Facebook Instagram

Privacy Policy

1. Data Controller (Service Provider)

Name of the Service Provider: Solymoss Katalin, Sole Proprietor
Registered office and mailing address: 1033 Budapest, Harang u. 21
Supervisory authority: National Tax and Customs Administration (NAV)
Registration number: 60174550
Tax number: 70292121141
Email address: dula.katalin.solymoss@gmail.com

2. Definitions

  1. Personal data: any information relating to an identified or identifiable natural person (“data subject”).
  2. Data processing: any operation performed on personal data, such as collection, storage, use, or deletion.
  3. Restriction of processing: marking stored personal data to limit future processing.
  4. Profiling: automated processing of personal data to evaluate personal characteristics.
  5. Data controller: the entity determining purposes and means of processing.
  6. Data processor: entity processing data on behalf of the controller.
  7. Recipient: entity to whom personal data is disclosed.
  8. Third party: any entity other than the data subject, controller, or processor.
  9. Consent: freely given, informed, and unambiguous indication of the data subject’s wishes.
  10. Data processing (technical): technical operations related to data handling.
  11. Data erasure: making data permanently irrecoverable.
  12. EEA state: EU member states and other states within the European Economic Area.
  13. Data subject: identifiable natural person.
  14. User: person using the website or services.
  15. Third country: non-EEA country.
  16. Disclosure: making personal data accessible to anyone.

3. Data Protection Principles

The Service Provider ensures that all data processing complies with:

  • applicable Hungarian laws
  • and EU regulations, especially the General Data Protection Regulation (GDPR)

Information about data processing is continuously available on:
https://katidula.hu

The Service Provider reserves the right to modify this policy and will notify users via publication on the website.

Applicable legislation includes:

  • Hungarian Act CXII of 2011 (Infotv.)
  • Regulation (EU) 2016/679 (GDPR)
  • Hungarian Civil Code
  • Accounting Act
  • Anti-Money Laundering Act
  • E-commerce Act
  • Advertising Act

4. Legal Basis and Purpose of Data Processing

Data processing is based on:

  1. Consent of the data subject
  2. Performance of a contract
  3. Legal obligation
  4. Legitimate interest

Purpose of data processing:

  • Providing requested services
  • Managing registrations and orders
  • Organizing courses
  • Issuing invoices and fulfilling accounting obligations

Processed data:

  • Name
  • Email address
  • Order details
  • Billing data

Data retention:

  • As required by law or contract
  • Up to 5 years in case of legal disputes

5. Notification Service / Newsletter

Purpose:

  • Sending technical updates and reminders

Legal basis:

  • Consent (GDPR Art. 6(1)(a))

Data processed:

  • Name
  • Email
  • Optional phone number

Retention:

  • Until user unsubscribes

6. Invoicing

Purpose:

  • Issuing accounting documents

Legal basis:

  • Legal obligation (GDPR Art. 6(1)(c))

Retention period:

  • 8 years

7. Cookies

Cookies are small data files stored on the user’s device.

Types of cookies:

  1. Session cookies – required for website functionality
  2. Persistent cookies – improve user experience

Third-party cookies may include:

  • Google Analytics
  • Facebook Pixel

Purpose:

  • User identification
  • Website analytics
  • Improving user experience

Legal basis:

  • Consent

Users can manage cookies in browser settings.

8. Automatically Collected Data

Includes:

  • IP address
  • session ID

These are collected automatically for system operation and cannot be linked to personal data.

9. Customer Communication (Email)

Purpose:

  • Customer support and complaint handling

Retention:

  • Up to 3 years after case closure

10. Data Security

The Service Provider ensures:

  • data availability
  • integrity
  • confidentiality

Security measures protect against:

  • unauthorized access
  • data loss
  • cyberattacks

11. Rights of Data Subjects

Users have the right to:

  • access their data
  • request correction
  • request deletion
  • restrict processing
  • data portability
  • object to processing
  • withdraw consent

Requests can be submitted via contact details in Section 1.

12. Procedural Rules

Requests are handled within:

  • 1 month (extendable by 2 months if necessary)

13. Compensation

Individuals suffering damage due to GDPR violations are entitled to compensation.

14. Legal Remedies

Users may:

  • contact the Service Provider
  • go to court
  • file a complaint with the authority:

National Authority for Data Protection and Freedom of Information (NAIH)
Address: 1055 Budapest, Falk Miksa utca 9-11
Email: ugyfelszolgalat@naih.hu