NEROFOX KFT PRIVACY POLICY
This Privacy Policy outlines the data processing practices, including the collection, storage, and use of data, on the website operated by Nerofox Kft. (registered office: 1056 Budapest, Váci utca 84. 4. em. 1. ajtó; company registration number: Cg.13-09-228765; tax number: 32343975-2-13, represented by Nimrod Olah), hereinafter referred to as the "Data Controller."
This Privacy Policy is effective from 07 November 2024. The Data Controller will ensure that the latest version of the Privacy Policy is available on the Website.
The Privacy Policy complies with Regulation (EU) 2016/679 of the European Parliament and the Council ("GDPR") and is also subject to Hungary's Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information ("the Information Act"). The definitions and provisions align with GDPR Article 4 and, where relevant, the interpretative provisions of Article 3 of the Information Act. Where not otherwise specified in this Policy, the GDPR and Information Act regulations will apply.
The Data Controller reserves the right to make extracts of this Privacy Policy or request users acknowledge understanding by signing, particularly for specific data processing operations. The Data Controller also reserves the right to amend this Policy. If an amendment affects personal data use, data subjects will be informed appropriately, such as through an email notification. In cases where changes impact data processing details, consent may be re-requested.
Please review the information carefully and only use the Website services if you agree to this Policy.
1. Principles of Data Processing
Nerofox Kft. is committed to safeguarding personal data and ensuring lawful, fair, and secure data processing practices. This includes adhering to the principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, limited retention, integrity, and confidentiality. These principles ensure that data is collected and processed solely for defined and legitimate purposes, securely, and retained only as long as necessary.
2. Data Processing Concepts
This Privacy Policy reflects GDPR’s definitions, supplemented by applicable Hungarian legal interpretations:
Data Processor: An individual or entity processing data on behalf of the Data Controller under contractual agreement.
Data Processing: Any operation performed on personal data, such as collection, recording, organization, storage, or deletion.
Data Destruction: Complete physical destruction of data media.
Data Erasure: Rendering data unrecognizable and non-recoverable.
Data Breach: Security breach leading to unauthorized data access or exposure.
3. Data Processing Methods and Security
The Data Controller will apply organizational and technical measures to protect personal data against unauthorized access, alteration, or loss. This includes secure storage of electronically processed data in compliance with GDPR and the Information Act.
4. Data Processing on the Website
4.1 Job Application Data Processing
Applicants may submit data via the Website for open positions.
Purpose: To evaluate applications and fill vacancies.
Data Scope: Name, email, and other personal data in the CV.
Legal Basis: Consent under GDPR Article 6(1)(a).
Storage: Data retained until position fulfillment or 90 days after application; longer if applicant consents to future job openings.
4.2 Facebook Page Data Processing
The Data Controller manages a Facebook page where visitor data is analyzed under joint control with Meta Platforms Ireland Ltd.
4.3 Contact Requests
Visitors can contact Nerofox Kft. via details on the Website.
Purpose: Responding to user inquiries.
Data Scope: Name, email, and any additional details provided.
Legal Basis: Consent under GDPR Article 6(1)(a).
4.4 Cookies
Nerofox Kft. uses cookies to enhance user experience. Detailed information is available at [insert link].
5. Data Processors
Data processors act on the Data Controller’s instructions and may not make independent decisions. Nerofox Kft. works with the following data processors:
Hosting: AWS
Statistics and Marketing: Google Analytics
6. Data Subject Rights
Data subjects can exercise rights related to their personal data by contacting Nerofox Kft. These rights include access, rectification, erasure, restriction, and objection to processing.
7. Legal Remedies
In case of any concerns or complaints, data subjects may contact Nerofox Kft. directly or lodge a complaint with Hungary’s National Authority for Data Protection and Freedom of Information (contact details provided above).
This Privacy Policy ensures that all data subjects are informed of their rights and the Data Controller’s responsibilities in safeguarding personal data.