not members of the European Union.

 

Automated decision making and profiling for data management

In the context of the above data management, profiling is being implemented through our company. Our company is not profiling.

Profiling” means any form of automated processing of personal information that involves assessing personal information about a natural person, in particular work performance, financial status, health, personal preferences, interest, reliability, behavior, location or movement. is used to analyze or predict related features.

The purpose of profiling is to offer you services that are more interesting and important to you. we can provide you with services that are more tailored to your needs. Profiling only covers your buying habits and preferences. There are no adverse consequences or restrictions to your profiling.

 

Google: MOPP is using the following services on his website: Google LLC. Google Analytics, a Google LLC. Google DoubleClick, a Google LLC. Youtube. Google Analytics, Google DoubleClick, and Google Youtube use cookies to help you analyze your website usage. The primary purpose of this is to find offers that are more relevant to your interests. This requires us to analyze your activity on our website with Google.

The information stored by the cookie (including the user’s IP address) is stored on Google LLC.’s servers in the United States. Google LLC. may disclose the collected information to third parties if required by law or if the information is processed by a third party on behalf of Google LLC. Google LLC.’s privacy policy is available at: http://www.google.hu/intl/hu/policies/privacy/.

You can find more useful information about Google’s data activity, blocking cookies, and personalizing ads on the Google website at http://www.google.com/intl/hu/policies/privacy/ads/.

You can change your Google privacy settings here: https://privacy.google.com.

 

Facebook: MOPP uses Facebook Inc.’s service within the framework of mopp.hu. Facebook uses cookies to help you analyze your use of the website. Facebook Inc. forwards data about the affected person to the MOPP. The primary purpose of this is to find offers that are more relevant to your interests. This requires us to analyze your activity on our website with Facebook.

The information stored by the cookie (including the user’s IP address) is stored on Facebook Inc.’s servers in the United States. Facebook Inc. may disclose the collected information to third parties, if required by law, or if the information is processed by a third party on behalf of Facebook Inc. Facebook’s Privacy Policy is available at https://www.facebook.com/privacy/explanation.

You can find more useful information on Facebook’s Facebook activity on cookies, blocking cookies, and personalizing ads at https://www.facebook.com/policies/cookies/.

 

2.2. Billing and accounting data management for MOPP

Purpose of data management

In accordance with applicable law, MOPP is required to invoice its customers for the value of the services ordered. For billing purposes, MOPP manages customer billing information. The purpose of this data management is to ensure that the MOPP complies with its legal obligation to issue an accounting document on economic events.

 

Expected impact of data management on the customer (data subject)

For customers, the data management does not have any particular impact or any significant risk. Data management is required by contract when placing an order.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

MOPP customers who use MOPP’s cleaning service. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject‘. The stakeholders involved in this data management are typically MOPP clients.

 

Personal data processed

The following personal information is handled by MOPP for billing and accounting purposes:

Identifying Information: customer name, address, tax ID / tax number
Contact details: email address, phone number

In addition, any data necessary to continue the communication necessary to complete the billing and bookkeeping process.

 

Legal basis for data management

Data management is necessary to fulfill the legal obligation to the data controller.

 

Who has access to the customer’s (data subject) personal information

The Customer’s personal data as defined above may be accessed by the data processing MOPP and its staff.

In addition, the following data processors may have access to the personal data of the data subject specified above:

Bookeeping

Business name: SARSAN Kft.

Address: 6753 Szeged, Ásványhát utca 14.

Business name: Octonull Kft.

Address: 1085 Budapest, József körút 74. I. em. 6.

Hosting provider

Business name: Tárhely.Eu Kft.

Address: 1144 Budapest, Ormánság utca 4. X. em. 241.

E-mail provider

Business name: SalesAutopilot Kft.

Address: 1024 Budapest, Margit körút 31-33. félemelet 4-5.

Business name: Rocket Science Group LLC.

Address: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

We may disclose your personal information to the National Tax and Customs Administration Office as required by law.

 

Whether the customer (data subject) is required to provide personal data

The customer is required to provide the details required for the invoices to be issued in connection with the service, as the obligation to issue the invoice is required by law.

 

Data management and storage time

Pursuant to Section 169 (1) – (2) of Act C of 2000 on Accounting, the invoice and the data required for its issue are preserved for 8 years.

 

Transfer of personal data to a third country

Customer data will not be transferred to a third country. Third country means countries that are not members of the European Union.

 

Automated decision making and profiling for data management

Neither automated decision making nor profiling takes place when managing customer data.

 

2.3. Complaint Handling Data Management for Mopp

Purpose of data management

The commercial operation of MOPP requires the management of data in order to handle your complaint against the MOPP service. MOPP is required to investigate your complaint and inform you of the outcome. We will process your personal information to process your complaint.

 

Expected impact of data management on the customer (data subject)

For the customer, the data management does not result in any particular impact or any significant risk. Data management is required to handle complaints from customers using MOPP services.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

Customers using the MOPP service who complain about the services provided by the MOPP. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject’. The stakeholders involved in this data management are typically customers of the service.

 

Personal data processed

Your personal information is processed by MOPP in order to complete your complaint handling:

Identifying information: complainant’s name and address
Contact details: complainant’s postal address, telephone number

 

Legal basis for data management

Data management is necessary to fulfill the legal obligation to the data controller.

 

Who has access to the customer’s (data subject) personal information

Az ügyfél fent meghatározott személyes adataihoz az adatkezelést végző MOPP és munkatársai férhetnek hozz The Customer’s personal data as defined above may be accessed by the data processing MOPP and its staff.

In addition, the following data processor may have access to your personal data:

Hosting provider

Business name: Tárhely.Eu Kft.

Address: 1144 Budapest, Ormánság utca 4. X. em. 241.

E-mail provider

Business name: SalesAutopilot Kft.

Address: 1024 Budapest, Margit körút 31-33. félemelet 4-5.

Business name: Rocket Science Group LLC.

Address: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

Whether the customer (data subject) is required to provide personal data

The customer is required to provide the details necessary to handle the complaint as the investigation of the complaint and the obligation to send a response to you are required by law.

 

Data management and storage time

CLV 1997 on Consumer Protection. 17 / A. (7), the data required for the record of the complaint and the MOPP’s response shall be retained for 5 years.

 

Transfer of personal data to a third country

Customer’s personal information will not be transferred to a third country. Third country refers to countries that are not members of the European Union.

 

Automated decision making and profiling for data management

Neither automated decision making nor profiling takes place when managing a customer’s personal information.

 

2.4. Data management of MOPP customers in the context of marketing newsletters

The mopp.hu website announces developments, novelties, and notifies subscribers of promotions and discounts.

 

Purpose of data management

We send you marketing messages and advertisements to inform you of our promotions, discounts and accordingly to provide you with relevant information.

Please be advised that this data processing is based on your consent and may be withdrawn at any time by requesting our support. If you have withdrawn your consent, we will no longer send you marketing newsletters.

In connection with newsletters, MOPP manages the electronic contact information of customers who use the mopp.hu website.

 

Expected impact of data management on the customer (data subject)

For customers, the data management does not have any particular impact or any significant risk.

Frequency of newsletters and offers: We send you newsletters and offers up to 5 times a week. Our newsletters will be sent to your email address electronically.

Our newsletters contain only a description of the MOPP service and promotion, or related interesting things. Our newsletters also contain advertising from or directed to other companies.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

Users of mopp.hu who subscribe to newsletters. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject’. The stakeholders involved in this data management are typically online customers.

 

Personal data processed

MOPP manages the following personal information about customers:

Personal information: Subscriber’s name
Contact information: Subscriber’s email address

 

Legal basis for data management

Data management is based on the consent of the data subject. Consent shall be given in electronic form.

The processing of personal data is lawful under Article 6 (1) (a) of the GDPR if you have given your consent to the processing of your personal data for one or more specific purposes; and Act CVIII of 2001 on Certain Issues in Electronic Commerce Services and Information Society Services. 13 / A. §, the controller is entitled to manage your personal data in connection with the data management.

 

Who has access to the customer’s (data subject) personal information

The Customer’s personal data as defined above may be accessed by the data processing MOPP and its staff.

In addition, the following data processors may have access to the personal data of the data subject as defined above:

Hosting provider

Business name: Tárhely.Eu Kft.

Address: 1144 Budapest, Ormánság utca 4. X. em. 241.

E-mail provider

Business name: SalesAutopilot Kft.

Address: 1024 Budapest, Margit körút 31-33. félemelet 4-5.

Business name: Rocket Science Group LLC.

Address: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

Whether the customer (data subject) is required to provide personal data

The customer is not required to provide any newsletter information required for use of the mopp.hu website, but without providing the data with consent, MOPP will not be able to send you a newsletter.

 

Data management and storage time

The data will be processed until the data subject’s consent is withdrawn.

This data management is based on your consent and may be withdrawn at any time by requesting our support. If you have withdrawn your consent, we will no longer send you marketing newsletters.

Accordingly, we will process your data until your consent is withdrawn.

 

Transfer of personal data to a third country

Customer’s personal information will not be transferred to a third country. Third country refers to countries that are not members of the European Union.

 

Automated decision making and profiling for data management

In the context of the above data management, profiling is implemented (see page 5-6).

 

2.5. Management of customer data in connection with sweepstakes

Purpose of data management

MOPP periodically advertises a sweepstake to MOPP customers. We will send you promotional messages and advertisements about the sweepstake to inform you of our promotions and discounts related to the sweepstake.

Please be advised that this data processing is based on your consent and may be withdrawn at any time by requesting our support. If you have withdrawn your consent, we will no longer send you marketing newsletters.

In connection with the mailing of the sweepstake, MOPP manages the customer’s electronic contact information.

 

Expected impact of data management on the customer (data subject)

For the customer, the data management does not result in any particular impact or any significant risk. With regard to data management, the customer will spend approx. they are informed weekly about the sweepstakes advertised on mopp.hu.

Frequency of sweepstake newsletters and offers: We send you newsletters and offers approximately 2-3 times a week.

Our newsletters will be sent to your email address electronically.

Our newsletters are exclusively for MOPP sweepstakes. Our newsletters do not contain advertising from or directed to other companies.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

MOPP customers who wish to participate in the Sweepstakes or the Data Controller will contact them for participation in the Sweepstakes. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject’. In this data management stakeholders are typically customers.

 

Personal data processed

MOPP manages the following personal information about customers:

Personal information: Subscriber’s name and address
Contact information: subscriber’s email address, phone number

 

Legal basis for data management

Data management is based on the consent of the data subject. Consent shall be given in electronic form.

The processing of personal data is lawful under Article 6 (1) (a) of the GDPR if you have given your consent to the processing of your personal data for one or more specific purposes; and Act CVIII of 2001 on Certain Issues in Electronic Commerce Services and Information Society Services. 13 / A. §, the controller is entitled to manage your personal data in connection with the data management.

 

Who has access to the customer’s (data subject) personal information

The Customer’s personal data as defined above may be accessed by the data processing MOPP and its staff.

In addition, the following data processors may have access to the personal data of the data subject as defined above:

Hosting provider

Business name: Tárhely.Eu Kft.

Address: 1144 Budapest, Ormánság utca 4. X. em. 241.

E-mail provider

Business name: SalesAutopilot Kft.

Address: 1024 Budapest, Margit körút 31-33. félemelet 4-5.

Business name: Rocket Science Group LLC.

Address: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

Whether the customer (data subject) is required to provide personal data

The customer is not required to provide the details of the lottery, but without providing the information based on the consent, MOPP will not be able to send the lottery newsletter to the customer.

 

Data management and storage time

The data will be processed until the data subject’s consent is withdrawn.

This data management is based on your consent and may be withdrawn at any time by requesting our support. If you have withdrawn your consent, we will no longer send you marketing newsletters. Accordingly, we will process your data until your consent is withdrawn.

 

Transfer of personal data to a third country

Customer’s personal information will not be transferred to a third country. Third country refers to countries that are not members of the European Union.

 

Automated decision making and profiling for data management

In the context of the above data management, profiling is implemented (see page 5-6).

 

2.6. Data management related to MOPP’s social media services and MOPP’s web marketing activities

This data management is used to improve the Company’s business activities and facilitate the Company’s discovery.

We would like to inform stakeholders that profiling is being done through our company in connection with this data management. Our company is not profiling.

Profiling” means any form of automated processing of personal information that involves assessing personal information about a natural person, in particular work performance, financial status, health, personal preferences, interest, reliability, behavior, location or movement. is used to analyze or predict related features.

The purpose of profiling is to offer you services that are more interesting and important to you. we can provide you with services that are more tailored to your needs. Profiling only covers your buying habits and preferences. There are no adverse consequences or restrictions to your profiling.

 

Social Media Services:

Please be advised that MOPP uses the following social media services:

  • Facebook
  • Twitter
  • Youtube
  • Pinterest

 

Facebook: MOPP uses Facebook Inc.’s Lookalike Audience (the “Lookalike Application”). MOPP will forward the stakeholder email address to Facebook. Facebook will display MOPP ads to similar users based on email addresses provided by MOPP.

Please be advised that the MOPP Facebook profile and website have the opportunity to complete a questionnaire about their cleaning habits. After completing the questionnaire, you have the opportunity to provide MOPP with their email address so that MOPP can send you cleaning offers that are customary to you. Stakeholders are requested to provide MOPP with their email address only if they are interested in MOPP service.

For more information about Facebook’s data activity and the scope of the data it manages, please visit: https://www.facebook.com/privacy/explanation.

 

Twitter, Youtube, Pinterest: MOPP uses Twitter, Youtube, Pinterest on his website: mopp.hu. It uses cookies from Twitter, Youtube, Pinterest to help analyze the use of the website.

For more information about Twitter’s data activity and the scope of the data it manages, please visit: https://cdn.cms-twdigitalassets.com/content/dam/legal-twitter/site-assets/privacy-page-gdpr/pdfs/PP_Q22018_April_EN.pdf

For information about your Youtube data activity and the scope of your managed data, please visit: https://policies.google.com/privacy?hl=hu

For more information on Pinterest’s activities and the range of data it manages, please visit: https://policy.pinterest.com/hu/privacy-policy

 

Online marketing activity:

Coupon

Please be advised that MOPP has coupons related to its services. If the customer has a coupon, MOPP will send three notification emails to the customer regarding the deadline for using the coupon.

 

Recommendation of MOPP services

MOPP customers may recommend MOPP to their acquaintances, friends, or persons who are likely to use MOPP’s services (the “Recommended Person“).

The recomendation is completely voluntary on the part of the client and is not motivated by any discounts.

If the customer recommends MOPP the following information is required so MOPP will handle the following:

  • Recommended person’s name
  • Recommended person’s email address

Following the recommendation, MOPP will contact the Recommended person via email. MOPP will send 1 e-mail to the Recommended Person, and if the Recommended Person does not register on the MOPP mopp.hu website within 30 days MOPP will delete the Recommended Person’s information above.

 

Hotjar:

MOPP uses the Hotjar service on the mopp.hu website. Hotjar analyzes user activity on mopp.hu. Hotjar does not process personal information.

For information about Hotjar’s data activity and the scope of the data it manages, please visit: https://www.hotjar.com/legal/policies/privacy

 

2.7 MOPP’s Customer Data Management in the context of MOPP’s Review Service

Customers can comment on MOPP services at mopp.hu. Please be advised that MOPP may use your views and comments on the mopp.com website.

 

Purpose of data management

We provide our clients with the opportunity to express their opinion on mopp.hu, which helps potential customers to make decisions about using the MOPP service.

Please be advised that this data processing is based on your consent and may be withdrawn at any time by requesting our support.

For the purpose of commenting, MOPP manages the names and electronic contact details of customers using the mopp.hu website.

 

Expected impact of data management on customers (data subject)

For customers, the data management does not have any particular impact or any significant risk.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4 / A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

Users of mopp.hu who wish to comment on the service provided by MOPP via mopp.hu. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject‘. The stakeholders involved in this data management are typically online customers.

 

Personal data processed

MOPP manages the following personal information about customers:

Personal information: customer’s name
   
Contact information: customer’s email address

 

Legal basis for data management

Data management is based on the consent of the data subject. Consent shall be given in electronic form.

The processing of personal data is lawful under Article 6 (1) (a) of the GDPR if you have given your consent to the processing of your personal data for one or more specific purposes; and Act CVIII of 2001 on Certain Issues in Electronic Commerce Services and Information Society Services. 13 / A. §, the controller is entitled to manage your personal data in connection with the data management.

 

Who has access to the personal data of the candidate (data subject)

The Customer’s personal data as defined above may be accessed by the data processing MOPP and its staff.

In addition, the following data processors may have access to the personal data of the data subject as defined above:

Hosting provider

Company name: Tárhely.Eu Kft.

Headquarters: 1144 Budapest, Ormánság utca 4. X. em. 241st

Email provider

Company name: SalesAutopilot Kft.

Headquarters: 1024 Budapest, Margit körút 31-33. floor 4-5.

Company Name: Rocket Science Group LLC.

Headquarters: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

Whether the customer (data subject) is required to provide personal data

The customer is not obligated to provide the data required for the mopp.hu web site reviewing service, but without providing the data based on the consent, the mopp.hu web site cannot form an opinion on the MOPP services.

 

Data management and storage time

The data will be processed until the data subject’s consent is withdrawn.

This data management is based on your consent and may be withdrawn at any time by requesting our support.

Accordingly, we will process your data until your consent is withdrawn.

 

Transfer of personal data to a third country

Customer’s personal information will not be transferred to a third country. Third country refers to countries that are not members of the European Union.

 

Automated decision making and profiling for data management

Neither automated decision making nor profiling is implemented in the context of the above data management.

 

2.8. Manage recruitment data for applications and CVs

Purpose of data management

The personal data of candidates for employment at MOPP will be processed by the data controller for the purpose of evaluating your application, application, CV and concluding a contract of employment with the candidate selected for recruitment.

 

Expected impact of data management on the candidate (data subject)

Data management does not entail any particular impact or any significant risk to the applicant. Data management is required to evaluate the application for admission.

 

Data controller’s contact details

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Csaba Radó

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 

The persons, groups and types of data subjects affected

MOPP candidates are those who wish to enter into a contract of employment with MOPP. From the point of view of data management, the person whose personal data is being processed is called a ‘data subject’. In this data management, data subjects are typically candidates for admission.

 

Personal data processed

The following personal information is handled by MOPP for the purpose of evaluating your application for admission:

Identifying information: Name of candidate, information on your CV
Contact details: Applicant’s phone number, email address

In addition, any data that will be forwarded to the Controller during the application process, CV, or application process. necessary to continue the communication needed to judge them.

 

Legal basis for data management

The management of your data is necessary for the conclusion of a work contract. We will only process your personal information in connection with the conclusion of the employment contract.

The processing of personal data is lawful under Article 6 (1) (b) of the GDPR where such processing is necessary for the performance of a contract to which the data subject is party or to take action at the request of the data subject prior to the conclusion of the contract; and Act CVIII of 2001 on Certain Issues in Electronic Commerce Services and Information Society Services. 13 / A. §, the controller is entitled to manage your personal data in connection with the data management.

Furthermore, the processing of data is lawful under the GDPR Preamble (44) if it is required in the context of a contract or an intention to contract.

The legal basis for the storage of processed personal data for 6 months is Article 6 (1) (f) GDPR. The processing is necessary to safeguard the legitimate interests of the controller or of a third party, unless those interests take precedence over the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular if the data subject is a child. The controller shall prove his or her legitimate interest by means of a balancing test.

 

Who has access to the personal data of the candidate (data subject)

The above-described personal details of the person applying for admission will be accessible to the data processing MOPP and its staff.

In addition, the following data processors may have access to the personal data of the data subject as defined above:

Hosting provider

Business name: Tárhely.Eu Kft.

Address: 1144 Budapest, Ormánság utca 4. X. em. 241.

E-mail provider

Business name: SalesAutopilot Kft.

Address: 1024 Budapest, Margit körút 31-33. félemelet 4-5.

Business name: Rocket Science Group LLC.

Address: 1601 Willow RD MENLO PARK CA 94025-1452 USA

 

Whether the applicant (data subject) is obliged to provide his / her personal data

You are not required to provide your personal information. However, if you do not provide this personal information, MOPP will not be able to evaluate your application, curriculum vitae, application and will not be able to establish employment with you. Therefore, it is in our common interest to provide the above personal information.

 

Data management and storage time

Your personal information will be stored by MOPP for 6 months after you apply for admission, your CV, or your application.

If an application, resume, application is evaluated or withdrawn, MOPP will delete your personal information within 6 months of the application, resume your application being evaluated and withdrawn.

 

Transfer of personal data to a third country

The personal data of the candidate will not be transferred to a third country. Third country refers to countries that are not members of the European Union.

 

Automated decision making and profiling for data management

Neither automated decision-making nor profiling is implemented for the management of the data of applicants for admission.

 

3. Rights that are enjoyed by data subjects whose personal data is being processed in the course of data processing

As a data subject whose personal data are being processed, you are entitled to the following rights in relation to data processing. Please note that you may exercise your rights below primarily against the Data Controller. In this data management MOPP is the data controller.

Your rights as a data subject regarding data processing

– the right to be informed,

– the right of access,

– the right to rectification,

– the right to erasure / right to be forgotten,

– the right to restrict processing,

– the right to object to processing,

– the right to data portability,

– the right to withdraw consent,

– the right of complaint,

– the right to a judicial remedy.

 

Right to be informed

General rules on information to the data subject and right to information

The data controller must inform the data subject in detail prior to the commencement of data processing, at the latest when the personal data of the data subject are obtained. For information regarding the information contained in this privacy statement.

The controller is responsible for providing prior information. In addition to the prior information above, you may request information from the controller at any stage of the data management process as follows. In this case, the controller must provide the information without delay, but no later than 25 days. The 25-day period may be extended by a maximum of 2 months only in justified cases.

The controller may refuse to provide information only if he proves that the data subject cannot be identified.

If the controller fails to act, that is to say, fails to comply with its obligation to provide information, it must inform the data subject within 25 days of the failure to act, the reason for it and his or her right to lodge a complaint or complaint. you can go to court. The complaint or complaint. For further details of the court remedy, this leaflet provides detailed information below.

The data controller shall provide the data subject with free of charge information. However, the controller may charge an exceptionally reasonable amount or refuse to provide information and action if the data subject’s request is manifestly unfounded, repetitive or excessive.

 

Right of access of the data subject

The data subject shall have the right to obtain from the controller feedback on the processing of his or her personal data and, if such processing is in progress, to have access to the personal data and the following information:

Subject to the right of access, the data subject shall, upon request, be informed of the following information: (a) the purposes of the processing; (b) the categories of personal data concerned; (c) the recipients or categories of recipients to whom the personal data have been or will be communicated, including, in particular, third country recipients; international organizations; (d) where applicable, the proposed period for which the personal data will be stored; (e) the data subject’s right to request the controller to rectify, erase or limit the processing of personal data concerning him or her and to object to the processing of such personal data; (f) the right to lodge a complaint to the supervisory authority (NAIH); (g) if the data are not collected from the data subject, all available information on their source; (h) the existence or absence of automated decision-making, including profiling, and, at least in these cases, clear information on the logic used and the significance and likely consequences for the data subject of such processing.

The controller shall provide the data subject with a copy of the personal data subject to the processing. For the additional copies requested by the data subject, the controller may charge a reasonable fee based on administrative costs.

If the data subject has submitted the request by electronic means, the information shall be provided in a widely used electronic format, unless otherwise requested by the data subject.

 

Right to rectification

The data subject shall have the right to obtain from the controller the rectification of inaccurate personal data concerning him or her without undue delay. Given the purpose of the processing, the data subject shall have the right to request that any personal data which are incomplete be corrected, including by means of a supplementary declaration.

 

Right to erasure, „right to be forgotten”

You, as a data subject, have the right to delete personal data relating to them without undue delay upon your request, and the data controller is required to delete personal data relating to the data subject without undue delay if any of the following applies:

(a) personal data are no longer necessary for the purpose for which they were collected or otherwise processed;

(b) where the processing is based on the data subject’s consent (eg sending a newsletter) and the data subject withdraws his consent to the data processing and there is no other legal basis for the data processing;

(c) the data subject objects to the processing and there is no legitimate and legitimate reason for the processing;

(d) the personal data have been unlawfully processed;

(e) personal data must be deleted in order to comply with a legal obligation under Union or national law applicable to the controller;

(f) personal data have been collected in connection with the provision of information society services.

Where the controller has disclosed personal data and is required to delete it pursuant to paragraph 1, it shall take reasonable steps, including technical measures, to inform the controllers of the data, taking into account the technology available and the cost of implementation. the person concerned has requested them to provide links to, or a copy of, the personal data in question, or duplicate.

The controller shall not be required to comply with the deletion request specified in the above cases where the processing is necessary for: (a) exercising the right of freedom of expression and information; (b) fulfilling an obligation under Union or Member State law applicable to the controller for the processing of personal data; for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; (c) on grounds of public interest in the field of public health; (d) for the purposes of archiving in the public interest, for scientific and historical research or for statistical purposes, and the right to erasure would be likely to render impossible or seriously jeopardize such processing; or (e) to make, enforce, or enforce legal claims; protection.

 

Right to restrict processing

The data subject shall have the right, upon request, to restrict the processing of data if any of the following applies: (a) the data subject disputes the accuracy of the personal data, in which case the limitation applies to the period allowing the data controller to verify the accuracy of the personal data ; (b) the processing is unlawful and the data subject opposes the erasure of the data and instead requests that their use be restricted; (c) the controller no longer needs personal data for the purposes of data processing but the data subject requires them to assert, assert or defend a legal claim; or (d) the data subject has objected to the processing; in this case, the restriction shall apply for a period until it is established whether the legitimate grounds of the data controller prevail over those of the data subject.

Where personal data processing is subject to restrictions as set forth above, such personal data shall, with the exception of the storage, only with the consent of the data subject, or for the purpose of submitting, asserting or defending legal claims or other natural or legal persons; it can be handled on the basis of an important public interest of a Member State.

 

The controller shall inform the data subject, upon request, who has been restricted on the basis of the above, in advance of the lifting of the restriction.

To correct or delete personal data or to notification obligation related to data management restriction

Unless this proves impossible or involves a disproportionate effort, the controller shall inform any recipient to whom or which the personal data have been communicated of the rectification, erasure or restriction.

At the request of the data subject, the controller shall inform those addressees.

 

Right to data portability

The data subject shall have the right to receive personal data relating to him which he has made available to a data controller in a structured, widely used, machine-readable format, and to have such data transmitted to another data controller without being hindered by the controller he has provided personal data to him if: (a) the processing is based on the data subject’s consent (eg sending a newsletter) or on the fulfillment of a contractual obligation between the parties; and (b) the data are processed in an automated way.

In exercising his right to portability of data as described above, the data subject shall have the right to request, where technically feasible, the direct transfer of personal data between data controllers.

Exercising the right to data portability should not prejudice the right to erasure. The right to data portability should not adversely affect the rights and freedoms of others.

 

Right to object to processing

As a data subject, you have the right to object to the processing of your personal data at any time for reasons related to your situation. In this case, the controller may not further process the personal data unless the controller demonstrates that the processing is justified by compelling legitimate reasons, which take precedence over the interests, rights and freedoms of the data subject, or which are necessary to assert, assert or defend legal claims related.

If personal data is processed for the purpose of direct marketing (eg sending a marketing letter to clients), the data subject shall have the right to object at any time to the processing of personal data concerning him or her for this purpose, including profiling. If the data subject objects to the processing of personal data for the purpose of direct marketing, the personal data may no longer be processed for this purpose.

 

Right to withdraw consent

The data subject shall have the right to withdraw his / her consent to the data processing at any time if the data subject’s consent is based on the data subject’s consent (eg sending a newsletter for marketing purposes). However, the withdrawal of consent shall not render the processing of data prior to the withdrawal unlawful.

 

4. Data security

Storage of personal data and security of data management

MOPP’s IT infrastructure, storage, and other data storage locations are located at its headquarters and site.

The IT tools and solutions used for data processing, in particular the security systems, are selected and used in such a way that the personal data processed is accessible to the authorized persons, authenticated and authenticated, can be verified and protected against unauthorized access.

Your personal data will be protected by appropriate measures, in particular against unauthorized access, alteration, privacy incidents, data theft, transmission, disclosure, deletion or destruction, as well as accidental destruction and damage and loss of access due to changes in the technology used.

The MOPP shall ensure that, unless authorized by law, the data stored in it may not be directly linked or protected by appropriate technical measures to protect the data held in its records – can be assigned to the data subject.

In view of the state of the art, we provide technical, organizational and organizational measures to ensure the security and protection of our data management that ensure an adequate level of protection of your personal data.

MOPP and its partners’ information systems and networks are protected by computer-assisted dangerous human (eg, fraud, espionage, sabotage, vandalism, computer viruses, computer hacking, etc.) and non-computer related threats, natural (eg fire and flood) or other causes (eg service disruption, etc.). MOPP secures your data with server and software-level security procedures and services.

MOPP protects your personal information during data processing so that only those authorized to do so (confidentiality), the accuracy and completeness (integrity) of your personal data and the processing method, ensure that when authorized users need personal information data, they can really access and access the data they want (availability).

Please be advised that personal information is partially transmitted to the MOPP via the Internet. Regardless of the protocol used (e-mail, web, ftp, etc.), the security of data and electronic messages transmitted over the Internet is vulnerable to network threats aimed at fraudulent activity, contract disputes, or disclosure or alteration of information. To prevent such hazards, the MOPP will take all precautionary measures it may require.

 

Privacy incident and its management

According to the General Data Protection Regulation (GDPR), a Privacy Incident is a security breach that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or unauthorized access of personal data transmitted, stored or otherwise processed. Therefore, any incident or situation in which your personal information may be compromised is considered a privacy incident.

In the event of a privacy incident, we shall report the incident to the appropriate supervisory authority, or at least 72 hours after becoming aware of the incident. we will also inform you, as a data subject, if a privacy incident is likely to endanger the rights and freedoms of individuals.

5. Remedies, right of complaint, judicial remedy

What can you do if you think your personal data is not being processed properly?

Right of complaint

As a data subject, you have the right to complain to a supervisory authority, in particular in the Member State in which you are habitually resident, employed or allegedly infringed, if the data subject considers that the processing of his or her personal data is unlawful. In Hungary, the competent supervisory authority is the National Data Protection and Freedom of Information Authority (NAIH).

Exercising your right to complain does not exclude the possibility that you, as a person concerned, have recourse to other administrative or judicial means of redress if you consider that your personal data have been processed in a manner that is unlawful. Therefore, if you exercise your right to complain, you can also initiate an administrative or judicial remedy.

Complaints can be made to the National Data Protection and Freedom of Information Authority, which can be contacted at:

Name: Nemzeti Adatvédelmi és Információszabadság Hatóság

Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.

Postal address: 1530 Budapest, Pf.: 5.

Phone: 06 1 391 1400

Fax: 06 1 391 1410

Website: http://www.naih.hu

E-mail: ugyfelszolgalat@naih.hu

 

Right to a judicial remedy against a decision of NAIH or any other supervisory authority

If you have referred the matter to the supervisory authority (NAIH) and the authority has taken a decision on your case, you, as a data subject, have the right to bring an action against the decision, that is, to challenge it in court. You also have the right to a judicial remedy before the competent supervisory authority (NAIH) does not deal with the complaint or informs the person concerned within three months of the procedural developments or the outcome of the complaint.

Proceedings against the supervisory authority (NAIH) shall be brought before the courts of the Member State in which the supervisory authority is situated.

 

Right to a judicial remedy against the controller or the processor

As a data subject, you have the right to a judicial remedy if you believe that your rights to data processing have been infringed as a result of the unlawful processing of your personal data. Exercising your right to a judicial remedy does not exclude that you, as a party, have recourse to another administrative or judicial remedy or that you have a right of complaint if you consider that your personal data have been processed in a manner that is unlawful.

Proceedings against the controller or the processor shall be brought before the courts of the Member State where the controller or processor is established. In the case of MOPP, the court of the place of business is the Hungarian courts. While the competent court for the seat of the MOPP is the District Court of Szeged, in the case of special jurisdiction, the General Court of Szeged.

Remedies may be brought before the courts of the Member State in which the data subject is habitually resident, except where the controller or the processor is a public authority of a Member State.

 

Liability for damages and grievance fees

How is the data controller or data processor responsible against data subject in case of damage?

If you, as the data subject, have been harmed by inappropriate data processing, the controller is responsible for compensating the damage. Damage can be said to have occurred if the data processing was unlawful or in breach of contract, and this resulted in a financial disadvantage for the data subject. In the case of unlawful data processing, the person concerned may also claim damages.

Your claim for damages or damages is primarily against the data controller. The data processor shall only be liable for damages if he has breached only the rules applicable to him or failed to follow the lawful instructions of the data controller. This means that the data processor is not liable for any errors made by the data controller.

 

6. List of legislation applicable to data management

REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Regulation (EC) No 95/46 Data Protection Regulation (GDPR);

CXII of 2011 Act – on the Right of Information Self-Determination and Freedom of Information (Infotv.);

Act C of 2000 – on Accounting (Sztv.);

CVIII of 2001 – Act on Certain Issues in Electronic Commerce Services and Information Society Services (Ektv.);

XLVIII of 2008 – Act on the Basic Conditions and Certain Limitations of Economic Advertising (Grt.);

CLV 1997. – Act on Consumer Protection (Fgy. tv.);

Act V of 2013 – on the Civil Code (Ptk.).

 

7. Contact

If you have any questions regarding the management of your personal data or would like to exercise your rights regarding our data processing, please contact MOPP as a data controller.

 

MOPP contact information:

Melinda Scheffer and Csaba Radó are sole traders in the above data management.

Contact person: Radó Csaba

Address: 6723 Szeged, Gát u. 4/A 5/13.

Email: info@mopp.hu

Phone: +36 70 547 24 74

Web: www.mopp.hu

 


Dr. Péter Juhász – attorney at law – https://www.adatjog.hu

This document is protected by copyright.