Dr. Bakonyi Edit (managing attorney of Bakonyi Law Office, Bar Registration No.: 36056753; Registration No.: 19242; Attorney ID No.: 00020360; address: 1143 Budapest, Gömb utca 27., 3/4., 4th floor; tax number: 18695728-2-41; email address: bakonyi@avocats.hu; hereinafter referred to as: the Controller), as data controller, acknowledges the content of this policy as binding upon itself.

The purpose of this policy is to set forth the data protection and data processing principles applied by the Controller and the Company’s data protection and data processing policy.

Furthermore, it informs persons visiting the www.bakonyiavocats.hu website or providing data there about the personal data processed by the Controller, its practices related to the processing of personal data, the organizational and technical measures taken to protect personal data, and the rights of data subjects.

Our data processing practice is based on Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information.

The Controller undertakes that all data processing related to its activities complies with the expectations set forth in this policy and in the applicable laws, with the understanding that, according to Article 14 (5) (d) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, data not obtained from the data subject are subject to attorney-client privilege under Sections 9-12 of Act LXXVIII of 2017 on Legal Profession, and thus Article 14 (1)-(4) of the Regulation are not applicable in this regard.

Bakonyi Law Office is committed to protecting the personal data of its clients and partners, and considers it of utmost importance to respect its clients’ right to informational self-determination. Bakonyi Law Office treats personal data confidentially and takes all security, technical, and organizational measures to guarantee data security.

1.1. DEFINITIONS

personal data: any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

restriction of processing: the marking of stored personal data with the aim of limiting their processing in the future;

controller: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

processor: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;

third party: a natural or legal person, public authority, agency or other body, other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;

data subject’s consent: any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

personal data breach: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

1.2. PURPOSE OF DATA PROCESSING

The purpose of data processing is the identification of the user for booking consultations, scheduling appointments, fulfillment, and the creation of anonymous traffic and visitor statistics for internal use.

1.3. LEGAL BASIS FOR DATA PROCESSING

Data processing is based on the voluntary consent of the data subjects (Act on Information Self-Determination and Freedom of Information, Section 5 (1) a)). Data subjects give their consent by providing the requested data on the Website.

Scope of processed data:
– name
– email address
– phone number

During browsing of the www.bakonyiavocats.hu website, technical information is recorded (log files, which contain IP address, time, etc.). The system continuously logs this data but does not link it with other data provided to the Controller. The Controller uses this information solely for the operation of the website and for statistical purposes. The website uses Google Analytics, the purpose of which is to anonymously record website traffic statistics. The Controller uses cookies on the website. By changing the settings of your internet browser, the sending of cookies can be disabled; however, if cookies are completely disabled, some functions of our website may not be available or may be available only to a limited extent.

Cookies do not contain personal data in any case.

1.4. COOKIES USED ON THE WEBSITE

Anonymous visitor identifier (cookie): An anonymous visitor identifier (cookie) is a unique string of characters – suitable for identification and storing profile information – which the web server places on the visitor’s computer. Such a string of characters alone cannot identify the visitor in any way; it serves solely to recognize the computer. It does not contain a name, email address, or any other personal information. Accepting cookies is not necessary to browse our website, but the messaging function will not work if you have disabled cookie acceptance in your browser.

Not only does the website send cookies to the visitor’s browser, but an external independent auditing service (Google Analytics) also measures site traffic using such a tool. Detailed information on the handling of measurement data can be found on the http://www.google.com/intl/hu/analytics website.

1.4.1. Cookies Used for Remarketing Tags:

For its operation, the website contains remarketing tags, which create a list from the data of visitors’ computers. External service providers, such as Google, may display advertisements on internet websites; these will be interest-based advertisements. Remarketing lists are not suitable for personally identifying the visitor; they only identify the browser software of their machine. During this process, Google uses so-called cookies for remarketing tags.

1.4.2. Conversion Tracking Cookies:

Our website uses conversion tracking during its operation to measure the effectiveness of Google AdWords advertisements. The conversion tracking cookie used for this purpose exists only for a limited time, and its acceptance is not mandatory. The conversion tracking cookie does not record or use any personal information.

The cookies used can be disabled at any time in Google Ad Settings (http://www.google.com/settings/ads), which does not hinder or prevent applying for services.

1.5. DURATION OF DATA PROCESSING

The provided data will be stored as long as the contractual relationship between the parties exists. However, if the data subject requests this in advance, their data will be deleted without delay. If no contractual relationship is established between the parties, the data will not be stored, and the provided data will be deleted.

Technical data related to traffic (IP address, operating system, browser type, etc.) are stored for 1 year. Thereafter, the operator retains them only in aggregated form, as traffic statistics.

1.6. SCOPE OF DATA ACCESS

Only the Controller and employees employed in its office have access to the data. Furthermore, the Controller does not transfer the data to third parties.
No data processor is engaged.

1.7. DATA SECURITY

The Controller treats information and data that comes to its knowledge confidentially, does not allow other persons to access them without the prior consent of the data subject – with exceptions specified in separate legal regulations – and does not disclose them.

The obligation of confidentiality applies to the Controller’s employees in the same way as to the Controller, and they are liable for its breach according to the law. The obligation of confidentiality also applies to the employee after the termination of employment.

1.8. INFORMATION ON LEGAL REMEDIES

The data subject is entitled to request information about their personal data processed at any time, which the Controller will fulfill within 8 days of receipt. Upon request, the Controller provides information on the personal data processed, the purpose of data processing, its legal basis, and its duration. The data subject may request the erasure, rectification, or restriction of their data without justification. The data subject may request the rectification or erasure of incorrectly recorded data at any time, which the Controller will carry out within 5 days of receipt in such a way that they cannot be restored later. An exception to this provision is any data processing or storage obligation prescribed by law for the Controller.

The Controller also restricts personal data if the data subject explicitly requests it or if there is a reasonable presumption that erasure would prejudice the data subject’s interests. Data thus restricted may only be processed as long as the possibility of prejudice to the data subject’s interests, i.e., the purpose of the restriction, exists.

The Controller simultaneously notifies the data subject of the rectification, erasure, or restriction of personal data.

If the Controller rejects the data subject’s request, it is obliged to notify the data subject of this decision, with justification, within eight days.

In case of a violation of rights, the data subject may turn to the Court based on Section 22 of the Act on Information Self-Determination and Freedom of Information or 52. may initiate official proceedings with the National Authority for Data Protection and Freedom of Information based on its relevant Section.

The Controller states that it does not store unsolicited data received and deletes or destroys them within eight days of receipt.

The Controller declares that the Act on Information Self-Determination and Freedom of Information 7. complies with the data security requirements set forth in its relevant Section regarding all personal data processed by it.

The Controller does not verify the authenticity of personal data provided to it; however, if false or erroneous data are provided, it assumes no responsibility for them and will assert any damages incurred.

In matters not covered in this section, the provisions of the Act on Information Self-Determination and Freedom of Information shall apply.

1.9. OTHER MATTERS

We provide information on data processing not listed in this policy at the time of data collection. We reserve the right to unilaterally amend this data processing policy with notification to the data subjects. The Controller does not verify personal data provided to it in the absence of such a legal obligation. The person providing the data is solely responsible for its accuracy. By providing their email address, any data subject simultaneously undertakes responsibility that only they will use services from the provided email address. We inform our clients that the investigating authority, the National Authority for Data Protection and Freedom of Information, or other bodies authorized by law may contact the Controller for the purpose of providing information, disclosing or transferring data, or making documents available.

1.10. DATA PROTECTION AUTHORITY

Complaints can be filed with the National Authority for Data Protection and Freedom of Information:
National Authority for Data Protection and Freedom of Information, 1125 Budapest, Szilágyi Erzsébet fasor 22/C., Mailing address: 1530 Budapest, P.O. Box: 5., Phone: +36.1.391.1400, Fax: +36.1.391.1410, E-mail: ugyfelszolgalat@naih.hu, Website: http://www.naih.hu

2. LEGAL STATEMENT

By downloading or viewing the www.bakonyiavocats.hu website, the visitor accepts the following terms:

The content elements, texts, images, animations provided by Bakonyi Law Office, and all data in the database found on the aforementioned website are the property of Bakonyi Law Office, and it holds all rights related to them. The listed content elements are subject to Act of 1999 LXXVI of on Copyright, are intellectual property of Bakonyi Law Office; they are under legal protection.

The copyright for the graphic, photo, animation, and other visual elements, as well as unique programming solutions found on the website, belongs to Márkaépítés Profin Kft. (registered office: 6000 Kecskemét, Munkácsy utca 37.; tax number: 24159036-2-03). Modification, addition, or removal of graphic or programming elements is not possible without the written permission of the Contractor.

The Bakonyi Law Office logo is under trademark protection.

Visitors may download, display on their screens, and print the content of the website; however, the use and reproduction of the website’s textual and visual content are only permitted with the prior written consent of the author. Quoting the textual content of the website is permitted, provided that further use is not for commercial purposes and the source is indicated.

The communications placed on the website serve to inform the public and do not bind the Law Office in any way. No communication placed on the website shall be considered a contractual offer or acceptance of a contractual offer, or legal advice.

Bakonyi Law Office continuously updates the announcements and data placed on the website, but cannot guarantee their accuracy. Bakonyi Law Office does not assume responsibility for damages arising from errors, inaccuracies, and technical problems. Bakonyi Law Office reserves the right to change the content of the website in part or in whole at any time.

The Law Office bears no responsibility for the content of external pages maintained by third parties, referenced by links placed on the website.

If the user causes damage in any way on the website during its use, the service provider is entitled to claim compensation from the user. In such a case, the service provider will provide all possible assistance to the authorities involved for the purpose of establishing the identity of the infringing person.

Some of the links on the website lead to websites operated by others; the website operator assumes no responsibility for their content and excludes its liability for any damage resulting from the use of this information. The website operator strives to provide accurate and authentic information but does not assume responsibility for any damages that may arise from the information provided.

This policy and legal statement enters into force on 2019 July 17, and is established for an indefinite period.

Issued in Budapest, July 17, 2019.

Bakonyi Law Office
dr. Bakonyi Edit
Managing Attorney