INFORMATION ON DATA PROCESSING
Leisure Master Kft. (9551 Mesteri, Kossuth Lajos u. 49., hereinafter referred to as: Controller) publishes the data protection and data processing principles it shall observe as follows.
By way of this information (hereinafter referred to as: Information) and the publishing thereof the Controller shall meet its obligations provided for under the Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation or GDPR) and the act No. CXII of 2011 on the right of information self-determination and the freedom of information.
The version of the Information as amended is available in electronic format on the Controller’s website (http://www.cellcup.hu) in the menu „Data processing”.
The Controller’s data:
company name: Leisure Master Ltd.
registered seat: Hungary, 9551 Mesteri, 49. Kossuth Lajos street
company register number: 18 09 113538
tax code: 23716407-2-18
representative: Dániel Süle
phone: +36 20 501 7130
Data processing in connection with the operation of the website http://www.cellcup.hu
The Controller’s website (https://www.cellcup.hu/) pertaining to its Cell-Cup International Handball Festival is freely accessible by everyone without providing any personal data (registration). In the course of your visit through the internet, our system registers certain data, which we use for the purpose of statistics, as well as the optimization of our internet appearance and the increase of the system’s security only. For the purpose of the technical operation of the website https://www.cellcup.hu, the prevention and investigation of data security breach, personal data breach, for security purposes, furthermore the investigation of potential defects, on the basis of its legitimate interest, the Controller – by way of cooperation with its website operation and storage provider as data processors – registers the following data and stores these for a period of 7 days, and archives these afterwards in a password protected manner and erases these after 6 months: IP-address (a number attributed by the network to the computer when using the internet), date of visit of the website and the address of the page/sub-page. The legal basis of data processing is the legitimate interest of the Controller (Article 6(1) point f GDPR) to be able to ensure the IT security of the website, its resistance against unlawful conduct, activities (e.g. unauthorized access), to prevent and investigate data security breaches, personal data breaches, furthermore to investigate potential defects. The Controller has performed the interest comparison test and examined the relation between its legitimate interest described above and the right of the data subject to privacy. In the Controller’s view, its legitimate interest in processing the above personal data may be established, the data processing is inevitably necessary in order to reach the goals detailed above and is also proportionate thereto, which legitimate interest is not overruled by the data subject’s right to privacy.
Guarantees: Controller shall – by way of its processor – process personal data only in the interest of reaching the above goals, to the extent necessary. Only authorized persons have access to the data, respectively the Controller’s processor shall take the necessary data security and organizational measures in the interest of keeping the confidentiality of the data.
Data processing related to cookies
What are cookies? The web server places small text files on the computer, cellular phone, tablet, potentially other device used for visiting the website when making such visit. Cookies are stored in a separate folder on the visitor’s computer, cellular phone, tablet, potentially other device. If the browser returns a cookie saved earlier, the provider handling such cookie will have the possibility to connect the current visit of the user with previous ones, yet with regard to his/her own content only.
The tasks of cookies
• collecting information on visitors and their devices;
• remembering personal settings of the users, e.g. chosen language
• facilitating the use of the website;
• providing quality user experience.
Types of cookies:
1. permanent or persistent cookies: remain on the device until deleted manually or automatically.
2. session cookies: remain on the device while the browser window is open, by closing the browser window these cookies will be deleted automatically.
While browsing, the website https://www.cellcup.hu uses the following cookies:
Strictly necessary, session cookies
The purpose of these cookies is to enable that visitors may browse the website https://www.cellcup.hu/ completely and flawlessly, use its functions and the services provided there. The validity of cookies of this type expires by the end of the session (browsing), this type of cookies is deleted automatically by closing the browser from the computer, respectively other device used for browsing.
Our website uses the following strictly necessary cookie:
Purpose: storing the status of the user while browsing the website
Third party cookies (statistics and marketing)
The website https://www.cellcup.hu/ uses also the cookies of Google Analytics, Google Maps and Facebook as third parties.
We do not provide Facebook Inc. placing the Facebook cookie on our website with personal data. We have no access to the cookie placed by Facebook Inc. and the personal data potentially stored therein. Please kindly peruse the data processing policy of Facebook concerning the Facebook cookie. The applicable part of the policy is available under the following link: https://www.facebook.com/policies/cookies/ .
By way of using the Google Analytics service of statistical purpose, Google collects information to the extent how visitors use the websites. It uses data for the purpose of development of the website and the enhancement of user’s experience. These cookies will also remain until expiry on the visitor’s computer or other device used for browsing, in the browser thereof, respectively until these are deleted by the visitor. Personal data will not be transferred to third parties.
Our website uses the following third party cookies:
_ga, _gat, _gid, collect
Purpose: Google Analytics – generating individual identifiers, collection of statistical data how visitors use the websites.
Purpose: Google Maps – identification of the user, targeted advertisements based on Google Maps.
Purpose: Facebook marketing cookies, for third party advertisements relevant for the visitor.
Blocking of cookies
You may delete cookies placed on your device by https://www.cellcup.hu/ or a third party with the help of your browser, anytime. You’ll find detailed information regarding the deletion and management of cookies in the Help menu of the given browser or under the following link.
Mozilla Firefox: https://support.mozilla.org/hu/kb/S%C3%BCtik%20kezel%C3%A9se
Google Chrome: https://support.google.com/chrome/answer/95582?hl=hu&ref_topic=3421433
Internet Explorer: https://support.microsoft.com/hu-hu/help/17442Opera: http://help.opera.com/Windows/9.63/hu/cookies.html
Also with the help of your browser you may block cookies or may request notification whenever your browser receives a new cookie. Blocking of cookies may technically restrict the use of our website.
The website is operated and maintained by Redmarketing Kft.
address: 9700 Szombathely, Göncöl u. 17/B.
tax number: 23942497-2-18
representative: Kálmán Gyula
e-mail address: +36703862552
Save for data processing on the basis of the data subject’s consent, the Controller shall only process or transfer personal data in the event required by the law. The Controller shall transfer personal data it was made available to third parties – except for contracted data controllers/processors – only upon the prior and express written consent by the data subject.
The Controller shall ensure the proper processing of personal data by applying adequate technical means and organizational measures. In the course of processing and the protection of personal data the Controller shall act with heightened care. The Controller undertakes to provide for the security of data, it shall furthermore take the technical and organizational measures and develop rules of conduct, that ensure the protection of registered, stored and processed data, and which prevent the destruction, unauthorized use and unauthorized alteration thereof. Personal data may be accessed by designated persons along with the highest level access controls. For this purpose, the Controller shall develop and select the IT solutions as to ensure exclusive access by persons having access to the data and that the authenticity and integrity of data is preserved. Within the scope of this, among others, it applies password protected access systems, user identification, certificates, activity logbooks, firewall settings, and conducts regular security saves. The Controller provides for the protection of servers deemed for data storage by way of proper measures.
Communication is performed via encrypted channel between the browser of the visitor visiting the website and the web servers.
The Controller shall process correct and if necessary up-to-date data only and for a period necessary for realization of the purpose of data processing. In the event the purpose of data processing no longer exists, Controller shall erase personal data of the data subjects without delay, yet within 15 days at the latest.
Information on the rights of the data subjects in connection with data processing
Data subjects are entitled in particular to the following rights concerning the data processing performed by the Controller.
Right of access to processed data: during the entire data processing procedure the data subjects may at any time request information on the processing of their personal data. Within this, they may request information as to the scope of the personal data processed by the Controller and may request the rectification, alteration, updating of their personal data. The exercising of the right of access to personal data processed may only be denied in a very limited scope according to the legal norm, in a justified event.
Right to object: within a limited scope and on an exceptional basis, the data processing by the Controller may be based on legitimate interest. The data subject have the right to object against such , respectively if in the view of the data subject, the data processing by the Controller is not in conformity with the legal provisions. Data subjects may proceed in a similar manner also if unwished data processing is maintained by the Controller with regard to a legal provision or in the interest of enforcement of claims. Objections shall be investigated by the Controller within 15 days (this deadline may be extended on one occasion along with respecting the interests of the data subject). The Controller shall inform the petitioner on the result of its investigation in writing. In the event the Controller shall fail to comply with the deadline or to allow the request, or otherwise in the view of the data subject the processing of personal data was not in compliance with GDPR and therefore the rights of the data subject under the GDPR were violated, the data subject may seek legal remedy before the Metropolitan Court of Justice or the court of justice according to his/her place of domicile or residence. The procedure may be launched also before the courts of the member state where the data subject shall have his/her habitual residence (if this shall be other than Hungary).
Right of withdrawal of consent: Data subjects may withdraw their consent granted to the Controller at any time. The Controller shall terminate the processing of the data of the data subject immediately and if so requested by the data subject, it shall erase the data subject’s data within 15 days.
Right to erasure: Controller shall perform the processing of personal data of data subjects primarily on the basis of their consent. In a more limited scope, the data processing by the Controller is based on legitimate interest. Beyond the right of withdrawal, data subjects shall also have the right to request the erasure of their personal data. Controller shall review such requests without delay, yet no later than within 15 days (this deadline may be extended in exceptional cases, for the purpose of performing a procedure best serving the interest of the data subject on one occasion), and in case the necessity for a mandatory data processing based on or provided for by the law is non-existent, it shall erase the data of the data subject.
Right to data portability: The data subjects are entitled to transfer data processed by the Controller to another data controller. Upon request, the Controller shall transfer the data of the data subject to a data controller of his/her choice or shall provide the data subject with a copy of the data processed in a commonly used, machine-readable format.
In the event of violation of rights related to the processing of personal data or if an imminent risk of violation of rights exists, the data subject or any third party may initiate an investigation by way of a petition at the National Data Protection and Freedom of Information Authority (NAIH) (1024 Budapest, Szilágyi Erzsébet fasor 22/C., e-mail: email@example.com, +36-1-391-1400, president: dr. Attila Péterfalvi, www.naih.hu).
The Controller accepts questions, comments, proposals related to the data it shall process via e-mail (firstname.lastname@example.org) as well as regular mail to the address 9700 Szombathely, Kálvária utca 34.
Our information is based on the following legal norms:
• Act No. CXII of 2011 on the right of information self-determination and the freedom of information;
• Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation);
• Act No. XLVIII of 2008 on economic advertising activities;
• Act No. CVIII of 2001 on certain matters of e-commerce services as well as services in connection with IT-society