Part I.

GENERAL INFORMATION

The protection of your data is a priority for our company.

To help you easily understand our data management, we’ve summarised this information in accordance with the kind of information we handle, to provide you with information about your rights and possibilities related to the security of your data, as well as tools we use for your safety.

Our Company takes all necessary measures to ensure security of personal data you provide, both during network communication and in the control and storage of data; we do not allow any access to third parties, only to the extent mentioned below.

For the clarity of our data management, we present separately the different types of data-handling.

Part II.

WHICH DATA IS PROCESSED AND WHY?

Contact:

On our website, you will find a contact box where you can send a message by email, ask questions or contact us for any other purpose. To do this, we ask for your name to properly address our answer to you, and to be able to identify the recipient in your reply to any central email you may have; for this, we need your email address to send the reply. The legal basis for the processing of data is your consent in this case. The data will be processed until consent is withdrawn, but no later than 1 year after the last exchange of letters. Then we will delete the data mentioned above from our contact list.

Sign up for newsletters:

By entering your name and email address, you can subscribe to the newsletter providing information about our new films, activities, ongoing programs and even sometimes other valuable programs that have a similar topic and view as ours, that we think might be of interest. The legal basis for processing your data is your consent in this case. The data will be processed until consent is withdrawn (unsubscribe). If you unsubscribe from this newsletter, we will delete your data from our newsletter database within 30 days.

System purchase messages:

In order to be able to follow the steps for completing our service, you and our data processor will send system messages to your email address, which is marked as a contact email address at the time of purchase. For example, confirmation of payment and sending an invoice etc. In this case, data management is necessary for provision of the service and we are entitled to manage the data by law. These system messages are recorded until the service is completed. However, this data will only be deleted after the expiration period of the service (5 years after termination of this service), given the legitimate interest that our company may subsequently need to certify the contractual performance to which this data may be required. In this case, data management is based on a data weighting test. Our company is using a data processor to send system messages and to store these data hosting service providers.

Billing data:

When you purchase, we need to request billing information, such as name, address, phone number, email, username and password, which can be used to connect and verify your purchase. In this case, we are required to provide the necessary information based on the statutory obligation to perform the service and to store it for a specified period of time in the relevant legislation. We use a data processor to create, store and manage invoices, which is required to handle data securely while processing it and transferring data to third parties. Data Processor: Észleny Kft. (address: 1162 Budapest, Sarkad u. 104, cgsz.:01-09-715677, tax number: 13037547-2-42).

PART III.

1. Who would have access to your data?

Our organisation, Tantra-Ecstasy Kft. (address: 2064 Csabdi, Béke u. 38., registration number: 01-09-180357, tax number: 24750709-2-07, email: info@tantra-ecstasy.com).

Within the organisation, only the management of the company and those employed who are in charge may have access to the personal data you provide.

2. Which data processors can check your data?

In addition to the data controller’s organisation, personal data provided by you is only accessible to Észlény Kft. (address: 1162 Budapest, Sarkad u. 104, cgsz.:01-09-715677, tax number: 13037547-2-42) as described above.

3. Which data controller do we forward data to?

For payment, we use the OTP payment platform where you can pay by using your bank card.

For this, our website redirects to OTP Mobile’s payment platform. At that time, our company is the technical implementation of the process for the purposes of point 3.2. to OTP Mobil Kft. Due to the redirection, we will not be able to access the bank card data you entered directly from OTP Mobil Kft. Accordingly, OTP Mobil Kft. is considered to be related to the payment controller.

3.1. Forwarding to:

Data Controller Name: OTP Mobil Kft.

Headquarters: 1093 Budapest, Közraktár utca 30-32.

Postal address: 1093 Budapest, Közraktár utca 30-32.

E-mail address: benyo.peter@otpmobil.hu

Website: https://www.otpmobil.hu/

3.2. Data affected by data transmission:

e-mail address, name, possibly business name (if this is the billing name and contains personal information), possibly billing address (if the account is under a private person’s name)

3.3. The legal basis for the transfer of data:

Data management is mandatory. This means that your consent is not necessary because the law gives us permission to handle the data.

The duration of the data processing is 5 years, recorded by the general conditions of use of OTP Mobil Kft.

3.5. Data Processing of OTP Mobil Kft

Further information on the data management of OTP Mobil Kft can be found at the following address

http://simplepartner.hu/SimpleFelhasznaloiASZF.html

PART IV.

DATA SECURITY

We inform you that we have taken technical and organisational measures and have established and operate rules necessary to ensure proper protection of your personal information.

The data stored in our system can be accessed by password authentication and access to data is linked to the authorisation level.

To avoid accidental deletion of data, we perform backups.

PART V.

YOUR RIGHTS TO DATA MANAGEMENT

1. Right to request information

Via the contact details given in part I. above you can contact us to ask for information about:

– what personal information we collect,
– on what legal basis we collect it,
– what is the purpose of data management,
– how do we source your personal data,
– how long do we handle your personal data and how do we handle it,
– to whom we give access to user personal data

Your application will be executed within a maximum of 30 days by sending a letter or e-mail to the contact you provide.

2. Right to correct your data

You can contact us through the contact details given in part I to modify your personal data (for example, you can change your email or mail address at any time). Your request will be completed by our company within 30 days and you will be informed about it by mail or email. If our company is not allowed to complete your request, we will notify you within the same deadline about the details by mail or email.

3. Right to erasure

You can contact us through the contact details given in part I to erase your personal data.

If your request for erasure can be met in compliance with our legal obligations (e.g. there are accountancy rules requiring us to keep the data for a certain period), our company will respond within 30 days and will notify you by email. If our company is unable to comply with your request, because of mandatory data processing, we will notify you within the same deadline as you were notified in your objection by mail/email.

4. Right to restriction on processing

You may, through the contact details given in part I, ask for a restriction on processing your personal data. The restriction will continue whilst there is a specific reason for this. You may, for example, request blocking your data if you believe that this was unlawfully handled by our company, but due to the official procedure initiated by yourself, our company cannot cancel your data stored, whilst this investigation is taking place. At that time, our company keeps your personal data and then deletes the data. Your request will be completed by our company within 30 days and will be sent to you by mail or email.

5. Right to objection

You can object (via the contact details given in point 1) if you observe and do not wish for your data to be used or transmitted by our company for direct business, public opinion polls or scientific research purposes. This requires initial consent from your part. Also, if you consider that receiving a newsletter from us breaches your data protection rights, then you can also object (NB, we do ask for your consent before sending out newsletters).

You may object to our data handling if you think that it is just for our legal interest that we need to handle that data or to fulfil a legal obligation on our part, except in the case of law delegated data management. For example, you cannot object to the processing of your statutory data due to regulations in accounting law.

If you object to our data management activity, we will investigate this and make a decision as quickly as possible within a maximum of 15 days. If you do not agree with our decision, or no decision has been taken within the given time limit, you will be entitled to apply for a ruling to change our decision within 30 days from the date of its delivery or from the date the specified deadline of 15 days ends.

It is necessary that you prove your identity in a credible way during all these procedures.

PART VI.

YOUR LICENSE OPPORTUNITY FOR YOUR DATA MANAGEMENT

If you have filed a request for correction, restriction, erasure or object to the processing of data but we have not been able to apply for you, you are entitled to apply to a court or authority.

You can also launch a procedure with the National Privacy and Data Protection Authority in Hungary (NAIH) if you experience a privacy breach. However, given that the NAIH also recommends that, if a problem arises, first contact the data controller to find a peaceful solution, please ask us if you have any problems or claims and we will be happy to assist you.

You can contact NAIH by contacting the Authority by e-mail at ugyfelszolgalat@naih.hu. You can search by mail at 1530 Budapest, Pf .: 5. You can find information on complaints procedures related to the exercising of specific rights of the person concerned by visiting the following link: https://www.naih.hu/panaszuegyintezes-rendje.html.

PART VII.

INFORMATION ABOUT THE COOKIES USED ON OUR WEBSITE

1. What are cookies?

A cookie is a hosted file by the web server on the visitor’s terminal (typically your computer or mobile phone) that stores information about the user, the work of the website or even the connection between the user and the webserver.

When downloading a site, the webserver often “works” using this information and thus improves user experience or provides services.

For example, cookies support us to find the optimal settings for the site by providing cookies with information about your activity on our website (for example, knowing which part of the site you spent most of your time).

2. Manage cookies

Most browsers automatically accept cookies. You can manage cookies in your browser’s settings: you can block or delete cookies.
If you want to read more about setting up your cookies, you can find more information on the browser you are using.