NEWSLETTER DATA PROTECTION NOTICE. AImotive Ltd.

Similar documents
RECRUITMENT DATA PROTECTION NOTICE. AImotive Ltd.

INFORMATION NOTE ON DATA PROCESSING

Information leaflet about processing of personal data (

Data Processing Policy

PRIVACY POLICY FOR THE LIDC 2018 INTERNATIONAL CONGRESS

PRIVACY POLICY FOR WEB AND ONLINE TRADING PLATFORM

GDPR data subject rights

I. Name and Address of the Controller

Act CXII of 2011 on the right to information self-determination and freedom of information. Act ;

Data processing policy

I. Name and Address of the Controller

Haaga-Helia University of Applied Sciences Privacy Notice for Urkund Plagiarism Detection Software

Rights of Individuals under the General Data Protection Regulation

Privacy notice for the participation in the MOL Freshhh Program

Contract Services Europe

Rights of data subjects

A. Sample Data Protection Statement in Accordance with the GDPR

Data Protection Declaration of ProCredit Holding AG & Co. KGaA

PRIVACY POLICY PRIVACY POLICY

INFORMATIVE NOTICE ON PERSONAL DATA PROCESSING

Part B of this Policy sets out the rights that all individuals have in relation to the collection and use of your personal information

More detailed information, including the information about your rights is available below.

Data protection declaration

PRIVACY POLICY SECTION 1 CONTACTS

Privacy Policy Hafliger Films SpA

Latest version, please translate and adapt accordingly!

Privacy Policy CARGOWAYS Logistik & Transport GmbH

This Privacy Statement applies to data processing carried out by:

Haaga-Helia University of Applied Sciences Privacy Notice for the Laura Recruitment Service

GDPR Privacy Policy. The data protection policy of AlphaMed Press is based on the terms found in the GDPR.

Privacy Policy. In this data protection declaration, we use, inter alia, the following terms:

Technical Requirements of the GDPR

Haaga-Helia University of Applied Sciences Privacy Notice for JUSTUS publication data storage service

Sketching for UX Designers Website & Newsletter Privacy Policy

the processing of personal data relating to him or her.

MÁV-START e-ticket (online ticket purchase) Privacy Policy

Haaga-Helia University of Applied Sciences Privacy Notice for Student Welfare Services

In compliance with the requirements of the EU General Data Protection Regulation (GDPR, Articles 13, 14 and 30)

POLICY. Art. 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016

- GDPR (General Data Protection Regulation) is the new Data Protection Regulation of the European Union;

PRIVACY POLICY OF THE WEB SITE

Personal Data Privacy Policy Updatedt: December 2018

Identity of the controller: CHARVAT CTS a.s., ID No.: , with the registered office at Okrinek 53, Podebrady, Czech Republic, Postcode

Element Finance Solutions Ltd Data Protection Policy

Data Subject Access Request Form

INFORMATION CONCERNING HANDLING OF DATA. 1, Preamble. For TRENDO Invest Ingatlanfejlesztő Korlátolt Felelősségű Társaság {TRENDO Invest Real

Depending on the Services or information you request from us, we may ask you to provide the following personal information:

Privacy Policy of

Customer Service Phone number: ,

In this data protection declaration, we use, inter alia, the following terms:

Privacy Policy Közbeszerzés Figyelő Ltd.

Personal Data collected for the following purposes and using the following services:

S.C. FAST SUPPORT S.R.L Bucharest, 70 Jean Louis Calderon Street, 6 th Floor J40/8295/ , sole registration code no.

Name: Aho Terhi Title: ecommerce Manager. Phone: terhi.aho(at)finavia.fi Name: Närvänen Carita Title: Development Manager

In this data protection declaration, we use, inter alia, the following terms:

POLICY. Art. 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016

Data protection is important to us

Privacy Policy Kühnreich & Meixner GmbH Kühnreich & Meixner GmbH Kühnreich & Meixner GmbH Kühnreich & Meixner GmbH 1. Definitions

Legal basis of processing. Place MODE AND PLACE OF PROCESSING THE DATA

Privacy Notice. 1. Name and contact details of the data controller

SCALA FUND ADVISORY PRIVACY POLICY

Tampere University of Technology Privacy Policy 1 (5) 18/06/2018

Privacy Policy November 30th, 2017

Creative Funding Solutions Limited Data Protection Policy

Privacy Policy Identity Games

Haaga-Helia University of Applied Sciences Privacy Notice for Student Administration

Cellular Solutions and Services Limited and Cellular Solutions and Network Services Privacy Policy

Privacy Statement for Use of the Certification Service of Swisscom (sales name: "All-in Signing Service")

Data Privacy Policy. of Eisenmann Übersetzungsteam - Suzanne Eisenmann - translation team

Privacy Policy. 1. Definitions

Privacy Policy. Data Controller - the entity that determines the purposes, conditions and means of the processing of personal data

1 About GfK and the Survey What are personal data? Use of personal data How we share personal data... 3

Privacy Statement for Use of the Trust Service of Swisscom IT Services Finance S.E., Austria

The following privacy policy applies to the use of the website (hereinafter "Website").

TALENTUM Limited Liability Company PRIVACY NOTICE

Contributed by Djingov, Gouginski, Kyutchukov & Velichkov

Data Subject Requests Procedure

Data subject ( Customer or Data subject ): individual to whom personal data relates.

DATA PROTECTION INFORMATION

GDPR Privacy Policy & Cookie Policy DCHC May 2018

PRIVACY POLICY. I. Data controller. II. Definitions

Personal Data Protection Policy

Universal Robots A/S, Energivej 25, 5220 Odense, Denmark

TERMS AND CONDITIONS

PRIVACY POLICY. Introduction:

Be-novative Privacy Policy

In this data protection declaration, we use the following terms: a.) Personal data

Privacy Policy. Company registry number: Budapest, Gönczy Pál utca em. Homepage: contact: Phone:

Data processing activities in relation to your e-purchases and payments

1. Right of access. Last Approval Date: May 2018

PRIVACY AND COMMERCIAL COMMUNICATIONS POLICY FOR CANDIDATES

About Us. Privacy Policy v1.3 Released 11/08/2017

The legal basis for the data collection described above is user s consent in accordance with Article 6(1)(1)(a) of the GDPR.

CEM Benchmarking Privacy Policy

What You Need to Know About Addressing GDPR Data Subject Rights in Pivot

Privacy Policy Section A Section B Section C Section D

DATA MANAGEMENT POLICY

Online Ad-hoc Privacy Notice

GDPR Data Protection Policy

PRIVACY POLICY CORPORATE CUSTOMER

Transcription:

NEWSLETTER DATA PROTECTION NOTICE AImotive Ltd. Effective from 25 May 2018

CONTENTS Newsletter Data Protection Notice of AImotive Ltd.... 3 Newsletter Data Protection Notice of AImotive Ltd. for existing clients and addressees in terms of newsletter database... 7 Page 2 of 10

NEWSLETTER DATA PROTECTION NOTICE OF AIMOTIVE LTD. Data Controller and their contact options Company name of the data controller: AImotive Ltd. (hereinafter: the Data controller ) Registered seat: 1025 Budapest, Szépvölgyi út 22 E-mail address: info@aimotive.com Phone number: + 36 1 770 7234 Website: www.aimotive.com Scope of processed data, purpose, legal basis of data processing, the period for which the personal data is stored 1 Categories of personal data concerned a) Name and e-mail address of the Data Subject Purpose of data processing Registration to Newsletter database Sending newsletters in direct marketing purposes, in particular advertisements, brochures, information on events and other activities belonging to the operation of the Data Controller and AImotive group. Legal basis of data processing Consent of the Data Subject Period for which the personal data is stored Until the consent is withdrawn (by unsubscription or by withdrawal notice); or the purpose of the data processing ceases Concerning the above instances of data processing the Data Controller highlights that the provision of the consent to the data processing is voluntary. If the Data Subject does not provide the consent then then exclusion from the newsletter data base may be a possible consequence of failing to provide information. Recipients or categories of recipients of the personal data The Data Controller does not process any category of personal data to third parties or other addressees. Processing of special categories of personal data The Data Controller does not process any special category of personal data in the course of this process. Data of the data subject obtained from other sources The Data Controller does not obtain any data from the Data Subject from other sources. Page 3 of 10

Rights of the data subject The Data Subject may request from the Data Controller access to personal data concerning the Data Subject, rectification of inaccurate personal data, erasure of personal data, in certain cases the restriction of processing, furthermore the Data Subject also has the right to object to the processing of personal data. Additionally, the Data Subject is entitled to the right to the portability of data, to lodge a complaint with a supervisory authority and to an effective judicial remedy; additionally in the case of automated individual decision-making (including profiling) the right to obtain human intervention on the part of the Controller and to express his/her point of view and to contest the decision. The Data Subject is also entitled to withdraw his/her consent at any time, which, however, does not affect the lawfulness of data processing performed based on consent before the withdrawal. Right to access The Data Subject is entitled to request information at any time about whether and how the Data Controller processes their personal data, including the purposes of data processing, the recipients to whom the data was disclosed or the source where the Data Controller received the data from, the envisaged period for which the personal data will be stored, any right of the Data Subject concerning data processing, information concerning automated decision making, profiling, and information concerning related guarantees in the case of forwarding to third countries or to any international organization. When exercising the right to access the Data Subject is also entitled to request copies of the personal data undergoing processing; in the case of a request submitted electronically the Data Controller in lieu of a request from the Data Subject that says otherwise provides the requested information electronically (in pdf format). If the right to access of the Data Subject has a detrimental effect on the rights and liberties, in this regard especially the business secrets or intellectual property of others, the Data Controller is entitled to refuse to comply with the request to the necessary and proportionate extent. If the Data Subject requests the above information in several copies, the Data Controller charges a reasonable amount of fee, proportionate to the administrative costs of preparing the additional copies, HUF 200 per copy/page. Right to rectification At the request of the Data Subject the Data Controller corrects or completes personal data concerning the Data Subject. If any doubts arise concerning the corrected data, the Data Controller may request from the Data Subject the certification of the corrected data for the Data Controller appropriately, primarily with documents. If the Data Controller disclosed the personal data of the Data Subject with this right to another person (e.g. the addressee as data processor), then the Data Controller shall immediately inform such persons after correcting the data, provided it is not impossible or it does not require a disproportionate amount of effort from the Data Controller. At the request of the Data Subject the Data Controller informs them about such addressees. Right to erasure ( right to be forgotten ) If the Data Subject requests the erasure of any or all personal data of theirs, the Data Controller shall erase such data without undue delay if: the Data Controller does not need the personal data in question any more for the purpose such data was collected or otherwise processed for; it concerns data processing that was based on the consent of the Data Subject, but the Data Subject withdrew the consent and the data processing has no other legal basis; it concerns data processing that was based on the legitimate interests of the Data Controller or third parties but the Data Subject objected to the data processing and with the exception Page 4 of 10

of objection to data processing for direct marketing purposes there are no legitimate grounds for the data processing that would have priority; the Data Controller illegally processed the personal data, or the deletion of personal data is necessary for the performance of legal obligations. If the personal data under this right is disclosed by the Data Controller to another party (e.g. the recipient as for example data processor) then the Data Controller shall immediately inform such persons after the deletion, provided it is not impossible or it does not require a disproportionate amount of effort from the Data Controller. At the request of the Data Subject the Data Controller informs them about such recipients. The Data Controller is not always obliged to delete personal data, especially for example in the case of the data processing is necessary for the establishment, exercise or defense of legal claims. Right to restriction of data processing The Data Subject can request the restriction of the processing of their personal data in the following cases: the Data Subject contests the accuracy of the personal data in this case the restriction concerns the period enabling the data controller to check the accuracy of personal data; the data processing is unlawful but the Data Subject opposes the erasure of data, requesting the restriction of the usage of the same instead; the data controller does not need the personal data for data processing purposes any longer but the Data Subject needs the data for the establishment, exercise or defense of legal claims; or the Data Subject objected to the data processing in this case the restriction concerns the period until it is established whether the legitimate grounds of the Data Controller override those of the Data Subject. The restriction of data processing means that the Data Controller does not process the personal data belonging under the scope of the restriction except for storage, or only processing such data to the extent the Data Subject consented to, and the Data Controller may process data necessary for the establishment, exercise or defense of legal claims or for the protection of the rights of other natural persons or legal entities or considering the important public interests of the European Union or any European Union member state even in lieu of such a consent. The Data Controller informs the Data Subject beforehand about releasing the limitation of the data processing. If personal data under this right is disclosed to other persons (e.g. the addressee as for example data processor), the Data Controller shall immediately inform such persons about the restriction of data processing, provided it is not impossible or it does not require a disproportionate amount of effort from the Data Controller. At the request of the Data Subject the Data Controller informs them about such recipients. Right to objection If the legal basis for the data processing concerning the Data Subject is the legitimate interest of the Data Controller or third parties, the Data Subject is entitled to object to the data processing. The Data Controller is not obliged to uphold the objection if the Data Controller can prove that the data processing is justified by legitimate and compelling causes that take precedence over the interests, rights and liberties of the Data Subject, or the data processing is connected to the data for the submission, enforcement or defense of legal claims of the Data Controller. Page 5 of 10

Right to the data portability The Data Subject is entitled to request that the Data Controller hands over the personal data of the Data Subject provided to the Data Controller on the basis of consent or a contract, and processed by the Data Controller by automated means (e.g. by a computer system), to the Data Subject in a structured, commonly used and machine-readable format even for the purposes of transmitting such personal data to other data controllers or if it is technically feasible, the Data Controller, at the request of the Data Subject, transmits such personal data directly to another data controller as indicated by the Data Subject. In the case of such requests the Data Controller provides the requested data as a pdf file. If the Data Subject s exercise of the right to data portability had adversely affected the rights and freedoms of others, the Data Controller is entitled to refuse to comply with the request of the Data Subject to the necessary extent. Measures taken in the scope of the data portability do not mean the deletion of the data, only if, at the same time, the Data Subject submits a request to delete the personal data as well. Therefore, in lieu of such a request, the Data Controller stores such personal data as long as it has the purpose and the appropriate legal basis for the processing of those data. Right to lodge a complaint, right to an effective judicial remedy If the Data Subject considers that the processing of their personal data by the Data Controller infringes the provisions of the established data protection legal regulations, especially the General Data Protection Regulation, the Data Subject has the right to lodge a complaint with the competent data protection supervisiory authority in the Member State of his/her habitual residence, place of work or the place of the alleged infringement. In Hungary, this authority is the Hungarian National Authority for Data Protection and Freedom of Information ( NAIH ). Contact details of NAIH: Website: http://naih.hu/ Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c. Mail address: 1530 Budapest, PO Box: 5. Telephone: +36-1-391-1400 Fax: +36-1-391-1410 E-mail: ugyfelszolgalat@naih.hu The Data Subject, regardless of his/her right to lodge a complaint, may also bring proceedings before a court for such infringement. The Data Subject is entitled to bring proceedings against the legally binding decision of the supervisory authority concerning the Data Subject as well. The Data Subject is also entitled to effective judicial remedy if the supervisory authority does not handle the complaint or does not inform the Data Subject within three months on the progress or outcome of the complaint lodged. AUTOMATED DECISION MAKING, PROFILING No automated individual decision-making or profiling is performed in the course of the data processing of the Data Controller concerning the Data Subject s. * * * Page 6 of 10

NEWSLETTER DATA PROTECTION NOTICE OF AIMOTIVE LTD. FOR EXISTING CLIENTS AND ADDRESSEES IN TERMS OF NEWSLETTER DATABASE Data controller and their contact options Company name of the data controller: AImotive Ltd. (hereinafter: the Data controller ) Registered seat: 1025 Budapest, Szépvölgyi út 22 E-mail address: info@aimotive.com Phone number: + 36 1 770 7234 Website: www.aimotive.com Scope of processed data, purpose, legal basis of data processing, the period for which the personal data is stored 2 Categories of personal data concerned b) Name and e-mail address of the Data Subject registered into the Newsletter database before 25 May 2018. Purpose of data processing Sending newsletters in direct marketing purposes, in particular advertisements, brochures, information on events and other activities belonging to the operation of the Data Controller and AImotive group. Legal basis of data processing The legitimate interest of the Data Controller to enable to continuously provide direct marketing newsletters towards the existing clients and addressees until their consent to the data processing is expressly given during the storage period. Period for which the personal data is stored In the course of 25 May 2018 to 30 June 2018. Concerning the above instances of data processing the Data Controller highlights that the Data Subject has the right of objection against the data processing. If the Data Subject does not provide the categories of the personal data as set out above then exclusion from the newsletter data base may be a possible consequence of failing to provide information. Recipients or categories of recipients of the personal data The Data Controller does not process any category of personal data to third parties or other addressees. Processing of special categories of personal data The Data Controller does not process any special category of personal data in the course of this process. Data of the data subject obtained from other sources The Data Controller does not obtain any data from the Data Subject from other sources. Page 7 of 10

Rights of the data subject The Data Subject may request from the Data Controller access to personal data concerning the Data Subject, rectification of inaccurate personal data, erasure of personal data, in certain cases the restriction of processing, furthermore the Data Subject also has the right to object to the processing of personal data. Additionally, the Data Subject is entitled to the right to the portability of data, to lodge a complaint with a supervisory authority and to an effective judicial remedy; additionally in the case of automated individual decision-making (including profiling) the right to obtain human intervention on the part of the Controller and to express his/her point of view and to contest the decision. The Data Subject is also entitled to withdraw his/her consent at any time, which, however, does not affect the lawfulness of data processing performed based on consent before the withdrawal. Right to access The Data Subject is entitled to request information at any time about whether and how the Data Controller processes their personal data, including the purposes of data processing, the recipients to whom the data was disclosed or the source where the Data Controller received the data from, the envisaged period for which the personal data will be stored, any right of the Data Subject concerning data processing, information concerning automated decision making, profiling, and information concerning related guarantees in the case of forwarding to third countries or to any international organization. When exercising the right to access the Data Subject is also entitled to request copies of the personal data undergoing processing; in the case of a request submitted electronically the Data Controller in lieu of a request from the Data Subject that says otherwise provides the requested information electronically (in pdf format). If the right to access of the Data Subject has a detrimental effect on the rights and liberties, in this regard especially the business secrets or intellectual property of others, the Data Controller is entitled to refuse to comply with the request to the necessary and proportionate extent. If the Data Subject requests the above information in several copies, the Data Controller charges a reasonable amount of fee, proportionate to the administrative costs of preparing the additional copies, HUF 200 per copy/page. Right to rectification At the request of the Data Subject the Data Controller corrects or completes personal data concerning the Data Subject. If any doubts arise concerning the corrected data, the Data Controller may request from the Data Subject the certification of the corrected data for the Data Controller appropriately, primarily with documents. If the Data Controller disclosed the personal data of the Data Subject with this right to another person (e.g. the addressee as data processor), then the Data Controller shall immediately inform such persons after correcting the data, provided it is not impossible or it does not require a disproportionate amount of effort from the Data Controller. At the request of the Data Subject the Data Controller informs them about such addressees. Right to erasure ( right to be forgotten ) If the Data Subject requests the erasure of any or all personal data of theirs, the Data Controller shall erase such data without undue delay if: the Data Controller does not need the personal data in question any more for the purpose such data was collected or otherwise processed for; it concerns data processing that was based on the consent of the Data Subject, but the Data Subject withdrew the consent and the data processing has no other legal basis; it concerns data processing that was based on the legitimate interests of the Data Controller or third parties but the Data Subject objected to the data processing and with the exception of objection to data processing for direct marketing purposes there are no legitimate grounds for the data processing that would have priority; Page 8 of 10

the Data Controller illegally processed the personal data, or the deletion of personal data is necessary for the performance of legal obligations. If the personal data under this right is disclosed by the Data Controller to another party (e.g. the recipient as for example data processor) then the Data Controller shall immediately inform such persons after the deletion, provided it is not impossible or it does not require a disproportionate amount of effort from the Data Controller. At the request of the Data Subject the Data Controller informs them about such recipients. The Data Controller is not always obliged to delete personal data, especially for example in the case of the data processing is necessary for the establishment, exercise or defense of legal claims. Right to restriction of data processing The Data Subject can request the restriction of the processing of their personal data in the following cases: the Data Subject contests the accuracy of the personal data in this case the restriction concerns the period enabling the data controller to check the accuracy of personal data; the data processing is unlawful but the Data Subject opposes the erasure of data, requesting the restriction of the usage of the same instead; the data controller does not need the personal data for data processing purposes any longer but the Data Subject needs the data for the establishment, exercise or defense of legal claims; or the Data Subject objected to the data processing in this case the restriction concerns the period until it is established whether the legitimate grounds of the Data Controller override those of the Data Subject. The restriction of data processing means that the Data Controller does not process the personal data belonging under the scope of the restriction except for storage, or only processing such data to the extent the Data Subject consented to, and the Data Controller may process data necessary for the establishment, exercise or defense of legal claims or for the protection of the rights of other natural persons or legal entities or considering the important public interests of the European Union or any European Union member state even in lieu of such a consent. The Data Controller informs the Data Subject beforehand about releasing the limitation of the data processing. If personal data under this right is disclosed to other persons (e.g. the addressee as for example data processor), the Data Controller shall immediately inform such persons about the restriction of data processing, provided it is not impossible or it does not require a disproportionate amount of effort from the Data Controller. At the request of the Data Subject the Data Controller informs them about such recipients. Right to objection If the legal basis for the data processing concerning the Data Subject is the legitimate interest of the Data Controller or third parties, the Data Subject is entitled to object to the data processing. The Data Controller is not obliged to uphold the objection if the Data Controller can prove that the data processing is justified by legitimate and compelling causes that take precedence over the interests, rights and liberties of the Data Subject, or the data processing is connected to the data for the submission, enforcement or defense of legal claims of the Data Controller. Right to the data portability The Data Subject is entitled to request that the Data Controller hands over the personal data of the Data Subject provided to the Data Controller on the basis of consent or a contract, and processed by the Data Controller by automated means (e.g. by a computer system), to the Data Subject in a Page 9 of 10

structured, commonly used and machine-readable format even for the purposes of transmitting such personal data to other data controllers or if it is technically feasible, the Data Controller, at the request of the Data Subject, transmits such personal data directly to another data controller as indicated by the Data Subject. In the case of such requests the Data Controller provides the requested data as a pdf file. If the Data Subject s exercise of the right to data portability had adversely affected the rights and freedoms of others, the Data Controller is entitled to refuse to comply with the request of the Data Subject to the necessary extent. Measures taken in the scope of the data portability do not mean the deletion of the data, only if, at the same time, the Data Subject submits a request to delete the personal data as well. Therefore, in lieu of such a request, the Data Controller stores such personal data as long as it has the purpose and the appropriate legal basis for the processing of those data. Right to lodge a complaint, right to an effective judicial remedy If the Data Subject considers that the processing of their personal data by the Data Controller infringes the provisions of the established data protection legal regulations, especially the General Data Protection Regulation, the Data Subject has the right to lodge a complaint with the competent data protection supervisiory authority in the Member State of his/her habitual residence, place of work or the place of the alleged infringement. In Hungary, this authority is the Hungarian National Authority for Data Protection and Freedom of Information ( NAIH ). Contact details of NAIH: Website: http://naih.hu/ Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c. Mail address: 1530 Budapest, PO Box: 5. Telephone: +36-1-391-1400 Fax: +36-1-391-1410 E-mail: ugyfelszolgalat@naih.hu The Data Subject, regardless of his/her right to lodge a complaint, may also bring proceedings before a court for such infringement. The Data Subject is entitled to bring proceedings against the legally binding decision of the supervisory authority concerning the Data Subject as well. The Data Subject is also entitled to effective judicial remedy if the supervisory authority does not handle the complaint or does not inform the Data Subject within three months on the progress or outcome of the complaint lodged. AUTOMATED DECISION MAKING, PROFILING No automated individual decision-making or profiling is performed in the course of the data processing of the Data Controller concerning the Data Subject s. * * * Page 10 of 10

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback