DATA PROTECTION INFORMATION
(for our guests and the visitors of the website)
Data Manager
Name: Krisztina Király
Premise: 8174. Balatonkenese, Bocskai utca 19.
Company Registration Number: 55547833
Tax number: 72293623-1-39
Represented by: Krisztina Király
Phone: 00 36 70 566 5769
E-mail: kriszti@kamillavilla.hu
Website: www.kamillavilla.hu
DATA MANAGEMENT RELATED TO HOTEL RESERVATIONS
| Scope of managed personal data | addressing; surname and first name; address (country, postal code, city, street, house number); telephone number; e-mail address; |
| The purpose of data management
|
to make booking easier, cost-free and more efficient.
|
| The legal basis for data handling
|
the prior consent of the person reserving the accommodation [Article 6. Par. (1) Section a) of the GDPR], the need to take action upon the request of the concerned Party before the conclusion of the contract between the Data Manager and the concerned Party [GDPR Article 6. Par. (1) Section b)].
|
| The duration of data management:
|
two years after the last day of the reservation date.
|
| Use of data processor
|
our company uses the services of an information technology service provider for the online accommodation system as follows.
Rackhost Zrt. 6722. Szeged, Tisza Lajos körút 41. Closed Guest Information Database (VIZA Vendéginformációs Zárt Adatbázis)
|
DATA MANAGEMENT RELATED TO SERVICE PROVISION AND INVOICING
| Scope of managed personal data
|
addressing; surname and first name; address (country, postal code, city, street, house number); telephone number; e-mail address; company name and registered office in case of economic entities, bank card number, SZÉP card data (identification, name on card), representative, contact person name, e-mail address and telephone number. |
| The purpose of data management | the purpose of the data management is to use the services provided by Kamilla Villa by the person concerned, to determine the counter value and to invoice.
|
| The legal basis for data handling
|
the need to perform a contract in which the party concerned is one party according to [Article 6 Par. (1) Section b) of the GDPR] and Article 69 of Act C of the Year 2000 Act on Accounting § (1) and (Article 6 (1) (c) and [Article 6 Par. (1) Section c) of the GDPR]
|
| The duration of data management |
5 years starting on the date when the concerned person hands over the personal information and from the accomplishment of the agreement (term of limitation). In the case of issuing the invoice, the duration of the data processing is 8 years from the date the concerned party hands over the personal information and from the date of the preparation of the report, business report and accounting prepared for the given business year.
|
| Use of data processor
|
we use the services of an accountant for the invoicing as follows. Investment Holding Kft.
Diósd, Gárdonyi Géza utca 29.
|
Rights of the person concerned
a) may request information on the processing of his/her personal data or to access these personal data,
b) may request the rectification of the data,
c) may request the deletion thereof,
d) in case the conditions of GDPR Article 18. are met, he/she may request the limitation of the processing of the personal data (which means that our company does not delete or destroy the data until a court or official order, but only for maximum 30 days, and beyond this the company shall not process the data for any other reasons),
e) may object to the processing of personal data,
f) exercise his/her right for data transmission. Under the latter law, the concerned person is entitled to receive his/her personal data in a word or excel format, and he/she is further entitled to ask the data to be forwarded by our company to another data processor.
Other information about data processing
We will take all necessary technical and organizational measures to avoid any possible privacy incidents (e.g. damage, loss of files containing personal information and to prevent unauthorized access). In the event of an incident occurring, we keep a record of the necessary measures and in order to be able to inform the concerned persons, which includes the circle of the given personal data, the circle and number of the people affected by the data protection incident, the time of the data protection incident, its circumstances, effects and the measures taken to remedy the data protection incident, and all other data specified in the law governing the data management.
Enforcement of right
The data subjects shall have the right to enforce their rights based on Act V of 2013 on the Civil Code and Act CXII of 2011 on Informational Self-Determination and Freedom of Information in front of a court or may turn to the Hungarian National Authority for Data Protection and Freedom of Information:
Hungarian National Authority for Data Protection and Freedom of Information
Address: 1125 Budapest, Falk Miksa utca 9-11.
Telephone: +36 1 391 1400
Facsimile: +36 1 391 1410
E-mail: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu/
In the case of opting for turning to court the lawsuit may be initiated in front of the court according to the place of residence or stay of the data subject – to the discretion of the data subject User – since judging the case falls within the scope of competence of the court of law.
19 January 2022.
