THIS  PAGE  IS  CURRENTLY  UNDER  DEVELOPMENT

                                     SATINA GOLD

                                                                                     Cosmetics Ltd.

GDPR

Privacy Policy of SATINA GOLD COSMETICS LTD.

entry into force: May 25, 2018




Satina Gold Kft. informs you of the following regarding the handling of your personal data in connection with data management activities in accordance with the provisions of the GDPR regulation. Satina Gold Kft. (6800 Hódmezővásárhely, Erzsébeti út. 12., tax number: 13382768-2-06; company registration number: 06-09-009564) manages your personal data in accordance with the provisions of this data protection policy. If you do not agree with the content of the data protection policy, please let us know your objection in writing within 8 days, otherwise we will consider its contents as accepted.

The Data Protection Policy is available from the following website: www.satinagold.hu

 

1.) Data controller and contact details:
Name: Satina Gold Kozmetikai Kft. Headquarters: 6800 Hódmezővásárhely, Erzsébeti út 12.
E-mail: satina@vnet.hu
Tel: 06/62-241-139
Company registration number: 06-09-009564
Data protection officer contact details: Based on the relevant legal regulations, the appointment of a data protection officer is not necessary, it has not been done.

 

Legal background

Regulation (EU) 2016/679 of the European Parliament and of the Council (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data
(GDPR)

CXII of 2011 Act on the right to self-determination of information and freedom of information
(InfoTv)

LIII of 2017 Act on the Prevention and Suppression of Money Laundering and the Financing of Terrorism
(Pmt)

XLVIII of 2008 Act on the Basic Conditions and Certain Limitations of Economic Advertising Activities
(Grt)

Act I of 2012 on the Labor Code
(Mt)

Act V of 2013 on the Civil Code
(hereinafter: Civil Code)

Act C of 2000 on accounting
(hereinafter Accounting Act)

 

Definitions:

Personal data: any information relating to an identified or identifiable natural person ("data subject"); a natural person can be identified directly or indirectly, in particular on the basis of an identifier such as name, number, location data, online identifier or one or more factors relating to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person identifiable;

Data management: any operation or set of operations performed on personal data or data files in an automated or non-automated manner, such as collection, recording, systematization, segmentation, storage, transformation or change, query, insight, use, communication, transmission, distribution or making accessible in any other way by item, coordination or connection, restriction, deletion or destruction;

Limitation of data management: marking stored personal data for the purpose of limiting their future management;

Profiling: any form of automated processing of personal data in which personal data is used to evaluate certain personal characteristics of a natural person, in particular characteristics related to work performance, economic situation, health, personal preferences, interests, reliability, behavior, location or movement used to analyze or predict;

Pseudonymization: the processing of personal data in a way that, without the use of additional information, it is no longer possible to establish which specific natural person the personal data refers to, provided that such additional information is stored separately and technical and organizational measures are taken to ensure that this personal data cannot be linked to identified or identifiable natural persons;

Registration system: a file of personal data divided in any way - centralized, decentralized or according to functional or geographical aspects - which is accessible based on specific criteria;

Data controller: the natural or legal person, public authority, agency or any other body that determines the purposes and means of processing personal data independently or together with others; if the purposes and means of data management are determined by EU or member state law, the data controller or the special aspects regarding the designation of the data controller may also be determined by EU or member state law;

Data processor: the natural or legal person, public authority, agency or any other body that processes personal data on behalf of the data controller;

Recipient: the natural or legal person, public authority, agency or any other body to whom the personal data is communicated, regardless of whether it is a third party. Public authorities that have access to personal data in accordance with EU or Member State law in the context of an individual investigation are not considered recipients; the management of said data by these public authorities must comply with the applicable data protection rules in accordance with the purposes of data management;

Third party: the natural or legal person, public authority, agency or any other body that is not the same as the data subject, the data controller, the data processor or the persons who have been authorized to process personal data under the direct control of the data controller or data processor;

Consent of the data subject: the voluntary, specific and clear declaration of the will of the data subject based on adequate information, with which the data subject indicates by means of a statement or an act clearly expressing the confirmation that he gives his consent to the processing of personal data concerning him;

Enterprise: a natural or legal person engaged in economic activity, regardless of its legal form, including partnerships and associations engaged in regular economic activity;

 

PRINCIPLES REGARDING PERSONAL DATA HANDLING

Principle of legality, fair procedure and transparency: personal data must be handled legally, fairly and transparently for the data subject

Purpose-bound principle: personal data may only be collected for a specific, clear and legitimate purpose

Principle of data saving: limiting data processing to what is necessary

Principle of accuracy: personal data must be accurate and, if necessary, up-to-date

Principle of limited storage: Storage in a form that allows the identification of the data subjects only for the time necessary to achieve the goals of personal data management.

Principle of integrity and confidentiality: The management of personal data must be carried out in such a way that adequate security of personal data is ensured by the application of appropriate technical or organizational measures.

Accountability principle: The data controller is responsible for compliance with the provisions of these regulations.

 

The data controller declares that its data management is carried out in accordance with the basic principles contained in this point.

 

2.) Purpose of data management and determination of the relevant legal framework

The handling of the personal data of Satina Gold Kozmetikai Kft.'s business partners - within the legal framework - is essential for the fulfillment of contractual obligations and for distinguishing partners from each other, for maintaining contact with partners, for fulfilling accounting obligations, and for fulfilling the rights and obligations of the contract.

Restrictions on data management:

The final deadline for the duration of data management is determined by the relevant legal regulations. In addition, so-called anonymous data processing may only take place for statistical purposes.

The data management covers the contact persons necessary for the fulfillment of the contract (name, telephone number, e-mail address, address), the data to be indicated on the accounting document (name, tax number, address), and upon receipt of the goods, the recipient's signature, vehicle registration number or name, personal identification number, vehicle registration number .

 

3.) Recipients of personal data

Only authorized employees of the company can see the recorded personal data to the extent necessary for their activities. Personal data will be forwarded to the authority or data processors based on the request or legal requirement. Details of the data processors used:

 

Details of the data processors used:

Bookkeeping:
- Name: JMT Közgazdasági Szolgáltató Kft.
- Headquarters: 6800 Hódmezővásárhely, Lázár u. No. 1 A. lph. fsz/1. s.
- Tax number: 11399043-2-06

Audit:
- Name: Name: Jankontó Könyvvizszáló és Tanácsadó Kft
- Headquarters: Headquarters: 6800 Hódmezővásárhely, Nyizsnyai G. u. 5.
- Tax number: 12526721-2-06

Legal representation:
dr. Béla Szalóky, individual lawyer,
6720 Szeged, Vár u. 2. I/7. s.
(based on case assignments)

dr. Anett Ágasvári, individual lawyer,
6720 Szeged, Vár u. 2. I/7. s.
(based on ad hoc assignments)

Management software:
- Name: BITLABOR Trade Kft
- Headquarters: 6724 Szeged, Kismartoni u. 17.
- Tax number: 11399043-2-06

- SZAKK Hungary Kft.
- 6725 Szeged, Láma u. 7. - Phone: +36 62/743-478

 

Recipients of personal data: NAV, Authorities, Data Processors.

 

4. ) Description of the data subject's rights related to data management

You, as a natural person, are affected by the EU General Data Protection Regulation (EU GDPR) during data processing and have the following rights in relation to the processing of your personal data

Articles 13 and 14 EU GDPR: right to information

Satina Gold Kozmetikai Kft. must inform you about the conditions for starting the data management activity (purpose, legal basis of personal data management, recipients of personal data), about the way, conditions and expected duration of the limitation of the right to privacy.

The form of personal data storage: the company stores personal data on paper, in a file, or on a computer.

The place of storage: the company's registered office, the filing cabinet of the accounting office or on the computer operating in the premises.

Technical and organizational measures related to the security of personal data: the company ensures unauthorized access to managed personal data at the end of working hours in a locked office equipped with an alarm, or with a password-protected computer.

Article 15 EU GDPR: right of access

The data subject is entitled to receive feedback on whether his personal data is being processed. Information related to access rights is provided by the employer responsible for data management.

Personal data can be accessed by the accounting employee, shift managers, office managers, senior officials, company members and recipients of personal data.

With the exception of the designated accessees, the personal data of those concerned is not public.

Article 16 EU GDPR: right to rectification:

The data subject must report any change in his or her data immediately, and the accounting employee or other person authorized to handle the data must transfer and record the change in the records. The data subject has the right to request the immediate correction of inaccurate personal data concerning him.

Article 17 EU GDPR: right to erasure

The data subject's right to request the data controller to delete the personal data relating to him without undue delay, if it is no longer necessary for the purpose for which it was collected (except for Article 17 (3) of the EU GDPR), the personal data has been unlawfully processed, or must be deleted to fulfill the prescribed legal obligation.

Article 18 EU GDPR: the right to restrict data processing

At the request of the data subject, if the legislation allows for this. In the case of restrictions on data management, Satina Gold Kozmetikai Kft. may only process personal data with your consent or to assert, assert or defend legal claims or to protect the rights of another person, except for the storage of personal data.

Article 20 EU GDPR: right to data portability

The data subject has the right to receive the personal data processed about him in a machine-readable form and forward it to another data controller.

Article 21 EU GDPR: right to object

The data subject has the right to object at any time to a measure related to the management of his personal data if the conditions defined by law apply.

 

5.) Complaint handling

If you believe that Satina Gold Kft. did not handle your personal data in accordance with the provisions of these regulations, or if you were unable to fully enforce your rights, please contact us at one of the following contact details: - in person at our headquarters: 6800 Hódmezővásárhely,
Erzsébeti út 12.
- e-mail address: satina@vnet.hu (in the subject of the letter, please indicate the word "Data Management")
- phone number: +36-62-241-139

In case of violation of your rights regarding your personal data, you can submit your complaint to the authority at the following address:
Authority: National Data Protection and Information Freedom Authority
Mailing address: 1530 Budapest, Pf.: 5.
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
E-mail address: ugyfelszolgalat@naih.hu

 

In case of violation of your rights regarding your personal data, you can submit your complaint to the authority at the following address: Authority: National Data Protection and Information Freedom Authority
Mailing address: 1530 Budapest, Pf.: 5.
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
E-mail address: ugyfelszolgalat@naih.hu

 

In the event of a violation of the law during the processing of your personal data, you can also go to court.