Privacy Policy

Custom Wind Soluton Zrt. 1035 Budapest, Veder street 10th 2nd floor 4th door TAX NUMBER: 32578029-2-41 COMPANY REGISTRATION NUMBER: 0110142858 (hereinafter referred to as the Data Controller) processes the data of visitors to the website www.c-w-s.eu (hereinafter referred to as the Website), users of the Website and registered users who use the services available on the Website (hereinafter collectively referred to as the Data Subjects) during the operation of the Website.
In connection with data processing, the Data Controller hereby informs the Data Subjects about the personal data processed by it on the Website, the principles and practices followed in the processing of personal data, as well as the ways and possibilities for exercising the rights of the data subjects. By using the Website, the Data Subject accepts the provisions of this Privacy Policy and consents to the data processing activities defined below.

1. Definitions

1. Data Subject: any identified or identifiable natural person identified directly or indirectly on the basis of personal data;
2. Personal data: any data relating to the data subject – in particular the name, identification number of the data subject, or one or more factors specific to their physical, physiological, mental, economic, cultural or social identity – as well as any conclusion that can be drawn from the data concerning the data subject;
3. consent: the freely given, specific and informed indication of the data subject’s wishes by which they signify their unambiguous agreement to the processing of personal data relating to them, either fully or for specific operations;
4. objection: a statement by which the data subject objects to the processing of their personal data and requests the termination of data processing or the deletion of the processed data;
5. data controller: the natural or legal person, or organisation without legal personality, who or which alone or jointly with others determines the purposes and means of the processing of personal data and makes and implements decisions regarding data processing, or has them implemented by a data processor;
6. data processing: any operation or set of operations performed on data, regardless of the procedure used, including in particular collection, recording, organisation, storage, alteration, use, retrieval, transmission, disclosure, alignment or combination, restriction, deletion and destruction of data, as well as preventing further use of data;
7. data processing activities: the performance of technical tasks related to data processing operations, regardless of the method and tools used to carry out the operations and the place of application, provided that the technical task is performed on the data;
8. data processor: the natural or legal person, or organisation without legal personality, who or which processes personal data on behalf of the data controller on the basis of a contract concluded with the data controller, including contracts concluded pursuant to legal provisions;
9. data transfer: making data accessible to a specific third party;
10. disclosure: making data accessible to anyone;
11. data erasure: rendering data unrecognisable in such a way that their recovery is no longer possible;
12. data restriction: marking data with an identification sign for the purpose of permanently or temporarily restricting further processing;
13. data destruction: complete physical destruction of the data carrier containing the data;
14. third party: a natural or legal person, or organisation without legal personality, who or which is not identical with the data subject, the data controller or the data processor.

2. Purpose of data processing

The Data Controller stores and processes the data provided by the Data Subject during registration solely for specific purposes, exclusively for providing the services available on the Website, maintaining contact, identifying the user and, if the Data Subject subscribes to the newsletter, for sending newsletters. The purpose of automatically recorded data is to create statistics and to technically develop the IT system. The Data Controller does not use or may not use the provided personal data for purposes other than those specified above.

Disclosure of personal data to third parties or authorities – unless otherwise required by law – is possible only with the prior explicit consent of the Data Subject. In all cases where the Data Controller intends to use the provided data for purposes different from the original purpose of data collection, it informs the Data Subject in advance and obtains their prior explicit consent, or provides the opportunity to prohibit such use.

3. Legal basis of data processing

The Data Controller processes personal data based on the voluntary consent of the Data Subject pursuant to Section 5 (1) point a) of Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information (hereinafter: Info Act), as well as Act CVIII of 2001 on certain issues of electronic commerce services and services related to the information society.

The Data Controller does not verify the accuracy of the personal data provided to it. The person providing the data, the Data Subject, is solely responsible for the accuracy of the provided data. By providing an email address, any Data Subject also assumes responsibility that only they use the services from the provided email address. With regard to this responsibility, all liability arising from logins using a given email address shall rest solely with the Data Subject who provided the email address.

4. Data Controller’s details

Custom Wind Soluton Zrt.
1035 Budapest, Veder street 10th 2nd floor 4th door
TAX NUMBER: 32578029-2-41
COMPANY REGISTRATION NUMBER: 0110142858

5. Duration of data processing

5.1. Registration data

The processing of personal data provided during registration continues until the Data Subject requests the deletion of their registration. Registration can be deleted at any time after submitting a deletion request (by post or email). In this case, the deadline for data deletion is 5 working days following receipt of the request.

5.2. Duration of data processing

The Data Controller processes the data provided by the Data Subject during newsletter subscription until the Data Subject unsubscribes by clicking the “Unsubscribe” button found in the newsletter or requests removal from the newsletter subscription list by email or post. Otherwise, data processing lasts for 2 years. In the event of unsubscription, the Data Controller records the request after receipt (by email, post or by clicking the “Unsubscribe” button) and will no longer send messages to the Data Subject.

5.3. Technical data

Logged data are stored by the system for 2 years from the time of logging, with the exception of the date of the last visit, which is automatically overwritten.

5.4. Data provided when submitting the electronic contact form

The processing of personal data provided when submitting the contact form continues until the Data Subject requests the deletion of such data. Deletion may be requested at any time after submitting a deletion request (by post or email). In this case, the deadline for data deletion is 5 working days following receipt of the request.

6. Scope of processed personal data

6.1. Data required during registration

To use the services on the Website, the Data Subject must provide the following data:

Name, Phone number, Email address, Company name, Billing address, Shipping address

6.2. Newsletter

In the case of newsletter subscription, the Data Subject is required to provide their email address and full name to the Data Controller.

6.3. Technical data

Data of the Data Subject’s computer that are generated during the use of the service and recorded by the Data Controller’s system as an automatic result of technical processes. These include, in particular, the date and time of the visit, the IP address of the Data Subject’s computer, browser type, and the address of the viewed and previously visited website.

Automatically recorded data are logged by the system automatically upon login and logout without any separate declaration or action by the Data Subject. These data cannot be linked to other personal user data, except in cases required by law. Only the Data Controller has access to the data.

The Data Controller may collect data on the activity of Data Subjects, which cannot be linked to other data provided during registration or data generated during the use of other websites or services.

The HTML code of the Website may contain links from and to external servers independent of the Data Controller. The service providers of these links may collect user data due to direct connection to their servers.

External servers assist in the independent measurement and auditing of the Website’s traffic and other web analytics data (Google Analytics). The data controllers can provide detailed information about the processing of measurement data. Availability: www.google.com/analytics/

If the Data Subject does not wish Google Analytics to measure the above data in the manner and for the purposes described, they should install the browser add-on that blocks this.

6.4. Cookies

For the purpose of providing customised services, the Data Controller and the designated external service providers place small data packages, so-called cookies, on the Data Subject’s computer and read them back. If the browser returns a previously stored cookie, the cookie-handling service provider may link the data recorded during the Data Subject’s current visits with previous data, but only with regard to its own content.

The Data Controller uses the following cookies:

– Temporary (session) cookies: session cookies are automatically deleted after the Data Subject’s visit. These cookies serve to ensure the efficient and secure operation of the Website and are essential for certain functions or applications to work properly.

– Permanent (persistent) cookies: the Data Controller also uses persistent cookies to improve the user experience (e.g. providing optimised navigation). These cookies are stored in the browser’s cookie file for a longer period. The duration depends on the settings applied by the Data Subject in their internet browser.

– Cookie used for password-protected sessions.
– Security cookie.

The “Help” function in the menu bar of most browsers provides information on how the Data Subject can:

– disable cookies,
– accept new cookies,
– instruct the browser to set a new cookie, or
– disable other cookies.

The Website uses Google Adwords remarketing tracking codes. This allows visitors to the Website to later be targeted with remarketing advertisements on websites within the Google Display Network. The remarketing codes use cookies to tag visitors. Users of the Website can disable these cookies by visiting the Google Ads Settings Manager and following the instructions provided there. After doing so, personalised offers from the Service Provider will no longer be displayed to them.

More information about cookies:
https://silktide.com/tools/cookie-consent/docs/

More information about Google Analytics:
https://www.google.hu/intl/hu/analytics/

7. Persons authorised to access the data

The persons authorised to access the data, data transfer and data processing: the data are primarily accessible to the Data Controller and its internal staff, but they are not published or transferred to third parties.

The Service Provider may use data processors (e.g. system operators). The Service Provider is not responsible for the data processing practices of such external parties.

DATA PROCESSOR DETAILS:
Currently there is no such contributor.

Beyond the above, personal data relating to the User may be transferred only in cases required by law or based on the User’s consent.

Hosting service provider details:

KTS Online Kft
Tax number: 29152106-2-08.
Company registration number: 08-09-032885
Registered with the Company Registry of the Győr Regional Court.
Statistical number: 29152106-6311-113-08.
EU VAT number: HU29152106.

REGISTERED OFFICE: 9024 Győr, Bartók Béla Street 26/B ground floor 2.
PHONE: +36-20/316-2431
E-MAIL info@kts.hu

Beyond the above, personal data relating to the Data Subject may be transferred only in cases required by law or based on the User’s consent.

8. User rights and legal remedies

8.1. Right to information

The Data Subject is entitled at any time to request information about the personal data relating to them processed by the Data Controller.

Upon request, the Data Controller provides information about the data processed, the purpose, legal basis and duration of data processing, and about who receives or has received the data and for what purpose. The Data Controller provides the requested information in writing within 30 days of submitting the request.

The Data Subject may contact the Data Controller’s staff with any questions or comments related to data processing using the contact details provided below.

8.2. The Data Subject may request deletion, correction or restriction of their data

The Data Subject is entitled at any time to request the correction or deletion of incorrectly recorded data using any of the contact details provided below. The Data Controller deletes the data within 5 working days of receiving the request, in which case the data cannot be restored. Deletion does not apply to data processing required by law (e.g. accounting regulations), which the Data Controller retains for the required period.

The Data Subject may also request the restriction of their data. The Data Controller restricts personal data if requested by the Data Subject or if, based on available information, it can be assumed that deletion would violate the legitimate interests of the Data Subject. Restricted personal data may only be processed for as long as the purpose that excluded deletion exists.

The Data Subject and all parties to whom the data were previously transferred for processing purposes must be notified of correction, restriction or deletion. Notification may be omitted if this does not violate the legitimate interests of the User in view of the purpose of data processing.

If the Data Controller does not comply with the Data Subject’s request for correction, restriction or deletion, it shall inform the Data Subject in writing within 30 days of receiving the request, stating the factual and legal reasons for refusal.

8.3. The Data Subject may object to the processing of their personal data

The Data Subject may object to the processing of their personal data. The Data Controller examines the objection as soon as possible, but no later than within 15 days of submission, decides on its validity and informs the applicant of its decision in writing.

The Data Subject may exercise their rights using the contact details indicated in Section 4.

8.4. The Data Subject may, pursuant to the Info Act and the Civil Code (Act V of 2013)

1. contact the National Authority for Data Protection and Freedom of Information (1125 Budapest, Szilágyi Erzsébet fasor 22/c.; www.naih.hu ) or
2. enforce their rights before a court.

If the Data Subject provided data of a third party for the use of the service or caused damage in any way during the use of the Website, the Data Controller is entitled to enforce claims for compensation against the Data Subject. In such cases, the Data Controller shall provide all reasonable assistance to the competent authorities in order to establish the identity of the infringing person.

9. Use of email addresses

The Data Controller pays special attention to the lawful use of electronic mail addresses processed by it and therefore uses them for sending emails only in the manner specified below.

The processing of email addresses primarily serves the identification of the Data Subject and communication during the use of services, and therefore emails are sent mainly for this purpose.

10. Data security

The Data Controller undertakes to ensure the security of data and to take the technical measures necessary to ensure that the collected, stored and processed data are protected, and to do everything possible to prevent their destruction, unauthorised use or unauthorised alteration. It also undertakes to call upon all third parties to whom data may be transferred or handed over to comply with these obligations as well.

11. Miscellaneous provisions

The Data Controller reserves the right to unilaterally amend this Privacy Policy with prior notification to the Data Subjects via notification on the Website. After the amendment enters into force, the Data Subject accepts the provisions of the amended Privacy Policy by using the Website.