top of page

Privacy Policy

  1. Purpose of the Privacy Policy Studio-Trend Bt. (address: 28/1 Hárslevelű Street, Budapest, 1106, hereinafter referred to as the service provider, data controller), as the data controller, acknowledges the content of this legal notice as binding upon itself. It undertakes to ensure that all data processing related to its activities complies with the provisions of this policy, the applicable national laws, and the expectations set forth in the legal acts of the European Union. The service provider makes the data protection guidelines related to its data processing activities continuously available at www.studiotrendinterior.com/adatvedelmi_tajekoztato. The data controller reserves the right to amend this information at any time. Of course, any changes will be promptly communicated to the public. The data controller is committed to protecting the personal data of its clients and partners and considers respecting the informational self-determination rights of its clients to be of paramount importance. The data controller handles personal data confidentially and takes all necessary security, technical, and organizational measures to ensure the security of the data. The data controller outlines its data processing practices as follows.

  2. Data Controller Details The data controller deletes every email received along with personal data after a maximum of 5 years from the date of submission. Name: Studio-Trend Bt. Address: 28/1 Hárslevelű Street, Budapest, 1106 Tax number: 28560799-1-42 Phone number: +36 30 4376455 Email: eva@studiotrendinterior.com

  3. Scope of Processed Personal Data 3.1 Personal Data to be Provided during Registration Currently, there is no registration option on the website. 3.2 Technical Data The data controller selects and operates the IT tools used for processing personal data during the provision of services in such a way that the processed data: is accessible to authorized persons (availability); its authenticity and authentication are ensured (integrity of data processing); its immutability is verifiable (data integrity); it is protected against unauthorized access (confidentiality of data). The data controller protects the data against unauthorized access, alteration, transmission, disclosure, deletion, or destruction, as well as against accidental destruction through appropriate measures. The data controller ensures the security of data processing through technical, organizational, and organizational measures that provide a level of protection appropriate to the risks associated with data processing. During data processing, the data controller maintains: confidentiality: it protects information so that only those who are authorized can access it; integrity: it ensures the accuracy and completeness of the information and the processing method; availability: it ensures that when the authorized user needs it, they can actually access the desired information, and the necessary tools are available for this purpose.

3.3 Cookies 3.3.1 Purpose of Cookies Cookies collect information about visitors and their devices; they remember visitors' individual settings, which can be used, for example, when using online transactions, so they don't have to be re-entered; they facilitate the use of the website; they provide a quality user experience. To provide personalized service, a small data package, called a cookie, is placed on the user's computer, and it is read back during subsequent visits. If the browser sends back a previously saved cookie, the cookie handler provider may link the user's current visit to previous ones, but only regarding its own content.

3.3.2 Strictly Necessary Cookies The purpose of these cookies is to allow visitors to browse the website fully and smoothly, use its features, and access the services available there. The validity period of these types of cookies lasts until the end of the session (browsing), and with the closing of the browser, this type of cookie is automatically deleted from the computer or other device used for browsing.

3.3.3 Third-Party Cookies (Analytics) The data controller also uses cookies from Google Analytics as a third party on its website. By using the statistical service provided by Google Analytics, the data controller collects information about how visitors use the websites. The data is used for website development and improving the user experience. These cookies also remain on the visitor's computer or other device used for browsing, in its browser, until the visitor deletes them.

Name Provider Description Expiry _ga studiotrendinterior.com Registers a unique ID that is used to generate statistical data on how the visitor uses the website. 2 years _gat studiotrendinterior.com Stores the ratio according to the thottle request used by Google Analytics. At the end of the session _gid studiotrendinterior.com Registers a unique ID that is used to generate statistical data on how the visitor uses the website. At the end of the session

4. Purpose, method, legal basis of data processing 4.1 General data processing principles The data processing activities of the service provider are based on voluntary consent and legal authorization. In the case of data processing based on voluntary consent, data subjects may withdraw their consent at any stage of data processing. In certain cases, the processing, storage, and transmission of specified data are mandatory by law, of which our clients are separately notified. We would like to draw the attention of data providers to the fact that if they provide personal data that are not their own, it is the obligation of the data provider to obtain the consent of the data subject. The principles of data processing are in line with relevant data protection laws, especially the following:

Act No. CXII of 2011 on Informational Self-Determination and Freedom of Information (Info Act); Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR); Act V of 2013 on the Civil Code (Civil Code); Act C of 2000 on Accounting (Accounting Act); Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist Financing (Pmt.); Act CCXXXVII of 2013 on Credit Institutions and Financial Enterprises (Hpt.).

 

5. Locations of physical data storage Your personal data (i.e., data that can be linked to you) may be processed by us in the following ways: technical data related to your computer, browser program, internet address, and visited pages are automatically generated by our computer system in connection with maintaining the internet connection; also, you may provide your name, contact information, or other data if you wish to contact us during the use of the website. Data recorded during the operation of the system: technical data of the logged-in computer generated during voting, which is recorded by the provider's system as an automatic result of technical processes. The automatically recorded data is logged by the system upon entry and exit without the separate declaration or action of the data subject. Except in cases required by law, this data cannot be linked to other personal user data. Only the data controller has access to the data.

 

6. Data transmission, data processing, and those who may access the data During data processing, the client may come into contact with the data: Éva Ferenczi and Adrienn Tóth, interior designers The service provider's database and correspondence are managed through the system of the storage provider indicated in the impressum (hereinafter: storage provider). All data is stored on the servers of the mentioned company. Regarding the agreement reached between the service provider and the storage provider, the storage provider must treat all stored data confidentially, and must not use them for its own purposes or for transmission to third parties.

 

7. Rights of the data subjects and means of enforcement The data subject may request information about the processing of their personal data, request the correction of their personal data, and, except for mandatory data processing, request deletion, withdrawal, and exercise their data portability and objection rights in the manner indicated at the time of data collection, or through the contact details of the data controller provided above.

7.1 Right to information The data controller takes appropriate measures to provide data subjects with all information regarding the processing of personal data mentioned in Articles 13 and 14 of the GDPR, as well as every information according to Articles 15–22 and 34 in a concise, transparent, understandable, and easily accessible form, formulated clearly and comprehensibly.

7.2 Right of access by the data subject The data subject is entitled to receive confirmation from the data controller as to whether personal data concerning them are being processed, and if so, they have the right to access the personal data and the following information: the purposes of the processing; the categories of personal data concerned; the recipients or categories of recipients to whom the personal data have been or will be disclosed, including particularly recipients in third countries or international organizations; the envisaged period for which the personal data will be stored; the right to rectification, erasure, or restriction of processing and the right to object; the right to lodge a complaint with a supervisory authority; information about the sources of the data; the existence of automated decision-making, including profiling, and meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject. The data controller shall provide the information within one month from the request.

7.3 Right to rectification The data subject may request the rectification of inaccurate personal data concerning them processed by the service provider and the completion of incomplete data.

7.4 Right to erasure The data subject has the right to request the erasure of personal data if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; the data subject withdraws consent on which the processing is based and where there is no other legal ground for the processing; the data subject objects to the processing, and there are no overriding legitimate grounds for the processing; the personal data have been unlawfully processed; the personal data must be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject; the personal data have been collected in relation to the offer of information society services. Data erasure cannot be initiated if data processing is necessary for exercising the right of freedom of expression and information; for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; for reasons of public interest in the area of public health; for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes, based on public interest; or for the establishment, exercise, or defense of legal claims.

7.5 Right to restriction of processing Upon request of the data subject, the data controller shall restrict processing if any of the following conditions are met: the accuracy of the personal data is contested by the data subject, in which case the restriction shall be applied for the period enabling the controller to verify the accuracy of the personal data; the processing is unlawful, and the data subject opposes the erasure of the personal data and requests the restriction of their use instead; the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise, or defense of legal claims; or the data subject has objected to processing; in this case, the restriction shall be applied for the period until it is determined whether the legitimate grounds of the controller override those of the data subject.

7.6 Right to data portability The data subject has the right to receive the personal data concerning them, which they have provided to the controller, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another controller.

7.7 Right to Object

The data subject is entitled to object at any time, for reasons related to their particular situation, to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller, or for the purposes of the legitimate interests pursued by the data controller or a third party, including profiling based on the aforementioned provisions. In the event of objection, the data controller may not further process the personal data unless there are compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the data subject, or which are related to the submission, enforcement, or defense of legal claims.

7.8 Automated Decision-Making in Individual Cases, Including Profiling

The data subject has the right not to be subject to a decision based solely on automated processing – including profiling – which would have legal effects concerning them or similarly significantly affect them.

7.9 Right to Withdraw Consent

The data subject has the right to withdraw their consent at any time.

7.10 Right to Lodge a Complaint with the Court

In case of infringement of their rights, the data subject may lodge a complaint against the data controller in court. The court shall proceed with the matter without undue delay.

7.11 Data Protection Authority Procedure

Complaints may be lodged with the National Authority for Data Protection and Freedom of Information: Name: National Authority for Data Protection and Freedom of Information Registered Office: 1125 Budapest, Szilágyi Erzsébet fasor 22/C. Mailing Address: 1530 Budapest, Pf.: 5. Telephone: 0613911400 Fax: 0613911410 Email: ugyfelszolgalat@naih.hu Website: http://www.naih.hu

 

8. Other Provisions

Information on data processing not listed in this notice will be provided at the time of data collection. We inform our clients that the courts, public prosecutor's office, investigating authority, administrative authority, National Authority for Data Protection and Freedom of Information, Hungarian National Bank, and other authorities empowered by law may contact the data controller for the provision of information, disclosure of data, transfer, or making documents available. The data controller shall only provide personal data to authorities – provided that the authority has specified the exact purpose and scope of the data – to the extent necessary to achieve the purpose of the request.

bottom of page