DATA PROTECTION Policy
In our Privacy Policy we inform you as the visitor of our website and the user of our services about our data management and data protection rules.
- The principles we follow regarding our data management
Our company follows the following principles of data management:
- We manage personal data lawfully, fairly, and transparently to you.
- We collect personal data only for defined, unambiguous, and lawful purposes and we manage data with no incompatibility with the aims.
- The personal data we collect and store is adequate and relevant to the aims of data management, and is limited to the minimum necessary.
- Our company makes every reasonable arrangements in order that the data managed by us to be correct and up-to-date when needed; we immediately delete or rectify incorrect personal data.
- We store personal data in a way that you are able to be identified only until the goal of the personal data storing is reached.
- We secure personal data against unauthorized management or misapplication, accidental loss, annihilation or deterioration by the application of sufficient technical and organisational arrangements.
Our company and your personal data
- On your prior informed and voluntary consent our company manages, that is collects, stabilizes, systematizes, stores and uses, your personal data only to the necessary extent and in all cases assigned to goals.
- In some cases, the management of your data is based on legal basis and is compulsory; in these cases we draw your attention to it in advance.
- Besides, in some cases, our company or a third party justifies a legitimate interest in managing your personal data, for example, in the cases of the operation, development and security of our website.
- Who we are
The seat of our company: 1066 Budapest, Teréz körút 4. II. em. 8.
Our website: www.friendshostel.hu
Contact: Kis-Nemes Gergely
Mailing address: 1066 Budapest, Teréz körút 4. II. em. 8.
Phone number: +36202650578
Our e-mail address: info@friendshostel.hu
Our tax number: 26331432-2-42
Business registration: 01-09-324535
According to Article 37 of the GDPR, our Company is not obliged to appoint a Data Protection Officer.
We only ask for personal data from the visitors of our website if they wish to make a reservation register or log in.
We are not allowed to connect the personal data provided during reservation or registration and the personal data provided during using our marketing services, and the identification of our visitors is not fundamentally amongst our goals.
If you wish to further inquire about data protection, you can do it on the following email: info@friendshostel.hu
- Cookies and how we use them
Cookies are small sized data files that are placed on your computer through websites, by using websites, saved and stored by your web browser. The majority of the most widely used web browsers (Chrome, Firefox, etc.) as a default setting accepts and allows the download and usage of cookies. It is up to you if you change the settings of your browser and refuse or block the usage of cookies, and you can also delete the cookies that are already stored on your computer. You can find more information about the usage of cookies in the „Help” menu of each browser.
There are some cookies that do not require your previous consent. About these, you get some information the first time you visit our website. These are for instance the authentication, the multimedia player, the load balancing, the user surface customization helping session cookies, and the user-centered security cookies.
About the cookies requiring previous consent, if the data management process commences by visiting the website, our company informs you in the beginning of your first visit and we ask for your permission.
Our company does not apply and does not enable cookies with the help of which third parties may collect data without your permission.
The acceptance of cookies is not obligatory, however, our company does not take responsibility for the possible malfunctions in the operation of our website due to the lack of cookie enabling.
The type of cookies we use
- Google Analytics
- Facebook
- Some more information about our data management policy
You voluntarily provide your personal data to our company while registration or contacting our company, and for this reason, we ask you to pay careful attention to your data’s authenticity, accuracy, and precision while providing them as you are the one responsible for them. Incorrect, inaccurate or missing data might hinder using our services.
Should you provide the personal data of another person, we presuppose that you possess the necessary authorisation to do that.
You can at any time withdraw your consent to data management free of charge
- by deleting your registration
- by withdrawing your consent to data management
- by withdrawing it or asking for locking the consent to the management and usage of any compulsorily provided data during registration
We undertake the record of the withdrawal of consent, for technical reasons, on a … days deadline. Please, note that in order to satisfy our legal obligation or to prevail our legitimate interest we are allowed to manage certain data even after the withdrawal of consent.
In the event of using deceptive personal data and in the event of any of our visitor’s committing a crime or attacking our company’s system, we immediately delete the registration of the given visitor and at the same time delete their data without delay, or, if need be, we preserve them until the end of proving civil liability or conducting criminal prodeedings.
- Other data management issues
We are only allowed to transmit your data within a legal framework. Our data processors are restricted by a contractual clause not to use your data to a goal in conflict with your consent. More information in point 2.
Our company does not transmit data to abroad.
Court, prosecution, and other administrative authorities (police, tax office, National Agency for Data Protection) might ask our company to provide information, to disclose data, or to supply documents. In these cases we have to fulfil our obligation to disclose information but only to an extent indispensably necessary to satisfy the request’s aim.
The employees and contributors who participate in our company’s data management and / or data process are authorized to get aquainted with your personal information to a pre-defined degree under conditions of confidentiality.
Your personal information is secured by appropriate technical and other measures. We ensure the security and availability of personal data and we secure them against unauthorized access, alteration, damage, disclosure, and any other unathorised use.
In the framework of organisational measures we monitor physical access in our buildings, we train our employees on a continuous basis, and we keep paper-based documents secured under lock and key. Our technical measures include encryption, password protection, and antivirus software.
- What are you rights and legal remedies?
Things you can do about data management:
- require an orientation
- require to change, modify, add to your personal data handled by us
- object against data management, require to delete or distrain your data (with the exception of compolsury data management)
- may appeal to court
- may complain, or initiate a procedure at supervisory authority: (https://naih.hu/panaszuegyintezes-rendje.html).
Supervisory authority: Nemzeti Adatvédelmi és Információszabadság Hatósághoz
Head office: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.
Post address: 1530 Budapest, Pf.: 5.
Phone: +36 (1) 391-1400
FAX: +36 (1) 391-1410
Email: ugyfelszolgalat@naih.hu
Webpage: https://naih.hu/
At your request we provide infromation about the following managed by us:
- your data
- the source of your data
- the aim and our rights of data handling
- the length of time we manage and keep your data, and the consideration of the length of the time
- name, address and data management related activities of our data processors
- privacy incidents, their effects and our actions to prevent them
- in case of forwarding your personal data, the right to forward data and the recepient of the data.
We will notify you within the shortest time 14 days (maximum within 1 month) of the date of submission of the application. Information is provided free of charge except if you have already submitted an information request for the same data field in the current year. The information can only be denied in statutory cases by indicating the legal status and by providing information on the judicial remedy or the opportunity to appeal to the Authority.
Our Company will notify you of any personal data correction, blocking, marking or deletion and will notify anyone who previously forwarded the data for data processing, unless the failure to notify violates your legitimate interest.
If we fail to comply with your claim for rectification, blocking or deletion, whithin 14 days (maximum 1 month) we will send you in writing or, with your consent, by electronic means, the reasons for your refusal, and we will inform you about the legal remedy, possibility of referring to the Authority.
If you object to the handling of your personal information, the protest will be examined within the shortest time whithin 14 days (within a maximum of 1 month) of the date of submission of the request, and we will inform you in writing about our decision. If we have decided that your protest is well-founded, data handling, including further data collection and data transfer, will be discontinued and the data will be blocked, and any protests and any action taken against it will be notified to all those who have the personal data involved in the protest previously forwarded and required to take action to enforce the right to protest.
We will refuse to comply with this request if we prove that data processing is justified by legitimate reasons of enforceability that prevail over your interests, rights and freedom or which relate to the submission, enforcement, or defense of legal claims. If you disagree with our decision or fail to comply with the deadline, you may contact the court within 30 days of the date of the decision or the last day of the deadline.
The processing of data protection claims falls within the jurisdiction of the court, the court may initiate proceedings before the court of domicile or residence of the person concerned. Foreign nationals may also apply to a supervisory authority competent for their place of residence.
Please do not hesitate to contact our Company before contacting the supervisory authority or court with your complaint – in order to resolve the issue and solve the problem as quickly as possible.
- What are the main guiding rules for our activities?
- Regulation (EU) No 2016/679 of the European Parliament and of the Council on the management of personal data by the natural persons (GDPR)
- Act CXII of 2011 on the right to information self-determination and freedom of information; Act – (Info tv.)
- Act V of 2013 on Civil Code (Civil Code)
- on the implementation of CVIII in 2001 on certain electronic commerce services and information society services; Act – (Eker tv.)
- Act C of 2003 on Electronic Communications (Ehtv)
- the 1997 CLV Act on Consumer Protection; Act (TV show).
- the CLXV 2013 Complaints and Notifications of Public Interest; law. (FAs).
- Act XLVIII of 2008 on the Fundamental Terms and Limitations of Economic Advertising Activity; Act (Gvt.)
- Modification of the Privacy Policy
Our Company reserves the right to modify this Privacy Policy information, about which data subjects are duly informed.
