Privacy policy

Török Wédel Ágnes e.v. (1045 Budapest, Tél u. 34.,), as the data controller (hereinafter referred to as the “Data Controller”), acknowledges the content of this privacy notice as binding upon itself.

The Data Controller undertakes to ensure that all data processing activities related to its operations comply with the provisions of this policy, the applicable national laws, and the legal acts of the European Union.

The Data Controller reserves the right to amend this privacy notice at any time. Naturally, any changes will be communicated to the public in a timely manner.

The Data Controller is committed to protecting the personal data of its clients and partners, and it considers the respect of its clients’ informational self-determination rights to be of paramount importance. The Data Controller processes only the personal data specified in this Privacy Notice in accordance with the principle of purpose limitation, in a manner, for a duration, and for the purpose defined in this Privacy Notice.

The Data Controller treats personal data as confidential and takes all security, technical, and organizational measures that guarantee the security of the data.

The Data Controller outlines its data processing practices as follows:

Data Controller’s Information:

Name: Törökné Wédel Ágnes
Name of the registering court: Budapest Környéki Törvényszék Cégbíróság (Company Court of the Budapest-Capital Regional Court)

Tax number: 48634771-2-41

Phone number: +36 70 256 8203

E-mail: info@vendym.hu

Scope of Data Processed

The Data Controller operates an online form on the vendym.hu website (hereinafter referred to as the “Website”) through which clients (hereinafter referred to as “User/Users”) can request cleaning services using the booking interface. After filling out the contact form, the Data Controller receives the provided data via email.

Contact Form

If you wish to contact us, you can do so using the contact form available on our website (https://vendym.hu). The personal data provided on the contact form will only be processed for the purpose of responding to your inquiry if you have given your consent to the data processing. The legal basis for data processing is provided by Article 6(1)(a) of the GDPR and Section 5(1)(a) of the Information Act. In this case, consent is given by using the contact form. Personal data provided on the Website will only be processed for the purpose of preparing a contract with you, entering into the contract, and fulfilling the contract. The legal basis for data processing is provided by Article 6(1)(b) of the GDPR.
If you provide any data in the comment section that is not required for the performance of the contract, such data will not be processed and will be deleted immediately. Optionally,

Cookies and Tracking

To make our website more attractive to you and to enable the use of certain functions, we use “cookies” on various pages. These are small text files stored on your terminal device. Some of the cookies we use are deleted after you end your browsing session, meaning after you close your browser (so-called session cookies). Other cookies remain on your device and allow us or our partner companies to recognize your browser on your next visit (so-called persistent cookies). You can configure your browser to inform you about the placement of cookies and allow you to decide whether to accept cookies on a case-by-case basis or to reject them altogether. More information can be found in your internet browser’s help section. If you do not accept cookies, the functionality of our website may be limited. The following is an overview of the individual cookies.
We distinguish between essential and promotional cookies:

Essential cookies are necessary for the proper functioning of our website. If these cookies are rejected, your user experience when browsing our website will be altered, as you will only be able to access static pages, such as privacy, our cleaners’ page, etc.

Targeting (promotional) cookies may be placed on our Website by our promotional partners and are intended to allow the partner to collect information about your interests and display relevant advertisements to you on other websites.

External servers help measure and audit the website’s traffic and other web analytics data (Google Analytics). Google Analytics also uses cookies. The information generated by the cookies about your use of the website is generally transmitted to and stored on a Google server in the USA. The data controllers can provide detailed information about the handling of measurement data. Their contact details can be found at https://google.com/analytics/. You can refuse the use of cookies by selecting the appropriate settings on your browser. You can also prevent Google from collecting and processing data generated by the cookies and related to your use of the website (including your IP address). To do so, download and install the browser add-on available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en

The Website uses Google Adwords remarketing tracking codes. This is based on the idea that visitors to the site can be targeted later with remarketing ads on websites that belong to the Google Display Network. The remarketing code uses cookies to tag visitors. If you do not wish to participate in the tracking process, you can refuse to have the necessary cookie placed, for example, by configuring your browser to reject cookies automatically. You can also prevent the placement of conversion cookies by configuring your browser to block cookies from the “googleadservices.com” domain. As a result, you will not see personalized offers from the Data Controller.

You can delete any “cookie” from your computer at any time or disable the use of cookies in your browser. Cookie management is generally possible in your browser’s Tools/Settings menu under Privacy settings, named cookie or cookies.

External service providers also use web beacons to collect information about user behavior and serve ads. Web beacons function similarly to cookies, but they cannot be disabled in browsers.

(User) Data Subject Rights

The User, as the data subject, may request information about the processing of their personal data and may request the correction, deletion, or withdrawal of their personal data, except for mandatory data processing. They may also exercise their right to data portability and object to the processing of their personal data by contacting the Data Protection Officer specified in Section II.

Right to Information

The Data Controller shall take appropriate measures to provide the data subjects with all information regarding the processing of personal data referred to in Articles 13 and 14 of the GDPR and each notification under Articles 15 to 22 and 34 in a concise, transparent, intelligible, and easily accessible form, using clear and plain language.
Upon the data subject’s request, the Data Controller shall provide information, particularly about the personal data it processes concerning the data subject, or processed by a data processor it has engaged, their source, the purpose, legal basis, and duration of the data processing, the name and address of the data processor, and its activities related to data processing, the circumstances, effects, and measures taken to address a data protection incident, and – in case of the transfer of the data subject’s personal data – the legal basis and the recipient of the transfer.

The Data Controller shall provide the information in writing, in an intelligible form, within the shortest possible time, but no later than 25 days from the submission of the request.

Right of Access

The data subject has the right to obtain from the Data Controller confirmation as to whether or not personal data concerning them are being processed, and where that is the case, access to the personal data and the following information:

• the purposes of the processing;
• the categories of personal data concerned;
• the recipients or categories of recipients to whom the personal data have been or will be disclosed, particularly recipients in third countries or international organizations;
• the envisaged period for which the personal data will be stored;
• the right to request rectification, erasure, or restriction of processing, and to object to processing;
• the right to lodge a complaint with a supervisory authority;
• information on the source of the data;
• the existence of automated decision-making, including profiling, and meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

Right to Rectification

The data subject has the right to obtain the rectification of inaccurate personal data concerning them and to have incomplete personal data completed by the Data Controller.

Right to Erasure (“Right to be Forgotten”)

The data subject has the right to obtain from the Data Controller the erasure of personal data concerning them without undue delay where one of the following grounds applies:

• the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
• the data subject withdraws consent on which the processing is based, and there is no other legal ground for the processing;
• the data subject objects to the processing and there are no overriding legitimate grounds for the processing;
• the personal data have been unlawfully processed;
• the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the Data Controller is subject;
• the personal data have been collected in relation to the offer of information society services.

Right to Restriction of Processing

The data subject has the right to obtain from the Data Controller the restriction of processing where one of the following applies:

• the accuracy of the personal data is contested by the data subject, for a period enabling the Data Controller to verify the accuracy of the personal data;
• the processing is unlawful, and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
• the Data Controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise, or defense of legal claims;
• the data subject has objected to processing pending the verification of whether the legitimate grounds of the Data Controller override those of the data subject.

Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise, or defense of legal claims or the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
Where the Data Controller does not comply with the data subject’s request for rectification, restriction (blocking), or erasure, the Data Controller shall inform the data subject of the factual and legal reasons for the refusal to comply with the request for rectification, restriction, or erasure within 25 days of receipt of the request, in writing or, with the data subject’s consent, by electronic means. In case of refusal of a request for rectification, erasure, or blocking, the Data Controller shall inform the data subject of the possibilities of judicial remedy and lodging a complaint with the Authority.

Right to Data Portability

The data subject has the right to receive the personal data concerning them, which they have provided to the Data Controller, in a structured, commonly used, and machine-readable format and has the right to transmit those data to another data controller.

Right to Object

The data subject has the right to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them which is based on the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller or on legitimate interests pursued by the Data Controller or by a third party, including profiling based on those provisions.
Where the data subject objects to processing, the Data Controller shall no longer process the personal data unless the Data Controller demonstrates compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the data subject or for the establishment, exercise, or defense of legal claims.

Automated Individual Decision-Making, Including Profiling

The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them.
The data subject has the right to withdraw their consent at any time.

Right to Lodge a Complaint with a Supervisory Authority

The data subject has the right to lodge a complaint with a supervisory authority if they consider that the processing of personal data relating to them infringes the GDPR.

Right to Judicial Remedy

In the event of a violation of their rights, the data subject may bring an action against the Data Controller before the courts. The court shall hear the case out of turn.

Data Protection Authority Procedure

Complaints can be lodged with the National Authority for Data Protection and Freedom of Information:
Name: National Authority for Data Protection and Freedom of Information

Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.

Mailing address: 1530 Budapest, Pf.: 5.

Phone: +36 1 391 1400

Fax: +36 1 391 1410

E-mail: ugyfelszolgalat@naih.hu

Website: https://www.naih.hu