Privacy Policy

  1. Introduction

    Judit Kátai, self-employed entrepreneur (EnglishHUB), is committed to protecting the personal data of her clients and partners, treating it as confidential and taking all technical and organizational measures to ensure data security.

    Our data management principles are in line with the relevant legislation in force, in particular the following:

    Act LXIII on the protection of personal data and the disclosure of data of public interest

    Act CVIII on certain issues of electronic commerce services and information society services

    Act XLVIII n the basic conditions and certain restrictions of economic advertising activities

    Act CXII on the right to self-determination in information and freedom of information

     

  2. Basic concepts

    data processing: performing technical tasks related to data management operations, regardless of the method and means used to perform the operations and the location of the application, provided that the technical task is performed on the data;

    data processor: a natural or legal person or an organization without legal personality who or which processes data on the basis of a contract with the data controller, including a contract concluded on the basis of a legal provision;

    data processing: any operation or set of operations performed on data, regardless of the procedure used, in particular collection, recording, organisation, storage, alteration, use, retrieval, transfer, disclosure, alignment or combination, blocking, erasure and destruction, as well as the prevention of further use of data, the taking of photographs, sound or image recordings, and the recording of physical characteristics suitable for identifying a person (e.g., fingerprints or palm prints, DNA samples, iris images);

    data controller: a natural or legal person or an organization without legal personality who or which, alone or jointly with others, determines the purposes of data processing, makes and implements decisions concerning data processing (including the means used), or has them implemented by a data processor commissioned by him or her;

    data destruction: the complete physical destruction of the data carrier containing the data;

    data transfer: making data available to a specific third party;
    disclosure: making data available to anyone;

    data erasure: rendering data unrecognizable in such a way that it can no longer be recovered;

    data blocking: marking data with an identifier for the purpose of restricting its further processing for a definite or indefinite period of time;

    third party: a natural or legal person or an organisation without legal personality who or which is not the data subject, the data controller or the data processor;

    consent: a freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

    personal data: any information relating to the data subject, in particular the data subject’s name, identification number, and one or more factors specific to the physical, physiological, mental, economic, cultural, or social identity of the data subject, as well as any conclusions that can be drawn from the data about the data subject;

    objection: a statement by the data subject objecting to the processing of their personal data and requesting the termination of the processing or the erasure of the data processed

  1. Data processing principles

    Personal data may only be processed for specific purposes, for the exercise of rights and the fulfillment of obligations. At every stage of data processing, the purpose of data processing must be complied with, and the collection and processing of data must be fair and lawful.

    Only personal data that is essential for the purpose of data processing and suitable for achieving that purpose may be processed. Personal data may only be processed to the extent and for the duration necessary to achieve the purpose.

    During data processing, the accuracy, completeness and, where necessary for the purpose of the data processing, the up-to-date nature of the data must be ensured, as well as the fact that the data subject can only be identified for the time necessary to achieve the purpose of the data processing.

Personal data may be processed if

a) the data subject consents to it, or
b) it is required by law or, based on the authorization of the law, within the scope specified therein, by a local government decree for reasons of public interest.

Personal data may only be processed with the consent of the data subject, based on adequate information.

The data subject must be informed in a clear, comprehensible and detailed manner of all facts relating to the processing of their data, in particular the purpose and legal basis of the processing, the person authorized to process and handle the data, the duration of the processing, and who may have access to the data. The information must also cover the data subject’s rights and legal remedies in relation to data processing.

The personal data processed must meet the following requirements:

a) their collection and processing must be fair and lawful;
b) they must be accurate, complete and, where necessary, kept up to date;
c) they must be stored in a manner that allows the data subject to be identified only for as long as is necessary for the purposes of storage.

Personal data may be transferred and different data processing operations may be linked if the data subject has given his or her consent or if permitted by law and if the conditions for data processing are met for each piece of personal data.

  1. The scope of personal data processed by the service provider, the purpose, legal basis and duration of data processing

    The data processing of Kátai Judit e.v. (EnglishHUB) services is based on voluntary consent. However, in certain cases, the processing, storage, and transfer of certain data is required by law, of which we will notify our customers separately. We would like to draw the attention of data providers to Kátai Judit e.v. (EnglishHUB) that if they do not provide their own personal data, it is the data provider’s responsibility to obtain the consent of the data subject.

4.1. User database

In order to use the online services of Judit Kátai e.v. (EnglishHUB) (registration, requesting information, sending messages), users must provide personal data.

The data provided by the user is essential for identification and contact purposes. Judit Kátai e.v. (EnglishHUB) undertakes to contact the applicant within 3 working days using the contact details provided.

The scope of data processed: surname, first name, email address, telephone number, date of birth, address, employer.

    1. Other data processing

      We will provide information about data processing not listed in this notice at the time of data collection. We inform our customers that the court, the prosecutor, the investigating authority, the administrative authority, the data protection commissioner, or other bodies authorized by law may request the data controller to provide information, disclose data, transfer data, or make documents available. Judit Kátai e.v. will only disclose personal data to the authorities – provided that the authority has specified the exact purpose and scope of the data – to the extent that is strictly necessary to achieve the purpose of the request.

    2. Method of storing personal data, security of data processing

The servers hosting the EnglishHUB websites are located at rackforest.hu.

Judit Kátai e.v. (EnglishHUB) selects and operates the IT tools used for the processing of personal data in the course of providing the service in such a way that the data processed:

accessible to authorized persons (availability);
its authenticity and verification ensured (authenticity of data processing);
its integrity verifiable (data integrity);
protected against unauthorized access (data confidentiality).

Kátai Judit e.v. (EnglishHUB) shall take technical, organizational, and structural measures to ensure the security of data processing, providing a level of protection appropriate to the risks associated with data processing.

Judit Kátai e.v. (EnglishHUB) maintains the following during data processing

confidentiality: protects information so that only those who are authorized to access it can do so;
integrity: protects the accuracy and completeness of the information and the processing method;
availability: ensures that when an authorized user needs it, they can actually access the desired information and that the related tools are available.

Judit Kátai e.v. (EnglishHUB) protects both its IT system and network against computer-assisted fraud, espionage, sabotage, vandalism, fire and flood, as well as computer viruses, computer intrusions and denial-of-service attacks. The operator ensures security through server-level and application-level protection procedures.

Users are advised that electronic messages transmitted over the Internet, regardless of protocol (e-mail, web, ftp, etc.), are vulnerable to network threats that may lead to dishonest activity, contract disputes, or the disclosure or modification of information. The service provider takes all reasonable precautions to protect against such threats. It monitors its systems in order to record any security breaches and provide evidence in the event of any security incidents. System monitoring also allows the effectiveness of the precautions taken to be verified.

  1. Contact details of the data controller
    Name of the service provider: Judit Kátai e.v.
    Contact details of the service provider:
    telephone number: +36 30 935 78 97
    email: judit.katai@englishhub.hu
    website: www.englishhub.hu
  1. Options for legal action

    The data subject may request information about the processing of their personal data, as well as request the correction or deletion of their personal data, except for data processing required by law, in the manner indicated at the time of data collection or at the contact details provided by the data controller. The data controller shall block personal data if the data subject so requests or if it can be assumed that deletion would violate the legitimate interests of the data subject. Blocked personal data may only be processed for as long as the purpose of the data processing that precluded the deletion of the personal data exists. The data controller shall erase personal data if the data subject so requests, or if the purpose of the data processing has ceased to exist, or if the statutory time limit for the storage of the data has expired, or if a court or the National Authority for Data Protection and Freedom of Information has ordered the erasure. The data controller has 30 days to delete, block, or correct personal data.