Privacy Policy
Updated:
Duo Sense Ltd. (from now on: “Data Controller”) pays special attention to protecting personal data during its activities. We follow all required legal rules for safe and fair data processing. This Privacy Policy contains the rights and responsibilities of the Data Controller and the Customer (from now on: “Customer”) who uses the e-commerce services provided by the Data Controller on the following websites:
- *.duosense.hu (from now on: Websites or Webshops). (Data Controller and Customer together will be called: Parties).
Information about the Data Controller:
- Company Name: Duo Sense Ltd.
- Tax Number: 32126866-2-42
- Company Registration Number: 01 09 426860
- Address: 1078 Budapest, Marek József utca 23. 2. floor. 12. door, Hungary
- Hosting Provider: Rackhost Ltd.
- Phone: Zoltán Szenek: +36707602649, Donát Szám: +36305312898
- Email: info@duosense.hu
The Data Controller always processes the personal data it receives according to current Hungarian and European laws and ethical rules. In every case, we take the technical and organizational steps that are needed for safe data processing.
This policy was created based on the following current laws:
- Act. CXIX. of 1995 on the processing of name and address data for research and direct marketing purposes.
- Act. CVIII. of 2001 on electronic commerce services and certain issues related to the information society.
- Act. XLVIII. of 2008 on the basic conditions and certain limits of commercial advertising.
- Act. CXII. of 2011 on the right to informational self-determination and freedom of information.
- Regulation (EU) 2016/679 (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
The Data Controller promises to follow this Policy and asks its customers to also accept the rules in this policy. The Data Controller has the right to change this privacy policy. In this case, it will publicly share the changed policy.
II. Definitions of Terms
In our policy, the special data protection terms have the following meanings:
Personal Data: Any information that can be connected to a specific (identified or identifiable) living person (from now on: data subject). It also includes any conclusion that can be drawn from the data about that person. The data keeps this quality during processing as long as its connection with the person can be restored. A person can be identified, especially if they can be identified directly or indirectly by a name, an identification mark, or by one or more factors specific to their physical, physiological, mental, economic, cultural, or social identity.
Consent: A voluntary and clear statement of the data subject’s wishes. It is based on proper information, and with it, they give their clear agreement to the processing of their personal data for all or specific operations.
Objection: A statement by the data subject in which they object to the processing of their personal data and ask for the data processing to be stopped or for the processed data to be deleted.
Data Controller: The natural or legal person, or organization without legal personality, who, alone or with others, decides the purpose of data processing, makes and carries out decisions about data processing (including the tools used), or has a Data Processor carry them out.
Data Processing: Any operation or set of operations performed on data, no matter the method used. This includes collecting, recording, organizing, storing, changing, using, querying, transferring, publishing, aligning, linking, blocking, deleting, and destroying the data. It also includes preventing further use of the data, taking photographs, sound or video recordings, and recording physical characteristics that can identify a person.
Data Transfer: Making the data accessible to a specific third party.
Publication: Making the data accessible to anyone.
Data Deletion: Making the data unrecognizable in such a way that it can no longer be restored.
Data Tagging: Giving the data an identifier to distinguish it from other data.
Data Blocking: Giving the data an identifier to limit its further processing permanently or for a specific time.
Data Destruction: The complete physical destruction of the medium that contains the data.
Data Processing (technical): Performing technical tasks related to data management operations, no matter the method or tool used to perform the operations, and no matter the location of the application, as long as the technical task is performed on the data.
Data Processor: A natural or legal person, or organization without legal personality, who processes data based on a contract, including a contract made under the law.
Data File: All the data managed in a single register.
Third Party: A natural or legal person, or organization without legal personality, who is not the same as the data subject, the Data Controller, or the Data Processor.
EEA State: A member state of the European Union and any other state that is part of the Agreement on the European Economic Area (EEA), as well as any state whose citizens have the same legal status as citizens of EEA states under an international agreement.
Third Country: Any state that is not an EEA state.
Data Breach: Unlawful processing of personal data, including unauthorized access, alteration, transfer, publication, deletion, or destruction, as well as accidental destruction and damage.
III. Principles of Data Processing
Personal data can be processed if the data subject gives consent, or if it is ordered by law or a local government decree based on the law.
Personal data can only be processed for a specific purpose, to exercise a right, or to fulfill an obligation. The data processing must meet this purpose at every stage.
Only personal data that is essential for the purpose of the data processing, is suitable for achieving that purpose, and is processed only to the extent and for the time necessary to achieve the purpose can be processed.
Personal data can be transferred, and different data processing operations can be linked, if the data subject has consented to it or if the law permits it, and if the conditions for data processing are met for each piece of personal data.
Personal data can be transferred from the country to a data controller or data processor in a third country if the data subject has explicitly consented, or if the law allows it, and if the proper level of protection for personal data is ensured during the processing of the transferred data in the third country.
In the case of mandatory data processing, the purpose and conditions of the processing, the scope of the data to be processed, the duration of the processing, and the person of the data controller are determined by the law or municipal decree ordering the data processing.
A law may order the publication of personal data for public interest, with a clear indication of the scope of the data. In all other cases, the consent of the data subject is required for publication, and in the case of special data, written consent is required. If there is any doubt, it should be assumed that the data subject did not give their consent.
The data subject’s consent is considered given for data that they communicate during a public appearance or provide for the purpose of publication.
In a procedure started at the request of the data subject, their consent to the processing of their necessary data is assumed. The data subject’s attention must be drawn to this fact.
The data subject can also give their consent as part of a written contract with the Data Controller for the purpose of fulfilling the contract. In this case, the contract must contain all the information that the data subject needs to know about the processing of their personal data, including the data to be processed, the duration of the processing, the purpose of use, the transfer of data, and the use of a data processor. The contract must state clearly that by signing, the data subject consents to the processing of their data as specified in the contract.
The right to the protection of personal data and the privacy rights of the data subject cannot be violated by other interests related to data processing, including the publicity of public data, unless a law makes an exception.
IV. The Basis of Data Processing
The processing of personal data by the Data Controller is always based on law or voluntary consent. In some cases, without consent, data processing is based on other legal grounds or Article 6 of the GDPR.
Data of Website Visitors When you visit the websites operated by the Data Controller, we do not record the user’s IP address or any other personal data. The HTML code of the websites operated by the Data Controller may contain links from and to independent, external servers for web analytics purposes. The measurement also covers conversion tracking. The web analytics service provider does not process personal data, only data related to browsing that is not suitable for identifying individuals. Currently, web analytics services are provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043) as part of the Google Analytics service.
The Data Controller may run remarketing ads through the Facebook and Google AdWords advertising systems. These providers may collect or receive data from the Data Controller’s website and other places on the internet using cookies, web beacons, and similar technologies. They use this data to provide measurement services and target ads. These targeted ads may appear on other websites in the Facebook and Google partner network. Remarketing lists do not contain the visitor’s personal data and are not suitable for personal identification.
The user can delete cookies from their own computer or block their use in their browser. These options are available depending on the browser, but typically in the Settings / Privacy menu.
More information on the privacy policies of Google and Facebook can be found at the following links: https://www.google.com/privacy.html and https://www.facebook.com/about/privacy/
Data Deletion Request For data deletion requests, please email info@duosense.hu.
V. Rights of Data Subjects
The data subject can request information about the processing of their personal data. They can also request the correction of their personal data, or its deletion (except for data processing ordered by law) through the link in the footer of newsletters or at any of the Data Controller’s contact details.
At the data subject’s request, the Data Controller will provide information about the data it processes, the purpose, legal basis, and duration of the data processing, the name and address of the data processor and its activities related to data processing, and who receives or has received the data and for what purpose. The Data Controller must provide this information in writing, in an understandable form, free of charge, as soon as possible, but no later than 25 days after the request is submitted.
The Data Controller is required to correct any personal data that is not accurate.
The Data Controller will delete personal data if its processing is unlawful, if the data subject requests it, if it is incomplete or incorrect and this cannot be legally corrected (provided that deletion is not excluded by law), if the purpose of the data processing has ended, if the legally defined storage period has expired, or if it has been ordered by a court or the data protection commissioner.
The data subject and all those to whom the data was previously transferred for data processing purposes will be notified of the correction and deletion. Notification can be omitted if it does not harm the legitimate interests of the data subject with regard to the purpose of data processing.
The data subject may object to the processing of their personal data if the processing or transfer of the data is necessary only to enforce a right or legitimate interest of the data controller or data recipient (unless the processing is ordered by law), if the personal data is used or transferred for direct marketing, public opinion polling, or scientific research, or if the law otherwise allows the exercise of the right to object.
The Data Controller must examine the objection as soon as possible, but no later than 15 days after the submission of the request, while suspending the data processing at the same time, and inform the applicant of the result in writing. If the objection is justified, the data controller must stop the data processing, including further data collection and transfer, and block the data. The data controller must also notify all those to whom the personal data affected by the objection was previously transferred, and who are obliged to take measures to enforce the right to object.
In case of violation of their rights, the data subject can turn to a court or the data protection authority against the data controller. You can seek legal remedies or make a complaint at the following contact details:
- Name: National Authority for Data Protection and Freedom of Information (NAIH)
- Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c, Hungary
- Phone: +36-1-391-1400
- Email: ugyfelszolgalat@naih.hu
- Website: naih.hu
VI. Caching
This site uses caching to help with faster response times and a better user experience. Caching stores a copy of every webpage that is visible on this site. All cache files are temporary and are never accessed by any third party. Cache files expire on a schedule set by the site administrator, but administrators can regenerate them before they naturally expire if needed.
VII. Forms
We process personal data sent through forms on the website(s) operated by the Data Controller as follows: we keep it for 5 years and delete it upon request. The user’s consent is required to send the forms and process the personal data. The user gives this consent by ticking the checkbox at the bottom of the forms. At the same time, they accept that they have read and understood what is written in this data privacy notice.
Contact Form On this form, we store and process the following personal data:
- The user’s name*
- The user’s e-mail address*
- The user’s phone number*
- The written message
- Acceptance of the Privacy Notice*
Data marked with * must be provided.
VIII. Cookie Notice
The Data Controller uses so-called cookies and similar technological solutions. We refer to these collectively as cookies below.
During your visit to the Website, you can consent to the use of cookies on the site to improve the browsing experience and to display personalized offers that match your interests. This page contains all the information related to the use of cookies that we use on the Website.
What are cookies? Cookies are small data packets that your browser saves on your device at the request of websites (web servers). Websites store temporary but important information in these cookies to provide services through the websites, to identify users, to improve the browsing experience, to display personalized offers that match users’ interests, and to analyze website traffic data.
Consent to the use of cookies When the Website loads, we ask for your consent to install cookies in a pop-up window. If you do not give your consent, we will only install the cookies that are absolutely necessary for the Website to function on your device.
How can you control the use of cookies? You can control the operation of cookies used on the site in the data management center. In addition to the above, you can also control the use of cookies by adjusting your browser settings. The default setting of most browser programs is to allow the use of cookies. For the most commonly used browsers, how to set cookies is described on the following websites:
- Apple Safari
- Google Chrome
- Opera
- Mozilla Firefox
If you disable the use of cookies through your browser settings, the website or some of its functions will become unavailable or unusable until you re-enable the use of cookies, that is, you remove the block. You have the opportunity to change the settings, and thus the use of cookies, at any time.
You can also view and delete the cookies that were previously stored on your computer in your browser.
For cookies used by Google Analytics, there is a browser add-on published by Google that can be used to disable these cookies. Detailed information on this is available at the following link: Google Analytics Opt-out Browser Add-on
The websites, information, and add-ons (programs) available at the links above are completely independent of the Data Controller, so the Data Controller cannot provide information about their availability or the information on them and assumes no responsibility.
What kind of cookies do we use? Cookies can be “persistent” or “session” cookies. Persistent cookies are stored by the browser until a specific date, provided you do not delete them earlier. Session cookies, however, are automatically deleted when the browser is closed. Cookies can also be “first-party” or “third-party” cookies. First-party cookies are used by the Data Controller’s website, while third-party cookies (see for example the cookies used by Google Analytics) are used by the Data Controller but are placed on the user’s computer by independent service providers.
Necessary Cookies Necessary cookies are essential for the system to work. Without them, the website cannot be used as intended. The use of these cookies is necessary to enforce the legitimate interests of the Data Controller. These cookies can be used without the user’s consent and cannot be turned off.
Analytical Cookies These cookies are not absolutely necessary for using the website. We use these cookies to anonymously measure the performance of our pages and to better understand the needs of our visitors. By using this statistical data, we can improve our pages. Analytical cookies are used only with your consent, and you can withdraw your consent at any time in the Privacy Center by turning off the analytical cookies. Analytical cookies come from third parties, so you can get more information about how they work from the data management information of the third-party service providers (links in the table below).
Functional Cookies Functional cookies are not absolutely necessary for using the website, but using them allows us to provide a better user experience. These cookies usually provide settings and convenience functions for a more personalized operation of the website (for example, the selected language or the type of page visited). Functional cookies are used only with your consent, and you can withdraw your consent at any time in the Privacy Center by turning off the functional cookies. These cookies do not store personal data.
Updated: