1. Purpose of data protection legislation

The data protection notice below is designed to ensure compliance with the law of data processing and processing, in particular with regard Act CXII of 2011 Convention on the Right of Information Self-Determination and Freedom of Information, and other data security laws.

These data protection issues shall be governed by Hungarian law and any dispute arising from this data protection law shall be subject to the jurisdiction of the courts of Hungary.

2. Basic concepts regarding personal data

Data protection: a set of principles, rules, procedures, data management tools and methods to ensure the lawful processing of personal data and the protection of data subjects.

Personal data: Personal data is any data that can be related to a natural person (data subject) or that any reference to the data subject can be deducted from the data.
Consent: a voluntary and determined expression of the will of the data subject, based on appropriate information and giving unambiguous consent to the processing of personal data concerning him or her, whether full or specific. Special data requires written form.

Protest: a statement by the data subject that he/she objects to the processing of his/her personal data and requests the termination of the data processing or the deletion of the processed data.
BestPhotoTour: the person or organization that determines the purpose of the processing of the data, makes and implements the data management (including the device used), or executes with the data processor authorized by it.

Data processing: performing technical tasks related to data management operations (irrespective of the method and means used to perform the operations and the place of application).

Data Controller: The person or organization that processes the data under its contract with BestPhotoTour, including under the law.

Data management: any action carried out on the data, regardless of the procedure used, such as collecting, recording, organizing, storing, modifying, using, querying, transmitting, publishing, matching or linking, blocking, deleting and destroying as well as preventing the re-use of data, taking photo, audio or image recording, and physical characteristics (finger or palm print, DNA sample, iris image, etc.

Data transfer: making data available to a specific third party.

Disclosure: Making the data available to anyone.

Data deletion: making data unrecognizable in such a way that it is no longer possible to recover them.

Data security: a system of technical and organizational solutions to prevent unauthorized access, alteration and destruction of data.

Third party: a natural or legal person or an organisation without legal personality who is not the same as the person concerned, BestPhotoTour or the data processor.

3. Data management principles

The operator of www.bestphototour.com (hereinafter referred to as the Operator) shall only process personal data to which the user has given his or her prior consent and shall be appropriately informed about the method, purpose and principles of the data collection. The Operator processes personal data only for specified purposes in order to exercise its rights and fulfill its obligations. The data is managed for a clear purpose for the users and the data is kept only for the time required by law.

Only personal data which is essential for the purpose of the processing is processed. Personal data are processed only to the extent necessary for the purpose to be achieved. The purpose of the data processing below is to ensure that the Operator can contact investigators through the contact forms (inquiry, contact) on the website and thus sell its service.

In all cases where the operator intends to use the data provided for purposes other than those for which they were originally intended, the operator must inform the user in advance and seek the consent of the user, and provide him the opportunity to prohibit the use of his data.

The user may request that he/she be informed of the processing of his personal data or, if he/she so chooses, to delete his personal data. If such requests occur, the Operator shall comply with this in the shortest possible time. This time should not be more than 30 days.

The Operator transmits the personal data it manages to a third party only for the purpose of developing and/or operating its services. The Operator shall not use or otherwise misuse the personal data it processes for the purposes of third parties.

The website also contains links to an external (not hosted) server. Pages available on these links may place their own cookies or other files on your computer, collect information, or request personal information. For these, the Operator disclaims all liability.

4. Data management on the website

4.1 Website visitors’ details

Some parts of the www.bestphototour.com website may place „cookies” on visitors’ computers. They provide information about the usage of specific pages on the website, together with other methods of measuring the number of visitors. It does not collect personal information about individual visitors and the information is only displayed in a collective form. The purpose of this technology and the information provided is to develop a website and to store the contact details and personal data of returning visitors for subsequent visits.

The user can delete cookies from their computer or disable their application if they wish. Typically, it can be set under Settings/Privacy.

4.2 Inquiry

Legal basis: The voluntary consent of the user when sending an email via www.bestphototour.com. The visitor will not be able to send an email until he/she consents so that his/her data can be processed by the operator.

Scope of managed data: Name, company name, email address, phone number, current website.

Purpose of data management: Collect received inquiries and submit inquiries based on the information you provide to the current service. Later, contact with the interested person.

Duration of data management: BestPhotoTour handles personal data during the purpose of the processing. So for a maximum of 30 days from the incoming request for quotation. This may change if the user requests that their data be deleted or their consent is not revoked.

4.3 Contact

Purpose of data processing: to keep in contact with the data subject, to answer and solve questions, requests and other issues. 

  • Activity and process concerned by the processing: the data subject may consult the Data Controller about the Data Controller’s services and/or other related matters through the means or ways made available to him/her by the Data Controller. The possibility of selling services is provided by the request for proposal form detailed in point 5.1.
  • Legal basis: voluntary consent of the user when sending an e-mail via the www.bestphototour.com website or using the chat facility on the website.
  • Data processed: name, email address, message, IP address.
  • Data processing period: until the consent is withdrawn.
  • When a visitor visits the Website, the system connected to the Website automatically records the IP address of the user’s computer, the time the visit starts and, in some cases, depending on the computer’s settings, the type of browser and operating system. The data thus recorded cannot be linked to other personal data. The data are processed for statistical purposes only.

5. Data Security

BestPhotoTour protects your data, in particular against unauthorized access, alteration, transmission, disclosure, deletion or destruction, and accidental destruction or damage.

BestPhotoTour, together with the server operators, ensures the security of the data with technical, organizational and organizational measures that provide a level of protection appropriate to the risks involved in managing the data.

Data subjects may request information about the processing of their personal data, or, if they feel the need, request that data be modified or deleted through any contact details.

If such requests occur, the operator shall comply with this in the shortest possible time. This time should not be more than 30 days.

Non-realistic personal data must be corrected by BestPhotoTour.

BestPhotoTour notifies the data subject of the rectification and deletion, as well as anyone to whom the data have previously been transmitted for data management purposes. Notification may be dispensed with if this is not contrary to the legitimate interest of the data subject, having regard to the purpose of the processing.

If any data is unlawful, erroneous, incomplete or has expired (30 days) in the data management statement, the operator will delete the data.

The data subject may object to the processing of his personal data if:

the processing (transfer) of personal data is only necessary to enforce the right or legitimate interest of BestPhotoTour or the data recipient, unless the data processing is required by law;

the personal data is used or transmitted for direct marketing, opinion polling or scientific research;

otherwise, the right to object is permitted by law.

The operator shall indemnify for damage caused to others by unlawful processing of data of the data subject or violation of technical data protection requirements. BestPhotoTour shall not be liable if you prove that the damage was caused by an unavoidable cause outside the scope of your data management. There is no need to compensate for the damage to the extent that it is the result of intentional or grossly negligent behavior on the part of the injured party.

You have the right to appeal to the National Data Protection and Freedom of Information Authority (Nemzeti Adatvédelmi és Információszabadság Hatóság).

NAIH’s contact details are as follows: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.; Phone: +36 1 391 1400; Fax: +36 1 391 1410; E-mail: ugyfelszolgalat@naih.hu; Website: www.naih.hu.

Litigation: Data protection lawsuits fall within the jurisdiction of the Courthouse. At the choice of the data subject, the lawsuit may be instituted before the court in the place where the data subject is domiciled or habitually resident.

THIRD-PARTY USE OF PERSONAL INFORMATION

We may share your information with third parties when you explicitly authorize us to share your information.

Additionally, the Website may use third-party service providers service various aspects of the Website. Each third-party service provider’s use of your personal information is dictated by their respective privacy policies. The Website currently uses the following third-party service providers:

Google Analytics – this service tracks Website usage and provides information such as referring websites and user actions on the Website. Google Analytics may capture your IP address, but no other personal information is captured by Google Analytics.

Mailchimp– this service is used for delivery of email updates and newsletters. We store your name and email address for purposes of delivering such communications.

We do not control these third parties’ tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the responsible provider directly

NEWSLETTERS

On the Website, you may subscribe to our newsletter, which may be used for advertising purposes. All newsletters sent may contain tracking pixels. The pixel is embedded in emails and allows an analysis of the success of online marketing campaigns. Because of these tracking pixels, we may see if and when you open an email and which links within the email you click. Also, this allows the Website to adapt the content of future newsletters to the interests of the user. This behavior will not be passed on to third parties.