General data protection and data management policy
The protection of Your personal data is very important to us so we are informing you in detail about our data management in the following. During data management and during the use of data Agrotex Kft. strictly follows the effective data protection provisions. We only manage data in accordance with applicable data protection laws. The right to use personal and anonymous data is subject to the extent permitted by applicable European Union and Hungarian law, to Agrotex Kft., while maintaining your rights as described below.
This Data Protection and Privacy Information (the "Policy") describes in detail your rights and choice options regarding your data management, the duties and actions of Agrotex Kft. relating to data protection and its duties and rights in connection with data management.
When You contact us, you acknowledge that we will manage certain of your personal information as described in this Policy.
If you use our website, please note that this Policy applies only to www.agrotex.hu.
1. Who will be the data manager?
The data manager is the Agrotex Kft.
Our contact information is as follows:
- Address: 4026 Debrecen, Péterfia u. 4. I. em. 106.
2. What do the basic concepts of data protection and data management mean?
Personal data is any data or information that can be used to identify, directly or indirectly, a particular person, individually or with other data or information.
Your personal information is primarily your name, address, place of birth and time, mother's name, number of personal documents - these are the so-called personal data. However, any other data that together with one of the above data, is capable of identifying you, is also considered to be a personal data. Such may be, for example, your vehicle's data.
Some of the personal data is under special protection, for example health data. No special personal data is managed by Agrotex Kft.
Data management means any operation with personal data, such as collecting, storing, using, rendering, forwarding, modifying, linking with other data, deleting, or destroying data.
3. What are your data management rights?
The person concerned is entitled to:
- to request information about the management of his/her personal data,
- ask for personal data correction,
- ask to limit the managing of your personal data (to revoke your consent for some data processing or to change the requested contact form),
- ask for your personal data to be deleted (to fully withdraw your data management consent);
- Request your personal data to be transferred to another data manager (data portability).
You can exercise the rights listed above by submitting a statement through one of our company’s availabilities for the contact person, indicated in point I.
You may request information from our Company about your personal data. Our company responds in writing within 30 days upon request. The information is free of charge if the applicant has not yet filed a request to our company for information in the same area in the same year. Otherwise, the information will be provided against the reimbursement of the costs incurred.
The person concerned may apply for the correction of his managed data at our company, indicating the correct information. Our company makes corrections in its records and notifies the concerned party.
The concerned person can withdraw in writing his/her given consent in whole or partly regarding the data management without justification at any time. Upon notification of the withdrawal, our company immediately arranges for the discontinuation of the data management, and permanently deletes the personal data affected by the withdrawal from its register. Exceptions to this are personal data that our company can manage for the purpose of fulfilling the legal obligation or for a legitimate interest established by interest clearance, without the concent of the concerned person or even after the concerned person’s data withdrawal request.
In writing or in any other way, the concerned person may request our Company to forward our managed data of him/her to a third party data controller designated by the person concerned (data carrying). Our company will forward the data within 30 days of the request and notify the person concerned.
4. What to do if you have a complaint?
The person concerned at any time may complain about data processing with our Data Protection Contact. The contact details of our company's data protection contact point can be found at point I. of the Policy. The Data Protection Contactor investigates the complaints received within 30 days of receipt of the complaint, arranges it as necessary and notifies the person concerned of the outcome of the investigation and the measures taken.
In any case, we recommend that you submit your complaint or inquiry directly to our Company, at one of the above addresses, so that our Company can remedy any problems as soon as possible.
5. How do we protect personal information?
Our Company will take all necessary steps to ensure the safe and undamaged managing of data by protecting the confidentiality, integrity and availability of data. Confidentiality means that only persons who are eligible under this Policy have access to it. Integrity means that personal data must be accurate and appropriate for data management purposes. Accessibility means that authorized users can access the data if they need it for the purpose for which they are authorized.
Our Company had taken appropriate technical and organizational measures to protect your data against, data loss, manipulation or unauthorized access. The measures taken are regularly checked and updated according to the latest technological standards. If your privacy is compromised and this is likely to result in significant risks to your rights, we will notify you immediately, but preferably within 72 hours.
These principles are enforced by our Company and its processors by introducing appropriate hardware and software-based security measures (including access systems, locks, alarms, firewalls, etc.). The Data Manager shall ensure that no unauthorized person has access to, disclose, transmit, transmit, or modify or delete the data processed.
The electronic and manual recording, registration and retention of the data are done in accordance with the relevant regulations of our Company and any applicable data processor (s). The applicable policies contain detailed information on access to data.
Our company continuously monitors, maintains and updates its systems and software for data management.
IMPORTANT! Please be aware that you are responsible for the safe retention and secrecy of the user data and passwords provided or reported to you.
6. What data do we collect and manage?
Personal data will only be managed according to the applicable data protection regulations. Whenever you contact us, for example, you are requesting a quote, purchasing a product, or using a service, corresponding with us or filling in our contact form on our website, you acknowledge that we will manage the information you provide according to point VII. of this Policy.
When you visit our website, cookies automatically collect personal information. For more details, see https://www.agrotex.hu/cookie-tajekoztato
7. How long do we manage, store personal information?
Our company manages personal data as long as the purpose of the data management is applicable or until it is required by law. Simultaneously with the attainment of the purpose of the data management or when the statutory obligation is terminated or, if requested by the person concerned, the relevant personal data will be deleted or anonymized. Our Company reserves the right to discontinue data management with the exception of the data required to perform the service and to delete the data at an earlier date if data management is no longer necessary.
8. What third person do we pass on personal information?
Our company does not forward your personal data to countries outside the European Union and does not forward personal data to third parties for their own business purposes (for example, data miners or direct marketing companies). However, our Company may have to forward your specific data to different authorities or other data controllers or data processors for various reasons.
8.1. Forwarding to Authorities
Our company may be obliged to forward certain data to authorized authorities, such as the police, on the basis of statutory or regulatory requests. In the event of a privacy incident, that is, when the data processed by us are accidentally or unlawfully destroyed, lost, changed, unauthorized, communicated to third parties or unauthorizedly accessed by someone, the forwarding of certain data to the data protection authority may be necessary.
9. What are the legal bases and goals of our data management?
The processing of personal data is governed only by Regulation (EU) No 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data and by the repealing Directive 95/46 / EC (General Data Protection Regulation ) and Act CXII. of 2011 on Information Freedom of Information and Freedom of Information. (Info act) rules,
- related to the preparation and performance of the contract you intend to conclude with us (for example, if you are requesting a quote, buying or using a service);
- in the case of a legitimate interest of our Company (for example, contractual or non-contractual claims); or
- if you have explicitly contributed to managing your data for one or more specific purposes and ways.
Beyond the above, Our Company may also be required by law to manage certain data and to preserve it for a certain amount of time.
The following points describe the cases, rules, goals and data retention times of data processing on various legal grounds.
9.1. Data management related to the preparation and fulfilment of the contract
9.1.1. Asking for a quote or general interest about products or services
If you in any form (by telephone, email, online contact form or personally) are requesting or informing about the products or services we market, we will manage the information you provide.
The purpose of data management is to answer your requesting or informing.
Duration of data retention: if you have not consented to other types of contributory data management, your data will be stored for up to 12 months for the duration of the call for a quote or other request, or for 12 months after the termination of the contractual relationship.
If you are using a service at our company, we will manage your information (name, address, telephone number, e-mail address, tax ID).
The purpose of data management is to fulfill the service ordered by you.
Duration of data retention: if you have not consented to any other type of contributory data management, the data will be stored for a maximum of three years during the limitation period for any claims arising out of the fulfilment of the service (including the warranty service and the period of validity of your rights in case of erroneous delivery) .
Please note that we are required to keep the invoice and other accounting documents (together with the information contained therein) in accordance with the applicable accounting law (at most up to the end of the eighth year from the last day of the fiscal year of the bill issuance).
9.1.3. Buying a product
If you buy a product from our Company and require an invoice during payment, we will manage your account details (name, address, tax ID).
Primary producers’ data on the purchase note are managed (name, address, tax number, tax identification number, TAJ number, original producer ID number, FELIR ID, place of birth, date of birth, birth name, bank account number).
The purpose of data management is billing.
We do not store your data separately but please note that we are obliged to keep the invoice and other accounting documents (together with the data contained therein) in accordance with the applicable accounting legislation (currently at most up to the end of the eighth year from the last day of the business day of the bill issuance).
9.2. Data management based on legitimate interests of our company based on interest weighing
In some cases, the data subject's right to data protection and personal data and the legitimate interests of data controllers may seem to conflict. In such cases, data controllers may, by means of an interest analysis, come to the conclusion that data management is necessary to enforce legitimate interests. In such cases, however, the data controller is not entitled to data management beyond its legitimate interest or to bulk data management.
The legitimate interest established through interest measures can be varied, the following are information about the most commonly occurring such data management.
9.2.1. Measuring Customer Satisfaction
Customers can be contacted from time to time to assess how satisfied they are with our products and services sold by our Company.
The reason for data management is the continuous development of products and services, and a better assessment of customer needs.
Duration of data retention: 12 months after the request.
9.2.2. Non-Contractual Damage
In the event that a person harms our Company without any connection to his/her contract (s) with us, damage is caused by the customer to Agrotex Kft.’s property or if personal injury is caused, our company will manage the data during the claim for damages is in progress (name, address, telephone number, e-mail address).
The reason for data management is the validation of a legitimate claim.
Duration of data retention: the length of time required to enforce a claim or the limitation period of the claim or up to five years from the date on which the claim was made, whichever is the longest.
9.3. Automated decision making and profiling
Our company does not apply automated decision making or profiling.
9.4. New product offerings, promotions, newsletters
If the person concerned contributes to the management of our Company for the delivery of new products or newsletters, the Company's relevant data is managed separately for this purpose until the data management consent is withdrawn by the person concerned.
10. Who is eligible to learn about your information?
The managed data is accessable to the authorized employees of our company and the data processors designated in this Policy if the knowledge of the data is required to perform their duties.
11. Collection and processing of personal data
Personal information on the CXII 2011. Law on Information Self-determination and Freedom of Information can only be managed if you voluntarily communicate it to us (eg. requesting information, tenders or signing up for a newsletter) and consent to their management. If you are required to provide your personal information when using a product or service we offer, your personal data may not be merged with data from the access logging to an otherwise unnamed IP address to create a personal user profile.
During management of your data, no data is forwarded to third party - e.g. label publisher or direct marketing company.