logo

Privacy Notice Urban Garden Kft.

Urban Garden Kft. (H-1111 Budapest, Lágymányosi utca 5., www.urbangarden.hu,  sales@urbangarden.hu, phone: +36(20) 343-7207, VAT number: 22753287-2-43, hereinafter referred to as Urban Garden, Service Provider or Data Controller) as Data Controller agrees to be bound by the content of this legal notice.

This Privacy Notice sets out the data protection and data processing principles observed by Urban Garden as well as Data Controller’s data protection and data management policies.

Urban Garden undertakes to ensure that all data processing in relation to its activities comply with the requirements set out in this Notice and in the applicable laws.

Urban Garden is committed to protect the personal data of its clients and partners and considers that it is particularly important to respect its clients’ right to informational self-determination. Urban Garden will treat the personal data confidentially and take all safety, technical and organisational measures that guarantee data safety.

Definitions

  • Personal Data means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Data Processing means any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future.
  • Data Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
  • Data Processor means the natural or legal person, public authority, agency or other body which processes personal data on behalf of the data controller.
  • Third Party means the natural or legal person, public authority, agency or other body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
  • Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  • Personal data  breach means a  breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

 

Scope of personal data, purposes of processing, legal basis and retention period

The legal bases for data processing activities performed by Urban Garden Kft. are consent, contractual or legal obligations.

 

Where personal data relating to a data subject are collected from the data subject, Urban Garden Kft. shall, at the time when personal data are obtained, provide the data subject with all of the following information:

  1. the identity and the contact details of the data controller and data controller’s representative;
  2. the purposes of the processing for which the personal data are intended as well as the legal basis for the processing;
  3. the categories of the relevant person’s personal data in the event data controller did not receive the personal data from data subject;
  4. details of recipients or the category of such recipients when applicable.

 

In addition to the information referred to above, we will provide the data subject with the following further information:

  1. the period for which the personal data will be stored, or if that is not possible, the criteria used to determine that period;
  2. the right of data subject to request from the data controller access to and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to processing as well as the right to data portability;
  3. where the processing is based on consent, data subject’s right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal;
  4. the right to lodge a complaint with a supervisory authority;
  5. whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, as well as whether the data subject is obliged to provide the personal data and of the possible consequences of failure to provide such data.

 

Data subject is entitled to obtain confirmation of whether data controller processes his or her personal data and if so, to be provided with access to the personal data processed as well as to the following information:

 

The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

 

The data subject shall have the right to obtain from the data controller the erasure of personal data concerning him or her without undue delay and the data controller is obliged to erase personal data without undue delay if other conditions are met.

 

The data subject shall have the right to obtain from the data controller restriction of processing where one of the following applies:

  1. the accuracy of the personal data is contested by the data subject; in this event, restriction applies for a period enabling the data controller to verify the accuracy of the personal data;
  2. the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
  3. the data controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims, or
  4. the data subject objected to processing; in this event, restriction applies for a period data pending the verification whether the legitimate grounds of the data controller override those of the data subject.

 

Data controller shall communicate any rectification or erasure of personal data or restriction of processing carried out to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort. Data controller shall inform the data subject about those recipients.

 

The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the data controller to which the personal data have been provided, where the processing is based on consent or on a contract and the processing is carried out by automated means.

 

Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such purposes, which includes profiling to the extent that it is related to such direct marketing.

 

Where the data subject objects to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.

 

Data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her.

 

If a potential breach in Urban Garden Kft’s system is likely to result in a high risk of adversely affecting individuals' rights and freedoms, data controller shall inform those individuals involved without undue delay.

 

Storage and security measures taken to protect personal data

IT systems and other data storage locations managed by Urban Garden Kft are located at its registered seat and on its relevant servers.

 

Urban Garden will choose and operate IT devices used for personal data processing and the supply of services ensuring that the processed data

  • is accessible to the authorised persons only;
  • is authentic and authenticated;
  • can be confirmed as being unchanged;
  • is protected against unauthorised access.

 

Urban Garden shall protect, through appropriate measures, data against unauthorized access, alteration, transfer, disclosure by transmission, deletion, or destruction as well as accidental destruction, damage or rendered inaccessible due to any changes to the applied technique.

 

Urban Garden ensures the safety of data processing by technical and organisational means corresponding to the established safeguards that provide an appropriate level of protection against the risks arising in connection with data processing.

 

Data subjects shall be warned, however, that electronic messages transmitted via the internet irrespective of the protocols (e-mail, web, ftp, etc.) are vulnerable to threats of the network which result in dishonorable conduct, the contesting of the agreement, disclosure or corruption of the information. Urban Garden Kft. will take all appropriate precautionary measures to prevent such threats.

 

We do not use a data processor.

 

The personal data processed by Urban Garden will be made available primarily to our staff members and will not be transferred to any third party unless there is a basis for legitimate interests (e.g. debt collection), or it is indispensable for complying with a statutory obligation or data subject has given express consent to such transfer.

 

Cookies

During visits to its website at urbangarden.hu, Service Provider places one or more cookies - small text files containing a unique identifier - on the visitor’s computer, which allow the visitor’s browser to be uniquely identified. These cookies will only be sent to the visitor's computer when visiting certain sub- pages, so in this case only the act and time of visiting that sub-page will be stored and no additional information.

 

Such cookies will be used as  follows:  third party service  providers, including Google, will  store information on the visitor’s previous visits to the website of Urban Garden.

 

If the visitor do not want Google or other service providers to monitor the above data in the way and for the purposes described above, he or she may install an opt-out browser add-on.

 

In most browsers the “Help” menu provides information about the particular setting options to

  • block cookies;
  • accept new cookies; or
  • add exceptions; or
  • disable cookies.

 

Customer service

If you have any comment, question or complaint concerning our company, our data management or services feel free to contact us. Our contact details are listed on our website.

 

Other provisions

We will provide you with information about data processing activities not listed in this Privacy Notice when the data is collected.

 

Data Controller reserves the right to amend this Privacy Notice unilaterally. Data subjects shall receive notifications of such updates.

 

We do not verify personal data. Ensuring accuracy of data provided is the responsibility of the person providing them. It is the data subject’s responsibility to make sure that the email address provided for contacting us belongs to his/her account.

 

We hereby inform our customers that law enforcement agencies, the National Authority for Data Protection and Freedom of Information or other third parties as required by, and in accordance with, applicable law or regulations may request information, disclosure of data or copies of documents from Urban Garden Kft.

 

Procedures

Data controller will respond to requests to provide information, delete or rectify data within 30 days. Should it fail to fulfil such requests made by data subject, data controller will provide grounds for declining the request in writing.

 

Data Protection Authority

Complaints may be filed to National Authority for Data Protection and Freedom of Information. Contact information:

 

National Authority for Data Protection and Freedom of Information, H-1125 Budapest, Szilágyi Erzsébet fasor 22/C., Mailing address: H-1530 Budapest, Pf.: 5., Phone: 06.1.391.1400, Fax: 06.1.391.1410, Email: ugyfelszolgalat@naih.hu, Web: http://www.naih.hu

  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo
  • Brands Logo