The protection of natural persons in the management of their personal data is a fundamental right. Article 8 (1) of the Charter of Fundamental Rights of the European Union (Charter) and Article 16 (1) of the Treaty on the Functioning of the European Union (TFEU) state that everyone has the right to the protection of personal data relating to him.
Protecting your data is important to us. This privacy notice explains how spanishvibes collects personal information and describes how to use the data.
Please refer to the details of this product in this Privacy Statement as it applies to spanishvibes and your relationship.
Data Manager
Name: Maria Ladóczki
E-mail: info@spanishvibes.com
Skype: spanishvibes2018
Address: Hungary / Kiskunhalas
For the purposes of this Regulation:
‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
‘processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
’controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
‘consent’ of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
’protest’ means the statement of the person concerned that objects to the handling of his or her personal data, asks for the termination of the data processing and the cancellation of the data processed,
‘personal data breach’ means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;
Lawfulness of processing
Where processing is based on consent, the controller shall be able to demonstrate that the data subject has consented to processing of his or her personal data.
The data subject shall have the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Prior to giving consent, the data subject shall be informed thereof. It shall be as easy to withdraw as to give consent.
Details of visitors using www.spanishvibes.hu
During the browsing of the site, technical information is recorded for statistical purposes. (IP address, duration of visit, etc.).
During the visit of this website one or more cookies – a small file containing a string of characters -will be sent to the visitor’s computer, which will allow its browser to be uniquely identified.
These cookies are provided by Google and are used through Google Adwords. These cookies will only be sent to the visitor’s computer by visiting some sub-pages, so in these cases we only store the fact and the time of visiting that sub-page, not any other information.
The use of these cookies is as follows: External service providers, including Google, are stored with these cookies if the customer has previously visited the advertiser’s site and thereby displays ads to the Customer through third-party service providers, including Google, partners’ websites.
Customer can disable Google cookies on the Google ads disabling page. (You can also tell Customer that the Network Advertising Initiative unsubscribe page may disable external service providers’ cookies.)
Cookies Applied:
– Analytics, tracking cookies
– Web site tracking
The “Help” feature in most of the browser’s menubar provides information on how to use the browser:
– how to disable cookies,
– how to accept new cookies or
– how to instruct your browser to set a new cookie or
– how to turn off other cookies.
The purpose of data management
Protecting the rights of visitors to the site, technical development of the IT system, and monitoring the operation of the service. In case of abuse, determine the source of abuse.
Personal data collected by us
Spanishvibes collects data in order to provide the best user experience. You enter these details directly, for example, when you enter your name, e-mail address, or message within spanishvibes / connection.
The visitor can contact the data manager, the messages will be deleted by the data controller within 30 days until the question / request is answered.
In case of protection of data manager’s rights, it will be archived and stored till the time needed.
The data controller treats personal information confidentially and does not disclose it to unauthorized persons.
Facebook / Instagram
The data manager is available on Facebook and on Instagram.
You can opt to subsicribe though the Facebook wall by clicking on the „like” button You can opt out of the subsrciption by clicking on the „dislike” button.
Within 30 days of the submission of the application, the Data Handler shall send information on the data, the purpose, the legal basis, the duration, the date, the circumstances, the effect of the data protection incident, the measures taken to remedy it, within 30 days of the submission of the request
Right to rectification
The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
Right to erasure (‘right to be forgotten’)
The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
(a) | the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
(b) | the data subject withdraws consent on which the processing is based according to point (a) of Article 6(1), or point (a) of Article 9(2), and where there is no other legal ground for the processing;
Responsibility of the controller
Taking into account the nature, scope, context and purposes of processing as well as the risks of varying likelihood and severity for the rights and freedoms of natural persons, the controller shall implement appropriate technical and organisational measures to ensure and to be able to demonstrate that processing is performed in accordance with this Regulation. Those measures shall be reviewed and updated where necessary.
Data protection by design and by default
Taking into account the state of the art, the cost of implementation and the nature, scope, context and purposes of processing as well as the risks of varying likelihood and severity for rights and freedoms of natural persons posed by the processing, the controller shall, both at the time of the determination of the means for processing and at the time of the processing itself, implement appropriate technical and organisational measures, such as pseudonymisation, which are designed to implement data-protection principles, such as data minimisation, in an effective manner and to integrate the necessary safeguards into the processing in order to meet the requirements of this Regulation and protect the rights of data subjects.
The controller shall implement appropriate technical and organisational measures for ensuring that, by default, only personal data which are necessary for each specific purpose of the processing are processed. That obligation applies to the amount of personal data collected, the extent of their processing, the period of their storage and their accessibility. In particular, such measures shall ensure that by default personal data are not made accessible without the individual’s intervention to an indefinite number of natural persons.
Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, every data subject shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement if the data subject considers that the processing of personal data relating to him or her infringes this Regulation.
The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78.
Right to an effective judicial remedy against a supervisory authority
Without prejudice to any other administrative or non-judicial remedy, each natural or legal person shall have the right to an effective judicial remedy against a legally binding decision of a supervisory authority concerning them.
Without prejudice to any other administrative or non-judicial remedy, each data subject shall have the right to a an effective judicial remedy where the supervisory authority which is competent pursuant to Articles 55 and 56 does not handle a complaint or does not inform the data subject within three months on the progress or outcome of the complaint lodged pursuant to Article 77.
Proceedings against a supervisory authority shall be brought before the courts of the Member State where the supervisory authority is established.
Where proceedings are brought against a decision of a supervisory authority which was preceded by an opinion or a decision of the Board in the consistency mechanism, the supervisory authority shall forward that opinion or decision to the court.
Right to compensation and liability
Any person who has suffered material or non-material damage as a result of an infringement of this Regulation shall have the right to receive compensation from the controller or processor for the damage suffered.
Any controller involved in processing shall be liable for the damage caused by processing which infringes this Regulation. A processor shall be liable for the damage caused by processing only where it has not complied with obligations of this Regulation specifically directed to processors or where it has acted outside or contrary to lawful instructions of the controller.
A controller or processor shall be exempt from liability under paragraph 2 if it proves that it is not in any way responsible for the event giving rise to the damage.
Other
At any time, the data manager is entitled to modify this Privacy Policy, and the amendment will come into effect at the same time as it appears on the website.
For privacy issues, contact the National Data Protection and Inforation Authority for assistance:
mail address: 1530 Budapest, Pf .: 5.
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22 / c
Phone: +36 (1) 391-1400
E-mail: ugyfelszolgalat@naih.hu
URLhttp: //naih.hu
Last updated: May 15, 2018
Copyright 2018 – spanishvibes