Privacy Policy

1. Purpose of this privacy policy

Fiatal Farkas Főnök Harcművészeti és Életmód Sportegyesület (hereinafter: Service Provider, Data Controller), as data controller, considers the contents of this legal notice binding upon itself. It undertakes that all data processing related to its activities complies with the expectations set out in this policy, the applicable national legislation, and the legal acts of the European Union.

The data protection guidelines related to the data processing activities of ywc.hu are continuously available at https://ywc.hu/adatkezelesi-tajekoztato. The data controller reserves the right to modify this notice at any time. Naturally, visitors will be informed of any changes in due time. If you have any questions regarding this notice, please contact us and a colleague will answer your question.

The data controller is committed to protecting the personal data of its clients and partners, and considers the respect of its clients’ right to informational self-determination especially important. The data controller handles personal data confidentially and takes all security, technical and organizational measures necessary to guarantee the safety of the data.

2. Details of the data controller

If you wish to contact our organization, you may do so via email at youngwolfchief@gmail.com. The data controller retains all incoming emails and the personal data contained in them until the data subject requests deletion.

Name

Lelekács Csaba

Registered office

1112 Budapest, Törökbálinti út 50/A.

Email

youngwolfchief@gmail.com

2.1. Data protection officer

Email

youngwolfchief@gmail.com

3. Scope of processed personal data

3.1. Technical data

When handling personal data, the data controller selects and operates the IT tools used in providing the service so that the processed data:

• is accessible to those authorized to access it (availability);
• has ensured authenticity and authentication (credibility of data processing);
• has verifiable integrity (data integrity);
• is protected against unauthorized access (confidentiality of data).

The data controller protects data by appropriate measures against unauthorized access, alteration, transmission, disclosure, deletion or destruction, as well as against accidental destruction. The data controller ensures a level of protection appropriate to the risks associated with data processing through technical, organizational and administrative measures.

During data processing, ywc.hu preserves:

• confidentiality: protecting information so that only authorized persons can access it;
• integrity: protecting the accuracy and completeness of information and the processing method;
• availability: ensuring that when an authorized user needs the information, it is actually accessible and the necessary tools are available.

3.2. Cookies

3.2.1. The purpose of cookies

• collect information about visitors and their devices;
• remember visitors’ individual settings, which may be used, for example, during online transactions so they do not need to be entered again;
• make the website easier to use;
• provide a better user experience.

For personalized service, the website places a small data package, a so-called cookie, on the user’s computer and reads it back during a later visit. If the browser sends back a previously saved cookie, the cookie manager may connect the user’s current visit with previous ones, but only with respect to its own content.

3.2.2. Strictly necessary session cookies

The purpose of these cookies is to allow visitors to browse the ywc.hu website fully and smoothly, use its functions, and access the services available there. This type of cookie remains valid until the browsing session ends and is automatically deleted from the computer or other browsing device when the browser is closed.

3.2.3. Third-party cookies (analytics)

The ywc.hu website also uses third-party cookies provided by Google Analytics. By using Google Analytics, a statistical service, the website collects information about how visitors use the pages. The data is used to improve the website and enhance the user experience. These cookies remain on the visitor’s computer or other browsing device, in the browser, until they expire or until the visitor deletes them.

In addition, our website may in some cases contain features of other social networks. These functions operate in a way that allows them to read cookies and, in some cases, place social network cookies on your device. These cookies may enable personalized advertising. As data controllers, we do not have access to these cookies or the data collected through them, but we would still like to inform you about these elements and request your consent to their use.

Accordingly, the social cookies of the following service providers may appear on the website:

• Facebook – The provider’s privacy-related principles and policies are available at the following links:
  https://www.facebook.com/policies/cookies/
  https://www.facebook.com/about/privacy/update
• Google
  https://policies.google.com/privacy
• YouTube
  https://www.youtube.com/intl/hu/yt/about/policies/
• Instagram
  https://help.instagram.com/155833707900388

3.3. Data related to online orders

• Last name – mandatory
• First name – mandatory
• Shipping address data – mandatory
• Email address – mandatory
• Phone number – mandatory
• Billing address – mandatory
• Billing name – mandatory

3.4. Data related to newsletters

• First name
• Email address
• Acceptance of this Privacy Policy
• Consent to receive marketing emails

4. Purpose, method and legal basis of data processing

4.1. General data processing principles

The data processing activities of ywc.hu are based on voluntary consent or statutory authorization. In the case of data processing based on voluntary consent, data subjects may withdraw their consent at any stage of the processing. In certain cases, legislation requires the processing, storage or transfer of specific data, and our clients will be informed of this separately.

We draw the attention of those providing data to ywc.hu that if they provide personal data other than their own, it is their responsibility to obtain the consent of the data subject. The principles of data processing are in line with the applicable legislation on data protection, including in particular:

• Act CXII of 2011 on the right to informational self-determination and freedom of information;
• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation – GDPR);
• Act V of 2013 on the Civil Code;
• Act C of 2000 on Accounting;
• Act LIII of 2017 on the prevention and combating of money laundering and terrorist financing;
• Act CCXXXVII of 2013 on credit institutions and financial enterprises.

5. Physical storage locations of data

Your personal data (that is, any data that can be linked to your person) may come into our possession in the following ways: on the one hand, technical data connected to the maintenance of the internet connection, your computer, browser software, internet address and the pages you visit are automatically generated in our IT system; on the other hand, you may also provide your name, contact details or other information if you wish to contact us personally while using the website.

During system operation, the following data is technically recorded: data generated by the user’s computer during browsing and recorded by the ywc.hu system as an automatic result of technical processes. Data automatically recorded is logged by the system upon entry and exit without any separate declaration or action by the user. This data cannot be linked to other personal user data, except where this is required by law.

6. Rights of data subjects and remedies

The data subject may request information about the processing of their personal data and may request the correction or, except for mandatory processing, deletion or withdrawal of their personal data, and may exercise their right to data portability and objection in the manner indicated when the data was collected or through the contact details above.

6.1. Right to information

The data controller shall take appropriate measures to provide data subjects with all information referred to in Articles 13 and 14 of the GDPR and all information under Articles 15–22 and 34 concerning the processing of personal data in a concise, transparent, intelligible and easily accessible form, using clear and plain language.

6.2. Right of access

The data subject has the right to receive confirmation from the data controller as to whether personal data concerning them is being processed, and, where that is the case, access to the personal data and the following information: the purposes of processing; the categories of personal data concerned; the recipients or categories of recipient to whom the personal data has been or will be disclosed, including in particular recipients in third countries or international organizations; the planned retention period; the right to rectification, erasure or restriction of processing and the right to object; the right to lodge a complaint with a supervisory authority; information on the data source; and the fact of automated decision-making, including profiling, as well as meaningful information about the logic involved and the significance and expected consequences of such processing. The data controller shall provide the information within no more than one month of the request.

6.3. Right to rectification

The data subject may request the correction of inaccurate personal data concerning them and the completion of incomplete data processed by the data controller.

6.4. Right to erasure

The data subject has the right to obtain from the data controller the erasure of personal data concerning them without undue delay where one of the following grounds applies:

• the personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed;
• the data subject withdraws consent on which the processing is based and there is no other legal ground for processing;
• the data subject objects to the processing and there are no overriding legitimate grounds for the processing;
• the personal data has been unlawfully processed;
• the personal data must be erased for compliance with a legal obligation in Union or Member State law applicable to the data controller;
• the personal data has been collected in relation to the offer of information society services.

Erasure of data cannot be initiated if processing is necessary:

• for exercising the right of freedom of expression and information;
• for compliance with a legal obligation requiring processing under Union or Member State law applicable to the data controller, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
• for reasons of public interest in the area of public health, or for archiving, scientific and historical research or statistical purposes;
• for the establishment, exercise or defense of legal claims.

6.5. Right to restriction of processing

At the request of the data subject, the data controller shall restrict processing if one of the following conditions is met:

• the data subject contests the accuracy of the personal data, for a period enabling the data controller to verify the accuracy of the personal data;
• the processing is unlawful and the data subject opposes erasure and requests the restriction of use instead;
• the data controller no longer needs the personal data for processing purposes, but the data subject requires it for the establishment, exercise or defense of legal claims;
• the data subject has objected to processing, pending the verification whether the legitimate grounds of the controller override those of the data subject.

Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent, for the establishment, exercise or defense of legal claims, for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or of a Member State.

6.6. Right to data portability

The data subject has the right to receive the personal data concerning them, which they have provided to the data controller, in a structured, commonly used and machine-readable format, and to transmit those data to another controller.

6.7. Right to object

The data subject has the right to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them which is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or for the purposes of legitimate interests pursued by the controller or by a third party, including profiling based on those provisions. In the event of an objection, the data controller shall no longer process the personal data unless it demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or which relate to the establishment, exercise or defense of legal claims.

6.8. Automated decision-making in individual cases, including profiling

The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them.

6.9. Right to withdraw consent

The data subject has the right to withdraw their consent at any time.

6.10. Right to go to court

If the data subject’s rights are violated, they may bring a claim against the data controller before a court. The court shall act with priority in such cases.

6.11. Data protection authority procedure

You may lodge a complaint with the National Authority for Data Protection and Freedom of Information (NAIH):

Name

National Authority for Data Protection and Freedom of Information (NAIH)

Registered office

1125 Budapest, Szilágyi Erzsébet fasor 22/C.

Mailing address

1530 Budapest, Pf.: 5.

Phone

+36 1 391 1400

Fax

+36 1 391 1410

Email

ugyfelszolgalat@naih.hu

Website

www.naih.hu

7. Other provisions

We provide information on data processing not listed in this notice at the time the data is collected. We inform our clients that the court, the prosecutor, the investigating authority, the misdemeanour authority, the administrative authority, the National Authority for Data Protection and Freedom of Information, the Hungarian National Bank, and other bodies authorized by law may contact the data controller for the provision of information, communication, transfer of data, or making documents available.

ywc.hu shall disclose personal data to authorities only to the extent and in the amount strictly necessary to achieve the purpose of the request, provided that the authority has specified the exact purpose and the scope of the data requested.