- The operator of the website and the controller of personal data are the same.Controller’s name: Dr. Krajnyák & Társa Law Firm
Controller’s address: 3 Logodi Street, I/2, Budapest 1012
Controller’s phone number: (+36 1) 201-80-42; 501-48-40
Controller’s email: info@abklaw-patent.hu - Copyright statement
The entire content of the website is protected by copyright under Act LXXVI of 1999 on copyright. It is prohibited to copy, distribute, or transmit any part of the website’s content without prior written permission. The dissemination or processing of content found on the website is only allowed with the prior written consent of the website operator and with attribution. Visitors to the website may download, display on their screens, or print the content, but they may not reproduce it. Users may use the content of the website or its parts solely for their own personal purposes. Written consent from the website operator is required for copying with the intention of distribution. Unauthorized use may result in criminal and civil legal consequences. The website operator may claim damages and/or compensation. If a user causes any damage in any way while using the website, the service provider is entitled to claim compensation from the user. In such cases, the service provider will provide all possible assistance to the competent authorities in order to determine the identity of the infringing person.
- Liability
Some of the links on the website lead to websites operated by others, and the website operator assumes no responsibility for their content and disclaims liability for any damage resulting from the use of such information. The website operator strives to provide accurate and reliable information, but assumes no responsibility for any damages resulting from the information provided.
- Data protection
This Privacy and Legal Statement (hereinafter referred to as the statement) is valid from May 25, 2018, until revoked. Dr. Krajnyák & Társa Law Firm (hereinafter referred to as the Firm) processes the personal data disclosed by you to the Firm in accordance with the provisions set forth herein. The scope of the statement extends to all processes carried out at all organizational units of the Firm involving the processing of personal data as defined in Article 4(1) of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as GDPR.
“Personal data: any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.”
The conceptual system of this statement corresponds to the interpretative explanations provided in Article 4 of the GDPR.
4.1. Rules of data processing
Personal data may only be processed for the exercise of rights or the fulfillment of obligations. The Firm processes personal data only for specified purposes, for the exercise of rights and fulfillment of obligations, to the extent necessary and for the minimum period necessary to achieve the purpose. At every stage of data processing, it must correspond to the purpose – and if the purpose of data processing ceases to exist or the processing of data is otherwise unlawful, the data will be deleted. The Firm processes personal data only if the data subject has given consent, or if required by law or – within the scope specified therein – by a local government decree for a public interest purpose. Before collecting data, the Firm always informs the data subject of the purpose of data processing and the legal basis for processing. Employees of organizational units of the Firm performing data processing and persons participating in data processing on behalf of the Firm are obliged to keep the personal data they have become aware of as business secrets. If a person subject to this statement becomes aware that personal data processed by the Firm is inaccurate, incomplete, or outdated, they are obliged to correct it or initiate its correction with the person responsible for recording the data. The obligations of data processors engaged by the Firm in data processing are specified in the data processing contract concluded with the data processor. Taking into account the specific characteristics of the Firm, the head of the Firm determines the organization of data protection, tasks and powers related to data protection, and designates the person responsible for supervising data processing. Employees of the Firm ensure that unauthorized persons cannot access personal data during their work, and ensure that personal data is protected against unauthorized access, alteration, transmission, disclosure, deletion, or destruction, as well as against accidental destruction and damage, and against becoming inaccessible due to changes in technology.
4.2. Exercise of data subject rights
The data subject may request information about the processing of their personal data, and may request the correction or deletion of their personal data, except for data processing prescribed by law, from the Firm’s specified contact details. Upon request related to personal data processing, the Firm will respond in writing, in a comprehensible form, within the shortest possible time, but no later than 1 month from the receipt of the request – in the case of exercising the right of objection, within 15 days. Information is generally provided free of charge, but the Firm may charge a fee only in the cases specified in Article 15(3) of the GDPR. The Firm may reject a request only for reasons specified in Article 12(2) and (5)(b) of the GDPR, providing justification and information in accordance with Article 12(1) of the GDPR, in writing. If data is inaccurate – provided that the necessary data and, if necessary, the official documents proving them are available – the Firm will correct it, or, if the reasons specified in Article 17(1) of the GDPR exist, take action to delete the processed personal data. During the time of processing the objection to data processing – but for a maximum of 5 days – the Firm suspends data processing, examines the justification of the objection, and makes a decision, informing the applicant in accordance with Article 19 of the GDPR. If the objection is justified, the head of the organizational unit processing the data shall act in accordance with Article 21 of the GDPR. The Firm will also reimburse any damage caused by the unlawful processing of the data of the data subject or the breach of data security, or the infringement of personal rights caused by it, by itself or by the data processor it engages. The controller is exempt from liability for the damage caused and the obligation to pay compensation if it proves that the damage or infringement of the data subject’s personal rights was caused by an unavoidable circumstance beyond the scope of data processing. Similarly, no compensation for damage can be claimed, and no compensation can be claimed, if it arises from the intentional or grossly negligent behavior of the injured party.
The data subject may lodge a complaint with the National Authority for Data Protection and Freedom of Information (NAIH) regarding the data processing procedure of the Firm:
name: National Authority for Data Protection and Freedom of Information
headquarters: 22/C Szilágyi Erzsébet Promenade, Budapest 1024
4.3. Data processing during the use of the Firm’s website
Location of data processing: 3 Logodi Street, I/2, Budapest 1012
4.3.1. Website data processing
Anyone can access the Firm’s own website without disclosing their identity or providing personal data. Non-personal information about visitors is collected unlimitedly and automatically by the website. However, no personal data can be obtained from this data, so it does not fall under the scope of data processing regulated by the Infotv.
Google Analytics web analytics service is used on the website. Google Analytics uses “cookies,” text files placed on the visitor’s computer, to help analyze the use of the website. The information generated by the cookies about the use of the website (the visitor’s IP address) is transmitted to and stored by Google on servers in the United States. Google does not associate the data generated by cookies with any other data – therefore, it does not carry out the processing of personal data according to current data protection regulations. Visitors can refuse the use of cookies by selecting the appropriate settings in their browser.
Google uses the above information to evaluate and analyze the use of the website by the visitor, to compile reports on website activities, and to provide other services related to website activities and internet usage.
4.3.2. Handling of contact information
The Firm can be contacted publicly and through the “Contact” menu on the website.
During contact, the data subject decides on the processing of the personal data provided by them. The legal basis for data processing is provided by the data subject by voluntarily providing the data to the Firm for the purpose of contacting.
Purpose of data processing: contacting Scope of processed data: name, email address, personal data disclosed during contact, phone number, description of the matter Legal basis for data processing: Article 6(1)(a) of the GDPR – consent of the data subject Data storage period: 1 year from the contact Data storage method: electronically
- Data processing
During the processing of personal data, the Firm does not disclose personal data to third parties, does not use data processors, and does not transmit data during data transfer.
- Modification of the statement
The Firm reserves the right to modify the statement. If the modification affects the use of your personal data, you will be informed about the changes in the form of an email notification. If the details of data processing change due to the modification of the statement, the Firm will request your consent.
- Unaddressed issues in this statement
In matters not addressed in this statement, the rules of the GDPR and the Firm’s Privacy and Legal (Data Security) Statement apply.
November 6, 2023.