Data Protection
What Kind of Data Processing Do We Implement?
Data Management of Cookies
A cookie is a small text file that websites place on the user’s device to store information.
- Session cookies: They are temporary, they are deleted when the browser is closed.
- Persistent cookies: They stay longer, until a given expiration date.
- Primary cookies: Placed by the visited website.
- Third-party cookies: Placed by other domains, often for advertising purposes.
Additional information and data management guidelines: Cookie information
Reception and Selection of Applicants
Data Collection: During the application process, we request various personal data, such as name, contact details, CV.
Data Management: We use the collected data exclusively for the purposes of the recruitment process. The data is stored in secure systems and can only be accessed by staff involved in the selection process.
Data Retention: The data will be retained for a specified period even after the selection process has been completed, in order to provide you with the opportunity to apply for future job opportunities. After the data retention period has expired, the data will be securely deleted.
Data Access Rights: Applicants have the right to access the data stored about them, to request their modification or deletion, and to object to the data management.
You can find our detailed data management information regarding the application at the following link: Reception and selection of applicants data management information
Sending Portfolios to Interested Parties, Making Offers
During the data management of company interested parties, we collect and manage the following personal data: name, e-mail address, phone number, position/title, workplace/represented company. We use this data for the purpose of presenting services, compiling and sending offer packages, and preparing contracts.
You consent to this data management by initiating contact with our company (the data controller) and at the same time expressing your consent to the processing of your data in accordance with the relevant data management information.
Data Collection: We collect the name, e-mail address, telephone number, position/title and the name of the represented company of the interested parties.
Data Usage: We use the data to present the services, compile and send offer packages, and prepare contracts.
Data Retention: We store the data for the necessary time to ensure smooth communication and business processes.
Data Access Rights: Interested parties have the right to access the data stored about them, to request their modification or deletion, and to object to the data management.
You can find our data management information regarding the submission of offers at the following link: Inquiry, data management information for the submission of offers
Contact via Website
During requests for offers and inquiries on the website, we collect and manage the following personal data: name, e-mail address, phone number, position/title, workplace/represented company. We store and manage this data for the purpose of presenting services and maintaining communication.
You can find our data management information regarding inquiries and contact at the following link: Contact data management information
Data Management of Employment Services
Contract Performance and Legal Obligation: The management of the data enables the accurate and efficient conclusion and performance of contracts, as well as the smooth handling of invoicing and receivables management.
Solicitation for Marketing Purposes: Customization of marketing inquiries and offers to customers improves promotion of our services and strengthening of customer relationships.
Customer Satisfaction and Publication of References: Processing feedback received from customers and using it as a reference helps to continuously improve our services and increase our credibility.
You can find the combined data management information for our mediation services at the following link: Labor mediation data management information
Handling Witness Data
Managing witness data is essential when preparing official administration and immigration documents.
Official Administration and Preparation of Documents: Witness data is necessary for the accurate and legal preparation of various official procedures and documents, such as powers of attorney and documents submitted to NEAK.
Information on witness data management can be found at the following link: Witness data management
Scope of Data Managed on our Social Media Pages
What Data Do We Manage?
Public Profile Data: This is the information that users share on their profile, such as their name and workplace, preferences.
Comments: All comments and reactions written on our posts.
Event Data: This is data collected by social platforms, such as who has liked or shared our posts.
You can find our data management information regarding inquiries and contact at the following link: Contact data management information
Why Do We Process This Data?
Promotion of our Services: We want as many people as possible to get to know our services, so we use social media. This will help us reach more people.
Introduction and Recruitment of Employees: We also use social media to introduce our team and find new colleagues. We use targeted ads to find people who fit into our team.
Contact and Interactions: Interactions like shares and comments help us stay connected with our audience and answer their questions.
We do not directly store your personal data provided on the platform. Social media platforms provide us with data, for example for advertising. If you would like to learn more about the data management of public platforms, please consult the respective platform.
You can find our information on the data management of social platforms at the following link: Social media data management
Join us at Unibridge Consult, where we turn your dreams into reality.
Data Management Information For Cookie
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. Functional Cookies
The scope of the managed data, the purpose and legal basis of the data management.
Personal data: Cookie identifier, IP address
Purpose of data management: Ensuring the basic functioning of the website
Legal basis for data management: Legitimate interest – GDPR Article 6 (1) Paragraph f)
Duration of data management (storage):
- Temporary cookies – They remain on the user’s device for the duration of the given browsing session, after which they are deleted.
- Persistent cookies – They remain on the user’s device until they are manually deleted. (The person concerned can find out about the exact expiration date of each cookie in the browsing data.)
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
Data is transferred to a third (non-EU) country:
Name of data processor, place of transmission, guarantees of transmission, reason for transmission
- Hostinger: Hostinger Privacy Policy
- GoDaddy: GoDaddy Privacy Policy
Joint data management takes place – No
Data Access And Data Security Measures:
Access Restrictions: Only the data manager and competent employees can access the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
Rights of the Data Subject (The rights of the data subject belonging to the legal basis and their explanation)
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
3. Measurement And Marketing Cookies
The scope of the managed data, the purpose and legal basis of the data management.
Personal data: Cookie identifier, IP address
Purpose of data management: Analysis of visitors’ website usage habits, use of this data during advertising and marketing activities
Legal basis for data management: The consent of the data subject – GDPR Article 6 (1) Paragraph a)
Duration of data management (storage):
- Temporary cookies – They remain on the user’s device for the duration of the given browsing session, after which they are deleted.
- Persistent cookies – They remain on the user’s device until they are manually deleted. (The person concerned can find out about the exact expiration date of each cookie in the browsing data.)
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Google Analytics: Website analytics, Address: (Alphabet Inc.) 1600 Amphitheater Parkway in Mountain View, California, USA
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
Data is transferred to a third (non-EU) country:
Name of data processor, place of transmission, guarantees of transmission, reason for transmission
- Google Analytics: Google Analytics Privacy Policy
- Hostinger: Hostinger Privacy Policy
- GoDaddy: GoDaddy Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
Rights of the Data Subject (Stakeholder rights belonging to the legal basis and their explanation)
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Erasure and Oblivion – The data subject has the right to request the permanent erasure of his data, unless the data management is based on the fulfillment of a contract, the fulfillment of a legal obligation or a public authority’s authorization.
Withdrawal of Consent – If the data processing is based on consent, the Data Subject may withdraw the previously given consent at any time. Acceptance of the revocation request may also mean the deletion of the data, but if another legal basis supports the data management, the data management will only be terminated in relation to the given data management purpose. suspension of processes for the duration of the investigation.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. The Cookies Used
Me And Cookies?
Cookies are small files containing letters and numbers, punctuation and other technical characters that are stored on your device (computer, mobile phone, tablet, smart TV, etc.) when you visit certain websites. These are IT data that help the use of websites, which are sent by the web server to the user’s browser, are stored on the user’s device, and are sent back to the server by the browser with every request directed to it. They do not contain executable files, viruses, spyware, and do not access the user’s hard drive data.
Cookies usually contain the following: domain name, what it is valid for, the storage period and the stored value. Among other things, it enables the recognition of the user’s device and browser, thus the appearance of content adapted to the visitor’s needs, as well as the basic browsing functions, e.g. ensuring connected sessions – they help. In addition to the user’s anonymity, they also support the creation of attendance statistics.
We do not store personally identifiable information in cookies, but in order to improve the user experience, we use encrypted information derived from them. For example, they help us to identify and resolve errors or to determine the range of interesting, related products that we would like to draw your attention to while browsing our website.
Cookies that are absolutely necessary for the operation of the website, as well as cookies that support anonymous visitor statistics, are already loaded during the first visit. The user cannot influence this.
Cookies used to improve the user experience and for marketing activities are only loaded after consent can be given in the cookie notification “box”. This consent can be revoked at any time by using the link in the browser or in the footer of the website, or by deleting “cookieconsent_status”.
If you later contact us via a form – with your express consent – on a website where we use cookies, we may learn the data of your website visits after the form has been blocked with the help of these cookies. This is done to improve the user experience.
If you have accepted the cookie information on our websites, the information will not appear again until you delete the “cookieconsent_status” cookie using the link in the browser or the footer of the website.
If you decide to limit, block or delete cookies used by a website, you can do so using your browser. Since every browser is different, you can find out how to change settings related to cookies in the Help menu of the program you are using (or in the user manual of your mobile phone).
5. Exercise of Data Subject Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months.
If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
6. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
Data Management Information For Recruiting Reception And Selection Of Applicants
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. The Processed Data
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
Name E-mail address Telephone number Data in CV What was said at the interview, notes, conclusions |
Accepting applications for advertising by email Receiving inquiries by phone, making contact Conducting interviews Selection Notification |
Legitimate interest – GDPR Article 6 (1) Paragraph f) | Retention for 5 years from the date of application due to legitimate interests for later screening |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
Data is transferred to a third (non-EU) country:
- Hostinger: Hostinger Privacy Policy
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
3. Rights of the Data Subject
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. Exercise of Affected Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
5. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
Data Management Information For Recruiting Services For Companies
Managing the data management of interested parties contacting and making offers.
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. The Processed Data
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
Name Email address Phone number Position/title Workplace/represented company |
Presentation of the service to interested parties Compilation and sending of an offer package to the employer, potential client Contract preparation |
Consent of the data subject – GDPR Article 6 (1) Paragraph a) | Up to 5 years from the date of contact |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject or his employer
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
Data is transferred to a third (non-EU) country:
- Hostinger: Hostinger Privacy Policy
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
3. Rights of the Data Subject
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. Exercise of Affected Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
5. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
6. Judicial Remedy
CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.
In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – according to his choice – before the competent court according to his place of residence or place of stay. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.
Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.
Information On Data Management
Website, interest, contact through website
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. The Processed Data
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
Name (Surname, First Name) Email address Phone number Personal data included in the message or possibly shared during the conversation |
Receiving inquiries by email Answering letters |
Consent of the data subject – GDPR Article 6 (1) Paragraph a) |
In the case of a telephone inquiry, the data is not saved, the telephone number remains in the call lists. In the case of an email request, the data is stored in the mail system for a maximum of 5 years. In case of withdrawal of consent, the data will be deleted immediately. |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- GoDaddy:Â Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
Data is transferred to a third (non-EU) country:
- Hostinger: Hostinger Privacy Policy
- GoDaddy:Â GoDaddy Privacy Policy
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
3. Rights of the Data Subject
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. Exercise of Affected Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
5. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
6. Judicial Remedy
CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.
In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.
Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.
Information On Data Management For Labor Mediation
Labor mediation:
- Service-related data managemet
- Marketing
- Satisfaction survey and publication of references, testimonials
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. The Processed Data
2.1 Service-Related Data Management
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
Name Email address Phone number Position/title Workplace/represented company |
Contract: framework contract and ad hoc orders Digital signature (optional)Â Send contract electronically or by post Invoicing and payment if necessary Receivables management |
Necessary for the performance of a contract and the fulfillment of a legal obligation – GDPR Article 6 (1) b), c) | The data manager typically stores the data managed by the customer on the customer’s systems and storage facilities during the contract and for 8+1 years from the termination of the contract or the last related financial transaction. |
Related Legislation:
Act V of 2013 on the Civil Code
CXXVII of 2007 on VAT law,
2017 CL. Act on the system of taxation,
Act C of 2000 on accounting
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject and/or his employer
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- GoDaddy:Â Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
- Unicont Plusz Kft.: Accounting office, Address: 1164 Budapest, Művezeť u. 19.
- (Számlázz.hu) KBOSS.hu Kft.: Invoicing software operator, Address: 1031 Budapest, Záhony utca 7
Recipients:
- Dr. Zoltán Béla Tóth: Lawyer, Address: Bajcsy-Zsilinszky út 40, 1054 Budapest
Data is transferred to a third (non-EU) country:
- Hostinger: Hostinger Privacy Policy
- GoDaddy:Â GoDaddy Privacy Policy
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
2.2 Marketing
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
Name Email address Phone number |
Inquiries for marketing purposes Sending offers to customers |
Consent of the data subject – GDPR Article 6 (1) Paragraph a) |
Up to a maximum of 8+1 years after the termination of the contractual relationship. In case of withdrawal of consent, the processing of the data for marketing purposes ceases immediately. |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject and/or his employer
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- GoDaddy:Â Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
Data is transferred to a third (non-EU) country:
- Hostinger: Hostinger Privacy Policy
- GoDaddy: GoDaddy Privacy Policy
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
2.3 Satisfaction Survey, Publication of References, Testimonials
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
Name Any personal data included in the review |
Requesting feedback from customers and using them as a reference on the website and social media. | Consent of the data subject – GDPR Article 6 (1) Paragraph a) | Until consent is revoked, but for a maximum of 10 years from the date of feedback. |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
- GoDaddy:Â Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
Data is transferred to a third (non-EU) country:
- Hostinger: Hostinger Privacy Policy
- GoDaddy:Â GoDaddy Privacy Policy
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
3. Rights of the Data Subject
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. Exercise of Affected Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
5. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
6. Judicial Remedy
CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.
In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.
Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.
Information On Data Management For VISA Process
Managing witnesses and power of attorney
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. The Processed Data
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
Name Residential address Signature |
Handling the data of witnesses for authorizations required in connection with the administration of the National Directorate General of Immigration, OEP Employment Department, NAV | Consent of the data subject – GDPR Article 6 (1) Paragraph a) | 5 years from the termination of the legal relationship of the mediated employee. |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
- ERSTE Bank Hungary Zrt.: Address: 1138 Budapest, Népfürdő u. 24-26
Recipients:
- National Directorate General of Immigration: Supervisory body, other authority, Address: 1117 Budapest, Budafoki út 60
- National Health Insurance Fund Management: Authority data service, Address: 1139 Budapest, Váci út 73/A
- National Tax and Customs Office: Authority data service, Address: 1054 Budapest, Széchenyi utca 2
- Dr. Zoltán Béla Tóth: Lawyer, Address: Bajcsy-Zsilinszky út 40, 1054 Budapest
Data is transferred to a third (non-EU) country:
- Google: Google Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
3. Rights of the Data Subject
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. Exercise of Affected Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
5. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
6. Judicial Remedy
CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.
In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.
Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.
By testifying, the data subject also expresses that he consents to the processing and storage of his data in accordance with the information provided.
Information On Data Management For Social Media
Valid: 2024.xx.xx
CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:
1. The Data Manager
Name of the data controller: Unibridge Kft.
Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3
Contact details of the data controller –
Email: info@unibridge-consult.comÂ
Telephone: +36205291034
Website: unibridge-consult.com
2. The Processed Data
Personal data | Purpose of data management | Legal basis for data management | Duration of data management (storage) |
---|---|---|---|
The data in the public profile is managed by the so-called Comments Community Platform. Event data |
Promotion of the service, presentation of employees, targeted advertisements, search for new employees, advertising for them. Managing interactions related to posts (sharing, liking, commenting), answering possible questions – Facebook, Instagram, LinkedIn |
Consent of the data subject – GDPR Article 6 (1) Paragraph a) |
Until the consent is withdrawn/the entry is deleted by the person concerned, or until the social site is operational at the latest. More detailed information can be found in the data management information of the social website. When using social platforms, the data controller does not store personal data. You access the data during the management of the page, and you indirectly manage the data through certain social media services (e.g.: advertisements) – you do not have direct access to them. |
Related Legislation:
Does profiling take place during data management? – No
Does automatic decision-making take place during data management? – No
Source of processed personal data: The data subject
The Data is Transferred to:
Data processors (those performing technical tasks related to data management operations):
- LinkedIn: 2029 Stierlin Court Ste 200 Mountain View, California, 94043, US
- Meta Platforms Inc.: 1 Hacker Way, Menlo Park, CA 94025, US
Data is transferred to a third (non-EU) country:
- LinkedIn: LinkedIn Privacy Policy
- Meta: Meta Privacy Policy
Is there shared data management? – No
Data Access And Data Security Measures:
Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.
Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.
3. Rights of the Data Subject
Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.
Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.
Right of Access – The data subject has the right to request the personal data stored about him from the data controller.
Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.
Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.
Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.
Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.
4. Exercise of Affected Rights
If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.
5. Filing A Compaint
The data subject has the right to submit a complaint to the data protection authority:
Name: National Data Protection and Freedom of Information Authority (NAIH)
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Postal Address: 1363 Budapest, Pf.9
Email: ugyfelszolgalat@naih.huÂ
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1410
Website: naih.hu
6. Judicial Remedy
CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.
In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.
Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.