We have reviewed our personal data processing activities against the mandatory and applicable rules set out in the European Union’s new General Data Protection Regulation (GDPR), and we are committed to comply with the requirements set out therein and in the applicable Hungarian regulations.
Data and Contact Details of the Data Controller
The website operator, the controller of personal data provided on the website (hereinafter referred to as the “Data Controller”): | SCHMIDT Aluproduktenfabrik |
Contact Details: | |
Mailing address: | H-9784 Radockölked, Fö St 133 |
Email address: | schmidt@aluprodukten.com |
We are committed to protect the personal data of our website’s visitors, our customers, our partners and all stakeholders, and respecting the rights of information privacy is of utmost importance for us.
We process personal data confidentially, and we take all protective, technical and organizational measures required to ensure the safety of personal data.
If you have any questions that are not clear based on our Privacy Policy, please contact us using one of the above contact details. We do everything to respond to your enquiry as soon as possible, but if your question takes longer to answer properly, we will respond within a maximum of 15 days.
You may request information on the processing of your personal data any time either in writing (by email or mail sent to our mailing address) or by phone. Please note that if you contact us by phone and your inquiry regarding data processing requires it (e.g. requesting deletion of your data), we may ask you to identify yourself to make sure you have the right for the request before we take the necessary steps. If identification is not possible, we can only provide you with general information on data processing. For this reason, we recommend that you submit your question or request in writing.
Applied Regulations
We are committed to process personal data in accordance with the applicable legal requirements, in particular those listed below:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) or: GDPR;
- Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information
Complaint-handling and Further Options for Exercising Rights
We do our best to ensure that personal data is processed in accordance with the law. If you feel we are not compliant or if you have any questions about this, please feel free to contact us via the contact details above.
In case of an infringement of your rights to the protection of personal data, you may seek further legal remedy—if the Data Controller does not cease the unlawful conduct despite you notifying them—you may contact the Hungarian National Authority for Data Protection and Freedom of Information via the following contact details:
Official Name: | Hungarian National Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság—NAIH) |
Mailing address: | 22/c. Szilágyi Erzsébet fasor, Budapest, H-1125 |
Phone number: | 003613911400 |
Email address: | ugyfelszolgalat@naih.hu |
Website: | www.naih.hu |
Data Processed on the Website
The public content of our website may be viewed by anyone—without providing any personal data—, and no signup or login is required.
We process the below data regarding your visit and your use of the website for the purpose and duration defined in this Policy, and we ensure options to exercise your rights as to data processing as follows:
Managing Cookies
What are Cookies?
A cookie is a text file placed on the device (computer, smartphone) you use to access the internet and our website typically containing information on the connection between the web server and your device or information regarding the functionality of our website (e.g. a so-called session ID that is a unique string of letters, numbers and other characters; the time you accessed the website, the time of your visit etc.), the content of which are occasionally retrieved by the web server, while you are browsing our website or when you visit it again later.
The content of the cookie allows the website (server) to improve your user experience and enable the services provided on the website. For example, while shopping in an online store, the store can distinguish and manage ongoing purchases (e.g. content of carts) through the use of such cookies. In case the internet connection is lost while shopping, based on the previously stored cookie, the website will know which products you added to your cart and searched for, thus, when the connection is re-established, you can continue shopping where you left off.
Purpose of Data Processing
To identify and distinguish users visiting our website, to identify users’ current sessions, to store data provided during sessions and to prevent data loss.
Scope of Data Processed
Cookies used on our website are so-called functional cookies that support the functionality of the website and contain the time of the website visit, the session ID and other information (strings of numbers and characters) about the session that can be interpreted by the website’s program code.
We do not hand over information stored in functional cookies to third parties.
Duration of Data Processing
Some of the functional cookies used on our website expire as soon as you leave the website or close it in your browser. Some other functional cookies expire later (after 180 days), the content of which may only be accessed by our website if you visit it again using the same device and have not deleted these cookies in the meantime.
Exercising Rights
Most web browsers automatically enable the use of cookies. However, you may change this setting any time, and you may disable and delete cookies. You may access, view and review the content of cookies stored on your device any time.
Generally, you may manage or delete cookies and opt out of their use in the settings menu of popular web browsers, typically in a submenu called security, privacy or data protection, under the name of cookie.
Please note that if you disable or reject the use of cookies, certain features may work differently while using the website or may be unavailable to you.
You can find more information on managing cookies in the specific program’s help menu or by clicking on the program name in the following links: Internet Explorer, Chrome, Mozilla Firefox, Edge.
Google Analytics Service
We use the Google Analytics service to measure and analyze our website’s traffic data and performance. Data collected from the website are automatically transferred to Google, but they do not contain any personal data (since it is prohibited). Data collected and transferred are not suitable to personally identify website visitors, these are only statistical data for distinguishing between sessions. For more information Google Analytics’ data processing, please click here.
Purpose of Data Processing
To measure the website’s performance and to distinguish between website visitors and their sessions in order to collect statistical data regarding the website’s use.
Scope of Data Processed
Google Analytics service uses cookies—containing information in form of unique strings of letters, numbers and other characters that can be interpreted by the service—to measure website performance and to provide statistical data regarding website use.
Duration of Data Processing
Cookies used by Google Analytics service may expire at different times. Some cookies expire as soon as you close the website in your browser, while other cookies may expire sooner (after 1 minute) or significantly later (e.g. 24 hours or even 2 years). However, our website (and with it, Google Analytics service) may only be able to access the content of these cookies expiring after a longer time if you visit our website again using the same device and have not deleted these cookies in the meantime.
Exercising Rights
If you do not want Google Analytics service to collect data about your website visit, you may opt out by installing and using a program specifically designed for this purpose. For more information about the browser add-on opting you out of Google Analytics’ data collection, click here or you can download and install it by clicking here.
You may also opt out of the use of cookies by Google Analytics—as well as any other cookie. You may access, view, review and delete the content of cookies stored on your device any time.
Facebook Pixel
The Facebook Pixel is a code that allows website owners to display personalized offers and ads to website visitors on Facebook’s interface by using Facebook’s marketing service. Using this remarketing tracking code allows Facebook to efficiently display targeted ads to prospects (target audience), as well as provide website owners with statistical data on website visitors. The Facebook Pixel also uses cookies to operate.
For more information about how Facebook processes data, manages cookies and uses the Facebook Pixel, please visit:
https://www.facebook.com/about/privacy
https://www.facebook.com/policies/cookies/
Purpose of Data Processing
To distinguish between website visitors and their sessions in order to provide them with personalized offers and ads on our Facebook Page.
Scope of Data Processed
Cookies used by the Facebook Pixel contain information in form of unique strings of letters, numbers and other characters that can be interpreted by the service.
Duration of Data Processing
Cookies used by the Facebook Pixel usually expire after 90–120 minutes. However, our website (and with it, Facebook’s service) may only be able to access the content of these cookies if you visit our website again using the same device and have not deleted these cookies in the meantime.
Exercising Rights
You may also opt out of the use of cookies by the Facebook Pixel—as well as any other cookie. You may access, view, review and delete the content of cookies stored on your device any time.
Data Processed for the Purpose of Contact
You may contact us using any of the contact options provided on our website or through our dedicated messaging form. Personal data provided during contact may only be used to contact you and will not be transferred.
Purpose of Data Processing
To contact those contacting us.
Legal Ground for Data Processing
In case of inquiries and requests for information, data processing is based on voluntary consent in accordance with EU’s General Data Protection Regulation (GDPR) as well as Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information.
Scope of Data Processed
If you send a message to contact us via the messaging form, the following data may be processed:
- name;
- email address;
- phone number.
If you contact us using any other contact options, only those of the following data may be processed that you voluntarily provide us:
- name;
- email address;
- phone number;
- address (mailing address).
Duration of Data Processing
Personal data you provide may be processed for different periods of time based on the nature of contact.
In case of a successfully closed information request, we will not retain data any longer, unless a legitimate claim may be made as to the ad-hoc contact, in which case we may retain data for up to 5 years for verifiability purposes.
Exercising Rights
You may request information on the processing of your data any time.
You may also request the rectification of your data if you find that you may have provided incorrect data or we may have recorded incorrect or incomplete data.
Furthermore, you may request the deletion of your data. If there is no legal impediment, we comply with your request immediately; otherwise we inform you of the reasons for refusing the deletion request.
Who has Access to the Data?
Only our employees are authorized to access the data your provide.
Processing Data Provided when Placing an Order
You may order our services on the website. Our customers may be both individuals and legal entities (companies, businesses, institutes), and since company contact data may also contain personally identifiable information (e.g. name in the prefix of an email address) that are considered personal data, we ensure the safety and legitimacy of data processing in this case as well.
Purpose of Data Processing
To fulfil orders, to provide services and to contact customers.
Legal Ground for Data Processing
Data processing is carried out as follows: based on voluntary consent in accordance with EU’s General Data Protection Regulation (GDPR) and Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information; based on law in accordance with Act CVIII of 2001 on Electronic Commerce and on Information Society Services, Act V of 2013 on the Civil Code, Act CL of 2017 on the Rules of Taxation and Act C of 2000 on Accounting.
Scope of Data Processed
The following data from those required to identify and contact customers, to verify the legitimacy of contracts, as well as to issue invoices and other financial documents:
- name (name of the customer or that of the contact person or authorized representative)
- address (business address, billing address, mailing address)
- tax number;
- email address;
- phone number.
Duration of Data Processing
The retention period for financial documents (e.g. invoices) related to the provision of the service is limited to 8 years to ensure tax self-assessment. After this period we delete electronic documents as well as close and destroy physical documents.
Exercising Rights
You may request information on the processing of your data any time.
You may also request the rectification of your data if you find that you may have provided incorrect data or we may have recorded incorrect or incomplete data.
Furthermore, you may request the deletion of your data. If there is no legal impediment, we comply with your request immediately; otherwise we inform you of the reasons for refusing the deletion request.
Data Transfer:
We hand over financial documents (invoices) related to the fulfilment of services to our contractual partner providing accounting services for data processing purposes, and we transfer the contents of the financial documents (data on the invoices) to the National Tax and Customs Administration of Hungary for the purpose of fulfilling our legal obligations.
Who has Access to the Data?
Only our employees are authorized to access the personal data your provide during placing an order. The content of the financial documents (invoices) related to the fulfilment of the service may also be accessed by our contracted partner involved in data processing, as well as by administrative bodies on the basis of legal requirements (e.g. National Tax and Customs Administration of Hungary).
Data Processing
IT background of our website is provided by our contractual service provider partner. Data processed on the website are stored in the European Union by our contractual partner.
Name of Data Processor: | Hetzner Online GmbH |
Business Address of Data Processor: | Industriestr. 25 91710 Gunzenhausen, Germany |
Phone Number of Data Processor: | +49 (0)9831 505-0 |
Email Address of Data Processor: | info@hetzner.com |
Safety of Data Processing
In order to ensure safety of personal data processed by us, we take every technical and organizational measures required to protect the data against accidental deletion (destruction), as well as unauthorized use or alteration. Data processed in out IT systems may only be accessed by our employees through the use of an access rights system.
With the above, we ensure that data we process may not be accessed, disclosed, transferred, modified or deleted by unauthorized persons.
Data Transfer
We do not disclose your personal data to third parties not having the rights to it. We may only transfer your data to third parties if you give prior consent. An exception is, however, if the data transfer is required by the law. Thus, for example, we are required to transfer the content of financial documents (data on the invoices) related to the fulfilment of contracts and services to the National Tax and Customs Administration of Hungary, or, in case of an investigation by the authorities, we are obliged to hand over required data at the formal request of the competent authority (e.g. police, prosecution, court etc.) for the purposes of said request. No consent is required for this on your part, as this is a legal obligation for us.
Review and Availability of the Privacy Policy
We reserve the right to review and amend this Privacy Policy as necessary, for example, to reflect changes in applicable regulations or changes in our data processing activity or the technology used to process data. If any change affects your personal data processed based on your voluntary consent, we inform you immediately, and we suspend further processing of your data until you consent to it again.
The current version of this Privacy Policy is always available here, publicly posted on the website.