(More comprehensive and detailed data management information is available on the Data Controller's website)
This information applies to the management of personal data contained in the sponsorship documents issued under SI PLUS (VS/2021/0136-Social Innovation Plus – Competence Centres) (hereinafter: Project).
The data management of the above-mentioned project is carried out according to the following legal framework:
- Regulation 2016/679 of the European Parliament and of the Council (General Data Protection Regulation or GDPR)
- Act CXII of 2011 on the right to information self-determination and freedom of information. Act (Infotv.)
- Act V of 2013 on the Civil Code (Civil Code)
- Prior information recommendation by the National Authority for Data Protection and Freedom of Information on data protection requirements for prior information
1. Controller of personal data (hereinafter: Data Controller):
Name of data controller: IFKA Public Benefit Non-Profit Ltd.
Representative of the data controller: István Attila Szabó, Managing Director
Phone: +36 1 213 2213
Address: 1074 Budapest, Rákóczi út 70-72.
Tax number: 23833904-2-42
Data protection officer: dr. Katalin Nagy (phone: ++36 1 213 2213; email:firstname.lastname@example.org; address: 074 Budapest, Rákóczi út 70-72. )
2. Subject of data management:
The below information applies to the processing of personal data contained in the supporting documents issued under the Project. This includes:
a) personal data provided for the Data Controller in connection with the issuance of sponsorship document,
b) based on a natural person’s legal relationship with the Data Controller, who is appointed as a contact person by the Data Controller, and
c) in case of a natural entity appointed as a contact person by the Beneficiary, data management is based on a contractual relationship between the Data Controller and the Beneficiary.
3. Aim of data management
The purpose of this data management is to provide access to the interface for users registered on the online platform created within the framework of the project.
4. Scope of managed personal data
a) personal data of the Beneficiary and the representative of the Beneficiary,
b) the contact person is a natural entity:
5. The legal basis of data management
Legal basis for processing the personal data of Beneficiary as stated in GDPR Article 6, paragraph (1), point (b): data processing related to the execution of the contract; GDPR Article 6, paragraph (1), point (f): data processing related to contact person as the legitimate interest of the parties to maintain contact in connection with the fulfillment of contractual obligations.
6. Timeframe of data processing
The duration of data management is 5 years after the end of the project's maintenance period. If the act of deleting application and contact data does not affect the data controller's obligation arising from a legal provision or the performance of a contract, the application and contact data will be deleted from the system at the request of the data subject.
7. Data transmission
In order to fulfill its legal or contractual obligations arising from its Project Tasks, the Data Controller transmits or may transmit the personal data of the subject entities, organizations and authorities specified in the legislation or in the relevant contracts (eg: Ministry for Economic Development).
8. Access to data
Only the person indicated at the event and named as the event organizer is entitled to get to know your application data. The Data Controller does not transfer the recorded data to third parties, with the exception of an official request.
9. Data Security measures
The data provided to the Data Controller is partly stored on servers managed and owned by the Data Controller, and Data Controler partly use services from the following service providers:
- Microsoft Hungary Ltd.
The Data Controller shall take appropriate measures to protect his personal data, including against unauthorized access or alteration.
10. Data management rights
- right of access
- the right to rectification
- the right to delete (If the data processing is for the purpose of fulfilling a issued statement of support, we cannot fulfill the deletion request)
11. The right to access the data
At the Data Controller, the organizational units participating in the issuance, revocation, modification, fulfillment, control of utilisation, repayment of financial support, registration of the document are entitled to access the data. In particular, the competent field(s) issuing the given document: the management, the finance and the legal field’s employees.
Data protection officer: dr. Katalin Nagy (phone: +36 1 213 2213; email: email@example.com; address: 1074 Budapest, Rákóczi út 70-72.)
12. Automated decision making and profiling, transfer of personal data to a third country or international organization
None of this takes place during data management.
13. Data processing remedies:
The primary, fastest and most reliable means of remedying the problems involved is direct consultation between the Data Controller and the data subject, if necessary through a moderator. Therefore, all interested parties are asked to contact the Data Controller, its Data Protection Officer with confidence and directly with any questions, comments, possible problems or shortcomings through the contact details provided on the Data Controller's own website.
If, due to the nature or condition of the situation, they do not see the possibility to do so, the person concerned may also initiate proceedings before the National Authority for Data Protection and Freedom of Information (hereinafter referred to as the Authority) if he or she finds an infringement on the part of the Data Controller. It is emphasized that the Authority also recommends that those concerned first contact the controller in the event of a problem in order to find an amicable solution, which is of course not a mandatory prior procedure. The website of the Authority is available athttps://www.naih.hu, by e-mail at:firstname.lastname@example.org, by letter at: 1363 Budapest, mailbox no. 9.
The person concerned can go to court if his or her rights are violated. The General Court shall have jurisdiction to determine any actions. Proceedings –based on the preference of the person concerned - may also be instituted before a court having jurisdiction over the place of residence or the place of stay.
I have understood and accept the information contained in this brochure.