top of page


                                                                                     Privacy Policy

Our company pays special attention to handling personal data in accordance with the provisions of the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC) in terms of protecting the personal data of natural persons, ensuring their storage, and use.

We hereby inform the visitors of our website (hereinafter referred to as "Users") about the personal data we process, the principles and practices we follow in the processing of personal data, as well as the methods and options for exercising Users' rights.

  1. This Privacy Policy applies to the processing of personal data during the visit of the website (hereinafter referred to as the "Website"), while we provide separate information regarding other data processing activities.

  2. Data Controller's details and contact information:

Name: Szalai Gábor János sole proprietor (hereinafter referred to as the "Data Controller")

Registered office: 1039 Budapest, Hímző utca 5. I./5.

Email address:

Phone number: +36 30 237 7950

    3. Voluntary consent

By using the Website, the User accepts the provisions of this Privacy Policy and consents to the data processing activities defined below.

    4.Processed data

4.1. Data provided during quotation request

When requesting a quotation for the services listed on the Website, the User has the option to provide their email address and personal data included in their quotation request to the Data Controller at their own discretion.

4.2. Use of email addresses

The Data Controller uses the email addresses it manages only for sending informative emails in the manner specified here.

The management of email addresses primarily serves the identification of the User and facilitates communication with the Data Controller during the provision of services (e.g., quotation requests).

5.Technical Data, Cookies

The data of the user's logging computer that is generated during the use of the service and recorded by the Provider's system as a result of technical processes. These particularly include the date and time of the visit, the IP address of the user's computer, and the type of browser.

The automatically recorded data is logged by the system upon entry or exit without the user's separate declaration or action. Except in cases required by law, these data cannot be linked to other personal user data. Only the Data Controller has access to the data.

The Data Controller, as well as the external service providers designated below, place and read small data packets, called cookies, on and from the user's computer for the purpose of personalized service. If the browser sends back a previously saved cookie, the service provider managing the cookie has the ability to link the data saved during the user's current visits with previous data, but only with regard to its own content.

The Provider uses the following cookies:

Security cookie

Transient (session) cookies: these are automatically deleted after the user's visit

Persistent cookies: These cookies are stored in the browser's cookie file for a longer period. The duration depends on the settings applied by the user in their internet browser.

Some of these cookies are used to enable the effective and secure operation of the Provider's website; they are essential for certain features or applications of the website to function properly. Other cookies are placed to enhance the user experience (e.g., provide optimized navigation).

The "Help" function found in the menu bar of most browsers provides information on how the user can:

  • Disable cookies in their own browser

  • Accept new cookies

  • Instruct their browser to set a new cookie

  • Disable other cookies

External servers assist in the independent measurement and auditing of website traffic and other web analytics data (Google Analytics). Information about the handling of measurement data can be obtained from the following page:

The website uses Google AdWords remarketing tracking codes. Based on this, visitors to the site can be targeted with remarketing ads on web pages belonging to the Google Display Network. The remarketing code uses cookies to label visitors. Users of the website can disable these cookies by visiting the Google Ads Settings Manager and following the instructions found there. Afterward, personalized offers from the Provider will no longer be displayed to the respective user.

If you do not want Google Analytics to measure the above-mentioned data in the described manner and for the stated purpose, install a browser add-on that blocks it.

6.Purpose of Data Processing

The Data Controller stores and processes the data provided by the User strictly for the purpose of fulfilling inquiries, maintaining communication, enabling invoicing if necessary, and for the later proof of the terms of the concluded contract.

The purpose of automatically recorded data is statistical analysis and technical development of the website.

The Data Controller will not use the provided personal data for purposes other than those defined above. The disclosure of personal data to third parties or authorities is only possible with the prior express consent of the User, unless required otherwise by law.

In all cases where the Data Controller intends to use the provided data for a purpose other than the original purpose of data collection, the User will be informed and their prior express consent will be obtained, or they will be provided with the opportunity to prohibit such use.

7.Legal Basis for Data Processing

The legal basis for data processing, concerning the protection of personal data and the free flow of such data for natural persons, in connection with the use of services available on the website, is the voluntary consent of the User, based on Article 6(1)(a) of the GDPR.

The User can withdraw their consent to data processing at any time, in which case the Data Controller will delete all personal data of the User from the system.

8.Duration of Data Processing

In the absence of withdrawal, the duration of data processing is determined by the specific cases of data processing as defined in this Data Processing Information.

9.Rights of the Data Subject

9.1nformation and Access to Personal Data

The User has the right to access their personal data stored by the Data Controller and to obtain information regarding their processing. They are entitled to verify what data the Data Controller holds about them and to request access to their personal data. The User must submit their request for access in writing (via email or postal mail) to the Data Controller. The Data Controller will provide the information to the User in a widely used electronic format, unless the User requests it in writing on paper. The Data Controller does not provide oral information regarding access over the phone.

In the case of exercising the right of access, the information covers the following:

  • Determining the scope of processed data, purpose, duration, and legal basis of data processing.

  • Data transfers: To whom the data has been or will be transferred.

The source of the data should be indicated.

The Data Controller provides the User with a copy of their personal data free of charge for the first occasion. For any additional copies requested by the Data Controller, a reasonable fee based on administrative costs may be charged. If the Data Subject requests the release of a copy electronically, the Data Controller will provide the information via email in a widely used electronic format.

After receiving the information, the User, if they do not agree with the processing of their personal data or the accuracy of the processed data, may request rectification, supplementation, erasure, restriction of processing, or object to the processing of such personal data according to Section 9.6. The procedure specified in Section 9.7 can also be initiated.

9.2 Right to Rectification and Supplementation of Processed Personal Data

Upon a written request from the User, the Data Controller shall rectify without undue delay any inaccuracies in the personal data designated by the User and complete the incomplete data with the content specified by the User. The Data Controller shall inform all recipients to whom the personal data has been disclosed about the rectification or supplementation, unless this proves impossible or involves disproportionate effort. If requested in writing, the Data Controller shall inform the User about the recipients' data.

9.3 Right to Restriction of Processing

The User may request the Data Controller in writing to restrict the processing of their data if:

  • They contest the accuracy of the personal data, in which case the restriction applies for the period allowing the Data Controller to verify the accuracy of the personal data.

  • The processing is unlawful, and the User opposes the erasure of the data, requesting the restriction of their use instead.

  • The Data Controller no longer needs the personal data for processing purposes, but the User requires them for the establishment, exercise, or defense of legal claims.

  • If the User objects to the processing of data, the restriction applies until it is determined whether the legitimate grounds of the Data Controller override the User's legitimate grounds.

During the restriction period, except for storage, the processing of the personal data affected by the restriction is only possible with the User's consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. The Data Controller shall inform the User, whose request for restriction of processing has been granted, in advance about the lifting of the restriction on processing.

9.4 Right to Erasure (Right to be Forgotten)

Upon the User's request, the Data Controller shall erase the relevant personal data concerning the User without undue delay if one of the specified reasons exists:

  • The personal data is no longer necessary for the purposes for which the Data Controller collected or otherwise processed them.

  • The User withdraws their consent on which the data processing is based, and there is no other legal ground for the processing.

  • The User objects to the data processing for reasons related to their particular situation, and there are no overriding legitimate grounds for the processing.

  • The User objects to the processing of their personal data for direct marketing purposes, including profiling, if it is related to such direct marketing.

  • The personal data is processed unlawfully by the Data Controller.

  • The personal data has been collected in relation to the offering of information society services directly to children.

The User cannot exercise the right to erasure if the data processing is necessary for:

  • Exercising the right to freedom of expression and information.

  • Public interest in the field of public health.

  • Archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes, where erasure would render impossible or seriously impair the achievement of the data processing objectives.

  • The establishment, exercise, or defense of legal claims.

9.5 Right to Data Portability

Data portability enables the User to obtain their own data provided to the Data Controller's system and use it for their own purposes through various designated service providers. The right to data portability is limited to the data specifically provided by the User; it does not extend to other data (e.g., statistics, etc.).

The User has the right to receive their personal data concerning them, which is processed by the Data Controller's system, in a structured, commonly used, machine-readable format and has the right to transmit those data to another data controller or request the direct transfer of the data to another data controller, if technically feasible, within the Data Controller's system.

The Data Controller fulfills requests related to data portability exclusively based on written requests sent via email or postal mail. To fulfill the request, the Data Controller needs to ensure that the User exercising this right is indeed the authorized User. To achieve this, it is necessary for the User to appear in person following the notification, so that the Data Controller can identify the requesting User using the data available in its system. Within the scope of this right, the User can request the portability of the data provided by themselves to the Data Controller. Exercising this right does not automatically result in the deletion of the data from the Data Controller's systems, allowing the User to continue using the Data Controller's services after exercising this right.

9.6 Objection to the Processing of Personal Data

The User has the right to object at any time to the processing of their personal data, including profiling, and has the right to object to the processing of their personal data for direct marketing purposes, including profiling. If the User objects to the processing of personal data, the Data Controller will delete the User's personal data from its system. The User can object in writing (via email or postal mail).

9.7 Deadline for Fulfilling Requests

The Data Controller shall inform the User of the measures taken without undue delay and in any event within one month of receiving the request, as described in point 9. If necessary, taking into account the complexity and number of requests, this period may be extended by two months, but the Data Controller shall inform the User of the reasons for the delay within one month of receiving the request, indicating the reasons for the delay. If the User has submitted the request electronically, the information shall be provided electronically by the Data Controller, unless otherwise requested by the User.

10.Enforcement Options

The User may exercise their rights by submitting a written request via email or postal mail.

The User cannot enforce their rights if the Data Controller proves that they are not or were not in a position to identify the User. If the User's request is clearly unfounded or excessive (especially considering its repetitive nature), the Data Controller may charge a reasonable fee for fulfilling the request or refuse to take action. The burden of proof for this lies with the Data Controller. If the Data Controller has doubts about the identity of the natural person submitting the request, they may request further information to confirm the identity of the requester.

The User may address the National Data Protection and Freedom of Information Authority (1125 Budapest, Szilágyi Erzsébet fasor 22/c.; or enforce their rights before a court based on the Information Act, the Regulation, and Act V of 2013 on the Civil Code.

11.Handling of Data Breaches

A data breach refers to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data transmitted, stored, or otherwise processed. The Data Controller keeps a record of data breaches for the purpose of monitoring measures related to data breach management, notifying the supervisory authority, and informing the User. The record includes the scope of personal data affected by the breach, the number of individuals affected, the date and circumstances of the breach, its consequences, and the measures taken to mitigate it. In the event of a data breach, except when the breach is unlikely to result in a risk to the rights and freedoms of natural persons, the Data Controller promptly, but no later than within 72 hours, notifies the User and the supervisory authority of the data breach.

12.Other Provisions

The Data Controller reserves the right to unilaterally modify this Privacy Policy, with prior notice to Users using the website.

The modifications shall take effect on the date specified in the notice. By using the website, the User accepts the provisions of the modified Privacy Policy through conduct indicating acceptance.

If the User provides the data of a third party during the use of the service, request for quotation, or for any other purpose, or causes any harm in any way during the use of the website, the User shall be held liable, and the Data Controller is entitled to enforce compensation claims against the User.

The Data Controller does not verify the personal data provided to them. The person providing the data is solely responsible for its accuracy. When providing an email address, the User also assumes responsibility for ensuring that the provided email address is used exclusively by them to access the service.

Effective from: September 1, 2019.

bottom of page