Privacy Policy

The data manager (Service Provider)

Service provider name: inLOG&CO Kft.
Headquarters: 2049 Diósd, Homokbánya út 77.
Post address: 2049 Diósd, Homokbánya út 77.
Registry Court: Company Court of Budapest District Court
Company registration number: 13-09-204886
Tax number: 27904990-2-13
E-mail address: inlog@inlog.hu
Website: https://inlog.hu
Telephone number: +36-30-159-4490
Hosting provider name: Hungarian Hosting Kft.
Hosting provider address: 1132 Budapest, Victor Hugo utca 18-22.

  1. Basic principles of data management; data security

1.1. The Service Provider, as a Data Controller (hereinafter: Data Controller), undertakes to handle personal data obtained in the course of its activities in accordance with the applicable legal provisions – in accordance with the provisions of the data protection information. The data controller processes personal data exclusively for specific purposes, in order to exercise rights and fulfill obligations.
The management and recording of data – at all stages of data management – meets the requirements of fairness and legality.

The data controller only handles personal data that is essential for the realization of the purpose of data management and is suitable for achieving the purpose. The data controller processes personal data only to the extent and for the time necessary to achieve the purpose.

The Data Controller ensures at all stages of data management that the data subject can at any time find out which types of data the Data Controller manages for which data management purposes, and can prohibit data management at any time, with the exception of mandatory data management.
The purpose of the data management and the scope of the managed data are contained in point 2 of this Data management sheet.

This data protection information is in accordance with the following legislation:

  • Act CVIII of 2001 on certain issues of electronic commercial services and services related to the information society
  • Act CXII of 2011 on the right to self-determination of information and freedom of information

1.2. The Data Controller plans and executes the data management operations in such a way as to ensure the protection of the privacy of the data subjects.

The data manager ensures the security of the data, and takes the technical and organizational measures, as well as establishes the procedural rules, which are necessary for the enforcement of Act CXII of 2011 and other data and privacy protection rules.

The data manager uses appropriate measures to protect the data against unauthorized access, change, transmission, disclosure, deletion, or destruction, as well as against accidental destruction, damage, and becoming inaccessible due to changes in the technology used.

  1. Legal basis for data management; its goal; managed data

2.1. Personal data can be processed if the data subject consents to it, or if it is ordered by law or – based on the authority of the law and within the scope defined therein – by a local government decree for a purpose based on the public interest.

2.2. The consent or subsequent approval of the minor’s legal representative is not required for the legal declaration containing the consent of the minor concerned who has reached the age of 16 to be valid.

2.3. In the case of registration on the website https://inlog.hu and the sending of the newsletter, data management is based on the voluntary declaration of consent of the data subject. The declaration of the data subject is necessary for registration and, if he gives separate consent, for sending the newsletter. The data subject gives his consent to the Data Controller prior to registration by placing an “X” in the small box that appears next to the Data Protection Information during registration. Before giving consent, the data controller can read and familiarize himself with the contents of this Privacy Notice in detail. With the above consent, the data subject accepts the content of the Data Protection Notice. This Data Protection Notice is continuously available in the footer of the https://inlog.hu website.
If the User wants a newsletter to be sent to him, he can consent to it separately on the website during/or after registration by placing an “X” in the small box that appears next to “Newsletter subscription”.

2.4. The data manager manages the following data:

In case of registration: name of the data subject (last name, first name); His e-mail address; county and city; a reference to being over 16 years of age.
In the case of sending a newsletter: name of the data subject (last name, first name); His e-mail address; county and city

2.5. Purposes of data management: Registration on the website https://inlog.hu (first purpose) and sending newsletters (second purpose)
Legal basis for data management: voluntary consent of the subject

Duration of data management:
In case of registration: Until the user account is deleted – initiated by the user
In the case of sending a newsletter: until the day of unsubscribing from the newsletter

2.6. Person entitled to data management and data processing: The current managing director of the service provider, or employees. The managed data is only known to the current managing director and the employees.

2.7. The data manager does not transfer data related to the use of the service to third parties. The data controller does not forward the processed data to a data controller or data processor in a third country.

2.8. The data controller reserves the right – and also the obligation – to unilaterally modify this data protection information in order to ensure that it always complies with the applicable legal requirements.

  1. Rights of the data subject

3.1. The data subject can request information from the data controller about the handling of his personal data. At the request of the data subject, the Data Controller provides information about the data it manages or processes, the purpose, legal basis, duration of the data processing, the name and address of the data processor and its activities related to data processing. Upon the data subject’s request, the data controller shall provide the requested information in writing as soon as possible, but no later than 25 days after the submission of the request.

3.2. The data subject can request the correction of his personal data from the data controller.
If the personal data does not correspond to the reality, and the personal data corresponding to the reality is available to the Data Controller, the personal data will be corrected by the Data Controller.

3.3. The data subject can request the deletion or blocking of his personal data from the data controller.

Personal data must be deleted,
if its management is illegal;
if the data subject requests it;
itis incomplete or incorrect;
the purpose of data management has ceased or the deadline for data storage has expired; it was ordered by the court or the Authority.

The data controller may refuse the data subject’s request for deletion only in cases of mandatory data processing. (e.g. account retention obligation based on the Accounting Act). Instead of deletion, the data controller locks the personal data if the data subject requests this, or if, based on the information available, it can be assumed that the deletion would harm the legitimate interests of the data subject. The personal data locked in this way can only be processed as long as the data management purpose that precluded the deletion of the personal data exists. If the data controller does not comply with the data subject’s request for rectification, blocking or deletion, within 25 days of receiving the request, it shall communicate the factual and legal reasons for rejecting the request for correction, blocking or deletion in writing or with the consent of the data subject electronically. In case of rejection of the request for correction, deletion or blocking, the data controller informs the data subject of the possibility of legal remedies in court, as well as the possibility of turning to the Authority.

  1. Judicial enforcement; compensation; damages

4.1. In the event of a violation of their rights, the data subject may go to court against the Data Controller.
If the Data Controller causes damage to others by illegally handling the data subject’s data or by violating data security requirements, it is obliged to compensate them.

If the Data Controller violates the data subject’s right to privacy by illegally handling the data subject’s data or violating data security requirements, the data subject may demand damages from the Data Controller.

4.2. By filing a report with the National Authority for Data Protection and Freedom of Information (NAIH), anyone can initiate an investigation citing that a violation of rights has occurred in connection with the handling of personal data, or there is a direct risk of such violation.

NAIH contacts:
Mailing address: 1530 Budapest, Pf.: 5.
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
E-mail: ugyfelszolgalat@naih.hu
URL: http://naih.hu

  1. Concepts used in this Data Protection Notice

Data subject: any natural person identified or – directly or indirectly – able to be identified on the basis of personal data
personal data: the data that can be associated with the data subject – in particular the data subject’s name, identification sign, and one or more physical, physiological, mental, economic, cultural or social identity characteristics – as well as the conclusion about the data subject that can be drawn from the data;
consent: the voluntary and decisive declaration of the data subject’s will, which is based on adequate information, and with which he gives his unequivocal consent to the processing of his personal data – in full or covering certain operations
objection: the statement of the data subject objecting to the processing of his personal data and requesting the termination of data processing or the deletion of the processed data
Data controller: the natural or legal person or organization without legal personality who, independently or together with others, determines the purpose of data management, makes and implements decisions regarding data management (including the device used), or has them implemented by the data controller
data management: regardless of the procedure used, any operation performed on the data or the set of operations, including in particular the collection, recording, saving, organization, storage, change, use, querying, transmission, disclosure, coordination or connection, locking, deletion and destruction of the data, as well as preventing its further use, taking photographs, audio or video recordings, and recording physical characteristics suitable for identifying the person (e.g. fingerprint or palm print, DNA sample, iris image);
data transfer: making the data available to specific third parties;
data deletion: rendering the data unrecognizable in such a way that its recovery is no longer possible;
data locking: providing the data with an identification mark for the purpose of limiting its further processing permanently or for a specified time
data destruction: complete physical destruction of the data carrier containing the data
data processing: performing technical tasks related to data management operations, regardless of the method and tool used to perform the operations, as well as the place of application, provided that the technical task is performed on the data

data processor: the natural or legal person or organization without legal personality who processes data on the basis of a contract – including a contract signed on the basis of the provisions of the law
dataset: the totality of the data managed in one register
third party: a natural or legal person, or an organization without legal personality, who is or is not the same as the data subject, the data manager or the data processor.
EEA country: a member state of the European Union and another state that is a party to the Agreement on the European Economic Area, as well as the state whose citizen is a citizen of the European Union and its member states, and a state that is not a party to the Agreement on the European Economic Area that is a party to the Agreement on the European Economic Area on the basis of an international treaty enjoys the same legal status as a citizen of a state
third country: any non-EEA state.

If you have any questions about our company’s data management, please contact us.

Our contacts:

Service provider name: inLOG&CO Kft.
Headquarters: 2049 Diósd, Homokbánya út 77.
Mailing address: 2049 Diósd, Homokbánya út 77.
Registry court: Company Court of Budapest District Court
Company registration number: 13-09-204886
Tax number: 27904990-2-13
E-mail address: inlog@inlog.hu

József Balog
managing director