GreenDependent Egyesület

  • Increase font size
  • Default font size
  • Decrease font size

Privacy Policy

E-mail Print PDF

Privacy Statement


1. Preamble

This Privacy Statement (the “Statement”) shall set down the data protection and data processing principles and policies as applied by GreenDependent Sustainable Solutions Association (registered seat: Hungary, 2100 Gödöllő, Éva utca 4., tax number:18709845-1-13; hereinafter referred to as: "GreenDependent") as the owner of the website http://www.greendependent.org (the “Website”) to express consent by GreenDependent as data controller to be bound by that principles and policies. A further purpose of this Statement is to provide data subjects with information on the data processing of donations to GreenDependent.

When drawing up this Statement, special attention was paid to the Regulation 2016/679 of the European Parliament and of the Council (hereinafter referred to as “GDPR”), to the Act CXII of 2011 on the right of informational self-determination and on freedom of information (“Data Protection Act”), to the Act V of 2013 on the Civil Code (“Civil Code”) as well as to the Act XLVIII of 2008 on Essential Conditions of and Certain Limitations to Business Advertising Activity ("Business Advertising Act”).

2. The data controller

GreenDependent processes your personal data and, as a data controller, is liable for their lawful processing.

You can contact us using the contact details provided below:

Name of the data controller: GreenDependent Sustainable Solutions Association.

Postal address: H-2100 Gödöllő, Éva utca 4.

Tax number:18709845-1-13

E-mail address: // This e-mail address is being protected from spambots. You need JavaScript enabled to view it " target="_blank"> This e-mail address is being protected from spambots. You need JavaScript enabled to view it

Website:http://www.greendependent.org

I. Processing activities related to donation


1. Brief introduction of the processing

  • Credit card payment

GreenDependent's donation page offers its donors secure bank card payment provided by CIB Bank. The security relies on the separation of data. The donation page of GreenDependent receives information related to donations from the donors, and CIB Bank receives only the card data required for the payment transaction on a 256-bit TLS secured payment page. The donation page of GreenDependent will not be informed about the payment-side data content, they are accessible for CIB Bank only. GreenDependent's donation page will inform you whether the transaction was successful after payment. To pay by card, your internet browser must support TLS encryption. The countervalue of the donation, i.e. the amount donated will be immediately debited on your account by CIB Bank.

  • Bank transfer

GreenDependent indicated its bank account number on the Website so that those who wish to donate can support GreenDependent’s work with a single transfer.

2. Personal data collected, indicating the legal basis and purpose

PERSONAL DATAPURPOSE OF PROCESSING ACTIVITIESLEGAL BASIS OF PROCESSING ACTIVITIES

DATA PROCESSED BY GREENDEPENDENT: name, tax number (for companies only), email-address, phone number, postal address
 

DATA PROVIDED ON THE PAYMENT PAGE OF CIB BANK: personal data on the bank card (name, type and number of bank card, expiry date, CVC/CVV-code)

 Donation by credit card payment

In accordance with Article 6 (1) (a) of the GDPR, the legal basis for data processing is your consent

Name, bank account number

 Bank transfer from private individuals/companies In accordance with Article 6 (1) (a) of the GDPR, the legal basis for data processing is your consent

3. Duration of data processing

  • Credit card payment

Relating to credit card payment, GreenDependent shall store your personal data for 8 years.

  • Bank transfer

Relating to bank transfer, GreenDependent shall store your personal data for 8 years.

II. Common provisions


 1. Data processors

CIB Bank

During the processing of the bank card payment, CIB Bank shall qualify as the data processor of GreenDependent, and the processing activities performed by CIB Bank shall be applicable by provisions of the Privacy Statement of CIB Bank as may be amended from time to time (currently in force: https://net.cib.hu/system/fileserver?file=/Nyomtatvanyok/adatvedelmi_szabalyzat_180525_0524.pdf&type=related).
 

2. Your rights and and your right to remedies

Your right as a data subject in connection with the processing of your personal data

  • Right to information and access to personal data

You are entitled to obtain from GreenDependent confirmation as to whether personal data concerning you are being processed, and, where that is the case, to access to the personal data and the following information:

  • the purposes of the processing;
  • the categories of personal data concerned;
  • the recipients to whom the personal data have been or will be disclosed (in particular the data processors);
  • the envisaged period for which the personal data will be stored;
  • your rights in relation to the processing of your personal data;
  • where the personal data was not collected from you, any available information as to their source;
  • information regarding automated decision-making.

Under the applicable legislation we provide the information on the processing of your personal data free of charge. We respond to your request in writing within a month. However, if such request is manifestly unfounded or excessive, in particular because of its repetitive character, GreenDependent may either, taking into account the administrative costs of providing the information or communication or taking the action requested:

  • charge a reasonable fee; or
  • refuse to act on the request.

If, after paying the fee, it turns out that the processing was unlawful, or upon your request we are obliged to correct your data, we will reimburse you the fees already charged.

If, despite our best efforts to protect your personal data, someone unlawfully gains access to, changes, transmits, publishes, erases, destroys or causes unintended erasure or injury to your personal data or otherwise processes them unlawfully, we, upon your request, will inform you about the conditions of such incident, including the date, the possible effects and our measures to prevent or to mitigate the consequences.

  • Right to rectification

If the data we process are not correct, we will rectify them upon your request without undue delay. You are also entitled to have incomplete personal data completed, including by means of providing a supplementary statement.

  • Right to erasure

GreenDependent erases your personal data without delay, if:

  • the personal data are no longer necessary in relation to the specified data processing;
  • the personal data have been unlawfully processed;
  • the personal data have to be erased for compliance with a legal obligation concerning the GreenDependent;
  • where GreenDependent has made the personal data public.

You are also entitled to request the erasure of your personal data by withdrawing the consent you previously gave to us. However, in such case we may refuse to further provide you certain services and/or certain services will not be available to you hereinafter.

Instead of erasing, we block your personal data if you request so, or it can be assumed that erasure would have an impact on your legitimate interests.

  • Right to restriction of processing

Data processing may be restricted if:

  • you contest the accuracy of the personal data, for a period enabling the GreenDependent to verify the accuracy of the personal data;
  • you oppose the erasure of the personal data and requests the restriction of their use instead;
  • GreenDependent no longer needs your personal data for the purposes of the processing, but you require them for the establishment of legal claims;
  • you have objected to processing, pending the verification whether the legitimate grounds of GreenDependent override yours.

For the duration of the evaluation of your objection, but not more than for 5 days GreenDependent suspends the processing, assesses the merits of your objection and makes a decision, about which GreenDependent informs you without delay.

If the objection is justified, GreenDependent restricts your data, i.e. only restoring as a means of processing can be carried out as long as

  • you consent to the processing;
  • your data is necessary for enforcing your legal claims;
  • processing becomes necessary in order to the defend the rights of a natural or a legal person; or
  • processing is ordered by law in the public interest.

If you requested your personal data to be restricted, GreenDependent will notify you prior to the lifting of the restriction.
 

  • Right to data portability

You have the right to receive personal data about you provided to GreenDependent in a structured, widely used, machine-readable format (such as .doc or .pdf) and to forward this data to another data controller without that GreenDependent would prevent this.

  • What happens and what can you do if we reject your request?

If GreenDependent rejects your request for the correction, restriction of erasure of your personal data, within 1 month of receiving your request we will inform you in writing why we could not comply with your request and we will inform you about your possibilities of judicial remedy and that you may submit a notice to the Nemzeti Adatvédelmi és Információszabadság Hatóság (the National Authority for Data Protection and Freedom of Information). If you agree, we will send our reply via e-mail.

  • What are your rights if you think the data processing is unlawful?

If you have some concerns regarding the lawfulness of the data processing, you have the right to object to it. Your objection should include a request for us to stop processing your data and to erase them.

If you object to the processing of your data, GreenDependent will examine the reasons of your objection within one month and will make a decision, regarding which GreenDependent notifies you in writing.

  • What are the legal remedies available to you?

If you find that during the processing of your data GreenDependent breaches the provisions of the GDPR, it is your right as a data subject to lodge a complaint before a supervisory authority (i.e. before any public authority set up by any of the EU member states in accordance with section 51 of the GDPR), in particular in the member state of your habitual residence, place of work or place of the alleged infringement. In Hungary the supervisory authority set up in accordance with section 51 of the GDPR is the Nemzeti Adatvédelmi és Információszabadság Hatóság (Hungarian National Authority for Data Protection and Freedom of Information; “NAIH” or “the Authority”). Accordingly, in the sections below we inform you about complaint procedure of NAIH. However, please note that given the reasons mentioned above, you nevertheless have the right to lodge a complaint before any supervisory authority set up by one of the EU member states, not just before the Authority.

  • Notification to the Hungarian National Authority for Data Protection and Freedom of Information

Compliance with data protection legislation is supervised by the Hungarian National Authority for Data Protection and Freedom of Information. If you find that our data processing does not comply with the applicable law, or there is an imminent danger of non-compliance, you can lodge a complaint before the Authority through the following contacts:

Name of the authority: Nemzeti Adatvédelmi és Információszabadság Hatóság

Postal address: H-1125 Budapest, Szilágyi Erzsébet fasor 22/C.

E-mail address: This e-mail address is being protected from spambots. You need JavaScript enabled to view it

Phone number: +36 1 391 1400

Fax number: +36 1 391 1410

For further information regarding data protection go to the website of the Authority: http://naih.hu/

Please note that in the case of a personal data breach (i.e. a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed), GreenDependent shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the Authority. If the personal data breach is likely to result in a high risk to the rights and freedoms of data subjects, GreenDependent shall communicate the personal data breach to you as a data subject without undue delay.

Judicial proceedings for pursuing claims

In addition, under the terms of the law, if we cause you harm as a result of unlawful data processing or a breach of data security requirements, you may sue GreenDependent for damages. If your privacy rights have been violated, you may receive damages, which you can also enforce in court.

Furthermore, in accordance with conditions laid down by law, if our unlawful data processing or breach of security requirements caused damages to you, you may enforce your claim for compensation against the Company before courts. In addition, if we violated your rights relating to personality, you shall be entitled to restitution, which is also enforceable before courts.


In this respect, we are responsible for our data processors.

 
 


Latest news

Most important news

There are no translations available.

Kedves Olvasóink!

A legújabb, 117. Kislábnyom hírlevél író-csapatunk legkedveltebb olvasmányait és kedvenc ünnepi tippjeit tartalmazza korábbi számainkból válogatva. Ha ezek kapcsán megosztanák velünk saját kedvenc kislábnyomos olvasnivalójukat, tippjüket, szívesen fogadjuk őket, írjanak nekünk!