Privacy Policy

Privacy Policy

Filtrade Limited Liability Company, 9027 Győr, Kőrisfa Street 14. TAX NUMBER: 23573600-2-08 COMPANY REGISTRATION NUMBER: 08 09 022628 (hereinafter: Data Controller) operates the website www.filtrade.hu (hereinafter: the Website), and processes the data of visitors to the Website, users of the Website, and registered users utilizing the services available on the Website (hereinafter collectively referred to as Data Subjects).
In connection with data processing, the Data Controller hereby informs the Data Subjects about the personal data processed on the Website, the principles and practices followed in the handling of personal data, as well as the means and possibilities for exercising their rights. By using the Website, the Data Subject accepts the provisions of this Privacy Policy and consents to the data processing activities defined below.

 

1. Definitions

Data Subject: any identified or identifiable natural person, directly or indirectly, by reference to personal data;

  1. Personal data: any information relating to the data subject — in particular, the data subject’s name, identification number, or one or more characteristics of their physical, physiological, mental, economic, cultural, or social identity — and any conclusions that can be drawn from such data about the data subject;
  2. Consent: the voluntary and explicit expression of the data subject’s will, based on adequate information, by which they unambiguously agree to the processing of their personal data — either fully or for specific operations;
  3. Objection: the data subject’s statement objecting to the processing of their personal data and requesting the termination of processing or the deletion of the data;
  4. Data Controller: a natural or legal person, or an organization without legal personality, who alone or jointly with others determines the purposes of data processing, makes and executes decisions on data processing (including the means used), or has them executed by a data processor;
  5. Data Processing: any operation or set of operations performed on data regardless of the procedure used, including especially collection, recording, organization, storage, alteration, use, retrieval, transmission, disclosure, alignment or combination, blocking, deletion, destruction, and the prevention of further use of the data;
  6. Data Handling: the execution of technical tasks related to data processing, regardless of the method and tools used or the location of execution, provided that the technical task is performed on the data;
  7. Data Processor: a natural or legal person, or an organization without legal personality, who processes data on behalf of the Data Controller under a contract, including contracts based on legal provisions;
  8. Data Transfer: making data accessible to a specified third party;
  9. Disclosure: making data accessible to anyone;
  10. Data Deletion: rendering data unrecognizable in a way that makes its recovery impossible;
  11. Data Blocking: marking data with an identifier to restrict its further processing either permanently or for a specified period;
  12. Data Destruction: the complete physical destruction of the data carrier containing the data;
  13. Third Party: any natural or legal person or organization without legal personality that is not the data subject, the data controller, or the data processor.

2. Purpose of Data Processing

The Data Controller processes the data provided by the Data Subject during registration for specific purposes only, namely for providing the services available on the Website, maintaining contact, user identification, and, if the Data Subject subscribes to the newsletter, for sending the newsletter. Automatically recorded data are used for statistical purposes and the technical development of the IT system. The Data Controller does not use and may not use the provided personal data for purposes other than those defined above.

The disclosure of personal data to third parties or authorities – unless otherwise mandated by law – is only possible with the prior explicit consent of the Data Subject. In every case where the Data Controller intends to use the provided data for purposes other than the original purpose of data collection, the Data Subject will be informed and their prior explicit consent will be obtained, or they will be given the opportunity to prohibit such use.

 

3. Legal Basis for Data Processing

The data processing carried out by the Data Controller is based on the voluntary consent of the Data Subject in accordance with Article 5 (1) (a) of Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information (hereinafter: Info Act), as well as pursuant to Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Services Related to the Information Society.

The Data Controller does not verify the accuracy of the personal data provided to it. The responsibility for the correctness of the data lies solely with the individual providing the data, i.e., the Data Subject or contracting party. When any Data Subject provides an email address, they also assume responsibility that only they will use the service via the given email address. In light of this responsibility, all liability related to logins made using the provided email address shall rest exclusively with the Data Subject who supplied the email address.

 

 

4. Data Controller Information

Filtrade Products Limited Liability Company
9027 Győr, Kőrisfa Street 14.
TAX NUMBER: 23573600-2-08
COMPANY REGISTRATION NUMBER: 08 09 022628

 

5. Duration of Data Processing

5.1. Registration Data

The processing of personal data provided during registration is carried out until the Data Subject requests the deletion of their registration. Deletion of the registration may be requested at any time by sending a written request via post or email. In such cases, the personal data shall be deleted within 5 working days following receipt of the request.

5.2. Duration of Data Processing

The Controller shall process the data provided by the Data Subject during newsletter subscription until the Data Subject unsubscribes by clicking the “Unsubscribe” link included in each newsletter, or requests removal from the mailing list via email or post. In the absence of such a request, the data will be processed for a maximum period of 2 years. In the event of unsubscription, the Controller shall record the request upon receipt (whether by email, post, or via the “Unsubscribe” link) and will no longer send any newsletters to the Data Subject thereafter.

5.3. Technical Data

The logged data are stored by the system for a period of 2 years from the time of logging, with the exception of the date of the last visit, which is automatically overwritten.

5.4. Data Provided via Electronic Contact Form Submission

The processing of personal data provided mandatorily during the submission of the contact form shall continue until the Data Subject requests the deletion of such data. Data deletion may be requested at any time by submitting a written request via post or email. In such cases, the personal data shall be deleted within 5 working days following receipt of the request.

 

6. Scope of Processed Personal Data

6.1. Mandatory Data Provided During Registration

The Data Subject is required to provide the following data on the Website in order to use the services:

Name, Phone Number, Email, Company Name, Billing Address, Shipping Address

6.2. Newsletter

In the case of newsletter subscription, the Data Subject is required to provide their email address and full name to the Controller.

6.3. Technical Data

Data generated by the Data Subject’s accessing computer during the use of the service and automatically recorded by the Controller’s system as a result of technical processes. This data includes, in particular, the date and time of the visit, the IP address of the Data Subject’s computer, the type of browser used, and the URLs of the visited and previously visited web pages.

The automatically recorded data is logged by the system upon login and logout without any separate declaration or action by the Data Subject. Except in cases mandated by law, these data cannot be linked to other personal user information. Access to the data is exclusively limited to the Controller.

The Controller may collect data on the activities of Data Subjects that cannot be linked to other information provided by the Data Subject during registration, nor to data generated through the use of other websites or services.

The Website’s HTML code may contain links originating from or pointing to external servers independent of the Controller. Due to direct connection to their servers, the providers of these links are able to collect user data.

External servers assist in the independent measurement and auditing of the Website’s visitor statistics and other web analytics data (e.g., Google Analytics). The data controllers responsible for processing these measurement data can provide detailed information to the Data Subject. They can be contacted at: www.google.com/analytics/

If the Data Subject does not wish Google Analytics to collect the above data in the described manner and for the stated purposes, they should install the browser add-on that blocks this tracking.

6.4. Cookies

The Controller and the designated external service providers place and read small data packets, so-called cookies, on the Data Subject’s computer to provide customized service. If the browser sends back a previously saved cookie, the service provider managing the cookie can link the data saved during the Data Subject’s current visits with those from previous visits, but only in relation to their own content.

The Controller uses the following cookie(s):

– Session Cookies: Session cookies are automatically deleted after the Data Subject’s visit. These cookies serve to ensure that the Controller’s Website operates more efficiently and securely, and are therefore essential for the proper functioning of certain features or applications on the Website.

– Persistent Cookies: The Controller also uses persistent cookies to enhance the user experience (e.g., providing optimized navigation). These cookies are stored for a longer period in the browser’s cookie file. The duration depends on the settings applied by the Data Subject in their internet browser.

– Cookies Used for Password-Protected Sessions
– Security Cookies

The “Help” function found in the menu bar of most browsers provides information on how the Data Subject can manage settings within their own browser.

– how to disable cookies,
– how to accept new cookies,
– how to instruct the browser to set new cookies, or
– how to disable other cookies.

The Website uses Google AdWords remarketing tags. This allows visitors to be later targeted with remarketing advertisements on websites within the Google Display Network. The remarketing code uses cookies to tag visitors. Website users can disable these cookies by visiting Google’s Ads Settings and following the provided instructions. Once disabled, personalized offers from the Service Provider will no longer be shown to them.

More information about cookies:
https://silktide.com/tools/cookie-consent/docs/

More information about Google Analytics: https://www.google.hu/intl/hu/analytics/

 

7. Scope of Data Access

Persons Authorized to Access Data, Data Transfers, Data Processing
Primarily, the data may be accessed by the Controller and the Controller’s internal employees; however, the data are not disclosed or transferred to any third parties.

The Service Provider may engage data processors (e.g., system operators). The Service Provider is not responsible for the data processing practices of such external parties.

DATA PROCESSOR DETAILS:
Currently, there is no such subcontractor involved.

Beyond the above, personal data relating to the User may only be transferred in cases strictly required by law or based on the User’s consent.

Hosting Provider Details:

KTS Online Ltd.
Tax number: 29152106-2-08.
Company registration number: 08-09-032885
Registered at the Győr Court of Registration.
Statistical number: 29152106-6311-113-08.
EU VAT number: HU29152106.

REGISTERED OFFICE: 9024 Győr, Bartók Béla street 26/B Ground Floor 2.
PHONE: +36-20/316-2431
EMAIL: info@kts.hu

Beyond the above, the transfer of personal data related to the Data Subject may only occur in cases strictly required by law or based on the User’s consent.

 

8. User Rights and Possibilities for Legal Enforcement

8.1. Right to Information

The Data Subject is entitled to request information at any time about the personal data concerning them that is processed by the Data Controller.

Upon the Data Subject’s request, the Data Controller shall provide information regarding the personal data processed about them, the purpose, legal basis, and duration of the data processing, as well as the recipients and the purpose for which the data has been or is being disclosed. The Data Controller shall provide the requested information in writing within 30 days of receiving the request.

The Data Subject may contact the Data Controller’s staff regarding any questions or comments related to data processing through the contact details provided below.

8.2. The Data Subject may request the deletion, correction, or restriction of their personal data.

The Data Subject has the right at any time to request the correction of inaccurately recorded data or their deletion through any of the contact details provided below. The Data Controller shall delete the data within 5 working days of receiving the request; in this case, the data cannot be restored. Deletion does not apply to data processing required by law (e.g., accounting regulations), which the Data Controller will retain for the necessary period.

The Data Subject may also request the restriction of their data. The Data Controller shall restrict the processing of personal data if the Data Subject requests it, or if, based on the available information, it can be presumed that the deletion would infringe the legitimate interests of the Data Subject. Personal data that is restricted in this way may only be processed as long as the purpose of data processing, which excluded the deletion of the personal data, persists.

The Data Subject, as well as all parties to whom the data was previously transmitted for the purpose of data processing, must be notified about the correction, restriction, or deletion of the data. Notification may be omitted if, considering the purpose of data processing, it does not violate the legitimate interests of the User.

If the Data Controller does not fulfill the Data Subject’s request for correction, restriction, or deletion, the Data Controller shall inform the Data Subject in writing within 30 days of receiving the request, stating the factual and legal reasons for the refusal.

8.3. The Data Subject may object to the processing of their personal data

The Data Subject has the right to object to the processing of their personal data. The Data Controller shall examine the objection within the shortest possible time from the receipt of the request, but no later than 15 days, decide on its merits, and inform the applicant of the decision in writing.

The Data Subject may exercise their rights using the contact details provided in Section 4.

8.4. The Data Subject, pursuant to the provisions of the Information Act (Info.tv.) and the Civil Code (Act V of 2013),

  1. may contact the National Authority for Data Protection and Freedom of Information (1125 Budapest, Szilágyi Erzsébet fasor 22/c; www.naih.hu), or
  2. may enforce their rights before a court of law.

If the Data Subject has provided third-party data in order to use the service, or has caused damage in any way while using the Website, the Data Controller is entitled to claim compensation from the Data Subject. In such cases, the Data Controller will provide all possible assistance to the competent authorities in order to identify the person responsible for the infringement.

 

9. Use of Email Addresses

The Data Controller pays special attention to the lawful use of the electronic mail addresses it manages and therefore uses them for sending emails only in the manner specified below.

The handling of email addresses primarily serves to identify the Data Subject and to facilitate communication during the use of the service; therefore, emails are sent mainly for this purpose.

 

10. Data Security

The Data Controller commits to ensuring the security of the data and undertakes to implement technical measures that guarantee the protection of the collected, stored, and processed data. The Data Controller takes all necessary actions to prevent the destruction, unauthorized use, or unauthorized alteration of the data. Furthermore, the Data Controller undertakes to oblige any third parties to whom the data may be transferred or disclosed to comply with these security obligations.

 

11. Miscellaneous Provisions

The Data Controller reserves the right to unilaterally amend this Privacy Policy with prior notice to the Data Subjects — by notification on the Website. Following the entry into force of the amendment, the Data Subject shall be deemed to have accepted the modified Privacy Policy by continued use of the Website.