Privacy Policy - Hotel

 Informing you, as a visitor to our website, a customer of our webshop, a reader of our newsletter  and a user of our services, about our company’s data management and privacy policy.

1. The principles we are applying during our data management

During the data management our company pursues the following principles:

a)       personal data will be processed fairly and lawfully and in a manner that is transparent to you.

b)       personal data are collected only for specified, explicit and legitimate purposes and are not processed in a way incompatible with those purposes.

(c)       the personal data we collect and process are adequate, relevant and limited to what is necessary for the purposes for which they are processed.

d)       Our Company will take all reasonable steps to ensure that the data we process is accurate and, where necessary, kept up to date, and will promptly delete or correct inaccurate personal data.

(e)       personal data will be kept in a form which permits identification of you for no longer than is necessary for the purposes for which the personal data are processed.

(f)        We use appropriate technical and organisational measures to ensure adequate protection of personal data against unauthorised or unlawful processing, accidental loss, destruction or damage.

Regarding your personal data our company proceeds as follows  

a)       will be processed, i.e. collected, recorded, organised, stored and used, on the basis of your prior informed and voluntary consent and only to the extent necessary and in any case for the purposes for which they are collected, recorded, organised, stored and used.

b)       In some cases, the processing of your data is based on legal requirements and is mandatory, in which case we will draw your attention to this fact.

c)       or, in certain cases, our Company or a third party has a legitimate interest in the processing of your personal data, such as the operation, development and security of our website.

2. 2. Who we are

The name of the Company is Hungarospa Hajdúszoboszló Spa and Health Tourism Private Limited Company           en Limited Liability Company

Seat of the Company: 4200 Hajdúszoboszló, Szent István park 1-3.

Our Company’s premises:     4200 Hajdúszoboszló, Böszörményi út 35/A

                                               4200 Hajdúszoboszló, Böszörményi út 35.

                                               4200 Hajdúszoboszló, Böszörményi út 37

                                               4200 Hajdúszoboszló, Rózsa u. 9.

                                               4200 Hajdúszoboszló, József Attila u. 25.

                                               4200 Hajdúszoboszló, Mátyás király sétány 3.

                                               4200 Hajdúszoboszló, Mátyás király sétány 14.

                                               4200 Hajdúszoboszló, Mátyás király sétány 25.

                                               4200 Hajdúszoboszló, Rákóczi u. 184.

                                               4200 Hajdúszoboszló, Szép Ernő u. 16.

                                               4200 Hajdúszoboszló, Hőforrás u. 4.

                                               4200 Hajdúszoboszló, Mátyás király sétány 23.

                                               4200 Hajdúszoboszló, 3524 hrsz,

                                               4200 Hajdúszoboszló, 3529 hrsz

                                               4200 Hajdúszoboszló, Debreceni útfél 3.

                                               4200 Hajdúszoboszló, József Attila u. 5-7.

Website of the Company: www.hungarospa.hu

Postal address: 4200 Hajdúszoboszló, Szent István park 1-3.

Phone number: 06-52-558-558

E-mail address: info@hungarospa.hu

Tax number: 10605125-2-09

Company registration number: 09-10-000045

Contact details of our Data Protection Officer (e-mail address): serfozo.zsuzsa@hungarospa.hu

Name, address and contact details of our hosting provider: beks Kommunikációs Technika Kft.

4024 Debrecen, Rákóczi u. 21.
info@beks.hu

During the management of the data our company – in order to provide quality service to our clients – is using the following data processors:

Should we modify the scope of our data processors, we are updating the changes in the present information.

The data we process: 

We only ask our website visitors for their personal information whenthey want torequest a quote , make a booking ,shop , buy from , subscribe to our newsletter or participate in a prize draw.

We can’t connect the personal data – that were provided during the registration or when using our marketing services – and the identification of our visitors is basically not our purpose.

If you have any questions about data processing, you can request further information by sending an e-mail or postal mail to info@hungarospa.hu, and we will respond within 15 days (but not later than 1 month) to the contact details you have provided. 

3. What are the cookies and how we are handling them?

Cookies are small data files (hereinafter “cookies”) that are transferred to your computer through the use of the website by your website by being saved and stored by your internet browser. Most commonly used internet browsers (Chrome, Firefox, etc.) accept and allow the download and use of cookies by default, but it is up to you to modify your browser settings to refuse or block them, or to delete cookies already stored on your computer.   For more information on the use of cookies, please see the “help” section of each browser.

There are cookies that do not require your primary consent. These are briefly disclosed by our website at the start of your first visit, such as authentication cookies, multimedia player cookies, load balancing cookies, session cookies to help you customise the user interface, and user-centric security cookies.

Our Company will inform you and ask for your consent about cookies that require your consent – if the processing starts when you visit the site – at the beginning of your first visit.

We do not use or allow cookies that enable third parties to collect data without your consent.

Acceptance of cookies is not mandatory, but our Company is not responsible if our website does not function as expected without cookies.

You can usually manage, delete or disable cookies by going to the Tools/Preferences menu of your browser and selecting Privacy settings, then selecting the cookie.

What cookies do we use?

List of Cookies

 Third-party cookies (Facebook, Google, AddThis,  Tripadvisor, etc.) may be changed without prior notice to the service providers, as the service is not provided by Hungarospa and its partners.

You can read more about third party cookies here https://www.google.com/policies/technologies/types/,   and privacy here https://www.google.com/analytics/learn/privacy.html?hl=hu.  

4. What else do you need to know about our data management on our website?

 The personal data you provide to us voluntarily when registering or contacting our Company, we therefore ask you to gradually take care of their truthfulness, correctness and accuracy when providing us with your data, for which you are responsible. Incorrect, inaccurate or incomplete data may prevent you from using our services.

If you do not provide your own personal data but that of another person, we will assume that you have the necessary authorisation to do so.

You may withdraw your consent to data processing at any time, free of charge

• by deleting the registration,
• by withdrawing consent to the processing; or
• by withdrawing or requesting the blocking of any consent to the processing or use of data that must be completed during registration.

For technical reasons, we have a 15-day deadline for registering the withdrawal of consent, but please note that we may process certain data after the withdrawal of consent in order to comply with a legal obligation or to pursue our legitimate interests.

In the event of the use of misleading personal data, or if one of our visitors commits a crime or attacks our Company’s system, we will delete your data immediately upon termination of your registration or, if necessary, retain it for the duration of the civil liability or criminal proceedings.

5. What do you need to know about our data management for newsletter (direct marketing) purposes?

By entering your personal data in the newsletter registration area (i.e. by clearly indicating your intention to consent), you can give your consent to us using your personal data for marketing purposes. In this case, we will also process your data for the purpose of sending you newsletters (direct marketing) and will send you advertising and other information and offers in our newsletter (GDPR § 6).

You can withdraw your consent at any time, free of charge.You can delete your data from the database at any time by clicking on the unsubscribe link in our newsletter.

In any case, the cancellation of the registration will be considered as a withdrawal of consent.

For technical reasons, a 15-day deadline is set for the registration of the withdrawal or cancellation of individual consents.

6. What do you need to know about prize draws?

Our Company may organise prize draws as part of a campaign, the terms and conditions of which are set out in a separate policy. The rules of the current promotion can always be found on the home page of our website, centrally located link.

7. Other data management issues

We may only transfer your data within the limits set by law and, in the case of our data processors, we ensure that they cannot use your personal data for purposes that are not in accordance with your consent by setting contractual conditions. For more information, see 2. Please see section 2.

Our company does not transfer data abroad.

The court, the prosecution and other authorities (e.g. police, tax authorities, National Authority for Data Protection and Freedom of Information) may contact our Company for information, data or documents. In such cases, we must comply with our obligation to provide information, but only to the extent strictly necessary to achieve the purpose of the request.

Our contractors and employees involved in the processing of your personal data are entitled to have access to your personal data to the extent specified in advance, subject to confidentiality obligations.

We will take appropriate technical and other measures to protect your personal data and to ensure its security, availability and to protect it from unauthorised access, alteration, damage or disclosure and any other unauthorised use.

As part of our organisational measures, we control physical access in our buildings, provide continuous training for our employees and keep paper documents locked away with appropriate protection. Technical measures include encryption, password protection and anti-virus software. Please note, however, that data transmission via the Internet cannot be considered a fully secure transmission. While we make every effort to ensure that our processes are as secure as possible, we cannot accept full responsibility for the transmission of data via our website, but we do maintain strict standards for the security of your data and the prevention of unlawful access to data received by us.

In relation to security issues, we ask for your help in carefully remembering your password to access our website and not to share this password with anyone.

8. What are your rights and remedies?

About data processing

• request information on,
• may request the rectification, modification or integration of their personal data processed by us,
• may object to the processing and request the erasure and blocking of their data (except for mandatory processing),
• have a right of appeal to a court,
• lodge a complaint or take action with the supervisory authority (https://naih.hu/panaszuegyintezes-rendje.html).

Supervisory Authority: National Authority for Data Protection and Freedom of Information

• Office: 1055 Budapest, Falk Miksa u. 9-11.
• Postal address: 1363 Budapest, PO Box 9.
• Phone: +36 (1) 391-1400
• Fax: +36 (1) 391-1410
• E-mail:ugyfelszolgalat@naih.hu
  Website:https://naih.hu/

At your request, we will provide with information about the personal data we process about you and the data we or our data processors process

• about your data,
• their source,
• the purposes and legal basis of the processing,
• and, if this is not possible, the criteria for determining this period,
• the names and addresses of our data processors and their data processing activities,
• the circumstances and effects of data breaches and the measures we have taken to prevent and respond to them; and
• the legal basis and recipient of the transfer of your personal data.

We will provide you with information within 15 days (but not more than 1 month) of the request. The information will be provided free of charge unless you have already submitted a request for information on the same data in the current year. We will reimburse you for any charges you have already paid if we have processed the data unlawfully or if the request for information has led to a correction. We may only refuse to provide information in cases provided for by law, by indicating the legal position and by informing you of the possibility of judicial remedy or recourse to the Authority.

Our Company will notify you and all those to whom it has previously disclosed the data for processing purposes of the rectification, blocking, marking and erasure of personal data, unless the non-notification is not in your legitimate interest.

If we do not comply with your request for rectification, blocking or erasure, we will provide you with the reasons for our refusal in writing or, with your consent, by electronic means within 15 days (but not more than 1 month) of receipt of your request and inform you of the possibility of judicial remedy and of recourse to the Authority.

If you object to the processing of your personal data, we will consider your objection within 15 days of your request (but not later than 1 month) and inform you in writing of our decision. If we decide that your objection is justified, we will stop the processing, including any further collection and further transfer, and block the data, and notify the objection and any action taken in response to it to all those to whom we have previously disclosed the personal data to which the objection relates and who are under a duty to act in order to exercise the right to object.

We will refuse to comply with the request if we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. If you do not agree with our decision or if we fail to comply with the time limit, you have 30 days from the date of notification of the decision or the last day of the time limit to take legal action.

Data protection litigation falls within the jurisdiction of the courts, which may, at the option of the data subject, be brought before the courts of the place of residence or domicile of the data subject. A foreign national may also lodge a complaint with the supervisory authority of his/her place of residence.

Please contact our Company before lodging a complaint with the supervisory authority or the courts to discuss and resolve the problem as quickly as possible.

9. What is the main legislation governing our activities?

• Regulation (EU) 2016/679 of the European Parliament and of the Council on the processing of personal data of natural persons (GDPR)
• on the right of information self-determination and freedom of information of 2011. évi CXII. law – (Info tv.)
• the Civil Code 2013. V of 2013 (Civil Code)
• on certain aspects of electronic commerce services and information society services of 2001. évi CVIII. law – (Eker tv.)
• the Electronic Communications Act 2003. C. of 2003 – (Ehtv)
• the 1997 Act on consumer protection. évi CLV. law (Fogyv tv.)
• on complaints and notifications of public interest 2013. CLXV. Act of 2013 on. (Pktv.)
• on the basic conditions and certain limitations of commercial advertising activities of 2008. évi XLVIII. Act (Grtv.)

1. Amendments to the Privacy Notice

Our Company reserves the right to modify this Privacy Notice and will inform the data subjects accordingly. The publication of information on data management on the  https://www.hungarospa.hu/Egyeb-tajekoztatas website.

2018. 05.24