Privacy Policy- Evosolve Ltd

Introduction

Evosolve Limited Liability Company provides various legal, consulting, and administrative services to its clients (hereinafter referred to as “Evosolve Ltd.” or “data controller“). Its main profile includes company law, corporate law, residency and immigration services. In order to maximize its service, Evosolve Ltd. fulfills its client requests in cooperation with various partners.

As a data controller, Evosolve Ltd. Handles your personal data (hereinafter referred to as “data subject“, or “client”, or “you”) according to the provisions of the present privacy policy (hereinafter referred to as “privacy policy” or “policy“). The data processing and management of Evosolve Ltd. complies with the provisions of the current legislation and this privacy policy.

If certain parts of these Terms and Conditions are incomprehensible or if you have any questions, please feel free to contact us at the contact details provided in the Contact section of this privacy policy to answer your questions.

Evosolve Ltd. manages your personal data solely for the purposes of data processing and data management specified in this privacy policy. We process your personal data only to the extent, for the duration and in the manner required which is necessary for providing our services, because we consider your privacy and the right to information self-determination to be paramount. In order to keep your data safe, Evosolve Ltd. Takes all necessary and available security measures both in technical and in the process of the persons involved in data management and data processing.

This privacy policy describes the details and rules of data processing and management of Evosolve Ltd., which are applicable to both data controllers and partner data processors involved in data processing.

Evosolve Ltd. processes the above personal data primarily to provide its clients with high quality services. In the course of the processing of your personal data, the data controller is Evosolve Ltd. ‘Data Controller’ means a natural or legal person who defines the purposes and means of the processing of personal data independently or with others.

In the data processing implemented by Evosolve Ltd. several parties participate. In connection with the data processing, Evosolve Ltd. may use the help of other companies to implement the data processing goals (eg. bookkeeping, immigration and residency services etc.). In this case, the affiliate partner participates in the processing of your personal data as a data processor. ‘Data Processor’ means the natural or legal person who processes personal data on behalf of the controller and usually only executes instructions or orders, and does not make decisions about data processing, or the data processor doesn’t determine the means of data processing.

Evosolve Ltd., as the data controller is responsible for the data processing to the clients. The data processor is only liable for damages, if he has breached the rules applicable to the data processor or has not followed the lawful instructions of the data controller. The data controller is solely responsible for the errors committed by the controller. Accordingly, Evosolve Ltd. receives your personal data directly from you.

You have the right to protest against the data processing

As a data subject, you have the right to protest against the processing of your personal data at any time for reasons related to your own situation. In this case, the data controller, which is Evosolve Ltd., may not further process your personal data, unless the data controller proves that the data processing is justified by compelling legitimate reasons that take precedence over the interests, rights and freedoms of the data subject or reasons which related to the validation or protection of legal claims.

The list of data processing

Data processing related to the services of Evosolve Ltd

The purpose of data processing

Evosolve Ltd. provides various legal, consulting, business development, immigration and resicency, and related business services to its clients. Data processing is necessary in order to use the services provided by Evosolve Ltd. and also to fulfill your requests and orders. Your personal information will be processed to fulfill the contract between you and Evosolve Ltd. or its partners.

Expected impact of the data processing on you as the client

For the client, the data processing does not produce any particular effect and does not carry any outstanding risks. Data processing is required to use the services provided by Evosolve Ltd. or its partners.

Data controller and its contact details

In the above data processing, the data controller is Evosolve Ltd.

headquarters: 6722 Szeged, Kálvária sugárút 19.

e-mail: business@business-hungary.com

phone: +36 70 213 2692

web: https://business-hungary.com/

Representative of Evosolve Ltd.: Johannes Lodewicus van der Walt managing director

e-mail of representative: business@business-hungary.com

data protection officer of Evosolve Ltd.: Dr. Juhász Péter attorney at law

email of data protection officer: peter@juhaszcsvila.com

phone of data protection officer: +36/62 426-657

The range and type of persons, stakeholders involved in the data processing

From the point of view of data processing, the person is called “data subject ” whose personal data is being processed. In this data processing, the stakeholders are typically clients who use the services provided by Evosolve Ltd.

Processed personal data

Your personal data below is processed by Evosolve Ltd. in connection of providing our services to you:

personal identification data

name, mother’s name, place of birth, time, place of residence, place of residence, nationality, marital status, criminal record and participation in criminal proceedings

qualifications and education:

highest education, profession

contact data

e-mail, phone number

We inform you that different type of personal data may be processed in accordance with the various services of Evosolve Ltd.

Legal basis for data processing

Processing your personal data is necessary to fulfill the contractual obligation between you and Evosolve Ltd. Your personal information will only be processed in connection with the performance of the contract.

The processing of personal data is lawful under Article 6 (1) (b) of the GDPR if the processing is necessary for the performance of a contract in which the data subject is required to take action at the request of one of the parties prior to the conclusion of the contract; and CVIII of 2001 on Certain Issues of Electronic Commerce Services and Information Society Services Act (Ekertv.) 13 / A. §, the data controller is entitled to handle personal data in connection with data processing.

The legal basis for enforcement is Article 6 (1) (f) of the GDPR, according to which data processing is necessary for the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject have priority over those interests, which require the data processing, especially if the child concerned is concerned.

Who can access the client’s (data subject) personal data

The personal data of the client defined above can be accessed by Evosolve Ltd. and it’s employees. In addition, the following data processors have access to your personal data:

Legal service provider:

Name: Juhász Péter attorney at law

Address: 6722 Szeged Kálvária sgt. 19.

Name: Juhász & Csvila Law Firm

Address: 6722 Szeged Kálvária sgt. 19.

Accounting and bookkeeping service provider:

Tower Interconsult Kft.

headquarters: H-1132 Budapest, Váci út 22-24. 3. emelet

phone: +36 1 808 9402

e-mail: info@towerconsulting.hu

web: www.towerconsulting.hu

Client analysing service provider

Hotjar Limited

headquarters: Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta

company number C 65490

phone: +1 (855) 464-6788

e-mail: info@towerconsulting.hu

web: support@hotjar.com

Privacy policy: https://www.hotjar.com/privacy

Whether the client (data subject) is obliged to provide his / her personal data

You are not obliged to provide your personal data concerning the use of Evosolve Ltd’s services. However, if you do not provide these personal information, you will not be able to use the services of Evosolve Ltd.

Data management and storage time

The personal data of the client are handled during the term of the contract with Evosolve Ltd. Upon termination of the contract, Evosolve Ltd. may process the personal data necessary for the enforcement of its legitimate interests. Based on this, your personal data can be processed for a general limitation period of 5 years in order to be able to assert the legitimate interests of Evosolve Ltd. in connection with your mandate.

Transfer of personal data to a third country

The personal data of the client will not be transferred to a third country. In a third country, we mean countries that are not members of the European Union.

Automated decision making and profiling

Our company does not perform profiling. However in the context of the above data processing, profiling is being realized through third parties.

“Profiling” means any form of automated processing of personal data that involves the personal data of a person to assess certain personal characteristics, in particular performance at work, economic situation, health, personal preferences, interest, reliability, behavior, location or movement used to analyze or predict related features.

The purpose of profiling is to offer our products that are more interesting and important to you. We can provide you with products that are better adapted to your buying habits. Profiling is only about buying habits and preferences. Profiling does not have any adverse consequences or restrictions for you.

Google: Evosolve Ltd. uses the services of Google LLC. on its website. Google LLC. uses cookies to help analyze the use of the website. The primary purpose of this is to search for offers that are more relevant to your interests. To do this, we need to be able to analyze our website activities with Google.

The information stored by the cookie (including the user’s IP address) is stored by Google LLC. on its US servers. Google LLC. may transfer the collected information to third parties, if required by law, or by third parties to Google LLC. process the information. The privacy policy of Google LLC. is available at http://www.google.com/intl/en/policies/privacy/.

You may find more information on the data processing, use of cookies, etc. of Google LLC. on Google LLC.’s website below: http://www.google.com/intl/en/policies/privacy/ads/.

You can change your Google data processing settings here:

https://privacy.google.com.

Data processing of Evosolve Ltd. concerning invoicing and accounting

The purpose of data processing

Evosolve Ltd. is obliged to issue invoices to its clients for the value of the services used in accordance with the effective legislation. In connection with billing, Evosolve Ltd. manages the billing information of the clients. The purpose of this data processing is to ensure that Evosolve Ltd. complies with its legal obligation to issue an accounting document on economic events.

Expected impact of the data processing on clients (data subjects)

For clients, the data processing does not produce any particular impact or carry any outstanding risk. The data processing is required on the basis of an order by a client to Evosolve Ltd.

Data controller and its contact details

In the above data processing, the data controller is Evosolve Ltd.

headquarters: 6722 Szeged, Kálvária sugárút 19.

e-mail: business@business-hungary.com

phone: +36 70 213 2692

web: https://business-hungary.com/

Representative of Evosolve Ltd.: Johannes Lodewicus van der Walt managing director

e-mail of representative: business@business-hungary.com

data protection officer of Evosolve Ltd.: Dr. Juhász Péter attorney at law

email of data protection officer: peter@juhaszcsvila.com

phone of data protection officer: +36/62 426-657

The range and type of persons, stakeholders involved in data processing

The type of persons involved in the data processing are the clients of Evosolve Ltd. who use the services of Evosolve Ltd. From the point of view of the data processing, the person is called “data subject” whose personal data is being processed. In this data processing, stakeholders are typically clients, who use the services of Evosolve Ltd.

The processed personal data

Your personal information below is managed by Evosolve Ltd. for invoicing and accounting purposes:

Personal identification data

client’s name, address, tax number

contact data

e-mail, phone number

In addition to the personal data listed above, all the data necessary to continue the communication required for invoicing and accounting is being processed.

Legal basis for data processing

The data processing is necessary to fulfill the legal obligation of the data controller required by law.

Who can access the client’s personal data

Primarily the personal data of the client defined above can be accessed by Evosolve Ltd.

In addition, the following data processors may access the personal data of the clients as defined above:

Company name: Tower Interconsult Ltd.

Headquarters: H-1132 Budapest, Váci út 22-24. 3. floor

Phone: +36 1 808 9402

E-mail: info@towerconsulting.hu

We may forward your personal data to the National Tax and Customs Authority on the basis of a statutory provision.

Whether the client (data subject) is obliged to provide his / her personal data

The client is required to provide the necessary information of the invoices to be issued in connection with the order, as the obligation to issue an invoice is required by law.

Data processing and storage time

Pursuant to Section 169 (1) – (2) of Act C of 2000 on Accounting, the retention period of the invoice and the data necessary for its issuance is 8 years.

Transfer of personal data to a third country (outside of the European Union)

The details of the client are not forwarded to a third country. In a third country, we mean countries that are not members of the European Union.

Automated decision making and profiling in data processing

The processing of client’s data does not result in automated decision making or profiling.

Evosolve Ltd.’s data processing related to complaint handling

The purpose of data processing

Evosolve Ltd.’s commercial activity requires data processing in order to deal with your complaint against the services of Evosolve Ltd. Evosolve Ltd. must investigate your complaint and inform you of its outcome. In this regard, we handle your personal information to handle your complaint.

Expected impact of the data processing on clients (data subjects)

For the client, this data processing does not produce any particular effect or carry any outstanding risk. Data management is necessary for handling the complaint of the client using the services of Evosolve Ltd.

Data controller and its contact details

In the above data processing, the data controller is Evosolve Ltd.

headquarters: 6722 Szeged, Kálvária sugárút 19.

e-mail: business@business-hungary.com

phone: +36 70 213 2692

web: https://business-hungary.com/

Representative of Evosolve Ltd.: Johannes Lodewicus van der Walt managing director

e-mail of representative: business@business-hungary.com

data protection officer of Evosolve Ltd.: Dr. Juhász Péter attorney at law

email of data protection officer: peter@juhaszcsvila.com

phone of data protection officer: +36/62 426-657

The range and type of persons, stakeholders involved in data processing

Clients using the services of Evosolve Ltd., who file a complain about the services provided by Evosolve Ltd. From the point of view of data processing, the person is called “data subject” whose personal data is being processed. In this data processing, stakeholders are typically the clients who use the services of Evosolve Ltd.

The processed personal data

Your personal information below is managed by Evosolve Ltd.

personal identification data

client’s name, address
contact data
address, e-mail, phone number

Legal basis for data processing

Data processing is necessary to fulfill the legal obligation to the data controller, Evosolve Ltd.

Who can access the client’s personal data

The personal data of the client defined above can be accessed by Evosolve Ltd.

Whether the client (data subject) is obliged to provide his / her personal data

The client is obliged to provide the data necessary for complaint handling, as the law requires the investigation of the complaint and the obligation to send a response to you.

Data processing and storage time

CLV of 1997 on Consumer Protection Act 17 / A. Section 7 (7) of the Act, the retention period for the complaint are 5 years.

Transfer of personal data to a third country

The personal data of the client will not be transferred to a third country. In a third country, we mean countries that are not members of the European Union.

Automated decision making and profiling

The processing of the client’s personal data does not result in either automated decision making or profiling.

Data protection rights of the clients whose personal data is being processed in the course of Evosolve Ltd’s data processing

As an affected person whose personal data is being processed, the following rights apply to the data processing of Evosolve Ltd. Please note that you may exercise your rights below primarily against the data controller, which is Evosolve Ltd.

The rights of you as a data subject in relation to the data processing

– the right to information,
– the right of access,
– the right to rectification,
– the right to erasure, ” right to be forget”,
– right to restriction of processing,
– the right to protest,
– the right to data portability,
– the right to withdraw consent,
– the right to complaint
– the right to judicial remedy.

Right to Information

General rules for informing the person concerned and right to information

The data controller shall inform the data subject in detail at the latest when the personal data of the data subject are obtained prior to the commencement of data management. Information on data management shall contain the notifications contained in this privacy policy.

The controller is responsible for providing prior information. In addition to the above pre-notification, you may request information from the data controller (Evosolve Ltd.) at any stage of data processing as follows. In this case, the controller must provide the requested information as soon as possible, but no later than within 25 days. The 25 days deadline can only be extended in justified cases up to 2 months.

The controller may only refuse the information, if it proves that the data subject is not identifiable.

If the data controller does not take action within 25 days, ie does not comply with the obligation to provide information, it must inform the data subject of the failure to act, the reason for it and the right of the person concerned to submit a complaint or the right to judicial remedy. This privacy policy contains further information on your right to complain, and your right to judicial remedy.

The information and action shall be provided by the controller to the data subject free of charge. However, the controller may exceptionally charge a reasonable fee or refuse to provide information and action if the request of the data subject is clearly unfounded, repetitive or excessive.

Right of access

The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information:

(a) the purposes of the processing; (b) the categories of personal data concerned; (c) the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations; (d) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period; (e) the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing; (f) the right to lodge a complaint with a supervisory authority; (g) where the personal data are not collected from the data subject, any available information as to their source; (h) the existence of automated decision-making, including profiling, and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

The controller shall make available to the data subject a copy of the personal data which are the subject of the data processing. The controller may charge a reasonable fee based on administrative costs for additional copies requested by the data subject.

If the data subject has submitted the application by electronic means, the information shall be made available in a widely used electronic format, unless otherwise requested by the data subject.

Right to rectification

The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Right to erasure (‘right to be forgotten’)

You have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
(a) the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
(b) if the legal ground for the data processing is your consent, and you withdraw the consent on which the processing is based according to point, and where there is no other legal ground for the processing;
(c) the data subject objects to the processing and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing;(d) the personal data have been unlawfully processed;
(e) the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
(f) the personal data have been collected in relation to the offer of information society services

Where the controller has made the personal data public and is obliged pursuant to the paragraph above to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

In the above cases, the data controller is not obliged to comply with the cancellation request if the data processing is necessary for the reasons below: (a) for exercising the right of freedom of expression and information; (b) for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; (c) for reasons of public interest in the area of public health; (d) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in so far as the right referred to above is likely to render impossible or seriously impair the achievement of the objectives of that processing; or (e) for the establishment, exercise or defence of legal claims.

Right to restriction of processing

You (as the data subject) shall have the right to obtain from the controller restriction of processing where one of the following applies: (a) the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data; (b) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead; (c) the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims; (d) the data subject has objected to processing pending the verification whether the legitimate grounds of the controller override those of the data subject.

Where processing has been restricted under paragraph above, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

A data subject who has obtained restriction of processing pursuant to paragraph above shall be informed by the controller before the restriction of processing is lifted.

For correction or deletion of personal data or for notification obligation to limit data processing

The controller shall inform any data subject about the rectification, erasure or limitation of the data with which the personal data have been communicated, unless this proves impossible or requires a disproportionate effort.

At the request of the data subject, the controller shall inform those concerned.

Right to data portability

You have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where: (a) the processing is based on consent (ex. Marketing newsletters); and (b) the processing is carried out by automated means.

In exercising his or her right to data portability, the data subject shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible.

Exercising the right to portability of data should not prejudice the right to erasure. The right to portability of data must not adversely affect the rights and freedoms of others.

Right to object

You, as the data subject have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on public interest or the reasonable interest of the controller, including profiling based on those provisions. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.

Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing. Where the data subject objects to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.

Right to withdraw consent

The data subject has the right to withdraw his / her consent to the data processing at any time, if the legal basis for the data processing is the consent of the data subject (eg sending a marketing newsletter). However, withdrawal of consent will not render the data processing prior to revocation unlawful.

Data security

Storage of personal data and security of data management

The IT infrastructure, storage facilities and other data storage location of Evosolve Ltd. Are located at its headquarters and other premises.

The IT tools and solutions used for data management, especially security systems, are selected and used so that the processed personal data is accessible, credible and authenticated to authorized persons, and can be verified, protected against unauthorized access.

Your personal information is protected by appropriate measures, in particular against unauthorized access, alteration, data protection incident, data theft, data leakage, forwarding, disclosure, deletion or destruction, as well as unavailability due to accidental destruction of the technique used.

In order to protect the data files managed in its registers, Evosolve Ltd. Ensures, by means of an appropriate technical solution, that the stored data – except in the case of a legal authorization – cannot be directly linked or interconnected, or assigned to the affected person.

In view of the state of the technological developement, we take technical, organizational and organizational measures to ensure the security and protection of our data management that provide an adequate level of protection for your personal data.

The IT system and network of Evosolve Ltd. against natural (eg fire and flood) or other (eg service outage, etc.) harmful effects. Evosolve Ltd. provides data security with server and software-level security procedures and services.

Evosolve Ltd. Protects your personal data in the course of data processing, so that you can access only those who have the right (confidentiality), the accuracy and completeness of your personal data and processing method (integrity), and ensure that when authorized users need it to access your personal data, you can actually access the data you want and have access to it (availability).

We inform stakeholders that personal data will be forwarded to Evosolve Ltd. partly via the Internet. The security of data and electronic messages transmitted over the Internet, irrespective of the protocol used (e-mail, web, ftp, etc.), is vulnerable to network threats that are aimed at unfair practices, contract disputes, or disclosure or modification of information. In order to eliminate such threats, Evosolve Ltd. Will take all the safety measures it expects.

Personal data breach and the management thereof

Under the European Data Protection Regulation (GDRP), a personal data breach is a security breach that results in accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or unauthorized access to personal data transmitted, stored or otherwise handled. Therefore, any event or situation in which your personal data may become unauthorized may be considered a privacy breach.

In the event of a privacy breach, we will notify the incident to the competent supervisory authority immediately, but no later than 72 hours after the data protection breach has come to our attention. we will also inform you as a data subject if the privacy breach is likely to pose a risk to the rights and freedoms of natural persons.

Complaints and Legal Remedies

What can you do if your personal information is not properly managed?

Right to complaint

You, as the data subject, have the right to file a complaint with a supervisory authority, in particular your habitual residence, your workplace or the Member State where you are suspected of infringing, if the data subject considers that the personal data relating to him / her are in breach of law. In Hungary, the National Authority for Data Protection and Freedom of Information (NAIH) is the competent supervisory authority.

Exercising the right to complain does not preclude you, if you consider that your personal data is being processed in a way that is unlawful, to have recourse to other administrative or judicial remedies. Thus, even when exercising its right of complaint, it can also initiate administrative or judicial redress at the same time.

Complaints can be made to the National Authority for Data Protection and Freedom of Information, which contact details are as follows:

Name: National Authority for Data Protection and Freedom of Information

Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22 / C.

Mailing address: 1530 Budapest, Pf .: 5.

Phone: 06 1 391 1400

Fax: 06 1 391 1410

Website: http://www.naih.hu

E-mail: ugyfelszolgalat@naih.hu

Right to judicial remedy against the decision of the NAIH or other supervisory authority

If you have contacted the supervisory authority (NAIH) regarding your data processing and the authority has made a decision on your case, then you, as the data subject, have the right to initiate legal remedy against this decision, ie to challenge the decision in court. You also have the right to a previous judicial remedy if the competent supervisory authority (NAIH) does not deal with the complaint or does not inform the person concerned of the procedural developments or the outcome of the complaint within three months.

The proceedings against the Supervisory Authority (NAIH) must be instituted before the court of the Member State where the supervisory authority is established.

Right to a judicial remedy against the controller or the processor

You, as the data subject, are entitled to a judicial remedy if you consider that your personal data has been violated by your personal data as a result of non-legal handling of your personal data. Exercising the right to judicial remedy does not exclude the possibility that you, if you consider that your personal data are being processed in an unlawful manner, should resort to other administrative or judicial remedies or exercise your right of complaint.

The proceedings against the controller or the processor must be brought before the courts of the Member State where the data controller or the processor is established. In the case of Evosolve Ltd., the court of the place of business is the Hungarian courts. While the seat of Evosolve Ltd. in the case of special powers, the Szeged Tribunal Court.

The judicial remedy procedure may also be initiated before the court of the Member State in which the data subject is habitually resident, except where the controller or the processor is a public authority of a Member State acting in the exercise of public authority.

Liability for damages and immaterial damages

How is data controller or data processor liable if they cause damages to the data subject?

If the inadequate data processing has caused damages to you as the data subject, the data controller is responsible for the compensation. Damage can also be substantiated, if the data processing was offensive or breached, and you as the data subject also had a financial disadvantage. In the case of unlawful data processing, you may also claim immaterial damages.

You can claim your claim for compensation or damages primarily from the data controller. The data processor is only liable for damages, if it has breached the rules applicable to it or has not followed the lawful instructions of the data controller. That is, the data processor is not responsible for the errors committed by the data controller.

Applicable regulations for the data processing

REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR)

2011 CXII. Act on Information Self-Determination and Freedom of Information (Info);

Act C of 2000 on Accounting;

1997 CLV. Act on Consumer Protection;

Act V of 2013 on the Civil Code

Contacts

If you have any questions regarding the processing of your personal data or wish to exercise your rights in connection with our data processing, please contact Evosolve Ltd. as a data controller.

The contact details of Evosolve Ltd. Are as follows:

headquarters: 6722 Szeged, Kálvária sugárút 19.
e-mail: business@business-hungary.com
phone: +36 70 213 2692
web: https://business-hungary.com/

Representative of Evosolve Ltd.: Johannes Lodewicus van der Walt managing director

e-mail of representative: business@business-hungary.com

data protection officer of Evosolve Ltd.: Dr. Juhász Péter attorney at law

email of data protection officer: peter@juhaszcsvila.com

phone of data protection officer: +36/62 426-657