Below you can read the General Terms and Conditions of www.megaglobal.hu. Please review the contents carefully, and if you have any questions, let us know via any of our contact channels.
megaglobal.hu
DATA MANAGEMENT AND DATA SECURITY NOTICE
1. Introduction
Megaglobal Kft. 1043 Budapest, Csányi László utca 34. (hereinafter: service provider, data controller), as the data controller, acknowledges the content of this legal notice as binding. It undertakes to ensure that all data processing related to its activities complies with the requirements set out in this policy and in the applicable legislation.
The purpose of this statement is to ensure the protection of personal data as provided by the Fundamental Law, to enable informational self-determination, and to define the data protection and data security rules governing data processing with regard to personal data processed by the company. These rules apply to the entire company and its employees.
Data protection principles related to the data processing activities of the service available at www.megaglobal.hu are continuously accessible on the website www.megaglobal.hu.
Megaglobal Kft. reserves the right to amend this notice at any time. Naturally, it will inform its audience of any changes in due time. If a user has a question that is not clear based on this notice, please write to us and our colleague will answer. Megaglobal Kft. treats personal data confidentially and takes all security, technical, and organizational measures necessary to guarantee data security.
Below, Megaglobal Kft. presents its data processing principles and the requirements it has defined for itself as a data controller and complies with. Its principles are in line with the applicable legislation on data protection, in particular:
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) – General Data Protection Regulation;
Act XIX of 1998 – on Criminal Procedure (Be.);
Act C of 2003 – on Electronic Communications (Eht.);
Act XLVIII of 2008 – on the Basic Conditions and Certain Restrictions of Economic Advertising Activities (Grt.);
Act CXII of 2011 – on the Right of Informational Self-Determination and Freedom of Information (Infotv.);
Act V of 2013 – on the Civil Code (new Civil Code);
2. Definitions
| Term | Meaning |
| Data subject | any identified or identifiable natural person who can be identified, directly or indirectly, on the basis of personal data. |
| Personal data | any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. |
| Consent | any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her. |
| Objection | a statement by the data subject objecting to the processing of his or her personal data and requesting the termination of processing and/or the deletion of the processed data. |
| Data controller | the natural or legal person, public authority, agency, or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. |
| Processing | any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means (e.g., collection, recording, storage, deletion, etc.). |
| Data transfer | making data accessible to a specific third party. |
| Disclosure | making data accessible to anyone. |
| Erasure | rendering data unrecognizable in such a way that restoration is no longer possible. |
| Data marking | labelling data with an identifier in order to distinguish it. |
| Restriction of processing | marking data with an identifier for the purpose of limiting its further processing permanently or for a specified period. |
| Destruction | the complete physical destruction of the data carrier containing the data. |
| Data handling | performing technical tasks related to data processing operations. |
| Data processor | a natural or legal person, public authority, agency, or any other body which processes personal data on behalf of the data controller. |
| Third party | a natural or legal person, or an organization without legal personality, other than the data subject, the data controller, or the data processor. |
| Third country | any country that is not an EEA state. |
| Binding Corporate Rules (BCR) | a binding code of conduct applied by multinational companies and approved by the data protection authority of the EU Member State where the registered office is located. |
| Data breach | includes any unlawful data processing, regardless of whether it was carried out intentionally, negligently, or due to a technical error. |
3. Principles of data processing
Lawfulness, fairness and transparency: The company processes data lawfully and fairly, and in a transparent manner for the data subject.
Purpose limitation: Personal data is collected only for specified, explicit, and legitimate purposes and is not processed in a manner incompatible with those purposes.
Data minimization: Data processing is adequate, relevant, and limited to what is necessary in relation to the purposes.
Accuracy: Data processing is accurate and up to date. Reasonable steps are taken to ensure that inaccurate personal data is erased or rectified without delay.
Storage limitation: Personal data is stored in a form that permits identification of data subjects only for as long as necessary for the purposes.
Integrity and confidentiality: Appropriate technical and organizational measures are used to ensure adequate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
Accountability: The company is responsible for compliance with the above principles and can demonstrate such compliance (with documentation).
4. Scope of personal data, purpose, legal basis, and duration of processing
The data processing activities of Megaglobal Kft. related to the website available at www.megaglobal.hu are based on voluntary consent. In certain cases, legislation may require the processing, storage, or transfer of data.
Data processors:
DENINET Kft. 1188 Budapest, Bercsényi u. 79/b.
Purpose of processing: hosting services required for the operation of the website www.megaglobal.hu.
Megaglobal Kft. will delete without delay from its system any photo materials sent to the company, as well as photo and video materials created by the company or its representative, after fulfilling the order and delivering (sending) the final products.
5. Customer service
Both email and telephone customer service are provided by Megaglobal Kft.
6. Data processing related to online inquiries
| Category | Details |
| Purpose of processing | Contacting the user. |
| Legal basis of processing | Consent of the data subject (based on GDPR and Infotv.). |
| Scope of processed data | Name, email address, phone number. |
| Duration of processing | For the duration of the customer relationship or until the withdrawal of consent by the data subject. |
| Note | Data is processed in a closed system and is not transferred to third parties. Consent can be withdrawn at any stage. |
7. Data processing related to purchases in the webshop
| Category | Details |
| Purpose of processing | Processing the purchase, contacting the user. |
| Legal basis of processing | Consent of the data subject, Infotv., E-commerce Act Section 13/A, Grt. Section 6 (5), Accounting Act Section 169 (2). |
| Scope of processed data | Name, address, email address, phone number. |
| Duration of processing | 5 years. |
8. Web analytics and ad serving
Megaglobal Kft. uses the Google Inc. Google Analytics service. This service operates in compliance with the GDPR.
Google Analytics uses cookies to analyze website usage. Information stored by cookies (including the IP address) is stored by Google Inc. on servers in the United States.
As part of Google AdWords remarketing, Google Inc. places tracking cookies on visitors, based on which Google Inc. can serve interest-based ads on other websites.
Information about Google Inc.’s data practices and how to disable cookies:
www.google.com/intl/hu/policies/privacy/ads
9. Other
The court, the prosecutor’s office, the investigative authority, the misdemeanors authority, the administrative authority, the data protection commissioner, and other bodies authorized by law may contact the data controller for the provision of information, disclosure or transfer of data, or for making documents available. Megaglobal Kft. provides personal data to authorities—provided that the exact purpose and scope of data are specified—only to the extent strictly necessary for fulfilling the purpose of the request.
10. Storage of personal data and data security
Megaglobal Kft. selects and operates its IT tools so that the processed data:
a) is accessible to authorized persons (availability);
b) its authenticity and authentication are ensured (authentic processing);
c) its integrity can be verified (data integrity);
d) is protected against unauthorized access (confidentiality of data).
Megaglobal Kft. ensures during processing:
a) confidentiality: protecting information so only authorized persons can access it;
b) integrity: protecting the accuracy and completeness of information and processing methods;
c) availability: ensuring authorized users can access the required information when needed.
The IT system is protected against computer-assisted fraud, espionage, sabotage, vandalism, fire and flooding, as well as computer viruses, hacking, and denial-of-service attacks.
11. Data controller details and contact information
| Data | Details |
| Company name | Megaglobal Kft. |
| Registered office | 1043 Budapest, Csányi László utca 34. |
| Company registration number | 01-09-895193 |
| Registering court | Company Court of the Budapest-Capital Regional Court |
| Tax number | 14241530-2-41 |
| info@megaglobal.hu | |
| Web | www.megaglobal.hu |
| Contact person | Imre Pandur |
| Data protection registration number | webshop operation: in progress |
12. Legal remedies
Right to information and rectification
The data subject may request information about the processing of his or her personal data and may request rectification or—except for processing required by law—erasure. The data controller provides the information in writing, in a clear and understandable form, as soon as possible, but no later than 25 days from the submission of the request. The information is free of charge if no request concerning the same area has been submitted in the current year.
Erasure and restriction
Megaglobal Kft. erases personal data if processing is unlawful, if requested by the data subject, if the purpose of processing has ceased, if the storage period has expired, or if ordered by a court or the data protection commissioner. The data subject will be informed of rectification and erasure.
Right to object
The data subject may object to the processing of his or her personal data if:
a) processing is necessary solely for the enforcement of the rights or legitimate interests of the data controller or data recipient (except where required by law);
b) use or transfer is for the purposes of direct marketing, public opinion polling, or scientific research;
c) the exercise of the right to object is otherwise permitted by law.
Megaglobal Kft. examines the objection within a maximum of 15 days and informs the applicant in writing of the result. If the objection is justified, the data controller terminates processing and restricts the data.
Judicial remedy
If the data subject disagrees with the decision of the data controller, he or she may, within 30 days of notification, turn to a court. In the event of violation of rights, the data subject may bring an action against the data controller before a court.
Compensation
Megaglobal Kft. compensates for damage caused to others by unlawful processing of the data subject’s data or by breaching the requirements of technical data protection. It is exempt from liability if the damage was caused by an unavoidable event outside the scope of data processing.
National Authority for Data Protection and Freedom of Information (NAIH)
Complaints and legal remedies can be submitted to the NAIH:
Name: National Authority for Data Protection and Freedom of Information
Registered office: 1125 Budapest, Szilágyi Erzsébet fasor 22/C
Postal address: 1530 Budapest, P.O. Box: 5.
Phone: +36 1 391 1400 | Fax: +36 1 391 1410
Email: ugyfelszolgalat@naih.hu
Access to data of public interest
If someone is denied access to data of public interest because it has been classified as national data, they may request a review by the NAIH, which may be followed by a secrecy supervision procedure.
LEGAL STATEMENT
Limitation of liability:
Megaglobal Kft. shall not be liable in any way for the matters listed below, regardless of the cause:
Any data sent and/or received over the internet.
Any operational failure within the internet network.
Any malfunction of any receiving device on communication lines.
Any letter—regardless of whether received in paper or electronic form—and especially any loss of data.
Improper functioning of any software.
Consequences of any program error, abnormal event, or technical fault.
Megaglobal Kft. shall not be held liable in any case of force majeure or for any event beyond its control.
Megaglobal Kft. reserves the right to modify or update the website without prior notice, or to suspend or terminate its operation temporarily or permanently. The user accepts that Megaglobal Kft. assumes no liability for any damages resulting from this.
Any amendment shall be effective from the time it is published online on www.megaglobal.hu.
Copyright
All information and photos on the site, as well as the graphic and technical structure of the site, are the exclusive property of Megaglobal Kft. and are protected by copyright (Act LXXVI of 1999 on Copyright).
Use of these materials without the consent of the rights holder constitutes an infringement of copyright and entails legal consequences. Prior written permission from Megaglobal Kft. is required for the use of any element of the site.
The Data Processing Notice can be downloaded by clicking here.