Privacy Policy
The protection of your personal data is of utmost importance to us. Therefore, this Data Protection Notice describes what personal data we collect about you, for what purpose and on what legal basis we process it. The Data Protection Notice also includes your rights.
- Data Controller’s details
Data Controller: FaulhornZrt. (hereinafter referred to as “Data Controller”)
Headquarters: 1117 Budapest, Budafoki út 91-93. B. épület 7. emelet
Mailing address: 1117 Budapest, Budafoki út 91-93. B. épület 7. emelet
Company registration number: 01 10 140514,
Tax number: 27084432-2-43
Website: https://agigent.ai/
Email: hello@agigent.ai - General legal regulations on which the data processing is based
– Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR)
– Act CXII of 2011 on the Right to Informational Self-Determination and on Freedom of Information (Infotv.)
– Act V of 2013 on the Civil Code (Ptk.)
– Act CXIX of 1995 on the Processing of Name and Address Data for Research and Direct Marketing Purposes (DM Act)
– Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Services Related to the Information Society (Eker tv.)
– Act XLVIII of 2008 on the Fundamental Conditions and Certain Restrictions of Economic Advertising Activities (Grt.) - Concepts:
Personal data: any information relating to an identified or identifiable natural person (“Data Subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Typical examples of such personal data include: name, address, place and date of birth, mother’s name.
Data processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Data Controller: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the Data Controller or the specific criteria for its nomination may be laid down by Union or Member State law.
Data Processor: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Data Controller.
Recipient: a natural or legal person, public authority, agency or other body to whom the personal data is disclosed, whether or not a third party. - Principles:
The Data Controller shall take into account the following principles when processing personal data, so that personal data is:
a. processed lawfully, fairly and in a transparent manner in relation to the Data Subject (lawfulness, fairness and transparency);
b. collected for specific, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the original purpose in accordance with Article 89(1) of the GDPR (purpose limitation);
c. adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation);
d. accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate for the purposes of the processing are erased or rectified without delay (accuracy);
e. stored in a manner that allows for the identification of the Data Subjects only for as long as is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods of time only insofar as the personal data will be processed for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) of the GDPR, subject to the implementation of appropriate technical and organisational measures to protect the rights and freedoms of the Data Subject as required by this Regulation (storage limitation);
f. processed in a manner that ensures the appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, by using appropriate technical or organisational measures (integrity and confidentiality);
g. the Data Controller is responsible for compliance with the above and must be able to demonstrate such compliance (accountability). - Data management activity
a) Contact via website
Purpose of data processing: Contacting the Data Subject
Legal basis for data processing: GDPR Article 6(1)(b): necessary for the performance of a contract or in order to take steps at the request of the Data Subject prior to entering into a contract
Data Subject categories: Potential customers
Personal data processed: Name, phone number, email address
Data retention period: Until the end of the first year after the contact
Data transfer: No data transfer according to GDPR Articles 44-49
Recipients: The Data Controller uses the following Data Processors:
– Hosting provider: Profitárhely Kft. (6000 Kecskemét, Szolnoki út 23., company registration number: 03-09-121889, tax number: 23173080-2-03)
– Email service providers:
- Profitárhely Kft. (6000 Kecskemét, Szolnoki út 23., company registration number: 03-09-121889, tax number: 23173080-2-03)
- Google Ireland Ltd. (Headquarters: Google Building Gordon House, BarrowSt, Dublin 4, Ireland)
Data source: The personal data is provided by the potential customer
Data provision method and consequences: Providing the data is necessary. If you do not provide the personal data, the Data Controller cannot contact you.
b) Contact via email
Purpose of data processing: Contacting the Data Subject via email
Legal basis for data processing: GDPR Article 6(1)(b): necessary for the performance of a contract or in order to take steps at the request of the Data Subject prior to entering into a contract
Data Subject categories: Potential customers
Personal data processed: Name, phone number, email address
Data retention period: Until the end of the first year after the contact
Data transfer: No data transfer according to GDPR Articles 44-49
Recipients: The Data Controller uses the following Data Processors:
– Email service providers: - Profitárhely Kft. (6000 Kecskemét, Szolnoki út 23., company registration number: 03-09-121889, tax number: 23173080-2-03)
- Google Ireland Ltd. (Headquarters: Google Building Gordon House, BarrowSt, Dublin 4, Ireland)
Data source: The personal data is provided by the potential customer
Data provision method and consequences: Providing the data is necessary. If you do not provide the personal data, the Data Controller cannot contact you.c) Contractual communication
The Data Controller communicates and maintains business relations with the contact person specified in the contract in the case of its Partners (suppliers, customers).
Purpose of data processing: Maintaining communication and cooperation for the contractual purpose between the Data Controller and the Partner
Legal basis for data processing: GDPR Article 6(1)(f): legitimate interest
Data Subject categories: Employee of the Partner (sole proprietorship, Ltd., LLC, Plc.) as a designated contact person
Personal data processed: Name, position, phone number, email address
Data retention period: Until the end of the 5th year after the fulfillment or termination of the contract
Data transfer: No data transfer according to GDPR Articles 44-49
Recipients: The Data Controller does not use Data Processors
Data source: The personal data is provided by the Partner’s contact person
Data provision method and consequences: If you do not provide the necessary data, the Data Controller cannot coordinate with the Partner.
- Website Data Processing
The Website uses cookies.
A cookie is a small file that is placed on your computer when you visit a website. The cookie is a package of information that the server sends to the browser, and then the browser sends this information back to the server every time a request is made, with the data content specified by the server. The purpose of this is to save the internet settings of the website you have visited, so if you visit the same website again from the same device, the website will already remember the parameters you have set.
Cookies have a number of functions. Cookies are most commonly used for advertising, personalization of services, and website traffic analysis.
According to the currently applicable legislation, cookies can only be stored on your device if it is strictly necessary, i.e. essential for the website to function, these are called “necessary cookies”. Your consent is required for the use of all other types of cookies.
You can view and configure the cookies currently used on the website in a pop-up window that appears when you log in to the website. Modern browsers allow you to change your cookie settings. Some browsers accept cookies automatically by default, but this setting can also be changed to prevent automatic acceptance in the future. If you change this setting, the browser will always offer you the option to choose your cookie settings.
Please note that disabling cookies may prevent you from using all the features of the website. In this case, the website may not function as intended in the browser. - Social Media
The Data Controller is available on the following social media platforms:
LinkedIn
Platform operator: The operator of the social media platform acts as an independent Data Controller.
Data processing information: https://www.linkedin.com/legal/privacy-policy
Social media page: https://www.linkedin.com/company/agigent
Name of the Data Controller: Microsoft Corporation
Microsoft company information:
Founded: April 4, 1975
Headquarters: Redmond, Washington, USA
Activities: Software development, hardware manufacturing, cloud services
Employees: 181,000 (2023)
Revenue: USD 198.2 billion (2023)
Website: https://www.microsoft.com/Hungarian subsidiary:
Company name: Microsoft Magyarország Kft.
Headquarters: 1031 Budapest, Graphisoft Park 3.
Company registration number: 01-09-262313
Tax number: 10836653-2-41
Website: https://www.microsoft.com/hu-huThe Data Controller does not record or process any personal data of the user of the given social media platform in its internal database and system.
- Access to data
Competent employees of the Data Controller may access personal data to the extent necessary for the performance of their duties. - Data security measures
The Data Controller uses appropriate IT, technical and personal measures to protect the personal data it manages against, among other things, unauthorized access or unauthorized changes. - Rights of the Data Subject and their content related to data management
Right to information /GDPR 13-14. article/
You are entitled to receive information about the facts and purposes of data management at the time of obtaining your personal data. The Data Controller also provides you with additional information that is necessary to ensure fair and transparent data management, taking into account the specific circumstances and context of personal data management. You must also be informed about the fact of profiling and its consequences.
Right of access /GDPR Article 15/
You have the right to request information on whether your personal data is being processed and, if such data is being processed, you are entitled to know whether the
Data controller:
– what personal data
– on what legal basis
– for what data management purpose
– how long it is treated
– to whom, when, based on which legislation, to whom you provided access to your personal data or to whom you forwarded your personal data
– what is the source of your personal data (if you did not provide them to the Data Controller)
– whether it uses automated decision-making and its logic, including profiling.Right to rectification /GDPR Article 16/
You have the right to request that the Data Controller correct your inaccurate personal data or supplement your incomplete personal data. So you can request that the Data Controller change some of your personal data (for example, you can change your e-mail address or other contact details at any time).Right to erasure (“right to be forgotten”) /GDPR Article 17/
You are entitled to request that the Data Controller delete your personal data if one of the following reasons exists:
– your personal data is no longer needed for the purpose for which it was collected or otherwise processed
– You withdraw your consent that is the basis of data processing pursuant to Article 6 (1) point a) or Article 9 (2) point a) and there is no other legal basis for data processing
– You object to data processing based on Article 21 (1) and there is no overriding legitimate reason for data management, or you object to data management based on Article 21 (2)
– your personal data was handled illegally
– your personal data must be deleted in order to fulfill the legal obligation prescribed by EU or member state law applicable to the Data Controller
– your personal data was collected in connection with the offering of services related to the information society referred to in Article 8, Paragraph 1.Right to limitation
You have the right to request that the Data Controller limit data processing (GDPR Article 18) if one of the following reasons exists:
– You dispute the accuracy of your personal data (in this case, the limitation applies to the period that allows the Data Controller to check the accuracy of your personal data)
– the data processing is illegal and you oppose the deletion of the data and instead request the restriction of its use
– the Data Controller no longer needs the personal data for the purpose of data management, but you require them to present, assert or defend a legal claim, you have objected to the data management in accordance with Article 21 (1) (in this case, the restriction applies to the period until it is established , whether the Data Controller’s legitimate reasons take precedence over your legitimate reasons).Right to data portability /GDPR Article 20/
You have the right to receive your personal data provided by you to a Data Controller in a segmented, widely used, machine-readable format, and you are also entitled to transmit this data to another Data Controller without being hindered by the Data Controller whose provided the personal data if:
– the data management is based on consent according to Article 6 (1) point a) or Article 9 (2) point a) or on a contract according to Article 6 (1) point b) and
– data management is automated.
You are entitled to – if this is technically feasible – request the direct transmission of your personal data between Data Controllers.Right to object /GDPR Article 21/
You have the right to object at any time to the processing of your personal data based on points e) or f) of Article 6 (1), including profiling based on the said provisions, at any time for reasons related to your own situation. In this case, the Data Controller may no longer process your personal data, unless the Data Controller proves that the data processing is justified by compelling legitimate reasons that take precedence over your interests, rights and freedoms, or that are necessary for the presentation, enforcement or defense of legal claims are connected.
If your personal data is processed for direct business acquisition, you have the right to object at any time to the processing of your personal data for this purpose, including profiling, if it is related to direct business acquisition.The right to withdraw consent /GDPR Article 7 (3)/
You have the right to withdraw your consent at any time. Withdrawal of consent does not affect the legality of data processing based on consent prior to withdrawal. You must be informed of this before giving your consent. It should be possible to withdraw consent in the same way as to give it. - Data processing related legal remedies and their content
Legal remedy: The content of the legal remedy is the right to file a complaint with the Supervisory Authority /GDPR Article 77/In the event of a violation of your right to the protection of your personal data, you may submit a complaint to the following Authority:
National Data Protection and Freedom of Information Authority
registered office: 1055 Budapest, Falk Miksa utca 9-11.
mailing address: 1363 Budapest, Pf. 9.
telephone: +36 (1) 391-1400
e-mail: ugyfelszolgalat@naih.hu
website: www.naih.huThe right to an effective judicial remedy against the Data Controller or the Data Processor (initiation of legal proceedings) /GDPR Article 79/
You have the right to go to court against the Data Controller or Data Processor if you experience the illegality of the processing of your personal data. The court acts out of sequence in the case. In this case, you can freely decide whether to file your claim with the competent court according to your place of residence or place of stay. Contact information of the courts: https://birosag.hu/torvenyszekek - Updating the Data Management Information
The Data Controller reserves the right to unilaterally modify this Data Management Information. This information may be amended especially if it is necessary due to changes in legislation, data protection official practices, business needs, or other circumstances. At the Data Subject’s request, the Data Controller will send him a copy of the current information in the form agreed with him.
Budapest, March 1, 2024.