Terms of purchase

GENERAL TERMS AND CONDITIONS OF CONTRACT

 

These General Terms and Conditions (hereinafter referred to as: GTC) contain the rights and obligations of Phobex Trading and Service Limited Liability Company (hereinafter referred to as: Service Provider) and the Customer (hereinafter referred to as: Customer) using the electronic commerce services provided by the Service Provider via the website www.szerszamplaza.hu. (Service Provider and Customer hereinafter referred to as: Parties). The GTC applies to all legal transactions and services that take place via the website www.szerszamplaza.hu, regardless of whether they are performed from Hungary or abroad, by the Service Provider or its collaborators.


1. General information, conclusion of the contract between the Parties

1.1. The scope of these GTCs extends to all electronic commerce services provided in the territory of Hungary, which are carried out through the electronic store (hereinafter referred to as the Webshop) located on the website www.szerszamplaza.hu (hereinafter referred to as the Website). Furthermore, the scope of these GTCs extends to all commercial transactions in the territory of Hungary, which are concluded between the Parties specified in this contract. Shopping in the Szerszámpláza Webshop is regulated by Act CVIII of 2001 on certain issues of electronic commerce services and services related to the information society (“ Ektv ”).

1.2. Shopping in the Szerszámpláza Webshop is possible by placing an order electronically, in the manner specified in these GTCs.

1.3. The services of the Szerszámpláza Webshop can be used with or without registration, to which anyone is entitled in accordance with the GTCs.

1.4. The Service Provider accepts the Customer's order (offer) by a separate acceptance e-mail, in which the Customer is informed, among other things, about the conclusion of the contract and the expected delivery time. The contract concluded between the Parties in Hungarian by purchasing the goods is considered a written contract, the Service Provider files it and keeps it for 5 years after its conclusion.

1.5. Customer service: Phobex Kft.
Customer service office location: 3532 Miskolc, Andrássy utca 36. Customer service opening hours: Monday 08:00 - 17:00; Saturday: 08:00 - 12:30 Telephone: +36 20 256 8442 Internet address: www.szerszamplaza.hu
E-mail: vevoszolgalat@szerszamplaza.hu

Court of registration: Miskolc Court of First Instance

Company registration number: 05 09 007381

Tax number: 11766869205

Hosting provider: Unas Online Kft.

1. 
   
   Registration
   
   2.1. Registration can be done by filling out the data form found there under the Registration menu item on the Home Page. By registering on the Website, the Customer declares that he/she has read and accepts the terms of these GTC and the Privacy Policy published on the Website, and consents to the data processing contained in the Privacy Policy.
   
   2.2. The Service Provider is not liable for any delivery delay or other problems or errors attributable to data provided incorrectly and/or inaccurately by the Customer. The Service Provider is not liable for any damages resulting from the Customer forgetting their password or if it becomes accessible to unauthorized persons for any reason not attributable to the Service Provider. The Service Provider treats each registration as an independent legal entity. It is possible to change previously recorded data in the My Data menu item after logging in, available after clicking on Company Name, which may also affect the data of active orders. The Service Provider shall not be liable for any damage or error resulting from the change of registered data by the customer.
   
   
   3. Order
   
   3.1. The essential properties and characteristics of the goods to be purchased can be found on the information page of the specific item. Instructions for the use of certain goods and the detailed actual properties of the goods are included in the instructions for use attached to the product. It is considered contractual performance by the Service Provider if the product has more favorable or advantageous properties than the information provided on the website or in the instructions for use. If you have any questions about the goods before purchasing, our customer service is ready to assist you. The instructions for use of the products we distribute – where required by law – are attached to the goods. If you accidentally do not receive the mandatory instructions for use with the goods, please notify our customer service immediately – before using the goods – and we will replace them. If you need more information about the quality, basic properties, use, usability of any product in the Web Store than what is provided on the website, please contact our customer service, whose details and contact information can be found in section 1.5.
   
   3.2. The purchase price is always the amount indicated next to the selected product, which includes VAT, i.e. the gross price. The purchase price of the products does not include the cost of delivery.
   
   3.3. The Service Provider reserves the right to change the prices of products that can be ordered from the Website, provided that the modification enters into force simultaneously with its appearance on the Website. The modification does not adversely affect the purchase price of products that have already been ordered.
   
   3.4. If, despite all the care taken by the Service Provider, a price of “0” HUF or “1” HUF is displayed on the webshop, the Service Provider is not obliged to deliver the product at the incorrect price, but may offer delivery at the correct price, in which case the Customer may withdraw from their intention to purchase.
   
   3.5. The Service Provider accepts orders via the Service Provider’s website only from registered Customers and only if the Customer completely fills in all fields required for the order. (If the Customer fills in any field incompletely, the Service Provider will receive an error message.) The Service Provider is not liable for any delivery delays or other problems or errors attributable to the Customer’s incorrect and/or inaccurate order data.
   
   3.6. Orders can be placed in the Phobex Webshop by logging in after registration and then using the Cart. The Customer can add the selected products to the Cart using the Add to Cart link on the product details page that appears after clicking on each product, or on the product list page that lists the products. The contents of the Cart can be modified by clicking on the Cart link, where the desired quantity of each product can be specified, and the contents of the Cart can be modified or deleted. If the Customer has finalized the contents of the Cart, on the summary page that appears after clicking on the Checkout link, he can check the order details before placing the order, select the billing and shipping address, payment and delivery method, and add a comment to his order. After clicking the Return to shopping button from the summary page, the Customer can return to the Product Groups page. The order is placed and the offer is sent after clicking the Send Order button on the Checkout summary page.
   
   3.7. After receiving the Customer's purchase offer (order), the Service Provider is obliged to confirm the purchase to the Customer electronically (by e-mail), which, however, does not qualify as an e-mail accepting the Customer's offer. If this confirmation is not received by the Customer within 48 hours of sending the offer, the Service Provider's offer obligation and any other obligation of the Customer shall automatically terminate without any further conditions.
   
   3.8. The Customer's offer obligation - if the confirmation is received within 48 hours of receiving the offer - shall be extended by 48 hours from the receipt of the confirmation, which period does not include public holidays. According to these GTC, public holidays are the public holidays specified in Act XXII of 1992 on the Labor Code, as well as Saturdays and Sundays. The acceptance of the offer and the conclusion of the contract are governed by the provisions of point 1.4.
   
   
   4. Delivery and payment terms, payment methods
   
   4.1. The Service Provider delivers the ordered goods and requested to be delivered to the home free of charge using its own means of transport or by using a transport company, if the net value of the given order reaches the amount that ensures free delivery published on the Website at any time. In the case of orders marked with delivery that do not reach the amount that ensures free delivery, the freight charge is borne by the Customer in such a way that the freight charge is indicated on the invoice. If several orders are received from a Customer on the same day, these are taken into account separately in terms of the home delivery fee and only orders exceeding the value that ensures free delivery are delivered free of charge. If the Customer indicates this when placing the second order and based on the Service Provider's feedback, there is still a possibility, the Service Provider may combine the orders, but it is not possible to subsequently combine packages that have already been sent. The Service Provider reserves the right to change the delivery fee, provided that the modification enters into force simultaneously with its appearance on the Website. The modification does not affect the purchase price of products already ordered. The weight/value ratio of certain of our products (e.g. handles, hardware, grinding technology) does not allow for economical delivery by courier, therefore, if the Customer predominantly orders such products, the Service Provider reserves the right to calculate individual delivery costs, which of course is agreed with the Customer in advance!
   
   4.2. After the order is complete, the Service Provider provides the Customer with the opportunity to choose the delivery time, which does not indicate a specific time, but only serves to select an approximate delivery interval. The Service Provider is not able to undertake delivery at a specific time. The actual delivery deadline is always stated in the order confirmation.
   
   4.3. The ordered product - upon prior notification by the Customer - can also be collected in person at the Service Provider's premises: 3532 Miskolc, Andrássy utca 36.
   
   4.4. The Service Provider performs the services ordered on the Website at the location indicated in the order confirmation sent to the Customer by e-mail.

Payment methods

In our webshop you can choose from the following payment methods:

Bank card

Cash on delivery


5. Right, method and consequences of withdrawal

5.1. A person who qualifies as a consumer may withdraw from the contract within 14 days without giving any reason. The method of withdrawal is provided for in Government Decree 45/2014. (II.26.) on distance contracts. The consumer may exercise his right of withdrawal using the declaration template in Annex 2 to the Government Decree or on the basis of the relevant clear declaration template. The Customer may exercise his right of withdrawal from the day on which he received the goods. The right of withdrawal may also be exercised in the event of personal receipt. The Customer may communicate his declaration of withdrawal to the Service Provider at the telephone number, postal address or e-mail address indicated in the Service Provider's data.

In the event of exercising the right of withdrawal, the Customer must arrange for the return of the product at his own expense. The Customer may not return the product affected by the withdrawal to the Service Provider by cash on delivery, and the Service Provider does not perform cash on delivery. In the event of withdrawal, Phobex Kft. may demand compensation from the consumer for damages resulting from improper use of the goods. Apart from these, the Customer shall not be charged any other costs in connection with the withdrawal.

At the Customer's request, the Service Provider shall arrange for the return delivery, and the Service Provider's customer service shall accept any requests relating to this.

Collection point: Vasas Szerszám Központ (3532 Miskolc, Andrássy utca 36.) The Service Provider shall promptly and in full refund the amount paid by the Customer to the Customer in accordance with the provisions of the applicable laws, but no later than 14 days after the withdrawal.

The customer may exercise his right of withdrawal even before receiving his order.

5.2. The customer may not exercise his right of withdrawal:

• in the case of the sale of a product that is tied to the customer, or that was produced on the basis of the customer's instructions or at his express request, or that cannot be returned by its nature • in other cases specified by law.

5.3. The provisions of this section apply exclusively to our customers (consumers) who conclude a contract for purposes outside the scope of their economic or professional activity.


6. Guarantee, warranty

1. Warranty

In what cases can you exercise your right to a warranty?

In the event of defective performance of your Tool Plaza, you may assert a warranty claim against the business in accordance with the provisions of the Civil Code.

What rights do you have based on your warranty claim?

You may - at your choice - make the following warranty claims:

You may request repair or replacement, unless the fulfillment of the claim you have chosen from these is impossible or would entail disproportionate additional costs for the business compared to the fulfillment of your other claim. If you have not requested or could not request repair or replacement, you may request a proportionate reduction in the consideration, or you may repair the defect yourself at the expense of the business or have it repaired by someone else, or - as a last resort - you may withdraw from the contract. In the case of a contract between a consumer and a business - for the sale and purchase of goods classified as movable property, the provision of digital content or the provision of digital services - you may not repair the defect yourself at the expense of the business or have it repaired by someone else in the context of exercising your warranty rights. You may also switch from your chosen warranty right to another, but you will bear the cost of the switch, unless it was justified or the business gave reason for it.

Within what deadline can you assert your warranty claim?

You are obliged to report the defect immediately after its discovery, but no later than within two months of its discovery. However, I would like to draw your attention to the fact that you can no longer assert your warranty rights beyond the two-year limitation period from the performance of the contract.

Against whom can you assert your warranty claim?

You can assert your warranty claim against the company.

What other conditions are there for enforcing your warranty rights?

Within one year from the date of delivery, there is no other condition for asserting your warranty claim other than notification of the defect, if you prove that the product or service was provided by Phobex Ltd. However, after one year from the date of delivery, you are obliged to prove that the defect you have identified already existed at the time of delivery.

1. Product warranty

In what cases can you exercise your product warranty rights?

In the event of a defect in a movable item (product), you may - at your choice - assert your right specified in point 1 or a product warranty claim.

What rights do you have based on your product warranty claim?

As a product warranty claim, you can only request the repair or replacement of the defective product.

In what cases is a product considered defective?

A product is defective if it does not meet the quality requirements in force at the time of its release or if it does not have the properties specified in the description provided by the manufacturer.

Within what deadline can you assert your product warranty claim?

You can make a product warranty claim within two years from the date the product was placed on the market by the manufacturer. After this period, you will lose this right.

Against whom and under what other conditions can you assert your product warranty claim?

You can only exercise your product warranty claim against the manufacturer or distributor of the movable property. In the event of a product warranty claim, you must prove the defect in the product.

In what cases is the manufacturer (distributor) exempt from its product warranty obligation?

The manufacturer (distributor) is only exempt from its product warranty obligation if it can prove that:

- the product was not manufactured or placed on the market as part of its business activities, or

- the defect was not detectable at the time of placing on the market, according to the state of science and technology, or

- the product defect results from the application of a law or mandatory official regulation.

The manufacturer (distributor) only needs to prove one reason to be exempted.

Please note that you cannot assert a warranty claim and a product warranty claim simultaneously for the same defect. However, if your product warranty claim is successful, you may assert a warranty claim against the manufacturer for the replaced product or repaired part.

[If the business is required to provide a warranty by law or contract, the following point 3 must also be included in the information:]

1. Warranty

When is a business exempt from its warranty obligation?

The company is only exempt from its warranty obligation if it proves that the cause of the defect arose after performance.

Please note that you cannot assert a warranty claim and a product warranty claim at the same time, in parallel, due to the same defect. Otherwise, you are entitled to the rights arising from the warranty regardless of the rights specified in points 1 and 2.

Voluntary warranty

The Service Provider undertakes a warranty (guarantee) for the period specified in the information on the Website, which may be longer than the period specified in the government decree. The Service Provider shall communicate the warranty period for each product at the latest by means of the data included in the warranty card (warranty card) given upon receipt of the product by the Customer.


7. Liability

The Service Provider excludes all liability for the conduct of the Website users. The Customer is fully and exclusively responsible for his or her own conduct, and in such cases the Service Provider shall fully cooperate with the relevant authorities in order to detect violations.

The pages of the service may contain links that lead to the pages of other service providers. The Service Provider shall not be liable for the data protection practices and other activities of these service providers.

The Service Provider is entitled, but not obliged, to check the content that may be made available by the Clients during the use of the Website, and the Service Provider is entitled, but not obliged, to search for signs of illegal activity in relation to the published content.

Due to the global nature of the Internet, the Client agrees to act in accordance with the provisions of the relevant national laws when using the Website. If any activity related to the use of the Website is not permitted under the law of the Client's state, the Client shall be solely responsible for the use.

If the Client notices objectionable content on the Website, he shall be obliged to immediately report it to the Service Provider. If the Service Provider finds the report to be well-founded during the good faith procedure, he shall be entitled to immediately delete the information or modify it.


8. Copyright

8.1. The Website is protected by copyright. The Service Provider is the copyright holder or authorized user of all content displayed on the Website and in the course of providing services available through the Website: any copyrighted work or other intellectual creation (including, among others, all graphics and other materials, the layout and editing of the Website's interface, the software and other solutions used, ideas, implementation).


9. Rights enforcement options

9.1. Customer service (Customer service): Address: 3532 Miskolc, Andrássy utca 36. Personal customer service opening hours: Monday: 07:30 - 16:30 Saturday: 07:30 - 12:00 Telephone number: +36 20 256 8442 Telephone customer service opening hours: on working days from 07:30 to 16:30.
Contact person: Gábor Kocsák, Managing Director
E-mail: gabor.kocsak@phobextools.com
Mandatory response time for inquiries received by fax/e-mail: 2 working days.

9.2. Other legal enforcement optionsIf a potential consumer dispute between the Service Provider and the Customer is not resolved during negotiations with the Service Provider, the following legal enforcement options are open to the Customer:a). Filing a complaint with the consumer protection authorities. If the Customer notices a violation of his consumer rights, he is entitled to file a complaint with the consumer protection authority competent for his place of residence. After assessing the complaint, the authority decides on the conduct of the consumer protection procedure.

b). Conciliation body. For the purpose of amicable settlement of consumer disputes related to the quality, safety and application of product liability rules, as well as the conclusion and performance of the contract, outside the court, the Customer may initiate proceedings with the conciliation body operating under the professional chamber competent for his/her place of residence.

c). Court proceedings. The Customer is entitled to enforce his/her claim arising from a consumer dispute before the court in civil proceedings in accordance with the provisions of Act V of 2013 on the Civil Code and Act CXXX of 2016 on the Code of Civil Procedure.


10. Other

10.1. The Szerzámpláza Webshop is an information system based on Oracle/PHP, its security level is adequate, its use does not pose a risk, however, we recommend that you take the following precautions: use virus and spyware protection software with a fresh database, install security updates for the operating system. Purchasing on the Website assumes that the Customer is aware of the technical and technological limitations of the Internet and accepts the possibility of errors associated with the technology.

10.2. The Service Provider mainly serves orders for wholesale quantities in its store and online store. In exceptional cases, it also fulfills orders for household quantities.

10.3. The data indicating the stock is for informational purposes only, we reserve the right to provide inaccurate data!

10.4. The Service Provider is entitled to unilaterally modify the terms of these GTC at any time. This does not affect contracts that have already been concluded.

10.4 Online Wallet

The coupons credited to the Online Wallet can only be used by the Customer during subsequent purchases after the completion of the given order, as a discount received subsequently. The Customer can redeem a coupon worth 500 HUF for every 10,000 HUF by logging in with his/her previous account details (e-mail address, secret code) during the next purchase.

ONLINE GROUP Service Provider Limited Liability Company has the right to limit the use of coupons and the maximum amount of coupons that can be collected at any time. ONLINE GROUP Service Provider Limited Liability Company has the right to reduce or eliminate the coupons that have already been collected at any time, about which it sends a prior notice to active users, in which it provides information regarding the coupons collected until the reduction or elimination, but not yet used.

The coupons can be used at our active partners until they expire. The current contact details of our partners can be found on https://www.onlinepenztarca.hu .

Redemption conditions:

The coupon can be used regardless of the value limit (for orders with a total amount over HUF 10,000).

The coupon cannot be exchanged for cash.

The coupon cannot be combined with any other discount or special price.

The Customer must indicate their intention to redeem the coupon when ordering, otherwise we unfortunately cannot accept the coupon. (If you order online, the system will automatically offer this option.)

In the event of a product exchange, payment with the online Wallet can only be used for the difference.

the online Wallet is only possible for users who have an active account in the online Wallet .

 

 

Miskolc, March 8, 2023.

 

DATA PROCESSING NOTICE

 

Funds

We only collect and process personal data in accordance with the law.

We only send DM (advertising or commercial) emails with prior consent. This does not apply to automatic emails sent by our system, which all registered customers receive.

We store data as securely as possible.

We do not provide personal data to third parties without personal consent.

Upon request, we will provide information about the stored data, and the deletion of stored data can be initiated at any time using our contact details provided in the Data Protection Notice.

 

Introduction

PHOBEX Korlátolt Felelfösségű Társaság, as the owner of Absoluttools (3532 Miskolc, Andrássy út 36., company registration number: 05-09-007381, tax number: 11766869-2-05) (hereinafter referred to as: Service Provider, data controller) submits itself to the following information.

REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the Regulation) requires that the Data Controller shall take appropriate measures to provide the data subject with any information relating to the processing of personal data in a concise, transparent, intelligible and easily accessible form, in clear and plain language, and that the Data Controller shall facilitate the exercise of the data subject's rights.

The obligation of prior information of the data subject is also prescribed by Act CXII of 2011 on the right to informational self-determination and freedom of information. We also comply with this legal obligation with the Data Protection Notice below.

This data management information regulates the data management of the following sites:
szerszamplaza.hu

The data protection information is available here

Amendments to the information will enter into force upon publication at the above address and, pursuant to the above, we provide the following information.

 

The data controller and their contact details:

Name: Phobex Trading and Service Ltd. ( Phobex Ltd.)

Location: 3532 Miskolc, Andrássy Street 36.

Phone: +36 20 256 8442

Company registration number: 05-09-007381

Tax number: 11766869-2-05

E-mail: webshop@szerszamplaza.hu

Web : www.szerszamplaza.hu

 

Contact details of the data protection officer:

The data controller declares that a data protection officer has not been appointed, as the cases set out in Article 37(1) of the GDPR do not apply.

 

Definitions of terms

The definitions of terms governing the application of the Data Protection Notice are contained in Article 4 of the Regulation. Accordingly, we highlight the main terms from the Regulation:

1. ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, a number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
2. ‘processing’ means any operation or set of operations which is performed on personal data or on data files, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
3. ‘restriction of processing’ means the marking of stored personal data with a view to restricting their future processing;
4. ‘profiling’ means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal characteristics relating to a natural person, in particular to analyse or predict characteristics relating to performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements;
5. ‘pseudonymisation’ means the processing of personal data in such a way that the personal data can no longer be identified without the use of additional information, provided that such additional information is stored separately and technical and organisational measures are taken to ensure that the personal data cannot be attributed to an identified or identifiable natural person;
6. "filing system" means a file of personal data, structured in any way - centralised, decentralised or according to functional or geographical aspects - which is accessible on the basis of specific criteria;
7. ‘controller’ means the natural or legal person, public authority, agency or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or the specific criteria for the designation of the controller may also be determined by Union or Member State law;
8. ‘processor’ means a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller;
9. ‘recipient’ means the natural or legal person, public authority, agency or any other body to which personal data are disclosed, whether or not a third party. Public authorities which may have access to personal data in the context of an individual investigation in accordance with Union or Member State law shall not be considered recipients; the processing of those data by such public authorities shall comply with the applicable data protection rules in accordance with the purposes of the processing;
10. ‘third party’ means a natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor or the persons who, under the direct authority of the controller or processor, are authorised to process personal data;
11. ‘consent of the data subject’ means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which the data subject, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
12. ‘data breach’ means a breach of security that results in the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;

 

Principles for the processing of personal data

Personal data:

1. processing must be carried out lawfully and fairly, and in a manner that is transparent to the data subject (“lawfulness, fairness and transparency”);
    
2. collected only for specified, explicit and legitimate purposes and not further processed in a manner incompatible with those purposes; further processing for archiving purposes in the public interest, scientific and historical research purposes or statistical purposes (‘purpose limitation’) shall not be considered incompatible with the initial purpose in accordance with Article 89(1);
    
3. they must be adequate and relevant in relation to the purposes of the processing and limited to what is necessary (“data economy”);
    
4. they must be accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes of the processing, are erased or rectified without delay (“accuracy”);
    
5. shall be stored in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for a longer period only if the personal data are processed for archiving purposes in the public interest, scientific and historical research purposes or statistical purposes in accordance with Article 89(1), subject to the implementation of appropriate technical and organisational measures to safeguard the rights and freedoms of data subjects as provided for in this Regulation (‘storage limitation’);
    
6. must be processed in such a way as to ensure adequate security of personal data, including protection against unauthorised or unlawful processing, accidental loss, destruction or damage to the data ("integrity and confidentiality"), by applying appropriate technical or organisational measures.

The data controller is responsible for compliance with the above and must be able to demonstrate this compliance ("accountability").

 

Data processing

Data processing related to the operation of a web store - In the case of individuals

1. Data collection, scope of data processed and purpose of data processing :

Personal data	Purpose of data processing
Username	Identification, enabling registration.
Password	It serves as a secure login to the user account.
Last name and first name	It is necessary for contact, purchase and issuing a proper invoice.
Email address	Contact, confirmation.
Phone number	More efficient coordination of communication, billing, or shipping issues.
Billing name and address	Issuing a proper invoice, as well as creating the contract, defining its content, modifying it, monitoring its performance, invoicing the fees arising from it, and enforcing the claims related to it.
Shipping name and address	Enabling home delivery.
Date of purchase/registration	Performing a technical operation.
IP address at the time of purchase/registration	Performing a technical operation.

 

Neither the username nor the email address need to contain any personal information.

1. Scope of data subjects: All individuals registered in the szerszamplaza.hu web store.
2. Duration of data management, deadline for data deletion: Immediately upon registration deletion. Except in the case of accounting documents, as these data must be retained for 8 years pursuant to Section 169 (2) of Act C of 2000 on Accounting.

Accounting documents (including general ledger accounts, analytical and detailed records) that directly and indirectly support accounting records must be kept in a legible form for at least 8 years, and must be retrievable by reference to the accounting records.

1. The identity of potential data controllers authorized to access the data, recipients of personal data : Personal data may be processed by the data controller's customer service, finance, sales and marketing, purchasing, webshop, service and warehouse staff, in compliance with the above principles.
2. Description of the rights of data subjects regarding data processing :

• The data subject may request from the data controller access to, rectification, erasure or restriction of processing of personal data concerning him or her, and
• object to the processing of such personal data, and
• the data subject has the right to data portability and to withdraw consent at any time.

1. The data subject can request access to personal data, their deletion, modification or restriction of processing, data portability, and objection to data processing in the following ways :

• by post to Phobex Kft. 3532 Miskolc, Andrássy utca 36.,
• by e-mail at the e-mail address webshop@szerszamplaza.hu ,
• by phone at +36 20 256 8442.

1. Legal basis for data processing :

7.1. Consent of the data subject, Article 6(1)(a) of the Regulation, Section 5(1) of the Privacy Act ,

7.2. Act CVIII of 2001 on certain issues of electronic commerce services and services related to the information society (hereinafter: Elker Act) Section 13/A (3):

The service provider may process personal data for the purpose of providing the service that is technically indispensable for the provision of the service. All other conditions being the same, the service provider must select and in all cases operate the means used in the provision of the information society service in such a way that personal data are processed only if this is absolutely necessary for the provision of the service and for the fulfilment of other purposes specified in this Act, but even then only to the extent and for the period necessary.

7.3. In the case of issuing an invoice in accordance with accounting legislation, Article 6(1)(c) of the Regulation.

1. We inform you that in the case of Private Individuals

• data processing is based on your consent .
• You are required to provide personal data so that we can fulfill your order.
• Failure to provide data will result in our being unable to process your order.

 

Data processing related to the operation of a web store - In the case of companies and legal entities

1. The fact of data collection, the scope of data processed and the purpose of data processing :

Personal data	Purpose of data processing
Username	Identification, enabling registration.
Password	It serves as a secure login to the user account.
Contact Person First and Last Name	It is necessary for contact, purchase and issuing a proper invoice.
Contact Email Address	Contact, confirmation.
Contact Phone Number	More efficient coordination of communication, billing, or shipping issues.
Billing name and address	Issuing a proper invoice, as well as creating the contract, defining its content, modifying it, monitoring its performance, invoicing the fees arising from it, and enforcing the claims related to it.
Shipping name and address	Enabling home delivery.
Date of purchase/registration	Performing a technical operation.
IP address at the time of purchase/registration	Performing a technical operation.

 

Neither the username nor the email address is required to contain personal information.

1. Scope of data subjects: All legal entities registered in the szerszamplaza.hu web store.
2. Duration of data management, deadline for data deletion: Immediately upon registration deletion. Except in the case of accounting documents, as these data must be retained for 8 years pursuant to Section 169 (2) of Act C of 2000 on Accounting.

Accounting documents (including general ledger accounts, analytical and detailed records) that directly and indirectly support accounting records must be kept in a legible form for at least 8 years, and must be retrievable by reference to the accounting records.

1. The identity of potential data controllers authorized to access the data, recipients of personal data : Personal data may be processed by the data controller's customer service, finance, sales, purchasing, webshop, service and warehouse staff, in compliance with the above principles.
2. Description of the rights of data subjects regarding data processing :

• The contact person of the company or legal entity concerned may request from the data controller access to, correction, deletion or restriction of processing of personal data concerning him or her, and
• object to the processing of such personal data, and
• the data subject has the right to data portability and to withdraw it at any time.

1. The data subject can request access to personal data, their deletion, modification or restriction of processing, data portability, and objection to data processing in the following ways :

• by post to Phobex Kft. 3532 Miskolc, Andrássy utca 36.,
• by e-mail at the e-mail address webshop@szerszamplaza.hu ,
• by phone at +36 20 256 8442.

1. Legal basis for data processing :

7.1. Legitimate interest, Article 6(1)(f) of the Regulation, Section 6(1) of the Privacy Act ,

7.2. Act CVIII of 2001 on certain issues of electronic commerce services and services related to the information society (hereinafter: Elker Act) Section 13/A (3):

The service provider may process personal data for the purpose of providing the service that is technically indispensable for the provision of the service. All other conditions being the same, the service provider must select and in all cases operate the means used in the provision of the information society service in such a way that personal data are processed only if this is absolutely necessary for the provision of the service and for the fulfilment of other purposes specified in this Act, but even then only to the extent and for the period necessary.

7.3. In the case of issuing an invoice in accordance with accounting legislation, Article 6(1)(c) of the Regulation.

1. We inform you that in the case of companies and legal entities

• the data processing is lawful based on interest .
• storing contact details is legitimate interest-based This is considered data collection , so we do not need to ask individual contact persons for consent.
• is obliged to provide its contact person's personal data so that we can fulfill its order.
• Failure to provide data will result in our being unable to process your order.

 

The range of data processors used

Data processor: the natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller. (Article 4(8) of the Regulation)

The use of a data processor does not require the prior consent of the data subject, but it is necessary to inform them. Accordingly, we provide the following information.

The person(s) of the potential data controllers authorized to view the data.
Personal data may be processed by the following, in compliance with the above principles.

 

Business system, IT and hosting provider

1. Activity performed by the data processor:

Phobex Kft. uses a data processor to maintain and manage its website, web store and business system, who provides IT services (hosting services) and, within this framework - for the duration of our contract with it - processes the personal data provided on the website and web store, the operation performed by it is the storage of personal data on the servers.

1. Name and contact details of the data processor:

Company name: Vector Kft. ( Vector Business Information Development, Service Provider and Trading Kft.)
Address: 6000 Kecskemét, Sörház utca 7.Web: www.vector.hu
E-mail: iroda@vector.hu
Phone: +36-76-485-079

1. The fact of data processing, the scope of data processed:
   - All personal data provided by the data subject.
2. Scope of data subjects: All data subjects
   who use the services of the website and web store , or who have registered/placed an order on the website and web store. As well as all data subjects included in the administrative database of Phobex Kft.
3. Purpose of data processing:
   Proper operation of the website and web store, as well as the business management system.
4. Duration of data management, deadline for data deletion:
   Until the termination of the agreement between the Management System, IT and Hosting Service Provider, or until the data subject submits a deletion request to the Management System, IT and Hosting Service Provider.
5. Legal basis for data processing: The User's consent, Section 5 (1), Article 6 (1) a) of the Information Act, and Section 13/A (3) of Act CVIII of 2001 on certain issues of electronic commerce services and services related to the information society.

 

Shipping, Parcel delivery

1. Activity performed by the data processor:
   Delivery of products, parcel delivery, transportation
2. Name and contact details of the data processor:

Company name: Phobex Trading and Service Ltd.

3532 Miskolc, Andrássy Street 36.

1. The fact of data processing, the scope of data processed:
   - Shipping name - Shipping address - Telephone number - E-mail address
2. Scope of data subjects:
   All data subjects requesting home delivery.
3. Purpose of data processing:
   Delivery of the ordered product to your home.
4. Duration of data management, deadline for data deletion:
   Until home delivery is completed.
5. Legal basis for data processing: User's consent, Article 6(1)(a), Section 5(1) of the Information Act .

 

Accounting service provider

To fulfill our tax and accounting obligations, our company uses an external service provider under an accounting service provider contract, who also processes the personal data of natural persons who have a contractual or payer relationship with our company, for the purpose of fulfilling our company's tax and accounting obligations.

1. Activity performed by a data processor:
   Accounting tasks.
2. Name and contact details of the data processor:

Company name: Meritum- Novum Ltd.

3529 Miskolc, Szilágyi Dezső Street 14.

1. The fact of data processing, the scope of data processed:
   - Name - Billing name - Billing address
2. Scope of data subjects: All data subjects
   who use the services of the website and web store , or who have registered/placed an order on the website and web store, as well as all data subjects included in the administrative database of Phobex Szerszámkereskedelmi Kft.
3. Purpose of data processing:
   Accounting tasks.
4. Duration of data management, deadline for deletion of data:
   8 years, pursuant to Section 169 (2) of Act C of 2000 on Accounting.
5. Legal basis for data processing: The User's consent, Section 5 (1), Article 6 (1) a) of the Information Act, and Section 13/A (3) of Act CVIII of 2001 on certain issues of electronic commerce services and services related to the information society.

 

Cookie management​​

Cookies typical for web stores are the so-called "password-protected session cookies ", "shopping cart cookies " and "security cookies ", the use of which does not require prior consent from the data subjects.

1. The fact of data processing, the scope of data processed: Unique identification number, dates, times.
2. Scope of data subjects: All data subjects who visit the website.
3. Purpose of data processing: To identify users, to register the "shopping cart" and to track visitors.
4. Duration of data processing, deadline for data deletion:

Cookie type	Legal basis for data processing	Duration of data processing	Managed data set
Session cookies​	Section 13/A. Subsection (3) of Act CVIII of 2001 on certain issues of electronic commerce services and information society services ( Elkertv .)	The period until the relevant visitor session closes	connect.sid

 

1. Potential data controllers authorized to access the data:

The data controller does not process personal data using cookies .

1. Description of the data subjects' rights regarding data processing: The data subject has the option to delete cookies in the Tools/Settings menu of the browser, usually under the Privacy settings.
2. Legal basis for data processing: Consent from the data subject is not required if the sole purpose of using cookies is to transmit information via an electronic communications network or if the service provider absolutely needs it to provide an information society service explicitly requested by the subscriber or user.

 

Using Google Adwords conversion tracking

1. The data controller uses the online advertising program called “Google AdWords ” and, within its framework, uses Google’s conversion tracking service. Google conversion tracking is an analytics service of Google Inc. (1600 Amphitheatre Parkway , Mountain View , CA 94043, USA; " Google" ).
2. When a User reaches a website through a Google ad, a cookie required for conversion tracking is placed on their computer. These cookies have a limited validity and do not contain any personal data, so the User cannot be identified by them.
3. When the User browses certain pages of the website and the cookie has not yet expired, both Google and the data controller can see that the User clicked on the advertisement.
4. Each Google AdWords customer receives a different cookie , so they cannot be tracked across AdWords customers' websites.
5. The information obtained using conversion tracking cookies is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. Customers are thus informed about the number of users who clicked on their ads and were redirected to a page with a conversion tracking tag. However, they do not receive information that could identify any individual user.
6. If you do not wish to participate in conversion tracking, you can refuse this by disabling the installation of cookies in your browser. You will then not be included in the conversion tracking statistics.
7. Further information and Google's privacy statement can be found at: https://policies.google.com/privacy

 

Using Google Analytics

1. This website uses Google Analytics , a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called “ cookies ”, text files that are saved on your computer, to help the website operator analyze how users use the website.

by the cookie about the website used by the User is usually transferred to and stored on a Google server in the USA . By activating IP anonymization on the website, Google will shorten the User's IP address beforehand within the member states of the European Union or in other states party to the Agreement on the European Economic Area.

1. The full IP address will only be transmitted to a Google server in the USA and shortened there in exceptional cases . On behalf of the operator of this website, Google will use this information to evaluate how the user uses the website, to compile reports on website activity for the website operator and to provide other services relating to website and internet usage.
2. Within the framework of Google Analytics , the IP address transmitted by the User's browser will not be merged with other data held by Google. The User can prevent the storage of cookies by setting their browser accordingly; however, please note that in this case not all functions of this website may be fully usable. You can also prevent Google from collecting and processing the data generated by cookies and relating to your use of the website (including your IP address) by downloading and installing the browser plugin available at the following link : https://tools.google.com/dlpage/gaoptout?hl=hu

 

Newsletter, DM activity

1. Pursuant to Section 6 of Act XLVIII of 2008 on the Basic Conditions and Certain Limitations of Economic Advertising Activity, the User may give prior and express consent to the Service Provider contacting him/her with advertising offers and other mailings at the contact details provided upon registration.
2. Furthermore, the Customer, taking into account the provisions of this information, may consent to the Service Provider processing his/her personal data necessary for sending advertising offers.
3. The Service Provider does not send unsolicited advertising messages, and the User may unsubscribe from receiving offers free of charge, without restriction or justification. In this case, the Service Provider will delete all personal data necessary for sending advertising messages from its records and will not contact the User with further advertising offers. The User may unsubscribe from advertisements by clicking on the link in the message.
4. The fact of data collection, the scope of data processed and the purpose of data processing :

Personal data	Purpose of data processing
Name, email address	Identification, enabling subscription to the newsletter.
Date of subscription	Performing a technical operation.
IP address at the time of registration	Performing a technical operation.

 

1. Scope of data subjects: All data subjects who subscribe to the newsletter.
2. Purpose of data processing: sending electronic messages containing advertising (e-mail, SMS, push message) to the data subject, providing information about current information, products, promotions, new functions, etc.
3. Duration of data management, deadline for data deletion: data management lasts until the consent is withdrawn, i.e. until unsubscription.
4. Data processing registration number: NAIH-97398/2016
5. Potential data controllers authorized to access the data, recipients of personal data : Personal data may be processed by the data controller's sales and marketing staff, in compliance with the above principles.
6. Description of the rights of the data subjects regarding data processing :

• The data subject may request from the data controller access to, rectification, erasure or restriction of processing of personal data concerning him or her, and
• object to the processing of such personal data, and
• the data subject has the right to data portability and to withdraw consent at any time.

1. The data subject can request access to personal data, their deletion, modification or restriction of processing, data portability, and objection to data processing in the following ways :

• by post to Phobex Kft. 3526 Miskolc, Andrássy utca 36.,
• by e-mail at the e-mail address webshop@szerszamplaza.hu ,
• by phone at +36 20 256 8442.

1. The data subject may unsubscribe from the newsletter at any time, free of charge.
2. Legal basis for data processing : consent of the data subject, Article 6(1)(a), Section 5(1) of the Information Act , and Section 6(5) of Act XLVIII of 2008 on the basic conditions and certain limitations of economic advertising activities:

The advertiser, the advertising service provider, or the publisher of the advertisement shall keep a record of the personal data of the persons who have given their consent to the advertising, within the scope specified in the consent. The data recorded in this record - concerning the recipient of the advertisement - may only be processed in accordance with the provisions of the consent declaration, until its withdrawal, and may only be transferred to a third party with the prior consent of the person concerned.

1. We inform you that

• data processing is based on your consent .
• You are required to provide personal data if you want to receive a newsletter from us.
• Failure to provide data will result in us not being able to send you a newsletter.

 

Complaints handling

1. Data collection, scope of data processed and purpose of data processing :

Personal data	Purpose of data processing
Last name and first name	Identification, contact.
Email address	Staying in touch
Phone number	Staying in touch
Billing name and address	Identification and handling of quality complaints, questions and problems arising in connection with ordered products.

 

1. Scope of data subjects: All data subjects who purchase on the webshop website and have quality complaints or complaints.
2. Duration of data processing, deadline for data deletion: The minutes, transcript and copies of the response to the objection must be kept for 5 years pursuant to Section 17/A. (7) of Act CLV of 1997 on Consumer Protection.
3. Potential data controllers authorized to access the data, recipients of personal data : Personal data may be processed by the data controller's sales and marketing staff, in compliance with the above principles.
4. Description of the rights of data subjects regarding data processing :

• The data subject may request from the data controller access to, rectification, erasure or restriction of processing of personal data concerning him or her, and
• object to the processing of such personal data, and
• the data subject has the right to data portability and to withdraw consent at any time.

1. The data subject can request access to personal data, their deletion, modification or restriction of processing, data portability, and objection to data processing in the following ways :

• by post to Phobex Kft. 3526 Miskolc, Andrássy utca 36.,
• by e-mail at the e-mail address webshop@szerszamplaza.hu ,
• by phone at +36 20 256 8442.

1. Legal basis for data processing : consent of the data subject, Article 6(1)(c), Section 5(1) of the Information Act , and Section 17/A(7) of Act CLV of 1997 on Consumer Protection.
2. We inform you that

• the provision of personal data is based on a contractual obligation .
• is a prerequisite for concluding a contract .
• You are required to provide your personal data so that we can handle your complaint.
• Failure to provide data will result in our inability to handle the complaint you have received.

 

Social media

1. The fact of data collection, the scope of data processed: the user's registered name on social media sites such as Facebook / Google+ / Twitter / Youtube , etc., and their public profile picture.
2. Scope of data subjects: All data subjects who have registered on social media sites such as Facebook / Google+ / Twitter / Youtube etc. and have "liked" the website.
3. Purpose of data collection: Sharing, "liking" and promoting certain content elements, products, promotions or the website itself on social media.
4. Duration of data management, deadline for data deletion, possible data controllers authorized to view the data and description of the data subjects' rights related to data management: The data subject can find out about the source of the data, its management, the method of transfer and its legal basis on the given social media site. Data management is carried out on social media sites, so the duration, method of data management and the possibilities for deleting and modifying data are subject to the regulations of the given social media site.
5. Legal basis for data processing: the data subject's voluntary consent to the processing of their personal data on social media sites.

 

Google Consent Mode v2

The Data Controller has integrated version 2 of Google Consent Mode into their website and manages consents and rejections through the cookie panel based on the new version. According to Google Consent Mode v2, in addition to the previous two flags (analytics_storage, ad_storage), Google uses two additional flags that serve for storing and reading cookies for statistical and advertising purposes:

• ad_user_data: Any user data can be sent to Google for advertising purposes.

• ad_personalization: User data can be used for personalized advertising purposes, such as remarketing.

These two switches determine whether storing and reading cookies for statistical and advertising purposes is allowed.

 

Customer relations and other data processing

1. If the data subject has any questions or problems while using our data controller services, he/she may contact the data controller via the methods provided on the website (telephone, e-mail, social media, etc.).
2. The Data Controller deletes received e-mails, messages, data provided by telephone, Facebook , etc., together with the name and e-mail address of the interested party, as well as other voluntarily provided personal data, no later than 3 years from the date of data disclosure.
3. We will provide information about data processing not listed in this information when the data is collected.
4. In the event of an exceptional official request or a request from other bodies based on legal authorization, the Service Provider is obliged to provide information, communicate or transfer data, or make documents available.
5. In these cases, the Service Provider will only provide the requester with personal data to the extent and insofar as it is absolutely necessary to achieve the purpose of the request, provided that the requester has indicated the precise purpose and scope of the data.

 

Rights of data subjects

1. Right of access

You have the right to receive feedback from the controller as to whether your personal data is being processed and, if such processing is taking place, you have the right to access the personal data and the information listed in the regulation.

1. Right to rectification

You have the right to request that the controller rectify inaccurate personal data concerning you without undue delay. Taking into account the purpose of the processing, you have the right to request that incomplete personal data be completed, including by means of a supplementary statement.

1. Right to erasure

You have the right to request that the data controller erase personal data concerning you without undue delay, and the data controller is obliged to erase personal data concerning you without undue delay under certain conditions.

1. The right to be forgotten

Where the controller has made the personal data public and is obliged to erase them, the controller, taking into account available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform the controllers processing the data that you have requested the erasure of links to the personal data in question or of copies or replications of those personal data.

1. Right to restriction of data processing

You have the right to request that the data controller restrict data processing if one of the following conditions is met:

• You contest the accuracy of the personal data, in which case the restriction shall apply for a period of time that allows the controller to verify the accuracy of the personal data;
• the processing is unlawful and you oppose the erasure of the data and instead request the restriction of its use;
• the data controller no longer needs the personal data for the purposes of data processing, but you require them for the establishment, exercise or defence of legal claims;
• You have objected to the processing; in this case, the restriction applies for a period of time until it is determined whether the legitimate grounds of the data controller override your legitimate grounds.

1. Right to data portability

You have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to whom the personal data have been provided (...).

1. The right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data (...), including profiling based on the aforementioned provisions.

1. Objection to direct marketing

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such purposes, including profiling, where it is related to direct marketing. If you object to the processing of your personal data for direct marketing purposes, your personal data will no longer be processed for such purposes.

1. Automated decision-making in individual cases, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

The previous paragraph shall not apply if the decision:

• Necessary for the conclusion or performance of a contract between you and the data controller;
• is permitted by Union or Member State law applicable to the controller, which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
• It is based on your express consent.

 

Deadline for action

within 1 month of receipt of the request .

If necessary, this can be extended by 2 months . The data controller will inform you about the extension of the deadline
within 1 month of receipt of the request, indicating the reasons for the delay .

If the controller does not take action on your request, it shall inform you without delay, but no later than 1 month from the date of receipt of the request , of the reasons for the failure to take action and of the possibility of lodging a complaint with a supervisory authority and of exercising your right to a judicial remedy.

 

Security of data processing

The controller and the processor shall implement appropriate technical and organizational measures to ensure a level of data security appropriate to the risk, taking into account the state of the art and the costs of implementation, the nature, scope, circumstances and purposes of the processing, and the varying likelihood and severity of the risk to the rights and freedoms of natural persons, including, where appropriate:

1. pseudonymization and encryption of personal data;
    
2. ensuring the continued confidentiality, integrity, availability and resilience of systems and services used to process personal data;
    
3. the ability to restore access to and availability of personal data in a timely manner in the event of a physical or technical incident;
    
4. a procedure for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures taken to guarantee the security of data processing.

 

Informing the data subject about the data protection incident

If the data breach is likely to result in a high risk to the rights and freedoms of natural persons, the controller shall inform the data subject of the data breach without undue delay.

The information provided to the data subject must clearly and intelligibly describe the nature of the data protection incident and provide the name and contact details of the data protection officer or other contact person who can provide further information; describe the likely consequences of the data protection incident; describe the measures taken or planned by the data controller to remedy the data protection incident, including, where applicable, measures aimed at mitigating any adverse consequences resulting from the data protection incident.

The data subject does not need to be informed if any of the following conditions are met:

• the controller has implemented appropriate technical and organisational protection measures and these measures have been applied to the data affected by the data breach, in particular measures – such as the use of encryption – which make the data unintelligible to persons not authorised to access the personal data;
• the data controller has taken further measures following the data protection incident to ensure that the high risk to the rights and freedoms of the data subject is no longer likely to materialise ;
• the provision of information would involve a disproportionate effort . In such cases, the data subjects shall be informed by means of publicly published information or a similar measure shall be taken which ensures that the data subjects are informed in a similarly effective manner.

If the data controller has not yet notified the data subject of the data breach, the supervisory authority may, after considering whether the data breach is likely to involve a high risk, order the data subject to be informed.

 

Reporting a data protection incident to the authority

The controller shall notify the personal data breach to the supervisory authority competent pursuant to Article 55 without undue delay and, where feasible, not later than 72 hours after having become aware of the personal data breach, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons. If the notification is not made within 72 hours, it shall be accompanied by reasons justifying the delay.

 

Possibility to file a complaint

A complaint against a possible violation of the data controller can be filed with the National Data Protection and Freedom of Information Authority:

Name: National Data Protection and Freedom of Information Authority
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/C. Mailing address: 1530 Budapest, P.O. Box: 5. Telephone: +36-1-391-1400 Fax: +36-1-391-1410 E-mail: ugyfelszolgalat@naih.hu

 

When preparing this information, we took into account the following legislation:

• REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation 95/46/EC (General Data Protection Regulation)
• Act CXII of 2011 – on the right to informational self-determination and freedom of information (hereinafter: Infotv .)
• Act CVIII of 2001 – on certain issues of electronic commerce services and services related to the information society (mainly Section 13/A)
• Act XLVII of 2008 – on the prohibition of unfair commercial practices against consumers;
• Act XLVIII of 2008 – on the basic conditions and certain limitations of economic advertising activities (especially Section 6)
• Act XC of 2005 on Electronic Freedom of Information
• Act C of 2003 on Electronic Communications (specifically Section 155)
• Opinion No 16/2011 on the EASA/IAB Recommendation on best practice in online behavioural advertising
• Recommendation of the National Data Protection and Freedom of Information Authority on the data protection requirements for prior information
• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation 95/46/EC

 

Phobex Ltd.
Miskolc, May 26, 2022.