- Purpose of the Regulations
1.1. The purpose of these Regulations is to record the data protection and data management principles and rules applied by Dankovits Eliza (EV) (hereinafter: Service Provider), as well as the data protection and data management policy of the Service Provider.
1.2. During the operation of the website https://nmbyeliza.com/ (hereinafter: Website), the Service Provider manages the data of those who order services on the Website (hereinafter collectively: Users).
1.3. The data of the companies is public data in the public interest, however, during the order, it may happen that the registering company (also) provides personal data, therefore the Service Provider wishes to comply with the legal regulations regarding the handling of personal data in all cases.
1.4. During the development and application of these regulations, the Service Provider complies with CXII of 2011 on the right to self-determination of information and freedom of information. Act (hereinafter: Infotv.), CVIII of 2001 on certain issues of electronic commercial services and services related to the information society. Act (Ekertv.), and European Parliament and Council (EU) 2016/679. regulation (hereinafter: GDPR) in the spirit and application, and acts in accordance with them in all respects.
1.5. In the event of a change in the services provided by the Service Provider or the General Terms and Conditions, the Service Provider will, in certain cases, provide the Users with information about the changes in electronic form, via e-mail. The Service Provider does not use such notifications for advertising purposes.
- Data controller data
Company name: Dankovits Eliza (EV)
Address: 9700 Szombathely, Váci Mihály u. 45. Company registration number: 55272573
Tax number: 56607215-1-38
Electronic contact: hello@nmbyeliza.com
- What kind of data processing takes place during the operation of the Website? 3.1. Submission of a request for quotation
Purpose of data management: contact with the User in the form of a confirmation e-mail
Scope of processed data: name/company name of individual entrepreneur, company e-mail address, other data entered by the user in the text box
Legal basis for data management: consent of the User, fulfillment of the contract Duration of data management: 1 year from the date of placing the order Data storage method: electronically
Given that the User can provide additional personal data in addition to the mandatory data when filling out the order form, his consent to data management also extends to the processing of this data. In this case, too, the Service Provider only handles the data provided by the User for the purpose of contact.
In accordance with Article 13 of the GDPR, the Service Provider expressly informs the User through these regulations that entering into a contract on the Website requires the provision of the data specified in this point.
3.2. Invoicing
Purpose of data management: issuing a receipt (invoice).
Scope of processed data: name/company name of individual entrepreneur, company e-mail address, address.
Other data provided by the user in the text box, User’s tax number/tax identification number
Legal basis for data management: mandatory data management based on legislation (Article 166 (1) of Act C of 2000 on accounting)
Duration of data management: 1 year from the date of placing the order
Method of data storage: electronically
After the order, the Service Provider issues an electronic invoice in the name of the User.
3.3. Keeping Accounts
Purpose of data management: receipt (electronic invoice) managed
Scope of data: sole proprietor’s name/company name, company e-mail address, other data provided by the user in the text box, user’s tax number/tax identification number
Legal basis for data management: mandatory data management based on legislation (section 169 (1) of Act C of 2000 on accounting)
Duration of data management: up to 8 years from the date of issuance of the electronic invoice. Method of data storage: electronically
- How does the Service Provider manage the data?
4.1. As a general rule, the Service Provider does not check the personal data provided to it. The person providing the data is solely responsible for the accuracy of the data provided. When any User provides his/her e-mail address, he/she assumes responsibility for the fact that only he/she uses the service from the given e-mail address. In view of this responsibility, any responsibility related to logins to a specified e-mail address is the sole responsibility of the User who registered the e-mail address. However, in case of doubt, the Service Provider is entitled to check the User’s relationship with the business company or individual entrepreneur it represents via the business company’s official e-mail address published as public data in the Register of Companies in accordance with the procedure set out in the General Terms and Conditions.
- Who is entitled to know the provided data?
5.1. The Service Provider and the Service Provider’s internal employees are primarily entitled to know the data, but they are not published or passed on to third parties. (An exception to this is if a court or authority decides