Book an appointment in our showroom online or call +36 20 326 8115

PRIVACY POLICY

DATA PROCESSING RULES, DATA PROTECTION AND CONFIDENTIALITY
DATA OF THE SERVICE PROVIDER

Data controller and operator of the website https://lavidaorientalheritage.com/ : LaVida Oriental Heritage Kft (hereinafter referred to as “Service Provider”)

Registered address: 2030 Érd, Zengő utca 40.

Company registration number: 13-09-222404 (registering authority: Budapest Környéki Törvényszék Cégbírósága).

Tax ID: 32069590-2-13,

EU Tax ID: HU32069590

Contact:

E-mailinfo@lavidaorientalheritage.com
Websitehttps://lavidaorientalheritage.com/
Phone number+36 20 3268115

The Service Provider pays special attention to the protection of personal data, therefore the personal data provided by customers, any other data subjects using the services of the Service Provider, will be processed and stored in full compliance with the provisions of Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (hereinafter: Infotv.) and Regulation 2016/679 (EU) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: GDPR), based on the explicit consent of the data subject.

On the basis of this Privacy Policy, the Service Provider informs the Customer that the use of its services requires the provision of personal data, the processing of which is covered by this Policy, with the understanding that in matters not covered by this Policy, the Service Provider shall act in accordance with the Infotv. and GDPR, the Civil Code and the provisions in force at the time on electronic services and personal data processing.

1. COLLECTION OF PERSONAL DATA

In order to provide its services, the Service Provider collects personal data, which is obtained through the voluntary provision of information by Customers in order to use the Service Provider’s services.

Personal data means any information relating to a natural person who is or can be identified, directly or indirectly, in particular, but not exclusively, by the Customer:

In addition to the above, when using the Service Provider’s website, the service provider providing hosting services to the Data Controller may become aware of data related to the Internet use of the Data Subjects (e.g. IP address, browser type, etc.), which are not processed by the Service Provider; in this context, the data processing guidelines of the respective hosting provider shall apply, the secure compliance of which with the provisions of the Data Protection Act and the GDPR is required by the Service Provider.

These aggregated technical data cannot be used to infer the identity or profile of the User/represented person; this information is used by the Service Provider’s hosting provider in a way that does not allow for personal identification, solely for the technical operation of the Websites and for statistical purposes.

In order to enhance the user experience and personalise browsing, the Service Provider may place cookies on the computer of the Data Subjects to store session identifiers when they visit the Website. A cookie is a small file containing a short string of characters that is used to identify the Data Subject’s browser.

Cookies do not contain executable files, viruses or spyware, and do not access data on the User’s hard drive. Cookies do not contain personal data and are not matched against any personal database.

Cookies help us to provide the best possible service and a pop-up window informs the visitor of their use. After reading the information text in the pop-up window, the user can accept the use of cookies by clicking on the accept button. The Data Subject is also entitled to disable or turn off cookies in his/her browser settings, as well as to accept new cookies or to set them.

2. PROCESSING AND USE OF PERSONAL DATA

The Service Provider processes the data as described above, i.e. any operation or set of operations performed on personal data or data files, whether automated or not, by the Service Provider as data controller, including the personal data provided and collected:

in accordance with the legal requirements applicable to the processing of personal data.

Employees, members, agents and contributors of the Service Provider shall be subject to the same data protection and confidentiality obligations as the Service Provider, even after termination of their employment, membership, agency or contributor relationship, and shall be liable for any breach thereof.

The Service Provider shall treat the personal data provided to it or obtained by any other means in accordance with Article 6(1)(b) and (c) of the GDPR, in particular with regard to::

for the purpose of fulfilling the contract (i.e. the service provided by the Service Provider).

In the context of the performance of the service, the personal data, information provided by the Customer or any person involved in the delivery procedure, are necessary for the Service Provider, in particular, but not exclusively, for the following contract performance phases::

The Service Provider and its partner::

– shall not disclose to any person other than the sender, the recipient (or other authorised recipient) and the intermediary(s), any information that comes to their knowledge in the course of providing the service, except in the case of official proceedings;

– the product may not be transferred to any person other than the sender, the recipient (or other authorised recipient) and the intermediary(s);

– may not communicate information on the performance of the service to any person other than the sender, the consignee (or other authorised recipient) and the intermediary(ies).

3. SHARING, TRANSFER OF PERSONAL DATA

The Service Provider processes the data not only on its own IT system and in its records, but also uses the third party listed below as a data processor for the secure processing of the data.

Data of the Service Provider:

Name: Websupport Magyarország Kft.

Registered office: 1132 Budapest, Victor Hugo utca 18-22.

Email: info@tarhelypark.hu

Website: https://tarhelypark.hu/kapcsolat/

The Service Provider, as data controller, and the Data Processor ensure that the security requirements stipulated in the Infotv. and the GDPR are complied with, with the understanding that if this Policy or the law imposes an obligation on the data controller with regard to the processing of personal data, the obligations also apply to the data processor.

In addition, the Service Provider may, as a consequence of its delivery through a partner, transfer personal data to its partners who actually deliver the product, depending on the carrier designated as the selected actual delivery party in the order placed by the Customer or during the contractual relationship with the Service Provider based on the order.

Data processing by the service provider for the transport of goods:

Data Controller Service Provider: GLS General Logistics Systems Hungary Csomag-Logisztikai Kft

Registered office: 2351 Alsónémedi, GLS Európa u. 2.

Email: info@gls-hungary.com

Website: https://gls-group.com/HU/hu/kapcsolat

Data Controller Service Provider: FUTAR.HU Logisztikai Kft

Registered office: 1183 Budapest Gyömrői út 91.

Email: info@futar.hu

Website: https://futar.hu/kapcsolat/

Online payment service provider data management

Data Controller Service Provider: Stripe Payments Europe, Limited

Registered office: 3 Dublin Landings, North Wall Quay, Dublin 1 , Dublin, D01c4e0, Ireland

Customer service: info@stripe.com

Website: https://stripe.com/en-hu

In addition, the Service Provider is obliged to provide the authority with the data in its possession, which are necessary for the use of the services, the implementation of access or the performance of the tasks of any public authority, even if they are classified as trade secrets.

The Service Provider shall make publicly available the data relating to the Service Provider as defined in the GTC.

The Service Provider shall cooperate closely with the authorities concerned in official proceedings, in particular criminal proceedings, in order to detect and/or prevent unlawful conduct by providing data.

The Service Provider undertakes to transmit or share the personal data collected and processed by it in connection with the performance of the contract – beyond the cooperation with the authorities – only to third parties, partners, data processors, who comply with the applicable regulations on personal data processing, in particular the provisions of the Infotv. and the GDPR and also undertake to comply with the applicable regulations on personal data processing.

4. INFORMATION ABOUT PERSONAL DATA, WHAT THE DATA SUBJECT CAN DO WITH HIS OR HER PERSONAL DATA

REQUEST INFORMATION

The Service Provider shall ensure that data subjects may request information about their own personal data in relation to personal data processed by it or through it by third parties and undertakes to provide the data subject requesting information with information about the scope of their personal data processed by the Service Provider or by third parties, the manner of processing and the extent of use in a concise, transparent, intelligible and easily accessible form, in a clear and plain language.

SUPPLY

The data subject is entitled to receive feedback from the Service Provider as to whether or not personal data is being processed and, if such processing is ongoing, to have access to the personal data in accordance with the information specified in the relevant provisions of the GDPR. In this context, the data subject may, inter alia, request the Service Provider to provide him/her with a copy of his/her personal data, for which the Service Provider may charge a copying or other administrative fee.

RECTIFICATION AND DATA REMOVAL

The data subject shall have the right to obtain from the Service Provider, without undue delay, the rectification of inaccurate personal data relating to him or her or the completion of incomplete personal data, as the case may be, on the basis of a supplementary declaration requested from the data subject, as the case may be.

The data subject shall also have the right to obtain, at his or her request, the erasure of personal data relating to him or her by the controller without undue delay and the obligation of the Service Provider to erase personal data relating to the data subject without undue delay if it can no longer be processed under any of the conditions set out in the relevant provision of the GDPR.

RESTRICTION OF PROCESSING

The data subject has the right to request the Service Provider to restrict the processing of personal data under the conditions set out in the GDPR and in the legal provisions on personal data processing. Where processing is subject to restriction, such personal data, except for storage, may only be processed with the consent of the data subject or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for important public interests of the Union or of a Member State. The Service Provider shall inform in advance the data subject at whose request the processing has been restricted of the lifting of the restriction of processing.

DATA PORTABILITY

The data subject shall have the right to receive the personal data concerning him or her which he or she has provided to the Service Provider as controller in a structured, commonly used, machine-readable format and the right to transmit such data to another controller without hindrance by the Service Provider, subject to the relevant provision of the GDPR.

CONTACT

The data subject may object at any time, on grounds relating to his or her particular situation, to the processing of his or her personal data under the GDPR’s specific provision, including profiling based on the conditions specified in the provision. In such a case, the Service Provider may no longer process the personal data, unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.

AUTOMATED DECISION-MAKING IN INDIVIDUAL CASES (PROFILING)

The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her. This right cannot be exercised in the cases specified in the GDPR.

5. COMPLAINT, APPEAL

The Service Provider undertakes to investigate complaints and objections notified to it in relation to data management within 30 days of receipt of the request – extended by a further 30 days, up to a maximum of 60 days, depending on the complexity of the request and the nature of the request involving several requests – and to inform the applicant concerned of the procedure or the outcome.

The data subjects may exercise their rights in relation to data processing in accordance with the Infotv., the GDPR and other relevant legislation, or may object to data processing, request the rectification, blocking or erasure of their data, apply to the courts or seek the assistance of the National Authority for Data Protection and Freedom of Information.

Contact: Nemzeti Adatvédelmi és Információszabadság Hatóság
Registered office: 1125 Budapest Szilágyi Erzsébet fasor 22/c.
Postal address: 1530 Budapest, Pf.: 5.
Phone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
E-mail:
ugyfelszolgalat@naih.hu

In the event of a breach of his/her rights or if his/her objection is rejected, the data subject may be subject to a fine.

6. OTHER

By reading and accepting this statement, the Customers and all data subjects expressly consent to the processing by the Service Provider of the personal data provided in this statement, when registering, subscribing to the Newsletter or contacting the Service Provider. The data subject expressly consents to the transfer of the personal data provided when registering, subscribing to the newsletter or contacting the data processor indicated above. The data subject may at any time request the Service Provider to modify or delete his/her stored personal data. The Service Provider shall not be liable for the accuracy of the personal data provided by the data subject and shall be solely responsible for the personal data provided by the person who provided them.

The Service Provider shall disclose personal data provided by the data subject or by others to third parties, beyond the scope of this Policy or beyond the scope of the legal provisions, only if the data subject or the Customers expressly consent thereto or if the Service Provider is obliged to do so by law or by other legal provisions by virtue of a legal authorisation. If it becomes necessary to disclose the personal data of the data subject to a third party or a public authority, the Controller shall notify the data subject thereof without undue delay by e-mail.

The Service Provider may amend this Privacy Policy unilaterally at any time in accordance with the provisions of law.

Open chat
1
How can we help?
We are here to help!
Hi!
How may I be of service?