DATA MANAGEMENT INFORMATION
(in force: 01.12.2023)
General information
Company name: Hungarian-Chinese Friendship Society
Company registration number:*
Tax number: 19718949-1-42
Contact person:Balázs Konfár, administrator
Electronic contact: info@mkbt.hu
Phone number:*
hereinafter referred to as the "Organisation" or the "Controller".
The Company is committed to the protection of the personal data of its customers and business partners, and therefore pays particular attention to ensuring that the collection, handling, use, processing and possible transmission of personal data comply with the provisions of Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information, Act No. Act CVIII of 1995 on the processing of name and address data for the purposes of research and direct marketing, and Regulation 2016/679/EU on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, applicable from 25 May 2018, i.e. the GDPR and other relevant legislation, national and international recommendations.
The Company will treat all personal data provided to it or coming to its knowledge in the course of its activities with the same high level of protection as if it had been provided to it by any other means or in any other form.
The Company is the www.mkbt.hu personal data provided electronically through the website (hereinafter referred to as the "Website") is processed by the Hungarian-Chinese Friendship Association.
By accessing and using our website, our Customers acknowledge that they have read this Privacy Policy and consent to the processing and, where applicable, disclosure of the data provided by the Data Subject by the Organization in accordance with the applicable laws; they also consent to the Organization recording their contact details in its database for the purpose of providing information about the data related to its services, changes thereto and other changes affecting Customers.
Interpretative provisions
Data Subject: any specified natural person who is identified or identifiable, directly or indirectly, on the basis of personal data;
Personal Data: data that can be associated with the data subject, in particular the name, identification mark and one or more factors specific to the physical, physiological, mental, economic, cultural or social identity of the data subject, and the inferences that can be drawn from the data concerning the data subject;
Consent: a voluntary and explicit expression of the data subject's wishes, based on adequate information, by which he or she gives his or her unambiguous consent to the processing of personal data concerning him or her, either in full or in relation to specific operations;
Objection: a statement by the data subject objecting to the processing of his or her personal data and requesting the cessation of the processing or the deletion of the processed data;
Data Controller: a natural or legal person or unincorporated body who, alone or jointly with others, determines the purposes for which the data are to be processed, takes and implements decisions regarding the processing (including the means used) or has the data processed by a processor;
Data processing: whatever the procedure used, any operation or set of operations which is performed upon the data, in particular any collection, recording, recording, organisation, storage, alteration, use, retrieval, disclosure, transmission, alignment or combination, blocking, erasure or destruction of data, prevention of their further use, taking of photographs, sound recordings or images and any physical features which can be used to identify a person (e.g. fingerprints, palm prints, DNA samples, iris scans);
Transfer: making data available to a specified third party;
Disclosure: Making the data available to anyone;
Data erasure: The rendering of data unrecognisable in such a way that it is no longer possible to recover it;
Data Marking: the marking of data with an identification mark to distinguish it;
Data blocking: the marking of data with an identification mark for the purpose of limiting its further processing permanently or for a limited period of time;
Data destruction: the complete physical destruction of the medium containing the data;
Data processing: the performance of technical tasks related to data processing operations, regardless of the method and means used to perform the operations and the place of application, provided that the technical task is performed on the data;
Data Processor: a natural or legal person or unincorporated body that processes data on the basis of a contract, including a contract concluded pursuant to a legal provision;
Data set: the set of data managed in a single register;
Third Party: a natural or legal person or unincorporated body other than the data subject, the controller or the processor;
EEA State: a Member State of the European Union and another State party to the Agreement on the European Economic Area and a State whose nationals enjoy the same status as nationals of a State party to the Agreement on the European Economic Area under an international treaty between the European Union and its Member States and a State not party to the Agreement on the European Economic Area
Third Country: any state that is not an EEA state;
Data Protection Incident: unlawful processing or handling of personal data, in particular unauthorised access, alteration, disclosure, transmission, disclosure, erasure or destruction, accidental destruction or accidental damage.
Purpose of data processing
The Organisation is engaged in [civil diplomacy].
The purpose of the processing of personal data held by the Organisation:
the performance of services used by the Organisation;
information on the data relating to the services and changes thereto;
maintain the relationship between the Organisation and the Client?
providing information by means of newsletters, mainly in connection with the operation and availability of the Organisation;
The Data Controller will not use the Data Subject's personal data for any purpose other than the purpose described.
Legal basis for processing
The processing of the data is carried out with the voluntary and explicit consent of the Users. The consent is given on the website of the Data Controller, upon access, by reading and accepting this information electronically.
Scope of the data processed
The personal data processed by the Organization are the data that the Company obtains or may obtain in the course of using the Company's services in relation to Customers and their contractual partners, and any personal data transmitted by Customers to the Organization.
This personal data includes:
name;
place and date of birth;
mother's maiden name;
email address;
phone number;
Duration of processing
Processing is only carried out to the extent and for the duration necessary for the purpose and only with personal data that are indispensable for the purpose of the processing and otherwise suitable for the purpose, in particular as long as the rights and obligations of the Customer relating to the provision of information, the performance of services and related administration are fulfilled.
Data subject's rights in relation to the processing of their personal data
a.) Request for information
Data subjects may request information about the personal data provided by the Data Subject and processed by the Organisation, their source, the purposes, legal basis and duration of the processing, the name and address of any data processor and its activities in relation to the processing, and, in the case of transfer of their personal data, the legal basis and the recipient of the transfer.
In order to ensure the security of the data subjects' data, the Organisation will only comply with requests for information in person. To this end, the request for information may be sent to the Organisation in writing by post in the form of a private document with full probative value, by e-mail or by fax, providing the appropriate identification data.
The Company shall provide the information in writing in an intelligible form to the address provided by the data subject within 30 days at the latest.
b.) Correction
If the data subject indicates to the Organization, by providing the corrected personal data, that the personal data processed is inaccurate or the Organization becomes aware of the inaccuracy of the personal data and the correct data through other means, the Organization will correct the personal data. The Organization shall notify the data subject of the rectification or of the rejection of his or her request for rectification.
c.) Deletion or blocking
Data subjects have the right to request the erasure or blocking of their personal data. Personal data will be blocked if, on the basis of the information available to us, it is likely that deletion would harm the legitimate interests of the data subject. The personal data thus blocked will be processed only for as long as the processing purpose which precluded the deletion of the personal data is pursued. We will notify the data subject of the erasure or blocking or inform him or her of the refusal of his or her request for erasure or blocking.
d.) Protest
Except in the case of mandatory processing, data subjects have the right to object to the processing of their personal data if the processing or transfer of their personal data is necessary for the fulfilment of a legal obligation to which the Organisation is subject or for the purposes of the legitimate interests pursued by the Organisation or a third party; or if the use or transfer of their personal data is for direct marketing, public opinion polling or scientific research purposes, unless they have given their consent; or in other cases provided for by law.
The Organisation shall examine the objection within the shortest possible time from the date of the request, but not later than 8 days, and shall decide whether the objection is justified and inform the applicant in writing of its decision.
d.) Refusal to cooperate with direct marketing
Data subjects have the right to refuse to cooperate with direct marketing letters at any time without giving reasons. In this context, they have the right to refuse or prohibit the inclusion of their names on contact lists or marketing lists, the use of their names for direct marketing purposes, or for specific purposes within such lists, or the transfer of their names to third parties.
Getting to know the data
During the period of data management, the data concerned by the data management may be known by the employees employed by the Organization for the time and to the extent necessary for the performance of their duties, subject to confidentiality.
Data transmission
The Organization will not transfer the personal data provided to it to third parties, except as required by applicable law.
The Data Controller does not use a data processor for this processing.
Enforcement possibilities for the data subject
Your rights concerning your personal data can be exercised through the contact details of the Organisation, listed in point 1. The Organization shall, in accordance with the applicable regulations, handle any request or complaint received and inform the Data Subject of the outcome of the procedure.
The Data Subject may lodge a complaint about the data processing activities of the Organization with the National Authority for Data Protection and Freedom of Information (address: 1055 Budapest, Falk Miksa utca 9-11., postal address: 1363 Budapest, PO Box 9., website: https://www.naih.hu/).
The Data Subject has the right to bring legal proceedings before the competent court in the place where the Organisation has its registered office if his/her rights under the applicable legislation have been infringed by the Company.
Confidentiality
The Organisation treats all information relating to the identity and details of its partners and customers and the Organisation's existing business relationships as trade secrets.
Data security measures
The personal data provided to and processed by the Organization is stored on servers operated by MICROSOFT and the Hungarian-Chinese Friendship Association. The said servers are protected by state-of-the-art technical and operational security measures in order to prevent unauthorized use and misuse. The Controller and the Processors regularly monitor their security procedures and improve them in line with technological developments.
Possibility to amend the privacy notice
The Organization reserves the right to unilaterally modify this Privacy Policy by notifying users.
English 
Hungarian 
Chinese