Thank you for your interest in Vertour Ltd. and its services!
The trust of our visitors is of paramount importance to us, and we take special care to protect the personal data of our visitors. Accordingly, we inform our Visitors about our data management practices in relation to the use of our website in the following privacy notice.
In preparing this privacy notice, we have taken particular account of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation), Act CXII of 2011 on the Right to Information Self-Determination and Freedom of Information and Act V of 2013 on the Civil Code. VERTOUR Tourism, Hospitality, Trade and Services Limited Liability Company therefore pays particular attention to the GDPR requirements for all data processing.
Data controller and contact details:
VERTOUR Tourism, Hospitality, Trade and Services Limited Liability Company
Tel.: +36 34 316 733
Email: info@vertour.hu
Concepts
1.
„personal data” means any information relating to an identified or identifiable natural person („data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
2.
„processing” means any operation or set of operations which is performed upon personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure, transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
3.
„restriction of processing” means the marking of stored personal data for the purpose of restricting their future processing;
4.
„controller” means a natural or legal person, public authority, agency or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or specific criteria for the designation of the controller may also be determined by Union or Member State law;
5.
„processor” means a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller;
6.
„recipient” means a natural or legal person, public authority, agency or any other body to whom or with which personal data is disclosed, whether or not a third party. Public authorities which may have access to personal data in the context of an individual investigation in accordance with Union or Member State law are not recipients; the processing of those data by those public authorities must comply with the applicable data protection rules in accordance with the purposes of the processing;
7.
„third party”: a natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor or the persons who, under the direct authority of the controller or processor, are authorised to process personal data;
8.
„the data subject's consent” means a freely given, specific, informed and unambiguous indication of his or her wishes by which the data subject signifies, by a statement or by an act expressing his or her unambiguous consent, that he or she signifies his or her agreement to the processing of personal data concerning him or her;
9.
„data breach” means a breach of security that results in the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;
10.
„terminal device” means the computing or telecommunication device (such as, but not limited to, a laptop, desktop computer, tablet, smartphone) from which the Website is visited and/or accessed.
General information
We would like to inform our Visitors that the https://vertour.hu/ [https://vertour.hu/] (hereinafter also referred to as the Website), in the course of their activities, including but not limited to visiting and using the Website, contacting you on the Website, handling complaints, personal data are processed and used.
It is a fundamental principle of our company that personal data are processed only lawfully, on an appropriate legal basis, in compliance with data protection principles, in a manner that respects the rights of data subjects, in a transparent manner for data subjects, and only for the purposes for which the data are processed, in accordance with the principles of data security and data economy. In our data management practices, we only process personal data that is necessary for the purposes of the processing, compatible with the purposes of the processing and adequate for the purposes of the processing. Accordingly, in our Company's processing practices, we process personal data only to the extent and for the duration necessary to achieve the purpose.
We inform our Visitors that our data management practices are always in accordance with the applicable laws. Accordingly, in our data management practices, we pay particular attention to the provisions of the following laws:
1.
REGULATION (EU) No 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation) (hereinafter referred to as GDPR),
2.
Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (hereinafter referred to as the "Infotv."),
3.
Act C of 2000 on Accounting (hereinafter referred to as the Accounting Act),
4.
Act CL of 2017 on the Rules of Taxation
5.
Act CVIII of 2001 on certain aspects of electronic commerce services and information society services (hereinafter: E-commerce Act)
Visit the website
When you visit our website, for security reasons, we record the IP address, operating system and software environment, browser, time of visit and pages visited of the Visitor's terminal device. In addition to network, server and data security, this data is recorded in order to optimise and improve online services. Accordingly, the legal basis for data processing is based on Article 6 (1) (f) GDPR and Article 6 (1) (b) of the Info Act.
Purpose of processing:
data security and optimisation of services
Legal basis for processing:
GDPR Article 6 (1) (f); Info tv. § 5 (1) (b)
Data processed:
IP address, operating system and software environment, browser, time of visit, pages visited
Contact us
Visitors can contact us at the following email address: info@vertour.hu. The personal data you provide when contacting us will be processed solely for the purpose of and in connection with contacting you and for the purpose of and in connection with responding to your contact. By contacting us, you give your explicit consent to the processing of your personal data. Accordingly, the legal basis for the processing is Article 6 (1) (a) GDPR and Article 6 (1) (a) of the Info tv. Article 5 (1) (b) of the GDPR.
Purpose of processing:
reply to contact
Legal basis for processing:
GDPR Article 6 (1) (a); Info tv. Article 5 (1) (b) (data subject's consent)
Data processed:
user name, user email address, date of request, other personal data provided by the data subject
Duration of data processing:
until the request for cancellation by the person concerned, but for a maximum of 5 (five) years
Complaints handling
Our visitors have the right to complain about the services. We inform our Visitors that the personal data provided in connection with customer complaint handling will be processed solely for the purposes of and in connection with complaint handling, in particular, but not limited to, the purpose of and in connection with responding to, handling and following up complaints. By making a complaint, you give your explicit consent to the processing of your personal data. Accordingly, the legal basis for the processing is Article 6 (1) (a) GDPR and Article 6 (1) (a) of the Info tv. Article 5 (1) (b) of the GDPR. In the case of complaint handling, the legal basis for processing may be Article 6 (1) (b) GDPR (performance of a contract) and Article 6 (1) (c) GDPR (compliance with a legal requirement) in addition to the data subject's consent.
Purpose of processing:
answering and handling complaints received, following up complaints
Legal basis for processing:
GDPR Article 6 (1) (a); Info tv. Article 5(1)(a) (data subject's consent), GDPR Article 6(1)(b) (performance of contract), GDPR Article 6(1)(c) (compliance with legal requirements)
Data processed:
name, address, signature, date of conclusion/acceptance of contract, name of service purchased, other personal data provided by the data subject
Duration of data processing:
until the expiry of the consumer and warranty claims related to the purchased service, and until the time limit prescribed by law, or 8 years in the case of a concluded contract pursuant to Section 169 (2) of the Accounting Act.
Data processors
We inform our Visitors that the entities listed below process certain personal data of the data subject on behalf of our Company (data processors). The processing includes the performance of certain specified technical tasks related to the processing of the personal data of the data subject.
Name: MBH Bank Plc. 1056 Budapest,
Address: 38 Váci u.
Activity: credit card transaction (transfer) authentication
Data processed: transaction number, identifier, time, amount
Name: BGP Lawyers' Association
Participants in the partnership: Balsai Law Firm, Gremsperger Law Firm, Petrétei Law Firm (law firm representing the partnership)
Association address: 1137 Budapest, Budai Nagy Antal u. 3.
Activity: legal representation, advocacy
Scope of data processed: any and all personal data within the meaning of this notice in the event of a claim.
Cookies („cookies”)
In order to provide a better user experience and a more personalised service, the Data Controller places small data packets, so-called cookies, on the Visitor's (User's) terminal device, which enable our Website to recognise the terminal device used by the data subject when a connection is established between the data subject's terminal device and our Website. The Visitor may delete cookies from his terminal device and disable the use of cookies in his browser settings. If cookies are rejected and/or deleted, the usability of the Website may be limited, which the Visitor acknowledges.
Our Website uses both temporary and permanent cookies. Temporary cookies are placed on the terminal device of the user only during a specific session, after which they are automatically deleted. Permanent cookies used on our Site will remain on the terminal device of the data subject until the data subject deletes the cookies. Our Tomorrow also uses cookies that collect information about the internet browsing habits of the data subject. The purpose of such data collection is to enable us to display personalised advertising to the data subject on the data subject's terminal device.
Please note that we use the following cookies on our Website:
Cookie name: Google Analytics
Purpose of the cookie: to provide visitor analytics
Nature of the cookie: behavioural
Cookie lifetime: based on Google's current terms and conditions
Legal basis for data processing: article 6 (1) (a) GDPR; Info tv. Article 5(1)(b) (data subject's consent), Article 13/A(4) of the E-kertv.
Cookie name: Session ID
Purpose of the cookie: to ensure the proper functioning of the Website
Nature of the cookie: not behavioural
Cookie shelf life: 1 hour
Legal basis for data processing: article 6 (1) (a) GDPR; Info tv. Article 5(1)(b) (data subject's consent), Article 13/A(4) of the E-kertv.
We inform our Visitors that plug-ins, links, banners and hyperlinks on our site may direct our Visitors to other websites. Neither the editorial staff of our Site, nor the operator of our Site, nor our Company accepts any responsibility for the content of other websites. These websites should be visited or used by our Visitors (Users) at their own risk.
We inform our Visitors that further rules on the use of cookies can be found in the Cookie Policy on the Website. [https://vertour.hu/cookie-szabalyzat/]
Rights concerned
If you, as a data subject, wish to exercise your rights under the GDPR and the Info law, please contact our Data Protection Officer at any time using the contact details above. Our visitors have the following rights:
1.
The right to information about the processing and the data processed (right of access, Article 15 GDPR),
2.
Right to rectification of inaccurate data or completion of incomplete data (right to rectification, Article 16 GDPR),
3.
The right to request the erasure of personal data and, where personal data have been disclosed, the right to inform other controllers processing the data of the request for erasure (right to erasure, Article 17 GDPR),
4.
The right to request restriction of processing (right to restriction of processing, Article 18 GDPR),
5.
The right to receive personal data relating to him or her in a structured, commonly used, machine-readable format and to request the transfer of these data to another controller (right to data portability, Article 20 GDPR),
6.
The right to object to processing in order to stop processing (right to object, Article 21 GDPR),
7.
The right to withdraw your consent at any time in order to stop processing based on your consent. Withdrawal of consent does not affect the lawfulness of the processing carried out prior to the withdrawal (right to withdraw consent, Article 7 GDPR).
8.
The right to lodge a complaint with a supervisory authority if you consider that the processing infringes the provisions of the GDPR (right to lodge a complaint with a supervisory authority, Article 77 GDPR).
If you have a complaint, you can contact the supervisory authority using the following contact details:
National Authority for Data Protection and Freedom of Information
1055 Budapest, Falk Miksa utca 9-11.
Postal address: 1363 Budapest, PO Box 9. 4.
E-mail: ugyfelszolgalat@naih.hu
