Privacy Policy
1. Purpose and Scope of the Privacy Policy
1.1 This Privacy Policy sets out the data protection and management principles applied by Ipsilon.Group Kft. (registered address: 8640 Fonyód, Fő utca 119; company reg. no.: 14-09-318967; represented by Csaba Schuck, Managing Director; hereinafter referred to as the “COMPANY” or “DATA CONTROLLER”), which the Company acknowledges as binding upon itself.
1.2 This Privacy Policy outlines the principles of handling personal data voluntarily provided by users through the Website in order to use the services provided by the Company.
1.3 In creating this Policy, the Company took into account especially the General Data Protection Regulation of the European Parliament and Council (EU) 2016/679 (hereinafter: “GDPR”), the Hungarian Information Act (CXII of 2011, “Infotv.”), and the Hungarian Civil Code (Act V of 2013, “Ptk.”).
1.4 Unless otherwise stated, this Privacy Policy does not apply to the data handling of third-party websites and services that may be linked from the Website. Such external data processing falls under the respective third party’s privacy policies, for which the Company assumes no responsibility.
2. Definitions
2.1 “Data processing”: Any operation or set of operations performed on personal data or data sets, either by automated or manual means, such as collection, recording, organization, storage, alteration, retrieval, consultation, use, transmission, disclosure, alignment, restriction, deletion, or destruction.
2.2 “Data controller”: The natural or legal person who determines the purposes and means of processing personal data, independently or together with others.
2.3 “Personal data”: Any information relating to an identified or identifiable natural person (“data subject”). An identifiable person is one who can be identified directly or indirectly, in particular by reference to an identifier like name, ID number, location data, online identifier, or physical, physiological, genetic, mental, economic, cultural, or social characteristics.
2.4 “Data breach”: A security incident leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of or access to personal data.
2.5 “Data processor”: A natural or legal person who processes personal data on behalf of the data controller.
2.5.1 “Google” – Google Inc., 600 Amphitheatre Parkway, Mountain View, California 94043, USA
2.5.2 “Hostinger” – HOSTINGER operations, UAB, Švitrigailos str. 34, Vilnius 03230 Lithuania
2.6 “Website”: The website operated by the Data Controller: ipsilon.group
2.7 “Service(s)”: Services provided by the Data Controller and accessible through the Website.
2.8 “User”: A natural person who registers for the Services and provides the data listed below.
3. Scope of Personal Data Processed
3.1 When the User visits the Website, the system automatically records the User’s IP address.
3.2 Based on the User’s decision, the following data may be processed during use of the Services:
3.2.1 Contact form: name, email address
3.2.2 Newsletter subscription: name, email address
3.3 For personalized service, the Website may place a small data file (“cookie”) on the User’s device to enhance functionality and user experience. The User may disable cookies via their browser settings, but doing so may limit site functionality.
3.4 Cookies may collect demographic data, technical details (e.g., OS, browser), and usage preferences (e.g., browsing history).
4. Purpose and Legal Basis of Data Processing
4.1 Data is processed for the following purposes:
4.1.1 Contact: maintaining communication with the User, fulfilling services, generating statistics, and supporting the legitimate interests of the Data Controller.
4.1.2 Newsletter: sending newsletters, maintaining contact, marketing, and generating statistics.
5. Method of Data Processing
5.1 The personal data required to use the Services is processed solely based on the User’s consent and for a specific purpose.
5.2 The Data Controller does not verify the accuracy of the data provided. Responsibility lies with the User, though the Data Controller takes reasonable steps to correct or delete inaccurate data.
5.3 Personal data will not be shared with third parties beyond the listed data processors.
5.4 Data processing continues until the User deletes their account, unsubscribes, withdraws consent, or the Service is discontinued, at which point the data is permanently deleted.
6. User Rights
6.1 Users may request information about whether their personal data is being processed and request access to it.
6.2 Users may request information about their data at any time via email at info@ipsilon.group.
6.3 Users may request the correction or amendment of their data.
6.4 Newsletters can be unsubscribed via the link provided in the email. Upon unsubscribing, the data will be deleted from the newsletter database.
6.5 Users may object to the processing of their data. If the objection is valid, data processing will be terminated and the data restricted.
6.6 If a data breach occurs with a high risk to the User’s rights, the Data Controller will inform the User without undue delay.
7. Data Processors
7.1 The following Data Processors are used:
7.1.1 Google Inc., USA
7.1.2 Hostinger Operations, UAB, Lithuania
8. Data Transfers
8.1 Data transfers to the above Data Processors can occur without additional consent. Data is only shared with third parties or authorities based on legal obligations or the User’s prior explicit consent.
9. Changes to the Privacy Policy
9.1 The Data Controller reserves the right to unilaterally modify this Privacy Policy at any time.
9.2 Any changes will be posted on the Website. Last updated: May 16, 2023.
10. Legal Remedies
10.1 Questions or complaints can be directed to: info@ipsilon.group
10.2 Users may also contact the National Authority for Data Protection and Freedom of Information (NAIH) directly:
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.
Phone: +36-1-391-1400
Email: ugyfelszolgalat@naih.hu
Website: www.naih.hu
Last updated: 16.05.2023., Budapest