The operator of the website www.ayuraherbal.hu, Ayura Herbal Kft. as DATA CONTROLLER shall respect the right for the protection of personal data, according to which everyone determines the use and disclosure of their personal information themselves.
Legal basis of data management:
For the protection of personal data, Data Controller establishes the rules on the management of personal data, keeping in view Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data signed in Strasbourg on 28 January 1981, as follows.
In these Rules, Data Controller lays down the principles and practice related to the management and protection of the personal data disclosed by the visitors of this Website.
By using this Website, you accept the terms and conditions as well as the information outlined in these Rules.
Purpose of data management:
Data Controller manages personal data solely for the purposes of enabling to use the website and Data Controller’s services and maintain the business relationship with Data Controller.
Recording and storing the dates of visits and the types of the browsing and operating systems used serve solely statistical purposes.
Visitors’ data already registered with the Data Controller are regularly updated at the times of potential later contact.
Specification of data management:
The Website can be usually visited free of charge and without giving your personal data, but registration may be required for accessing certain parts of the Website, and certain personal data of visitors (e.g. name, e-mail address, etc.) may be required in order to access the full range of services offered by the Website. During any registration on the Website data provision is always voluntary; visitors may freely decide whether or not to disclose the requested data. In the case of persons registered on the Website, data management is performed based on their voluntary and express approval.
Term of data management:
Data Controller shall continue to manage the personal data only as long as the purpose of data management exists. If the purpose of data management ceases to exist, the personal data shall be deleted at the request of the person concerned.
Information for User, User’s consent:
Before the recording of personal data, User is duly informed and User’s consent to the data management is requested in every case. The information provided to user includes the voluntary nature of the data disclosure, the range of the data to be managed, the purpose and term of data management, the specification of the data controller and the specification of the data processor if any.
Visitors’ rights related to the management of their personal data:
Visitors may request information on the management of their personal data. At their request, Data Controller shall inform User on User’s data managed, on the purpose, legal basis and term of the data management, on Data Controller’s name and address (seat) as well as on Data Controller’s activity related to the data management. The request for information should be sent by email to email@example.com. Data Controller shall answer information requests in writing, within 30 days.
User is entitled to ask for corrections in their personal data (specifying the correct data) or for having their personal data deleted (i.e. withdraw their consent). Corrections or cancellation can be requested by email, to be sent to firstname.lastname@example.org. Data Controller shall carry out the correction in writing and inform User of the former. User may at any time, without stating the reason, withdraw their earlier given consent. After receiving the notice about withdrawing the consent, Data Controller shall with no delay take measures to terminate the data management, irreversibly delete the personal data affected by the withdrawal, call upon the data processor to delete the data and inform User when all the former have been completed. User may seek legal remedy in case their rights related to their personal data have been violated.
Users who believe their right to the protection of personal data has been violated may appeal to the civil court with jurisdiction at the Data Controller’s seat or to the national supervisory authority specified under Article 28 of Directive 95/46/EC of the European Parliament and the Council.
Data Controller shall not reveal any personal data to third persons, lacking specific authorisation to that end, without User’s prior and well-informed consent. This does not refer, at the same time, to any potential obligatory data transfer required by the law. Before any potential data request by authorities is performed, Data Controller shall examine in the case of every data item if there in fact exists a legal basis for obligatory data transfer. In such cases, Data Controller cooperates with authorities.
To email addresses or telephone numbers given at the time of registration, Data Controller shall send electronic mail or text messages only with the applicant’s prior voluntary and express consent.
Data Controller shall take all necessary measures to ensure the safe and damage-free management of data and the setting up and operation of data management systems necessary for the former. Data Controller shall ensure that unauthorised persons should have no access to the managed data and should be unable to publish, transmit, modify or delete these data. Only Data Controller and the data processor’s employees concerned shall have access to the data managed; Data Controller shall not reveal these data to third persons with no authorisation to access the data. The data shall be stored on a Hungarian server. Data Controller shall do everything in their capacity to avoid any potential damage to or the destruction of the data. Data Controller shall oblige their employees participating in the above data management activity to comply with the above commitment. Data Controller shall under no conditions collect special data, i.e. data referring to racial origin, national or ethnic minority membership, political opinion or party affiliation, religious or other world view, membership in any interest representation organisation, health condition, addiction, sexual life or criminal record. If Data Controller learns that any user placed data in the database that qualify as special data under the law, Data Controller shall with no delay delete these data as well as the registration of the user concerned.
Data Controller is entitled to make use of the services of a data processor. The data processor shall perform their activities in compliance with their mandate, these rules and the applicable legal provisions. Data Controller shall notify the data processor when informed of any changes in the personal data made available for processing or in the manageability of these data. By using the services of www.ayuraherbal.hu User gives consent to the forwarding of their data given to the data processor.
The processing of the personal data registered on this Website shall be performed by Ayura Herbal Kft. as data processor at the same time.
The contents of the Website constitute Data Controller’s intellectual property, which shall not be used in any manner without Data Controller’s prior written permit.
The Website may also contain links to websites operated by third persons. The contents of these websites are not under Data Controller’s influence.
So as to record visitors’ visits to the Website, their IP addresses are logged; the storage of these data serves statistical purposes only. The data in the logbook file shall not be linked to other personal data on the basis of which you could be personally identified.
For further questions or remarks please contact the operator’s personnel via the following email address: email@example.com
Scope of and amendments to the data protection rules:
The scope of these Rules extends to the Data Controller and all the data obtained and managed by the Data Controller in the course of their activity.
The Data Controller reserves the right to unilaterally amend, by informing visitors, these Data Management Rules. By using the service after the amendment became effective, you accept the amended data management rules.
These amended data protection rules shall take effect on 14 January 2012.