The Aerogate Residence 1 Limited Liability Company (hereinafter referred to as the “Controller” or “We“) has created the following privacy notice to ensure the lawfulness of its internal data processing and to safeguard the rights of data subjects.
Data Controller: Aerogate Residence 1 Limited Liability Company
Data Controller’s company registration number: Cg. 01-09-441348
Registered office of the Data Controller: 1062 Budapest, Andrássy út 99. 2. floor. Door 6A.
E-mail address of the Data Controller: info@aerogate.hu
Data Controller’s representative: Attila Zoltán Búvár, Managing Director
The Data Controller shall process personal data in accordance with all applicable laws and regulations, but with the following legal provisions:
Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information (hereinafter referred to as “Info. tv.”);
Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural people regarding the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter the “Regulation” or “GDPR”).
The Data Controller shall treat personal data confidentially and shall take all technical and organizational measures necessary to ensure the security of the data, including all technical and organizational measures related to the storage and processing of the data.
Concepts
The terminology used in this Privacy Notice corresponds to the interpretative definitions set out in Article 4 of the Regulation and, supplemented at certain points, to the interpretative provisions of Article 3 of the Data Protection Act.
When this notice refers to data or data processing, it means personal data or the processing thereof.
The Data Controller uses cookies on its website (the “Website”) at https://aerogate.hu in order to maintain and improve the services of the Website and to enhance the user experience.
What is a cookie?
Cookies are small text files placed on the user’s device by the browser to identify and collect information. A cookie consists of a unique set of numbers and is used primarily to distinguish between computers and other devices that download a web page. Cookies have a variety of functions, including collecting information, remembering user preferences, allowing the website owner to learn about user habits to enhance the user experience.
For what purposes does the website use cookies?
The Data Controller uses cookies for the following purposes:
– to ensure the proper and high-quality functioning of the website and to facilitate the management of the pages,
– To improve the user experience and to implement certain features of the website,
– to understand how visitors interact with the website (e.g.: number of visitors, bounce rate)
– to collect information on how users use the website, which parts of the website they visit most, in order to provide better user experience,
– placing targeted advertising.
What cookies does the website use?
Strictly necessary cookies:
The Data Controller uses strictly necessary cookies to ensure the proper functioning of the website page and its sub-pages, also during navigation between pages and to remember the login details of the data subject.
As stated above, the essential cookies are necessary to allow users to use the website’s functions without disturbance, including the recording of actions taken on the pages you have viewed during a visit. The validity period of the cookies is limited to your current visit and they will be automatically deleted from your computer at the end of your session or when you close your browser. Without the use of these cookies, we cannot guarantee you proper use of the website.
Functional, analytical, performance and advertising cookies
The Data Controller provides up-to-date and detailed information on non-essential cookies via the website’s cookie manager. These are non-essential cookies used by the Data Controller only with the consent of the users to improve the user experience and to help perform certain functions of the website, analyse the use of the website and display targeted advertising.
In order to analyze the use of the website, the Data Controller uses so-called Google Analytics cookies, a detailed description of which is available at the following link:
https://support.google.com/analytics/answer/6004245
Google Analytics cookies are used by the Data Controller for the purpose of statistical analysis of website traffic and visitor habits, ultimately for the purpose of improving the website and the user experience.
Analytics cookies collect information about the visiting habits of website users in an anonymous way. The use of analytical cookies is only possible with the user’s consent, which you can withdraw at any time.
What is the legal basis for the processing of data by cookies?
The cookies that are essential for the use of the website are used by the Data Controller on the basis of its legitimate interest pursuant to Article 6(1)(f) GDPR, and the legal basis for the use of additional cookies is the consent of the data subject pursuant to Article 6(1)(a) GDPR, which can be given through the cookie manager.
How can you control and opt-out of cookies?
In addition to the website cookie manager, all modern browsers allow you to change the cookie setting. Most browsers automatically accept cookies by default, but these can usually be changed to prevent automatic acceptance and will offer you the choice each time whether or not you want to allow cookies.
Since cookies are intended to facilitate or enable the usability and processes of the website, by preventing or deleting the use of cookies, users may not be able to fully use the website’s features or the website may not function as intended in their browser.
You can find out about the cookie settings of the most popular browsers by following the links below:
Google Chrome:
https://support.google.com/accounts/answer/61416
Firefox:
https://support.mozilla.org/hu/kb/sutik-informacio-amelyet-weboldalak-tarolnak-szami
Microsoft Edge:
https://support.microsoft.com/hu-hu/help/4468242/microsoft-edge-browsing-data- and-privacy
Microsoft Internet Explorer:
https://support.microsoft.com/hu-hu/help/17442/windows-internet-explorer-delete- manage-cookies
Opera:
https://help.opera.com/en/latest/web-preferences/#cookies
Safari:
https://support.apple.com/hu-hu/guide/safari/sfri11471/mac
Right to information
The data subject has the right to be informed about the processing of his or her personal data, which the Data Controller will fulfil by providing this notice.
Consent-based processing
Where the legal basis for a processing operation is the data subject’s consent, he or she has the right to withdraw his or her consent to the processing operation at any time. It is important to note, however, that the withdrawal of consent may only relate to data for which there is no other legal basis for the processing. If there is no other legal basis for the processing of the personal data concerned, the Controller will permanently and irretrievably erase the personal data following the withdrawal of consent. Withdrawal of consent under the Regulation shall not affect the lawfulness of the processing carried out based on consent prior to its withdrawal.
Right of access
At the request of the data subject, the Controller shall at any time inform the data subject whether his or her personal data are being processed and, if so, provide access to the personal data and the following information:
(a) the purposes of the processing.
(b) the categories of personal data concerned.
(c) the recipients or categories of recipients to whom or with which the controller has disclosed or will disclose the personal data, including in particular recipients in third countries or international organisations;
(d) the envisaged duration of the storage of the personal data or, where this is not possible, the criteria for determining that duration;
(e) the data subject’s right to obtain from the controller rectification, erasure or restriction of the processing of personal data concerning him or her and to object to the processing of such personal data;
(f) the right to lodge a complaint with a supervisory authority or to take legal action.
(g) where the data has not been collected directly from the data subject by the controller, any available information concerning the source of the data.
(h) where automated decision-making is carried out, the fact of such processing, including profiling, and, at least in those cases, the logic used, i.e. the significance of such processing and the likely consequences for the data subject.
The data subject is also entitled to receive a copy of his or her personal data upon request.
Right to rectify personal data
The data subject shall have the right at any time, upon request and without undue delay, to obtain from the Controller the rectification of inaccurate personal data relating to him or her. Taking into account the purposes of the processing, the data subject shall also have the right to request the completion of incomplete personal data, including by means of a supplementary declaration.
In the case of a request for rectification (amendment) of data, the data subject must substantiate the accuracy of the data requested to be amended and must also certify that the person entitled to the rectification is the person who requests the amendment. Only in this way can the Data Controller assess whether the new data is accurate and, if so, whether it can amend the previous data.
The Data Controller also draws the attention of the data subject to the need to notify changes to his/her personal data as soon as possible in order to facilitate lawful processing and the exercise of his/her rights.
Right to erasure
At the request of the data subject, the Controller shall, without undue delay, erase personal data relating to the data subject where one of the following grounds applies:
(a) the Controller no longer needs the personal data for the purposes for which they were collected or otherwise processed.
(b) in the case of processing based on consent, the data subject withdraws the consent on which the processing is based and there is no other legal basis for the processing.
(c) the data subject objects to the processing and there are no overriding legitimate grounds for the processing or objects to the processing for direct marketing purposes.
(d) the personal data are unlawfully processed by the Controller.
(e) the personal data must be erased in order to comply with a legal obligation under Union or Member State law to which the Controller is subject.
(f) personal data have been collected in connection with the provision of information society services.
Right to restriction of processing
The data subject shall have the right to obtain, at his or her request, the restriction of processing by the Controller where one of the following conditions is met:
(a) contests the accuracy of the personal data; in this case, the restriction shall be for a period which allows the Controller to verify the accuracy of the personal data.
(b) the processing is unlawful, and the data subject opposes the erasure of the data and requests instead the restriction of their use.
(c) the Controller no longer needs the personal data for the purposes of the processing, but the data subject requires them for the establishment, exercise or defence of legal claims; or
(d) the data subject has objected to the processing; in this case, the restriction shall apply for a period until it is established whether the legitimate grounds of the Controller override the legitimate grounds of the data subject.
Right to object
Where the processing of personal data is based on the legitimate interests of the controller (Article 6(1)(f) of the Regulation) or is necessary for the performance of a task carried out in the exercise of official authority vested in the controller (Article 6(1)(e) of the Regulation), the data subject shall have the right to object at any time, on grounds relating to his or her particular situation, to the processing of his or her personal data, including profiling based on those provisions.
Where the data subject’s personal data is processed by the Controller for direct marketing purposes (i.e. for sending information letters), the data subject has the right to object at any time to the processing of personal data concerning him or her for such purposes, including profiling, where it is related to direct marketing. If the data subject objects to the processing of his or her personal data for direct marketing purposes, the personal data may no longer be processed for those purposes.
Interest assessment test
Where the legal basis for the processing of personal data is the legitimate interest of the controller or a third party as referred to in Article 6(1)(f) of the Regulation, a written “interest assessment test” will be carried out pursuant to preamble paragraph 47 and Article 5(2), which the data subject may request.
Right to data portability
The data subject shall have the right to obtain the personal data concerning him or her that he or she has provided to the controller in a structured, commonly used, machine- readable format and the right to have those data transmitted by the controller to another controller where:
(a) the processing is based on the data subject’s consent or on a contract within the meaning of Article 6(1)(b) of the Regulation; and
(b) the processing is carried out by automated means.
The data subject may exercise the above rights by sending an e-mail to info@aerogate.hu, by post to the controller’s head office or by visiting the controller’s head office. The Data Controller shall start the examination and execution of the data subject’s request without undue delay upon receipt. The Controller shall inform the data subject of the action taken on the basis of the request within 1 month of receipt. If the controller is unable to comply with the request, it shall inform the data subject within 1 month of the reasons for the refusal and of his or her rights of appeal.
Within five years of the death of the data subject, the rights of the deceased under this information notice shall be exercisable during his or her lifetime by a person authorized by the data subject by means of an administrative arrangement or a declaration in a public or private document having full probative value made with the controller or, if the data subject has made several declarations with a controller, by a declaration made at a later date. Even if the data subject has not made a corresponding declaration, his or her close relative within the meaning of the Civil Code shall still be entitled to exercise the rights under Articles 16 (right of rectification) and 21 (right to object) of the Regulation and, where the processing was unlawful during the data subject’s lifetime or the purpose of the processing ceased to exist upon the death of the data subject, under Article 17 (right of access) of the Regulation. (right to erasure) and 18 (right to restriction of processing) of the Regulation within five years of the death of the data subject. The right to exercise the rights of the data subject under this paragraph shall be exercised by the next of kin who first exercises that right.
If you consider that the Controller is processing your personal data in breach of the requirements laid down by law or by a legally binding act of the European Union relating to the processing of personal data, you may also have recourse to the courts in order to exercise your right to judicial remedy. The court will rule on the case out of turn. The court will have jurisdiction to hear the case. You can choose to bring the case before the court of the place where you reside or are domiciled, or before the court where the Data Controller is established (Court Search: https://birosag.hu/birosag-kereso).
Anyone may lodge a complaint with the National Authority for Data Protection and Freedom of Information (NAIH) against the Controller, alleging that the processing of personal data has led to a violation of rights or an imminent threat of such violation, or that the Controller is restricting the exercise of rights related to the processing or is refusing to grant such rights.
The notification can be made using one of the following contact details:
National Authority for Data Protection and Freedom of Information (NAIH) Postal address.
Represented by Attila Zoltán Búvár, Managing Director
We consider data protection important
I have read and accept the information in the privacy notice.
