Privacy Policy
As the Data Controller, ImpactA Solutions Zrt. (1016 Budapest, Mészáros utca 58/A., Company Register No.: 01 10 142743, Tax No.: 32510876-2-41) considers it important to respect and enforce the data processing rights of the natural persons concerned (hereinafter referred to as “data subjects”) visiting the website www.impactasolutions.hu and shall act in accordance with the substantive and procedural rules of the law in force and its internal regulations.
The purpose of this Privacy Policy is to inform data subjects about the processing activities carried out by the Data Controller through the website www.impactadvisory.hu, and therefore the scope of this Privacy Policy is limited to the processing carried out through this website and the scope of the data processed during such processing.
The website aims to provide useful information about the activities and services of the Controller.
1. Who are the stakeholders?
A data subject is a natural person who is identified or can be identified, directly or indirectly, based on data provided or received in any way through the website www.impactadvisory.hu.
The personal scope of the information notice therefore covers natural persons who enquire or request or send an offer via the website www.impactadvisory.hu, as well as representatives and contacts of non-natural persons, and the Data Controller’s own employees entrusted with the operation of the website www.impactadvisory.hu.
2. Data Controller
The data controller for the processing of data related to the website is the operator of the website www.impactasolutions.hu
Company name: ImpactA Solutions Zrt.
Registered office: 1016 Budapest, Mészáros utca 58/A
E-mail: office@impactasolutions.hu
4. Processing activity: one-off information or request for proposal
Purpose of the processing: to provide the data subject with appropriate information and contact. The Data Controller allows data subjects to request information or an offer for the provision of services from the Data Controller via the website or the central email address by providing the following details.
Legal basis: The request for information is based on voluntary consent.
The data subjects are: any natural person who contacts the Data Controller and requests information or an offer from the Data Controller by providing personal data
Scope and purpose of the data processed:
| Full name | identification |
| contact | |
| company | contact |
| phone | identification |
Who processes the data: The Data Controller’s staff may process the data only to the extent strictly necessary for the performance of their tasks. The processing of personal data is essentially carried out by the Data Controller and is not transferred to any other third party.
The activities and processes involved in the processing are as follows:
a) The data provided to the Controller via the website are sent to the Controller by e-mail. E-mails requesting information or an offer may also be sent to the central e-mail address provided on the website. Requests for information are sent to the Data Controller who, in the event of a technical question, shares the data with the relevant staff to provide an expert response to the request for information or a quotation.
b) The Data Controller will answer the data subject’s question and send it to the data subject, preferably by the same means as the request was received, unless the data subject provides otherwise.
c) The data subject, in accordance with the purpose of the processing, voluntarily consents to being contacted by the controllers, if he or she has provided his or her contact details in the request for information, to clarify the question or receive the answer.
Duration of processing: until the end of the one-off request for information or offer. Where the Data Controller enters a business relationship with the person requesting the offer, the processing of personal data will be governed by the privacy notice attached to the contract. In cases where the request for information and/or the provision of information has legal effects or similarly significantly affects the data subject, data controllers, the Data Controller and the joint controllers shall process the data until the expiry of the applicable limitation period.
- Remedies
o If you have any complaints regarding your personal data, please contact the Data Controller using one of the contact details set out in the present notice to resolve your complaint amicably as soon as possible.
- Data Protection Authority procedure
You may also contact the Data Protection Authority using the contact details below to request an investigation into a claim or allegation that there has been a breach of rights relating to the processing of personal data or that there is an imminent threat of such a breach:
Name: National Authority for Data Protection and Freedom of Information
9, Falk Miksa Street, 1055 Budapest, Hungary
Address for correspondence: 1530 Budapest, PO Box 5.
E-mail: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu
- Right to apply to the courts
In the event of a violation of your rights, you may, irrespective of the lodging of a complaint, also bring an action against the Data Controller before the competent court of your place of residence or domicile.
9. How can you enforce your rights?
If you would like to contact us to exercise any of the above rights, please contact us using the contact details provided above. If you notify us that you wish to exercise any of your rights, we will inform you of the action we have taken on your request without undue delay, but no later than one month after receipt of the request. If necessary, considering the complexity of the request and the number of requests, we may extend the time limit by a further two months. In any event, we will inform you of the extension, stating the reasons for the delay, within one month of receipt of the request. If you have submitted your request electronically, we will also reply electronically unless you explicitly indicate that you wish to receive a reply by other means.
If we consider that we do not need to act on your request, we will inform you without delay, but at the latest within one month of receipt of your request, of the reasons for not doing so and of the possibility to lodge a complaint with the NAIH and to exercise your right to judicial remedy.
10. Data security
The Data Controller will ensure the security of the data. To this end, all technical and organizational measures necessary to enforce the applicable laws, data protection and confidentiality rules have been taken.
The Data Controller has taken all reasonable measures to protect the data against unauthorized access (software, hardware protection), alteration, transmission, disclosure, deletion, or destruction (regular backups, virus protection), accidental destruction or damage and against inaccessibility due to changes in the technology used.
11. Other information
The Data Controller does not perform profiling or make decisions based on automated processing. The Controller does not transfer the data subject’s data to other controllers outside the EU.
12. Amendment
The Data Controller reserves the right to amend this notice. It will publish the amended, consolidated version of this notice on its website www.impactasolutions.hu.
ImpactA Solutions Zrt.