Barion Pixel
Iskolaévkönyv logo
file_1704290440109

DATA MANAGEMENT NOTICE

2025-04-15


  1. General provisions


    1. Data controller (also the Service Provider) with regard to this Notice:

      1. Name:DATATRONIC Trade and Service Limited Liability Company

      2. Headquarters:1163 Budapest, Lillafüred utca 10/b

      3. Postal address:1163 Budapest, Lillafüred utca 10/b

      4. Electronic (e-mail) address:info@datatronic.hu

      5. Registration number:01-09-711125

      6. Registering court:Company Court of the Capital City Court


    2. The purpose of this data protection information, to be determined by the Data Controllerhttps://iskolaevkonyv.hu the scope of personal data managed as part of the services provided on the website (hereinafter: Portal), the method of data management, as well as ensure the enforcement of the constitutional principles of data protection, the requirements of data security, and prevent unauthorized access to data, changes and unauthorized disclosure or use of data, in order to ensure that the privacy of natural persons of the user is respected.


    3. The (2) for the purpose set out in paragraph 1, your personal data will be kept confidential, in accordance with the applicable law we handle them in accordance with regulations, we ensure their safety, we make them technical and organizational measures, as well as establish the procedural rules that apply necessary to implement legal provisions and other recommendations.


  2. Statutory background


    Primarily for our data management the provisions laid down in the following legislation shall govern:

    • the Civil Act V of 2013 on the Code of Civil Procedure § 2:43 e.) ("Ptk.")

    • the informational CXII of 2011 on the right to self-determination and freedom of information. TV. ("Privacy TV.");

    • the European Regulation (EU) 2016/679 of the Parliament and of the Council (“GDPR”)


  3. Data management legal basis

    Your personal data to the effective data protection in accordance with the relevant legislation, we handle it under the following legal titles

    • GDPR Article 6 (1) para. point a.)based on:yours- based on adequate information - voluntary

      contribution

    • Article 6 (1) point c) of the GDPRon the basis of: data management is necessary to fulfill the legal obligation of the data controller (such as the fulfillment of accounting and bookkeeping obligations (Legal fulfillment of obligation)

    • XLVIII of 2008 on the basic conditions and certain limitations of economic advertising activity. TV. (hereinafter:Grtv.) Paragraph (1) of § 6according to which advertising is natural using the method of directly contacting a person as the recipient of an advertisement (hereinafter: direct business acquisition), so especially electronic correspondence or other equivalent individual communication can only be communicated by means of an instrument ifto that, the recipient of the advertisement is clear in advance and expressly agreed.

  4. The scope of data managed as a data controller, the purpose and duration of data management


    1. Bank card payment on the Portal

      Bank card payments are made through SimplePay Zrt.'s online payment system (SimplePay). With regard to the personal data required for payment, the Data Controller is deemed to be the data controller, which are forwarded to OTP Mobile Kft. as a data processor.

      As soon as you switch to the OTP SimplePay application, SimplePay Zrt. is considered an independent data controller with regard to the other personal data (bank card data) provided there, required for bank card payments.


      For payment by bank card related data transfer statement:

      If you, as the Customer, use a bank card payment method, the data of your order will be provided to SimplePay Zrt., as a third-party data processor, in view of which you must accept the following Data Transfer Statement before starting the payment.


      "I acknowledge that the Data Controller, as a data controller,https://iskolaevkonyv.hu The following personal data stored in its user database will be transferred to SimplePay Zrt. (headquarters:1138 Budapest, Váci út 135-139. B. intact. 5th em.) as a data processor. The range of data transmitted by the data controller is as follows: name, e-mail address.

      The range of data transmitted by the data controller is as follows:name, e-mail address.

      The nature and purpose of the data processing activity carried out by the data processor can be found in the SimplePay Data Management Information Sheet, at the link below:https://simplepay.hu/adatkezelesi-tajekoztatok/"


      You, as the Customer, the "Payment" button accept the Data Transfer Statement by pressing


    2. Qvik payment on the Portal

      During a Qvik payment, the data provided on the internet interface (during purchase or previous registration) is forwarded by Datatronic Kft to MBH Bank Nyrt., which provides the qvik acceptance service, which handles the data provided and the data provided on the payment page as a data processor for the purpose of completing the transaction:

      • forwarded to the bank of the paying party for the authentication and authorization of the transaction

      • notifies the paying party (buyer) about the result of the transaction at the specified e-mail address.

      Category of data handled during the transaction:

      • account number

      • transaction amount

      • account holder name

      Datatronic Kft does not have access to the data provided during the approval of the transaction.


    3. Use of cookiesWhat cookies do we use?

      There are cookies that we must store them anyway, because the Website cannot function without them. These are itso-called technically necessary cookies. These cookies are also used without your permission we are entitled to use.

      • cookies that store the data you have recorded:When you close your browser, these cookies are automatically deleted from your computer. These cookies are only used to identify your computer and do not store any information about you.

      • authentication session cookies:they serve the purpose of identifying users after logging in, so that we can ensure users' access to personal pages, and these cookies ensure that you do not have to log in again and again after each click during navigation.

      • user-oriented security cookies:Cookies designed for specific tasks related to strengthening the security of the service specifically requested by the user. These include, for example, cookies that are used to detect repeated unsuccessful login attempts to the website, or other similar mechanisms designed to protect the login system against abuse. Although login cookies are usually set to expire at the end of the session (when you exit the browser), security cookies are expected to expire longer in order to achieve their security purpose.

      • cookies that help customize the user interfacewe use it to store service-related user preferences through websites that are not linked to other permanent identifiers, such as usernames. (For example, cookies related to the desired language, cookies related to the desired display form of results during queries).

        There are cookies that we can only use with your prior consent. These the following:

      • Cookies to increase performance:It collects data about how you use the Website. We use Google Analytics cookies to better understand the behavior and characteristics of our users: which subpages they visited, how often and for how long. These cookies only identify your computer, the collection of data is anonymous.

      • Functional cookies:They enable the website to remember your previous settings, thereby providing the highest possible level of personalized service. It may also contain personal data that you have provided on our site.

      • Targeted cookies:They enable us to display targeted, relevant advertisements to you. Furthermore, these cookies make it possible to connect to social networking sites. Only your computer is identified, data collection is anonymous.

        We use itremarketing servicekat in order to personalize our ads we can deliver to you:

    4. Log files

      Use of the services the system automatically logs the following data:

      • the dynamic IP address of your computer

      • yours depending on the settings of your computer, the browser you use and the operating system type

      • your website activity

      • the time of the activity

        Legal basis for data management: a GDPR Article 6 (1) point fbased on the legitimate interest of our Association as Data Controller

        Duration of data storage:90 days from the date of creation


        The GDPR is a balance of interests test for data processing based on point f. of Article 6, paragraph (1).

        in view of:

        • The purpose of data management:On the one hand, the use of this data serves technical purposes - such as the analysis of the secure operation of the servers, subsequent checks, and the recording of security deviations - on the other hand, we use this data to create page usage statistics and analyze user needs in order to improve the quality of services.

        • The legitimate interest of the data controller:the Data Controller has a legitimate interest in the availability and safe operation of the Portal.

        • Your rights and freedoms related to the protection of your personal data:

      The controller cannot identify the data subject from the above data of the data subject.

      Data stored in log files is not are not connected with other information that would enable the data behind identification of a standing person. The processing of the data does not affect the privacy of the data subject This data management does not affect your rights and freedoms related to data protection danger.


      The balance of interests test resultit can be stated that the interests of the data subject do not have absolute priority over the legitimate interests of the Data Controller, data management does not limit the privacy of the data subject.


    5. Data management other than the above purposes

    Personal information about you for any purpose other than those specified above - so especially for the efficiency of your service increase, or for the purpose of market research - only with the prior determination of the data management purpose and that We can manage based on your contribution.

    This data cannot be linked to you with your identification data and without your consent may not be passed on to third parties.

    We are obliged to delete this data if the purpose of data management has ceased or you have decided to do so.


  5. Newsletter service


    On the Portal, we provide the possibility to subscribe to the newsletter. We will only send you a newsletter if if you give your express consent to send you a newsletter by checking the checkbox on the Portal.

    Scope of processed data:

    To use the newsletter sending service, we process your following data:

    • full name

    • email address


    Purpose of data management: You, as a subscriber to the newsletter continuously inform the user about information and opportunities related to the topic of the Portal, in order to provide continuous information about news, promotions and news.


    You can unsubscribe from the newsletter service at any time, free of charge, without restrictions or reasons. In this case, we will immediately delete your data from the register we keep for the purpose of sending the newsletter.


    You can make the revocation statement:

    • by clicking on the unsubscribe link in the newsletter

    • in a letter sent to our mailing address


    We inform you that the withdrawal of consent does not affect the withdrawal The legality of data processing based on your consent.


    Legal basis for data management: GDPR Article 6 (1) point a.) and Grtv. Section 6 (1) – Your prior, voluntary consent


    Duration of data management: We process your personal data until you withdraw your consent.


  6. As a data processor scope of managed data, purpose and duration of data management


    Photographs ordered in printed form in this case, Datatronic Kft., as a contributor, participates through its contracted partners in the orders Photographers (printing and delivery). The contributing partner delivers to the Photographer the ordered photos.

    As part of this, the Photographer hands it over to us the photos to be printed (in digital form), the parameters of the order (the name of the customer, the image size(s), number of pieces) and the data necessary to complete the delivery (of that educational institution address where delivery is made). Regarding the data transferred in this way, our company is a data processor who cannot use these data for purposes other than printing and delivery up.


    Scope of processed data:

    • photo recording of the affected person (digital and printed form)

    • the customer name

    • the order parameters (from which photo, in what size, how many pieces)

    • the delivery address (address of the educational institution to which the delivery takes place)


      The purpose of data management:

    • fulfillment of the order (printing of the photographs ordered by the Customer according to the order in size and number of pieces; delivery of the ordered photos)


      Duration of data management:

    • available for printing in digital form, containing the image of the person concerned photographs are irreproducibly deleted from our data file after printing, we do not keep them, unless the personal data is additional according to European Union or Hungarian legislation requires its storage;

    • other data related to the order, i.e. the orders we place with the Photographers for the purpose of verifying its fulfillment (Customer name, order parameters (digital photos number, the ordered image sizes, piece numbers, delivery addresses) on the 5th day after the order is fulfilled we keep it for a year.


    He graduated as a data processor we do not make substantive decisions regarding data management, and we do not carry out data processing for our own purposes data management.


    We ensure that the processed is personal access to data should be strictly limited to employees or other persons who have a in order to fulfill an order, it is absolutely necessary for you to get to know/access this data by each such person undertakes an obligation of confidentiality or an appropriate confidentiality obligation based on law is under obligation.


    We will bring it in relation to data security the organizational and technical measures which

    are guaranteed to be commensurate with the degree of risk level data security.


  7. It is used by us data and contact information of data processors

    We reserve the right to hire additional data processors in addition to those listed above by providing the names and addresses of additional data processors no later than at the start of data processing published in a way that is accessible to users.


  8. Personal data are entitled to know:

    Our own employees and agents and our other contributors, whose job duties or tasks they have to perform to provide them, they need to know the processed data. We are obliged to ensure that by us those entitled to access managed data must always comply with this data management information sheet, as well as the regulations contained in the governing legislation.


  9. Your rights are in relation to data management


    Related to data management his request for the enforcement of his rights isYou can send it to the e-mail address ugyfelszolgalat@iskolaevkonyv.hu.

    1. Right to request information

      1. At your request without undue delay, but no later than your request for this within 25 days of its submission, we will inform you in writing, including the electronic way about the data managed by us or processed by the data processor commissioned by us, those source, purpose of data processing, legal basis, duration, name of the data processor, address and activities related to data management, and - your personal data in case of transmission - on the legal basis and recipient of the data transmission.


      2. The information is free of charge. However, if the request is clearly unfounded - especially due to its repetitive nature - excessive, providing the requested information or information or the requested taking into account the administrative costs associated with taking the measure:

        1. we may charge a reasonable fee, or

        2. we may refuse to act on the request.

      The request is clearly unfounded or proof of its exaggerated nature in all cases us

      is burdened.


    2. Right to erasure

      1. We are obliged to delete personal data if

        1. handling is illegal;

        2. You withdraw your consent, which is the basis of data management, or request your data deletion and there is no other legal basis for data management;

        3. is incomplete or incorrect - and this condition cannot be legally remedied - provided that a deletion is not excluded by law;

        4. the purpose of data management has ceased or the storage of data is defined by law has expired;

        5. the deletion of the data was ordered by the court or the Authority.


      1. Instead of deletion, we block the personal data if the Data Subject requests this or if it is available to him based on existing information, it can be assumed that deletion would harm your legitimate interests. That's right locked personal data can only be processed as long as the purpose of data processing exists, which is a deletion of personal data is excluded.


    3. Right of access

      1. You have the right to receive feedback from us regarding whether your personal data is being processed, and if such data processing is underway, you are entitled to a get access to personal data and the following information:

        1. purpose of data management

        2. categories of personal data concerned

        3. the recipients to whom we have communicated or will communicate the personal your data,

          with particular regard to recipients from third countries and international for organizations

        4. the period of storage of personal data, or if this is not possible, which ones aspects of determining duration

        5. your right to request personal data about you from us rectification, deletion or restriction of processing, and may object to such personal against processing data;

        6. the right to submit a complaint to a supervisory authority;

        7. if the data was not collected from you, everything about its source is available information


      2. We provide you with a copy of the personal data that is the subject of data management. Yours for additional copies requested by the data controller based on reasonable administrative costs we charge a fee of If you submitted the application electronically, the information provided to you in a widely used electronic format unless you asks otherwise.

    4. Right to rectification

      1. Upon your request, we will correct inaccurate personal information about you without undue delay

        data.


      2. If the data corresponding to the reality or the supplementary data is not available, supplementary we make corrections and additions by means of a statement.


    5. Right to protest

      1. You can object to the processing of your personal data if

        1. if the processing or transmission of personal data is only our legal obligation to fulfill or to assert our or a third party's legitimate interest necessary, except in the case of mandatory data management;

        2. if the use or transmission of personal data is direct business acquisition, conducted for the purpose of public opinion polls or scientific research; as well as

        3. in other cases specified by law.


      2. With the simultaneous suspension of data management, the objection was counted from the submission of the request we will examine it as soon as possible, but no later than 15 days, and about the result we will inform you in writing.

      If the protest is justified, we are obliged to terminate data management - including further data collection and also data transfer - and to block the data, as well as about the protest, or based on it to notify all those whose personal data was affected by the protest about the measures taken previously forwarded, and who are obliged to take action to enforce the right to protest.


      If you do not agree with our decision one, or, if the 15-day deadline is missed, against the decision - from its communication, or within 30 days from the last day of the deadline - you can go to court.


    6. It is right to limit data processing

      1. We restrict data processing if one of the following is true:

        1. You dispute the accuracy of the personal data;

        2. the data management is illegal and you oppose the deletion of the data and request it instead limitation of its use;

        3. we no longer need the personal data for data management purposes, but you require them to assert, enforce or defend legal claims; or

        4. You objected to data processing.


      2. If the data management is subject to restrictions, such personal data, except for storage, is only that With your consent, or to submit, enforce or defend legal claims, or in order to protect the rights of other natural or legal persons, or the Union or any can be handled in the important public interest of a member state.


      8.7. For data portability real right

      You are entitled to your relevant personal data provided to us with a segmented, widely used machine you will receive it in a readable – if technically feasible – format if you are the data manager based on your consent or contract and data management is automated.

      If your request for correction, restriction or deletion cannot be fulfilled, then the request within 25 days of receipt, we will inform you in writing of the rejection of the application, it is factual and its legal grounds.

      In your present point 7 defined rights may be limited by law in the external and internal security of the state, such as national defense, a national security, the prevention or prosecution of crimes, the security of punishment for the sake of, and for the economic or financial interest of the state or local government, the European Union from his significant economic or financial interest, as well as related to the exercise of occupations disciplinary and ethical offences, prevention of violations of labor law and occupational health and safety obligations and for the purpose of its discovery - including in all cases control and supervision - and also that To protect the rights of the data subject or others.


  10. Legal remedy opportunities


In the event of a violation of the law, you can apply for a remedy:


  1. directly to us as Data Controller:

Mailing address: 1163 Budapest, Lillafüred utca 10. Phone number: +36703927242

E-mail address: ugyfelszolgalat@iskolaevkonyv.hu


  1. the National Data Protection and Freedom of Information to the Authority Headquarters: 1055 Budapest, Falk Miksa utca 9-11.

    Mailing address: 1363 Budapest, Pf.: 9.

    Phone: +36 (30) 683-5969

    +36 (30) 549-6838

    +36 (1) 391 1400

    Fax: +36 (1) 391-1410

    E-mail:ugyfelszolgalat@naih.hu


  2. your place of residence or to the competent Court according to your place of residence.


The data management information is valid: From 2025-04-15 until withdrawn