Terms and Conditions

PRIVACY POLICY

Version 1

valid from 1st July 2020

The Silicon Valley Of Arts Limited, hereinafter referred to as: Data Manager)

in accordance with Regulation 2016/679 of the European Parliament and of the Council, processes the data as follows.

1.      Data Manager and its data

Data Manager: Művészeti Szilícium Völgy Kft.

company reg. number: 01 09 285659

registered office: 1025 Budapest, Csévi út 11. A.

branch office: HU 7623 Pécs, Nagyvárad utca 15. fszt. 1.

e-mail: office@virtuozok.hu

tax number: 14189805-2-41

2.      The legal basis, purpose, duration of the data management, the scope of the processed data and those entitled to get acquainted

2.1  Consent of the person concerned

In case of refusal of consent, no data processing is created. The consent may be revoked at any time, as a general rule the data processing must be terminated in this case, but this does not affect the lawfulness of the data processing during the consent. Data processing performed on the basis of consent may contain mandatory legal requirements, which are governed by the provisions on the fulfilment of legal obligations.

2.2 Concluding of the contract and its fulfilment

The precondition for concluding of contract is the provision of data by the person concerned, in the absence of it, it is not possible to conclude the contract. After the conclusion of the contract, the law may contain mandatory provisions for further data processing, which shall be governed by the provisions on the fulfilment of legal obligations.

2.3 Fulfilment of a legal obligation

The person concerned is obliged to provide his/her personal data, otherwise the Data Manager cannot fulfil his/her legal obligations. Depending on the nature of each data processing, this may mean that no legal relationship may be established with the person concerned, or the Data Manager is obliged to pass on any adverse legal consequences arising from this to the person concerned.

3.      Name and scope of managed data

3.1  Business cards, phone numbers, e-mails

Managed data:

·        name,

·        title,

·        address,

·        e-mail address,

·        phone number

Purpose of data processing: Identification of person concerned, contacting:

Legal basis of data processing: GDPR Article 6 (1) Point (a) – contribution

Duration of data processing: Until the withdrawal of consent or cancellation at the discretion of the Data Manager

3.2 Data management of representatives of contracting partners and other organizations and persons delegated by them

Managed data:

·        name,

·        title,

·        address,

·        e-mail address,

·        phone number,

·        signature

Purpose of data processing: A contact person designated by a legal entity for the conclusion (especially: offer, order, appointment, negotiation, etc.) and performance (especially: handover, certificate of performance, worksheet, etc.) of a contract, who is with the legal entity in any legal relationship.

Legal basis for data processing: GDPR Article 6 Point (1) f) – legitimate interest of the Data Manager. When processing the data of the contact persons and sole proprietors designated by the contracting partners, the Data Manager implements the requirement of purposeful necessity and proportionality with the restriction of the rights of the person concerned. This makes the data management acceptable to the person concerned, who are not affected by any disproportionate damage to their interests, and even the data management serves the proper fulfilment of their job responsibilities.

Duration of data processing: Until the data management of the underlying contract, for the period necessary to fulfil a legal obligation and to enforce a legal claim. In the event of a protest, the data processing lasts until it is cancelled, unless this is overridden by a legal requirement or the data controller has a legitimate interest.

3.3. Making an appointment

Managed data:

·        the name of person concerned;

·        names of participants;

·        e-mail address and phone number of the person concerned;

·        the scheduled date of the meeting;

·        the subject and place of the meeting

Purpose of data processing: By providing his/her data, the person concerned agrees on a date for a personal meeting with the Data Manager.

Legal basis for data processing: GDPR Article 6 Point (1) a) – consent of person concerned.

Duration of data processing: The person concerned may withdraw his/her consent at any time by the scheduled date.

3.4  Request for quotation and quotation

Managed data:

·        name,

·        address,

·        e-mail address,

·        phone number.

Purpose of data processing: By providing his her data, the person concerned may request an offer from the Data Manager for the products and services belonging to his/her activities.

Legal basis for data processing: GDPR Article 6 Point (1) a) – consent of the person concerned.

Duration of data processing: If the offer is accepted, the cancellation period provided for the given contract applies. If the offer is not accepted (with no response), it will be canceled within 90 days of the offer expiring. If the offer is rejected by person concerned, it will be handled by the Data Manager for 30 working days after receipt of the relevant document.

3.5 Ordering

Managed data:

·        name,

·        address,

·        e-mail address,

·        phone number.

Purpose of data processing: By providing his/her data, the person concerned orders products and services from the Data Manager that fall within the scope of his/her activities.

Legal basis for data processing: GDPR Article 6 Point (1) (b) conclusion of a contract

Duration of data processing: Until the data management of the underlying contract.

3.6 Conclusion and performance of contracts

Managed data:

·        For natural persons, sole proprietors: name, address, residential address, registered office, tax number.

·        Data required to enforce a possible legal claim: mother’s name, place of birth, time.

Purpose of data processing: Identification of the person concerned, conclusion and performance of contracts, enforcement of possible legal claims, fulfillment of legal obligations

Legal basis for data processing: GDPR Article 6 Point (1) (b) conclusion of a contract

Duration of data processing: 5 years limitation period according to Art.(Tax Law), or taking into consideration the provisions of the relevant legislation and contract, e.g. mandatory or contractual warranty.

3.7   Data management related to issued and received accounting documents

Managed data (Mandatory billing information especially):

·        name,

·        residential address/registered office, tax number,

·        issuer’s signature.

·        Data required to enforce a possible legal claim: mother’s name, place of birth, time.

Purpose of data processing: To meet the requirements specified by law for the purpose of financial performance.

Legal basis for data processing: GDPR Article 6 Point (1) (c) fulfilment of a legal obligation;

Duration of data processing: 8 years after the issue of the invoice.

3.8   Data management of marketing-based inquiries
Managed data:

·        Name and contact details of the individual entrepreneurs contacted.

·        in the case of a legal entity, the name and contact details of the managing director and the contact person.

Purpose of data processing: expanding the range of business partners.
Legal basis for data processing: GDPR Article 6 Point (1)  f) – legitimate interest of the Data Manager.
Duration of data processing: In case of protest, the data management will be terminated.

3.9 Complaint Handling Managed data:

·        complaint ID,

·        name,

·        phone number,

·        time of call,

·        personal data provided,

·        residential address,

·        attached documents,

·        the complaint itself.

Purpose of data processing: To handle the complaint of the Data Manager related to its economic, data management and data protection activities.
Legal basis for data processing: GDPR Article 6 Point (1) (c) fulfilment of a legal obligation;
Duration of data processing: The procedure is 5 years from the receipt of the complaint.

The Data Management Policy contains detailed rules for the further data management of the Data Manager .

4.      Data Processors

The Data Manager hereby informs the person concerned that it does not perform certain tasks related to its activities within its own organization, but uses a Data Processor separate from its own organization to perform these outsourced activities. In this case, the given data processing is performed by the Data Processor on behalf of the Data Manager.

According to the data processing contract, the Data Processor may only perform well-defined data management operations. Limitations of the Data Processor: it cannot make a meaningful decision on the purpose and tools of data processing, it may not make copies, it may not transfer data to third parties, unless this is expressly provided for in its contract, it may not compare the data transferred to any database, etc.

5.      Data transfer

·        The Data Manager informs the person concerned that in addition to its legal obligations, it transfers data to a third country if the person concerned has given its express consent or has a contractual obligation (e.g. according to an employment contract, contract, business contract, etc.) to transfer the data in certain circumstances. allow. The transfer of data may be occasional or may serve for the conclusion or performance of any contract, but it may also be justified by the enforcement of a legal claim.

·        The Data Controller transfers the Personal Data of person concerned to state bodies only in exceptional cases in the event that court or official proceedings are initiated in a case concerning him/her and the acting bodies request the Data Manager documents or information containing for the transmission of documents after proof of their entitlement.

·        In case of enforcing any legal claim, the Data Manager will provide data to the acting authority, court, prosecutor’s office, opposing party (etc.) adapted to the nature of the procedure.

·        Based on a legal obligation, the Data Controller provides data to the bodies specified in the law (e.g Tax Office, National Health Insurance Fund, etc.).

6.      Profiling

The data Manager does not perform automated decision making – including profiling

7.      Rights of the person concerned, legal remedies

–      Information and access to personal data

–      right to rectification

–      right of cancellation (“right to forget”)

–      right to restrict data processing

–      right to data portability

–      right to protest

–      right to go to court

In case of violation of the rights of the person concerned, he/she may go to court against the Data Manager. The court is acting out of turn. The person concerned may choose the competent court of his or her domicile outside the jurisdiction of the defendant.

–         right to go to a data protection authority

The person concerned may file a complaint with the Hungarian National Authority for Data Protection and Freedom of Information:

Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22 / C.

Mailing address: 1530 Budapest, PO Box: 5.

Phone: +36 1 / 391-1400

Fax: +36 1 / 391-1410

E-mail: ugyfelszolgalat@naih.hu

Website: http://www.naih.hu Honlap: http://www.naih.hu

8.      Data security

The Data Manager ensures the protection of privacy of the person concerned during the entire process of data management and data processing. The Data Manager shall protect the data especially against unauthorized access, changing, transferring, publishing, deleting or destruction, as well as against accidental destruction and damage, and from becoming inaccessible due to changes in the technology used. The Data Manager stores the personal data provided during the data management activity in separate data files, separately from other provided data. The Data Manager transfers/communicates the individual data or the entire data files to a third party only within the scope specified in the Data Management Regulations and takes all measures to ensure that they cannot be disclosed to an unauthorized person.

LEGAL NOTICE

We inform the visitors of the website that the information published on the website is intended to provide general information, however, it is not intended to describe the completeness of the given topic. Accordingly, they do not qualify as services in the field of data protection, accounting, taxation, legal, investment or other professional services. This information should not be the sole basis for the business decisions of the website visitors, they should use a well-trained professional consultant in the specialization.

The articles, documents and information published on the website are for information purposes only and may contain errors for which the website operator is not responsible, either explicitly or implicitly. The Data Manager does not take responsibility for any damages resulting from a visit to the website.

We expressly draw the attention of visitors to the website to the fact that the articles, documents and information published on the website will only be used if they do so solely at their own risk and assume full responsibility for the consequences thereof.

The website operator excludes its liability for any adverse consequences, direct, indirect, incidental, consequential, punitive or administrative, infringing, or any other damage, as well as any other disadvantages, in connection with the use of articles, documents and information published on the website. such as contractual, statutory or private law.

The content of the Data Manager’s website is protected by copyright, so any pictorial or textual elements may be used only with the prior written permission of the Data Manager.