Unibridge Consult. LOGO

Data Protection

What Kind of Data Processing Do We Implement?

Data Management of Cookies

A cookie is a small text file that websites place on the user’s device to store information.

  • Session cookies: They are temporary, they are deleted when the browser is closed.
  • Persistent cookies: They stay longer, until a given expiration date.
  • Primary cookies: Placed by the visited website.
  • Third-party cookies: Placed by other domains, often for advertising purposes.

Additional information and data management guidelines: Cookie information

Reception and Selection of Applicants

Data Collection: During the application process, we request various personal data, such as name, contact details, CV.

Data Management: We use the collected data exclusively for the purposes of the recruitment process. The data is stored in secure systems and can only be accessed by staff involved in the selection process.

Data Retention: The data will be retained for a specified period even after the selection process has been completed, in order to provide you with the opportunity to apply for future job opportunities. After the data retention period has expired, the data will be securely deleted.

Data Access Rights: Applicants have the right to access the data stored about them, to request their modification or deletion, and to object to the data management.

You can find our detailed data management information regarding the application at the following link: Reception and selection of applicants data management information

Sending Portfolios to Interested Parties, Making Offers

During the data management of company interested parties, we collect and manage the following personal data: name, e-mail address, phone number, position/title, workplace/represented company. We use this data for the purpose of presenting services, compiling and sending offer packages, and preparing contracts.

You consent to this data management by initiating contact with our company (the data controller) and at the same time expressing your consent to the processing of your data in accordance with the relevant data management information.

Data Collection: We collect the name, e-mail address, telephone number, position/title and the name of the represented company of the interested parties.

Data Usage: We use the data to present the services, compile and send offer packages, and prepare contracts.

Data Retention: We store the data for the necessary time to ensure smooth communication and business processes.

Data Access Rights: Interested parties have the right to access the data stored about them, to request their modification or deletion, and to object to the data management.

You can find our data management information regarding the submission of offers at the following link: Inquiry, data management information for the submission of offers

Contact via Website

During requests for offers and inquiries on the website, we collect and manage the following personal data: name, e-mail address, phone number, position/title, workplace/represented company. We store and manage this data for the purpose of presenting services and maintaining communication.

You can find our data management information regarding inquiries and contact at the following link: Contact data management information

Data Management of Employment Services

Contract Performance and Legal Obligation: The management of the data enables the accurate and efficient conclusion and performance of contracts, as well as the smooth handling of invoicing and receivables management.

Solicitation for Marketing Purposes: Customization of marketing inquiries and offers to customers improves promotion of our services and strengthening of customer relationships.

Customer Satisfaction and Publication of References: Processing feedback received from customers and using it as a reference helps to continuously improve our services and increase our credibility.

You can find the combined data management information for our mediation services at the following link: Labor mediation data management information

Handling Witness Data

Managing witness data is essential when preparing official administration and immigration documents.

Official Administration and Preparation of Documents: Witness data is necessary for the accurate and legal preparation of various official procedures and documents, such as powers of attorney and documents submitted to NEAK.

Information on witness data management can be found at the following link: Witness data management

Scope of Data Managed on our Social Media Pages

What Data Do We Manage?

Public Profile Data: This is the information that users share on their profile, such as their name and workplace, preferences.

Comments: All comments and reactions written on our posts.

Event Data: This is data collected by social platforms, such as who has liked or shared our posts.

You can find our data management information regarding inquiries and contact at the following link: Contact data management information

Why Do We Process This Data?

Promotion of our Services: We want as many people as possible to get to know our services, so we use social media. This will help us reach more people.

Introduction and Recruitment of Employees: We also use social media to introduce our team and find new colleagues. We use targeted ads to find people who fit into our team.

Contact and Interactions: Interactions like shares and comments help us stay connected with our audience and answer their questions.

We do not directly store your personal data provided on the platform. Social media platforms provide us with data, for example for advertising. If you would like to learn more about the data management of public platforms, please consult the respective platform.

You can find our information on the data management of social platforms at the following link: Social media data management

    Join us at Unibridge Consult, where we turn your dreams into reality.

    Data Management Information For Cookie

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. Functional Cookies

    The scope of the managed data, the purpose and legal basis of the data management.

    Personal data: Cookie identifier, IP address

    Purpose of data management: Ensuring the basic functioning of the website

    Legal basis for data management: Legitimate interest – GDPR Article 6 (1) Paragraph f)

    Duration of data management (storage):

    • Temporary cookies – They remain on the user’s device for the duration of the given browsing session, after which they are deleted.
    • Persistent cookies – They remain on the user’s device until they are manually deleted. (The person concerned can find out about the exact expiration date of each cookie in the browsing data.)

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States

    Data is transferred to a third (non-EU) country:

    Name of data processor, place of transmission, guarantees of transmission, reason for transmission

    Joint data management takes place – No

    Data Access And Data Security Measures:

    Access Restrictions: Only the data manager and competent employees can access the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    Rights of the Data Subject (The rights of the data subject belonging to the legal basis and their explanation)

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    3. Measurement And Marketing Cookies

    The scope of the managed data, the purpose and legal basis of the data management.

    Personal data: Cookie identifier, IP address

    Purpose of data management: Analysis of visitors’ website usage habits, use of this data during advertising and marketing activities

    Legal basis for data management: The consent of the data subject – GDPR Article 6 (1) Paragraph a)

    Duration of data management (storage):

    • Temporary cookies – They remain on the user’s device for the duration of the given browsing session, after which they are deleted.
    • Persistent cookies – They remain on the user’s device until they are manually deleted. (The person concerned can find out about the exact expiration date of each cookie in the browsing data.)

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Google Analytics: Website analytics, Address: (Alphabet Inc.) 1600 Amphitheater Parkway in Mountain View, California, USA
    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States

    Data is transferred to a third (non-EU) country:

    Name of data processor, place of transmission, guarantees of transmission, reason for transmission

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    Rights of the Data Subject (Stakeholder rights belonging to the legal basis and their explanation)

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Erasure and Oblivion – The data subject has the right to request the permanent erasure of his data, unless the data management is based on the fulfillment of a contract, the fulfillment of a legal obligation or a public authority’s authorization.

    Withdrawal of Consent – If the data processing is based on consent, the Data Subject may withdraw the previously given consent at any time. Acceptance of the revocation request may also mean the deletion of the data, but if another legal basis supports the data management, the data management will only be terminated in relation to the given data management purpose. suspension of processes for the duration of the investigation.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. The Cookies Used

    Me And Cookies?

    Cookies are small files containing letters and numbers, punctuation and other technical characters that are stored on your device (computer, mobile phone, tablet, smart TV, etc.) when you visit certain websites. These are IT data that help the use of websites, which are sent by the web server to the user’s browser, are stored on the user’s device, and are sent back to the server by the browser with every request directed to it. They do not contain executable files, viruses, spyware, and do not access the user’s hard drive data.

    Cookies usually contain the following: domain name, what it is valid for, the storage period and the stored value. Among other things, it enables the recognition of the user’s device and browser, thus the appearance of content adapted to the visitor’s needs, as well as the basic browsing functions, e.g. ensuring connected sessions – they help. In addition to the user’s anonymity, they also support the creation of attendance statistics.

    We do not store personally identifiable information in cookies, but in order to improve the user experience, we use encrypted information derived from them. For example, they help us to identify and resolve errors or to determine the range of interesting, related products that we would like to draw your attention to while browsing our website.

    Cookies that are absolutely necessary for the operation of the website, as well as cookies that support anonymous visitor statistics, are already loaded during the first visit. The user cannot influence this.

    Cookies used to improve the user experience and for marketing activities are only loaded after consent can be given in the cookie notification “box”. This consent can be revoked at any time by using the link in the browser or in the footer of the website, or by deleting “cookieconsent_status”.

    If you later contact us via a form – with your express consent – on a website where we use cookies, we may learn the data of your website visits after the form has been blocked with the help of these cookies. This is done to improve the user experience.

    If you have accepted the cookie information on our websites, the information will not appear again until you delete the “cookieconsent_status” cookie using the link in the browser or the footer of the website.

    If you decide to limit, block or delete cookies used by a website, you can do so using your browser. Since every browser is different, you can find out how to change settings related to cookies in the Help menu of the program you are using (or in the user manual of your mobile phone).

    5. Exercise of Data Subject Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months.

    If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    6. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    Data Management Information For Recruiting Reception And Selection Of Applicants

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. The Processed Data

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name

    E-mail address

    Telephone number

    Data in CV

    What was said at the interview, notes, conclusions

    Accepting applications for advertising by email

    Receiving inquiries by phone, making contact

    Conducting interviews

    Selection

    Notification

    Legitimate interest – GDPR Article 6 (1) Paragraph f) Retention for 5 years from the date of application due to legitimate interests for later screening

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    3. Rights of the Data Subject

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. Exercise of Affected Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    5. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    Data Management Information For Recruiting Services For Companies

    Managing the data management of interested parties contacting and making offers.

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. The Processed Data

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name

    Email address

    Phone number

    Position/title

    Workplace/represented company

    Presentation of the service to interested parties

    Compilation and sending of an offer package to the employer, potential client

    Contract preparation

    Consent of the data subject – GDPR Article 6 (1) Paragraph a) Up to 5 years from the date of contact

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject or his employer

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    3. Rights of the Data Subject

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. Exercise of Affected Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    5. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    6. Judicial Remedy

    CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.

    In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – according to his choice – before the competent court according to his place of residence or place of stay. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.

    Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.

    Information On Data Management

    Website, interest, contact through website

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. The Processed Data

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name (Surname, First Name)

    Email address

    Phone number

    Personal data included in the message or possibly shared during the conversation

    Receiving inquiries by email

    Answering letters

    Consent of the data subject – GDPR Article 6 (1) Paragraph a)

    In the case of a telephone inquiry, the data is not saved, the telephone number remains in the call lists. 

    In the case of an email request, the data is stored in the mail system for a maximum of 5 years. 

    In case of withdrawal of consent, the data will be deleted immediately.

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    3. Rights of the Data Subject

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. Exercise of Affected Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    5. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    6. Judicial Remedy

    CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.

    In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.

    Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.

    Information On Data Management For Labor Mediation

    Labor mediation:

    • Service-related data managemet
    • Marketing
    • Satisfaction survey and publication of references, testimonials

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. The Processed Data

    2.1 Service-Related Data Management

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name

    Email address

    Phone number

    Position/title

    Workplace/represented company

    Contract: framework contract and ad hoc orders

    Digital signature (optional) 

    Send contract electronically or by post

    Invoicing and payment if necessary

    Receivables management

    Necessary for the performance of a contract and the fulfillment of a legal obligation – GDPR Article 6 (1) b), c) The data manager typically stores the data managed by the customer on the customer’s systems and storage facilities during the contract and for 8+1 years from the termination of the contract or the last related financial transaction.

    Related Legislation:

    Act V of 2013 on the Civil Code
    CXXVII of 2007 on VAT law,
    2017 CL. Act on the system of taxation,
    Act C of 2000 on accounting

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject and/or his employer

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
    • Unicont Plusz Kft.: Accounting office, Address:  1164 Budapest, MűvezeÅ¥ u. 19.
    • (Számlázz.hu) KBOSS.hu Kft.: Invoicing software operator, Address: 1031 Budapest, Záhony utca 7

    Recipients:

    • Dr. Zoltán Béla Tóth: Lawyer, Address: Bajcsy-Zsilinszky út 40, 1054 Budapest

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    2.2 Marketing

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name

    Email address

    Phone number

    Inquiries for marketing purposes

    Sending offers to customers

    Consent of the data subject – GDPR Article 6 (1) Paragraph a)

    Up to a maximum of 8+1 years after the termination of the contractual relationship. 

    In case of withdrawal of consent, the processing of the data for marketing purposes ceases immediately.

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject and/or his employer

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    2.3 Satisfaction Survey, Publication of References, Testimonials

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name

    Any personal data included in the review

    Requesting feedback from customers and using them as a reference on the website and social media. Consent of the data subject – GDPR Article 6 (1) Paragraph a) Until consent is revoked, but for a maximum of 10 years from the date of feedback.

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Hostinger: Hosting server, website operator, Address: Hostinger operations, UAB, Jonavos str. 60C, Kaunas, Lithuania
    • GoDaddy: Domain provider, Address: Tempe, 2155 E GoDaddy Way, United States
    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    3. Rights of the Data Subject

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. Exercise of Affected Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    5. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    6. Judicial Remedy

    CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.

    In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.

    Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.

    Information On Data Management For VISA Process

    Managing witnesses and power of attorney

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. The Processed Data

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)

    Name

    Residential address

    Signature

    Handling the data of witnesses for authorizations required in connection with the administration of the National Directorate General of Immigration, OEP Employment Department, NAV Consent of the data subject – GDPR Article 6 (1) Paragraph a) 5 years from the termination of the legal relationship of the mediated employee.

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • Google: Google Drive, Gmail, Address: 1600 Amphitheatre Parkway, Mountain View, CA, USA
    • ERSTE Bank Hungary Zrt.: Address: 1138 Budapest, NépfürdÅ‘ u. 24-26

    Recipients:

    • National Directorate General of Immigration: Supervisory body, other authority, Address: 1117 Budapest, Budafoki út 60
    • National Health Insurance Fund Management: Authority data service, Address: 1139 Budapest, Váci út 73/A
    • National Tax and Customs Office: Authority data service, Address: 1054 Budapest, Széchenyi utca 2
    • Dr. Zoltán Béla Tóth: Lawyer, Address: Bajcsy-Zsilinszky út 40, 1054 Budapest

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    3. Rights of the Data Subject

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. Exercise of Affected Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    5. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    6. Judicial Remedy

    CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.

    In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.

    Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.

    By testifying, the data subject also expresses that he consents to the processing and storage of his data in accordance with the information provided.

    Information On Data Management For Social Media

    Valid: 2024.xx.xx

    CXII of 2011 on the right to information self-determination and freedom of information. Law and Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, as well as on the repeal of Regulation 95/46/EC (GDPR – general data protection regulation), we hereby inform you about the handling of the personal data provided by you:

    1. The Data Manager

    Name of the data controller: Unibridge Kft.

    Address of the data controller: 1165 Budapest Hunyadvár u. 43/a 2.lh. 4/3

    Contact details of the data controller –

    Telephone: +36205291034

    2. The Processed Data

    Personal data Purpose of data management Legal basis for data management Duration of data management (storage)
    The data in the public profile is managed by the so-called Comments Community Platform. Event data

    Promotion of the service, presentation of employees, targeted advertisements, search for new employees, advertising for them. 

    Managing interactions related to posts (sharing, liking, commenting), answering possible questions – Facebook, Instagram, LinkedIn

    Consent of the data subject – GDPR Article 6 (1) Paragraph a)

    Until the consent is withdrawn/the entry is deleted by the person concerned, or until the social site is operational at the latest. More detailed information can be found in the data management information of the social website. 

    When using social platforms, the data controller does not store personal data. You access the data during the management of the page, and you indirectly manage the data through certain social media services (e.g.: advertisements) – you do not have direct access to them.

    Related Legislation:

    Does profiling take place during data management? – No

    Does automatic decision-making take place during data management? – No

    Source of processed personal data: The data subject

    The Data is Transferred to:

    Data processors (those performing technical tasks related to data management operations):

    • LinkedIn: 2029 Stierlin Court Ste 200 Mountain View, California, 94043, US
    • Meta Platforms Inc.: 1 Hacker Way, Menlo Park, CA 94025, US

    Data is transferred to a third (non-EU) country:

    Is there shared data management? – No

    Data Access And Data Security Measures:

    Limitation of Access: Only the data controller and the competent employees have access to the managed data in order to perform their duties. This is ensured by authorization management.

    Data Security Measure: Paper-based documents are stored locked. The devices used for computer storage have a firewall, virus protection and password protection. In addition, the used software and applications can be accessed by entering a password, if possible with two-factor authentication. The devices used have the basic security settings and functions. The stored paper-based and electronic data are also protected by physical measures. Unauthorized persons cannot enter the office.

    3. Rights of the Data Subject

    Right to Information – The data subject has the right to find out about the way personal data is handled even before data processing begins.

    Right to Rectification – The data subject has the right to request the correction of his personal data if the personal data stored by the data controller do not correspond to reality and he can prove this.

    Right of Access – The data subject has the right to request the personal data stored about him from the data controller.

    Right to Protest – If the legal basis is based on a legitimate interest or a public authority, the person concerned can protest against the processing of his personal data, however, the protest does not mean the immediate deletion of his data.

    Right to Restriction – If the data subject does not consider the data controller to be entitled to manage his personal data, he can request the suspension of the data management processes during the investigation period.

    Right to Data Portability – The data subject has the right to request the personal data stored about him in digital, tabular form.

    Right to Review Automatic Decision-Making – The data subject has the right to request a manual review of all data management processes where the data controller used automatic decision-making with legal effect on the data subject.

    4. Exercise of Affected Rights

    If the data subject has submitted a request related to the exercise of his rights described in point 3 to the data controller, the data controller shall respond without undue delay, but no later than one month from the receipt of the request, and inform the data subject of the measures taken regarding his request. If necessary, this deadline can be extended by another two months. If the data controller does not take measures following the data subject’s request, it shall inform the data subject without delay, but at the latest within one month of the receipt of the request, of the reasons for the failure to take action, as well as of the fact that the data subject may file a complaint with the supervisory authority and exercise his right to judicial redress.

    5. Filing A Compaint

    The data subject has the right to submit a complaint to the data protection authority:

    Name: National Data Protection and Freedom of Information Authority (NAIH)

    Headquarters: 1055 Budapest, Falk Miksa utca 9-11

    Postal Address: 1363 Budapest, Pf.9

    Telephone: +36 (1) 391-1400

    Fax: +36 (1) 391-1410

    Website: naih.hu

    6. Judicial Remedy

    CXII of 2011 on the right to informational self-determination and freedom of information provides provisions for judicial remedies contained in the law.

    In order to protect his data, the data subject may apply to the court against the data controller if, in his opinion, the data controller has violated the regulations regarding the handling of personal data. The lawsuit may be initiated by the person concerned – at his or her choice – before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity can be a party to the lawsuit. The data protection authority can intervene in the lawsuit in order to win the case for the person concerned.

    Any person who has suffered material or non-material damage as a result of a violation of the General Data Protection Regulation is entitled to compensation from the data manager or data processor for the damage suffered. The data controller or the data processor is exempted from liability if it proves that it is not responsible in any way for the event that caused the damage.

    Home

    Services

    Recruitment Services

    Find Jobs

    Find A Talent

    Business Services

    About Us

    Contact Us

    Office

    43/a Hunyadvár u.
    Budapest, Hungary, 1165

    Language