RFP, Contact
RFP

Privacy

Based on the applicable Hungarian legislation and the relevant provisions of Regulation 2016/679 of the European Parliament and of the Council (hereinafter: Regulation), you are the G.M. Production Kft. (headquarters: 1034 Budapest, Eső utca 6.; e-mail address: info@yappp.com) - hereinafter: G.M. When registering on the websites of Production Kft. or Data Controller, or sending a contact form, knowing these data management regulations, you voluntarily consent to the fact that G.M. Production Kft. handles your personal data for the data management purposes specified in point 5, in compliance with the referenced legal regulations.
This data management policy and information sheet (hereinafter: Data Management Policy) of G.M. Production Kft., as a data controller, on the websites https://www.yappp.com, wwww.reklammuvek.com (hereinafter: Website) relating to the processing of the personal data of natural person users (hereinafter: User) specified in these Data Management Regulations, the Decree and CXII of 2011 on the right to informational self-determination and freedom of information. contains the data management rules and the data protection information for Users in accordance with the provisions of the Act (hereinafter: Info tv.).
Please note that the legal basis for data management is your voluntary consent to data management, you have the right to withdraw your consent to data management at any time, and you are entitled to request information about data management at any time, as well as the correction or deletion of data (termination of data management), as well as for the purposes indicated below or those to request the termination of the processing of a part of it at "1034 Budapest, Eső utca 6." or in a letter sent to the email address info@yappp.com.
We would also like to draw your attention to the fact that the User has the right to object to the processing of data for the purpose of obtaining direct business in a letter sent to the address Eső utca 6, 1034 Budapest, or to the email address info@yappp.com.
The personal data provided by the User when registering on the Website of the Data Controller, sending a contact form, or subscribing to the newsletter will be processed by the Data Controller until the User's consent is revoked.
The User's rights are detailed in Section 9 of these Data Management Regulations, while the options for legal enforcement are detailed in Section 10 of these Data Management Regulations.
Withdrawal of consent to data processing does not affect the legality of the data processing that took place until then.
The Data Controller assumes no responsibility for the authenticity of the data provided by you.
1. GENERAL PROVISIONS
The Data Controller manages the User's personal data on the basis of these Data Management Regulations, taking into account the authority responsible for data protection (currently: National Data Protection and Information Freedom Authority, whose seat is: 1125 Budapest, Szilágyi Erzsébet fasor 22/C. and website: www.naih.hu) information and the published court practice. By accepting this Data Management Policy, the User consents to the Data Controller's data management in accordance with the Data Management Policy. Please also read point 5 (User Declaration) to learn about the declarations made by the User by accepting this Data Management Policy!
2. AMENDMENT
The Data Controller reserves the right to unilaterally modify this Data Management Policy in addition to the information published on the Website to the Users. The Data Controller shall publish the amended Data Management Policy on the Website no later than the fifth (5th) day before the amended Data Management Policy enters into force. The Data Controller may send a notification of changes to this Data Management Policy to the registered Users of the Website via the user account available on the Website (hereinafter: User Account) or, in the case of both registered and unregistered Users, via one of the contact details provided during registration or when using the Website, at the latest on the fifth (5th) day before the amended Data Management Regulations enter into force. The User declares that he/she consents to contact via the User Account or the contact details provided by him/her during registration or when using the Website in accordance with these Data Management Regulations.
3. PURPOSE OF DATA MANAGEMENT POLICY
The purpose of this Data Management Policy is to
promote the enforcement of data protection legislation;
determines the scope of the User's personal data according to point 6 and managed by the Data Controller, the method of data management, the respect for the privacy of natural persons Users in accordance with other relevant laws, the enforcement of data protection and data security requirements;
before starting data management, inform the Users about the identity of the Data Controller, the purpose, duration and legal basis of the data management, as well as the possibility and method of asserting the rights of the Users in relation to the data management; also,
prevents unauthorized access to the User's personal data, data changes and unauthorized disclosure or use.
4. USER STATEMENT
By registering on the Website and/or subscribing to the newsletter and/or submitting a contact form, the User confirms that he/she has fully read and familiarized himself with these Data Management Regulations, and also accepts the provisions contained therein as binding on him/her and voluntarily, in an informed manner and expressly consents to the fact that the Data Controller processes his personal data defined in the Data Management Policy for the purposes of data management defined therein - that is, all the goals defined in the Data Management Policy - in accordance with the provisions of this Data Management Policy.
When registering on the Website and/or subscribing to the newsletter and/or sending a contact form, the User consents to the personal and other data he voluntarily provided being processed by the Data Controller for the purposes set out in point 5, and also consents to his name and contact details (email address, telephone number, residential address) for the use of continuous contact and repeated contact.
The User declares that the data provided by him is true and does not infringe the personal or other rights of third parties or the interests protected by law.
5. PURPOSES OF DATA MANAGEMENT
To manage Users' personal data
in order to use, provide, maintain and protect the services provided by the Data Controller through the Website (hereinafter: Services);
for the further development of the Services and the development of new services;
for the protection of the Data Controller and the User;
in order to support the Data Controller's activities related to the Services, including, in particular, the display of content uploaded to the Website, the preparation and execution of activities started or initiated on the Website, and the Data Controller's activities;
It is used for promotional purposes related to the above (sending newsletters and advertising newsletters, participating in giveaways, recommending products/services, obtaining direct business/direct marketing/ and conducting telemarketing/telesales activities, promoting events).
6. SCOPE OF PROCESSED PERSONAL DATA
The regulations related to the management and protection of Users' personal data apply only to natural persons, given that personal data can only be interpreted in relation to natural persons.
The Data Controller only records personal data that the User provides voluntarily. By providing his personal data, the User consents to his personal data being entered into the Data Controller's database in accordance with these Data Management Regulations.
6.1. Personal data processed for the purpose of identifying users and for other activities The Data Controller manages the following personal data of Users for the purpose of identification:
(1) User's natural personal identification data: surname and first name, date of birth;
(2) User's e-mail address;
(3) User's residential address, postal address;
(4) User's direct telephone number;
(5) Personal information voluntarily provided by the user (for example, notification address, occupation, position, interest) and other data.
On the Website, the Data Controller may also request other personal data from the Users for certain activities. When providing this, the Users also give their express and voluntary consent to the processing of the provided personal data, and the Data Controller uses the provided personal data only for the purpose specified in point 5 and the purpose related to the activity. manages it until it is realized. This data management is also governed by the present Data Management Regulations.
6.2. Data processed in order to use services
(1) User's computer IP address;
(2) Data regarding the User's activity related to the Website (for example, tracking the number of banner clicks).
This data is automatically logged by the Data Controller's system. Such information is not suitable for personal identification, the Data Controller does not connect the data in the log file with other personal data, it uses the data for trend analyses, the preparation of page usage statistics, the administration of the Services, the analysis and satisfaction of User needs, which contribute to the improvement of the quality of the Services.
6.3. Services
Registration forms: on such pages, the Data Controller may request the personal data necessary to receive the services, providing them is also voluntary.
Contact forms: on such pages, the Data Controller may request the personal data required for contact, providing them is also voluntary.
Direct business acquisition: When registering on the Website and/or subscribing to the newsletter and/or sending a contact form, the User voluntarily and expressly consents to the Data Manager handling the User's personal data for the purpose of direct business acquisition. Consent may be given voluntarily or withdrawn at any time during the User's legal relationship, without giving reasons, at one of the contact details indicated in the first paragraph of these Data Management Regulations. In relation to certain services, the Data Controller may send informational materials to Users at given intervals, in which they provide news about new developments related to the Services. Users who do not wish to receive such letters can withdraw their consent to this information service at any time in the future by sending a letter stating this intention by post or e-mail to the correspondence or e-mail address indicated in the first paragraph of these Data Management Regulations.
Sending promotional offers, direct marketing: The Data Controller may send the Users circulars for informational purposes at certain intervals about its new services and special offers, to which the User voluntarily agrees in accordance with these Data Management Regulations when registering on the Website and/or subscribing to the newsletter and/or sending a contact form and gives his express consent. For this purpose, the Data Controller manages the e-mail address, name and postal address of the Users. If the User does not want to receive such promotional letters in the future, he can object to the sending of promotional letters or withdraw his consent to data processing from the Data Controller at one of the contact details indicated in the first paragraph of this Data Management Policy.
7. LEGAL BASIS AND METHOD OF DATA MANAGEMENT
The Data Controller manages the User's personal data exclusively for the purposes specified in this Data Management Policy, and ensures that the data management is carried out in accordance with the purpose of the data management at all stages. The User is aware of these Data Management Regulations and declares that giving his consent to data management, as well as the subsequent provision of data, is in all cases Info tv. It is based on the voluntary, informed and definite consent of the User based on point a) of paragraph 1 of § 5 and point a) of paragraph 1 of Article 6 of the Regulation. This voluntary, informed and decisive consent provides the legal basis for the Data Controller's data processing defined in these Data Management Regulations.
In the event that the User places an order through the website, until the order is fulfilled, point b) of Article 6 (1) of the Regulation, and Info tv. Based on § 6. (4), the legal basis for data management is 6.1. point (1)-(4) - if they are necessary for the performance of the contract - the legal interest of the Data Controller necessary for the performance of the contract.
8. DATA SECURITY
The Data Controller is Info tv. § 7 and 32-34 of the Regulation. in accordance with its obligations according to its articles, it will do everything to ensure the security of your data, it will also take the necessary technical and organizational measures and establish the procedural rules, as well as take the measures that the Info tv., the Regulation, and other necessary to enforce data and confidentiality rules.
If any of the data provided by the User is changed, the relevant changes must be indicated. This can happen at 1034 Budapest, Eső u. 6.” or in a letter sent to the email address info@yappp.com, if the User also has a user account on the Website, then data changes can also be made on the Website.
The Services have so-called cloud applications are also part of it. Cloud applications are typically international or cross-border in nature, and e.g. they serve the purposes of data storage, when the data storage is not the Data Controller's computer/corporate computing center, but a server center that can be located anywhere in the world. The main advantage of cloud applications is that they provide highly secure, flexibly expandable IT storage and processing capacity that is essentially independent of geographic location. The Data Controller selects its partners providing cloud services with the greatest possible care, takes all generally expected measures to conclude a contract with them that also takes into account the data security interests of the Users, their data management principles are transparent to them and regularly checks data security. By accepting these Data Management Regulations, the User expressly consents to the data transmission required for the use of cloud-based applications.
Links: It is possible that the Website of the Data Controller contains references and links to pages maintained by other service providers (including buttons and logos pointing to the possibility of logging in and sharing), where the Data Controller has no influence on the practice related to the management of personal data, or where the Data Controller shares data /does not transfer data. We draw the attention of Users that if they click on such links, they may be transferred to the pages of other service providers. In such cases, we recommend that you definitely read the data management rules applicable to the use of these pages. This Data Management Policy applies only to the Website operated by the Data Controller. If the User changes or deletes any of his data on an external website, it will not affect the data management by the Data Controller, such changes must also be made on the Website.
9. RIGHTS OF USERS
The User may request information about data management and whether his personal data is being processed, and may request a copy of the personal data processed in relation to him during the ongoing data management, as well as request access to, correction, or deletion of the personal data concerning him ( termination of data processing), or restriction of its processing, and may object to the processing of such personal data. In connection with the management of personal data, the User may exercise his/her rights by means of a notification sent to one of the contact details indicated in the first paragraph of these Data Management Regulations.
In the case of a user request detailed in points (b)-(f) of this point 9 below, or in point 10 of these Data Management Regulations, the Data Controller shall inform the User within one month of the receipt of the request of the action taken following the request, by the User during registration provided e-mail address, unless the User indicates a different information path in his request. The data controller may extend this deadline by a maximum of two additional months due to the complexity and number of requests. The Data Controller will inform the User of the extension of the deadline, indicating the reasons for the delay, within one month of receiving the request.
If the Data Controller does not take action following the User's request, it shall inform the User within one month of the receipt of the request of the reasons for the failure to take action, as well as the fact that the User may file a complaint with the National Data Protection and Freedom of Information Authority, or exercise his right to judicial remedy.< br> The Data Controller fulfills the request free of charge, unless the request is clearly unfounded or – especially due to its repetitive nature – excessive, in which cases the Data Controller may charge a reasonable fee or refuse to act on the request.
(a) Information, Access
About the management of personal data, the User is informed by Info tv. You can request information based on point a) of § 14 and paragraph 1 of Article 15 of the Regulation. Upon request, the Data Controller provides the User with information on whether their personal data is managed by the Data Controller itself or by a data processor acting on behalf of or at the request of the Data Controller. If the data is managed by the Data Controller or by a data processor acting on the order or at the direction of the Data Controller, the Data Controller makes available to the User the personal data of the User managed by the Data Controller or the data processor acting on the order or instruction of the Data Controller and - within the framework of the User's request and its depending on - informs the User
the source of the processed personal data,
the purpose and legal basis of data management, duration,
scope of personal data handled,
in the case of the transfer of managed personal data, the scope of the recipients of the data transfer, including recipients in third countries and international organizations,
the User by Info tv. the rights to which you are entitled based, as well as a description of how to enforce them, in the case of the transfer of managed personal data, the scope of the recipients of the data transfer, including recipients in third countries and international organizations,
in the case of profiling, the fact thereof, and
the circumstances of possible data protection incidents arising in connection with the management of the User's personal data, their effects and the measures taken to manage and prevent them,
and informs the User about its activities related to data management.
Requests for information on data management should be sent by mail or e-mail to the mailing or e-mail address listed in the first paragraph of these Data Management Regulations, to which the User will receive a written response within twenty-five (25) days.
(b) Correction
The Data Controller corrects the personal data if the User requests this, if the personal data does not correspond to the reality or is inaccurate, and the data controller has the personal data that corresponds to the reality or is accurate. The User is also entitled to request the addition of incomplete personal data.
In accordance with the above provisions of this subsection 8. (b), if the personal data managed by the Data Controller or by a data processor acting on the Data Controller's behalf or at the request of the Data Controller are inaccurate, incorrect or incomplete, the Data Controller shall, especially at the request of the User, clarify or correct them without delay, and if it is compatible with the purpose of data management, it is supplemented with additional personal data provided by the User or with a statement attached by the User to the processed personal data. The Data Controller is exempted from the obligation described in the previous sentence if accurate, correct or complete personal data is not available and the User does not provide them, or the authenticity of the personal data provided by the User cannot be established beyond doubt.
(c) Cancellation
The Data Controller deletes personal data if the User requests it or the termination of data management. The Data Controller may refuse the request for data deletion in the following cases:
a) further processing of the data is necessary for the purpose of exercising the right to freedom of expression and information; or
b) the further processing of the data is necessary for the purpose of fulfilling the obligation under the EU or Member State law applicable to the Data Controller, which prescribes the processing of personal data; or
c) the further processing of the data is necessary for the presentation, validation and protection of legal claims.
The User shall notify the Data Controller of their request for deletion of their personal data by mail or e-mail at the mailing or e-mail address listed in the first paragraph of these Data Management Regulations. Based on the User's voluntary decision and request, within twenty-five (25) days from the date of receipt of the deletion request, the Data Controller shall delete the data requested by the User to be deleted. By withdrawing consent to the processing of personal data, or requesting the deletion of data, the User waives the right to participate in all activities related to registration. Cancellation is always free of charge.
(d) Restriction of data processing
The Data Controller restricts data processing if
the User disputes the accuracy, correctness or completeness of the personal data processed by the Data Controller or by the data processor acting on the Data Controller's behalf or instructions, and the accuracy, correctness or completeness of the processed personal data cannot be established beyond doubt, for the duration of the clarification of the existing doubt, or
due to illegal data management, the data would be deleted due to the illegality of the data management, but based on the User's written statement or the information available to the Data Controller, it can be reasonably assumed that the deletion of the data would harm the User's legitimate interests for the duration of the existence of the legitimate interest justifying the non-deletion, or
due to illegal data processing, the data would have to be deleted due to the illegality of the data processing, but in the course of investigations or procedures defined by law, especially criminal proceedings, carried out by or with the participation of the Data Controller or another body performing public duties, the data must be preserved as evidence until the conclusion of this investigation or procedure.
Personal data limited in this way is processed by the Data Controller only as long as the data management purpose that precluded the deletion of the personal data exists. With the exception of the storage of restricted personal data, only for the purpose of asserting the User's legitimate interests, or with the User's consent, or for the presentation, enforcement or defense of a legal claim, or for the protection of the rights of another natural person or legal entity, or the European Union or a member state can be handled in the important public interest. The Data Controller shall notify the User of the restriction order. The Data Controller will notify the User in advance of the lifting of the restriction on data management, in the event that the restriction was necessary to check the accuracy, correctness or completeness of the data.
(e) Objection
The User may object to the processing of his personal data at any time. If the User objects to the data processing, his personal data may no longer be processed, unless the Data Controller proves that the data processing is justified by compelling legitimate reasons that take precedence over the interests, rights and freedoms of the User, or which, in order to submit legal claims, are related to its enforcement or protection. If the User objects to the processing of personal data for direct business purposes, then the personal data may no longer be processed for this purpose.
The User also has the option to object to data processed for the purpose of direct business acquisition by ticking the checkbox on the website of the Data Controller.
(f) Right to Data Portability
As part of his right to data portability, the User may request the Data Controller to receive a copy of his personal data managed by the Data Controller in a segmented, widely used, machine-readable format, and he is also entitled to request the Data Controller to directly forward his personal data provided to another data controller.
10. REMEDY RIGHTS
(a) Court Enforcement
The User may go to court against the Data Controller or, in connection with the data processing operations within the scope of the data processor's activities, against the data processor if, in his opinion, the Data Controller, or a data processor commissioned by or acting on the basis of the Data Controller's instructions, has used his personal data in accordance with the law or the It is handled in violation of the regulations defined in the mandatory legal act of the European Union.
The Data Controller or the data processor commissioned by the Data Controller must prove that the data management complies with the requirements set out in legislation or in a mandatory legal act of the European Union regarding the handling of personal data.
The lawsuit can also be initiated by the User - at his or her choice - before the competent court based on his or her place of residence. A person who otherwise does not have legal capacity to litigate can also be a party to the lawsuit.
If the Data Controller, or a data processor acting on the basis of the Data Controller's mandate or instructions, violates the regulations regarding the handling of personal data, as defined by law or a binding legal act of the European Union, and thereby causes damage to others, it is obliged to compensate it.
If the Data Controller, or a data processor acting on the basis of the Data Controller's mandate or instructions, violates the regulations regarding the handling of personal data, defined in legislation or a mandatory legal act of the European Union, and thereby infringes another person's right to privacy, the person whose privacy right has been infringed by the Data Controller, or the You may demand damages from a data processor commissioned by or acting on the basis of a data controller.
The detailed method of legal enforcement, as well as the detailed legal provisions regarding the Data Controller's obligations, can be found in Info tv. contains.
The rights of disabled and incapacitated Users regarding data management, including the granting of consent for the processing of personal data, are exercised by their legal representatives and guardians, and they fulfill their obligations. The consent of a minor User who has reached the age of 16 is not required for the validity of his consent or the subsequent consent of his legal representative.
(b) Authority Enforcement
The User
the National Data Protection and Freedom of Information Authority may initiate an investigation in order to investigate the legality of the Data Controller's action, if the Data Controller does not inform the User of the facts related to the data management prior to the start of the data management or Info tv. informed in accordance with its provisions, or if the User restricts the enforcement of his rights specified in point 9 of these Data Management Regulations or rejects his request to enforce these rights, or you can request the conduct of the official data protection procedure of the National Data Protection and Freedom of Information Authority if, in your opinion, the Data Controller, or the data processor acting on the basis of the Data Controller's instructions, in the handling of your personal data, violates the regulations regarding the handling of personal data, as defined in the law or in the binding legal act of the European Union.
These regulations will enter into force on May 25, 2018.

Do you have a question?