Privacy policy

At l2g.hu, we take data protection seriously. Our data protection notice clearly outlines how we handle your personal data. We adhere to data protection laws and employ numerous security measures to protect your data. The notice provides information on the rights you have regarding your data and how to access them.

Data Controller

Name: IntrAgile Kft.

Registered Office: 7700 Mohács, Kossuth Lajos Street 101, Ground Floor 5. door, Hungary

Mailing Address, Complaint Handling: 7700 Mohács, Kossuth Lajos Street 101, Ground Floor 5. door, Hungary

Email: [email protected]

Telephone: +36 30 283 8280

Website: https://l2g.hu

Hosting Provider

Name: Contabo GmbH

Mailing Address: 81549 München, Aschauer Straße 32a, Germany

Email Address: [email protected]

Telephone: +49 (89) 3564717-71

Description of Data Processing Activities During Website Operation

This document contains all relevant data processing information related to the operation of the webshop, based on the General Data Protection Regulation (Regulation (EU) 2016/679, henceforth: GDPR) and Act CXII of 2011 on Informational Self-determination and Freedom of Information (henceforth: Info Act).

Information on the Use of Cookies

What is a cookie?

The Data Controller uses so-called cookies during the visit to the website. A cookie is a package of information made of letters and numbers sent by our website to your browser with the aim to save certain settings, facilitate the use of our website, and contribute to collecting some relevant, statistical type of information about our visitors.

Some cookies do not contain personal information and are not capable of identifying the individual user, while others contain a unique identifier - a secret, randomly generated sequence of numbers - that is stored on your device, thereby ensuring your identifiability. The operational lifespan of each cookie is described in the respective descriptions of the cookies.

Legal background and basis of cookies

Essentially, we distinguish between three types of cookies: cookies essential for operation, which serve the proper functioning of the Website; statistical cookies; and marketing cookies.

The legal basis for data processing for statistical and marketing cookies is your consent, according to Article 6(1)(a) of the GDPR, and for cookies essential for operation, it's the legitimate interest of ensuring the functionality of the Website, according to Article 6(1)(f) of the GDPR.

Main characteristics of the cookies used by the website

Cookies essential for operation

If you do not accept the use of these cookies, some features may not be available to you.

Strictly necessary cookies

These cookies are indispensable for the use of the website and enable the basic functions of the website. Without these, many functions of the site will not be available to you. The lifespan of these types of cookies is limited only to the session duration.

Session cookies

These cookies store the visitor's location, browser language, and currency of payment, their lifespan ends upon closing the browser or after a maximum of 2 hours.

Statistical cookies

Google Analytics cookies

Google Analytics is Google's analysis tool that helps website and app owners to get a more accurate picture of their visitors' activities. The service may use cookies to collect information and report on statistical data regarding the use of the website without individually identifying visitors to Google. The main cookie used by Google Analytics is the "__ga" cookie. In addition to generating reports on website usage statistics, Google Analytics, along with some advertising cookies described above, can be used to display more relevant ads on Google products (like Google Search) and across the web.

Cookies improving user experience

These cookies collect information about the user's use of the website, such as which pages are visited most frequently or what error message the website may give. These cookies do not collect identifying information about the visitor, i.e., they work with completely general, anonymous information. The data obtained from them are used to improve the performance of the website. The lifespan of these types of cookies is limited only to the session duration.

Marketing cookies

Google Adwords cookies

When someone visits our site, the visitor's cookie ID is added to the remarketing list. Google uses cookies, such as NID and SID cookies, to customize ads in Google products, like Google Search. These cookies are used to remember your most recent searches, your previous interactions with an advertiser's ads or search results, and your visits to an advertiser's website. AdWords conversion tracking uses cookies to track sales and other conversions from an ad, storing cookies on the user's computer when the person clicks on an ad. Some common uses for cookies include selecting ads based on what's relevant to a user, improving reporting on campaign performance, and avoiding showing ads the user has already seen.

Remarketing cookies

May appear to previous visitors or users who are browsing other websites on the Google Display Network or searching for terms related to your products or services.

Facebook pixel (Facebook cookie)

The Facebook pixel is a code that helps create reports on conversions, build audiences and provides the site owner with detailed analytics about the use of the website by visitors. With the help of the Facebook pixel, personalized offers and ads can be displayed to website visitors on the Facebook platform. You can study the Facebook data policy here: https://www.facebook.com/privacy/explanation

 

Google Consent Mode v2

The Data Controller has integrated the Google Consent Mode version 2 into its website and ensures the management of consents and rejections through the cookie panel based on the new version. Based on Google Consent Mode v2, in addition to the previous two flags (analytics_storage, ad_storage), Google uses two additional flags which serve the storage and reading of cookies for statistical and advertising purposes:

  • ad_user_data: Any user data can be sent to Google for advertising purposes.
  • ad_personalization: User data can be used for personalized advertising purposes, such as remarketing.

The operation of these two switches serves to allow the storage and reading of cookies for statistical and advertising purposes.

Registration on the Website

By storing the data provided during registration, the Data Controller can provide a more convenient service (e.g., the data of the concerned party does not have to be re-entered for a new purchase). Registration is not a condition for entering into a contract.

Data Processed

The Data Controller processes your name and email address during data processing.

Duration of Data Processing

Until the withdrawal of your consent.

Legal Basis for Data Processing

Your voluntary consent, which you provide to the Data Controller by registering [Data processing according to Article 6(1)(a) of the Regulation]

Contact

If you contact us with questions about a service, for example, via email, a contact form, or by phone.

Data Processed

The data you provide during the contact.

Duration of Data Processing

The data is processed only until the contact has concluded.

Legal Basis for Data Processing

Your voluntary consent, which you provide to the Data Controller by making contact. [Data processing according to Article 6(1)(a) of the Regulation]

Marketing Data Processing

Data Processing Related to Newsletter Distribution

The data processing operation is carried out for the purpose of sending out newsletters.

Data Processed

Name, email address, country

Duration of Data Processing

Until the withdrawal of the concerned party's consent.

Legal Basis for Data Processing

Your voluntary consent, which you provide to the Data Controller by subscribing to the newsletter [Data processing according to Article 6(1)(a) of the Regulation]

Remarketing

Data processing as a remarketing activity is carried out with the help of cookies.

Data Processed

The data managed by the cookies specified in the cookie policy.

Duration of Data Processing

The storage duration of the given cookie, more information is available here:

General cookie information by Google: https://www.google.com/policies/technologies/types/

Google Analytics information: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage

Facebook information: https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen

Legal Basis for Data Processing

Your voluntary consent, which you provide to the Data Controller by using the website [Data processing according to Article 6(1)(a) of the Regulation]

Additional Data Processing

If the Data Controller intends to perform further data processing, it will provide prior information about the essential circumstances of the data processing (legal background and basis of data processing, the purpose of data processing, the scope of data processed, the duration of data processing).

Recipients of Personal Data

Data Processing Aimed at Storing Personal Data

Name of the data processor: Contabo GmbH

Contact details of the data processor:

Email address: [email protected]

Telephone number: +49 (89) 3564717-71

Registered office: 81549 München, Aschauer Straße 32a, Germany

Website: https://www.contabo.com

The Data Processor performs the storage of personal data based on a contract with the Data Controller. The Data Processor is not entitled to access the personal data.

Data Processing Activities Related to Newsletter Sending

Name of the company operating the newsletter system: SalesAutopilot

Headquarters of the company operating the newsletter system: 1016 Budapest, Zsolt street 6/A. 5th floor 1., Hungary

Phone number of the company operating the newsletter system: +36 (1) 490 0172

Email address of the company operating the newsletter system: [email protected]

Website of the company operating the newsletter system: https://www.salesautopilot.hu

The Data Processor assists in sending newsletters based on a contract with the Data Controller. In this process, the Data Processor handles the concerned party's name and email address to the extent necessary for sending the newsletter.

Your Rights During Data Processing

During the duration of data processing, you are entitled to the following rights according to the Regulation:

  • The right to withdraw consent
  • Access to personal data and related information
  • The right to rectification
  • Restriction of processing
  • The right to erasure
  • The right to object
  • The right to data portability.

If you wish to exercise your rights, it will involve your identification and necessarily communication from the Data Controller. Therefore, for identification purposes, you will need to provide personal data (but identification can only be based on data that the Data Controller otherwise processes about you), and your complaints related to data processing will be accessible in the Data Controller's email account within the timeframe specified in this notice for complaints.

Complaints related to data processing will be responded to by the Data Controller within 30 days at the latest.

The right to withdraw consent

You are entitled to withdraw your consent to data processing at any time, in which case the provided data will be deleted from our systems. However, please note that in the case of an unfulfilled order, the withdrawal may result in our inability to fulfill the delivery to you. Furthermore, if the purchase has already been made, we cannot delete the billing-related data from our systems due to accounting regulations, and if you have an outstanding debt to us, we may process your data based on a legitimate interest for debt collection even after withdrawal of consent.

Access to personal data

You are entitled to receive feedback from the Data Controller on whether your personal data is being processed, and if such processing is taking place, you are entitled to:

  • access the processed personal data and
  • be informed by the Data Controller of the following information:
    • the purposes of data processing;
    • the categories of personal data about you;
    • information on the recipients or categories of recipients with whom the personal data have been or will be shared;
    • the planned duration of storage of personal data, or if that is not possible, the criteria used to determine that period;
    • your right to request from the Data Controller the rectification, erasure of personal data, or restriction of processing of personal data concerning you, and to object to such processing in case of data processing based on legitimate interests;
    • the right to lodge a complaint with a supervisory authority;
    • if the data were not collected from you, any available information as to their source;
    • the fact of automated decision-making (including profiling), if any, and at least in those cases, meaningful information about the logic involved, as well as the significance and the expected consequences of such processing for you.

The purpose of exercising the right may be to establish and verify the legality of processing, so in the case of multiple information requests, the Data Controller may charge a reasonable fee for providing the information.

Access to personal data is provided by the Data Controller by sending the processed personal data and information via email after your identification. If you have a registration, access is provided by allowing you to view and check the personal data about you by logging into your user account.

Please specify in your request whether you are requesting access to personal data or information related to data processing.

The right to rectification

You are entitled to have the Data Controller rectify any inaccurate personal data concerning you without undue delay.

Right to restriction of processing

You have the right to obtain from the Data Controller restriction of processing where one of the following applies:

  • You contest the accuracy of the personal data, for a period enabling the Data Controller to verify the accuracy of the personal data;
  • The processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
  • The Data Controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims;
  • You have objected to processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of the Data Controller override those of yours.

Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

The Data Controller will inform you before the restriction of processing is lifted.

Right to erasure ("Right to be forgotten")

You have the right to obtain from the Data Controller the erasure of personal data concerning you without undue delay where one of the following grounds applies:

  • The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • You withdraw consent on which the processing is based, and there is no other legal ground for the processing;
  • You object to the processing based on legitimate interests, and there are no overriding legitimate grounds for the processing;
  • The personal data have been unlawfully processed;
  • The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the Data Controller is subject.

If the Data Controller has made the personal data public and is obliged to erase the personal data, taking account of available technology and the cost of implementation, it shall take reasonable steps, including technical measures, to inform other data controllers processing the personal data that you have requested the erasure by such data controllers of any links to, or copy or replication of, those personal data.

Erasure does not apply where processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation which requires processing by Union or Member State law to which the Data Controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller, for reasons of public interest in the area of public health, for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, or for the establishment, exercise or defence of legal claims.

Right to object

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you based on legitimate interests, including profiling. The Data Controller shall no longer process the personal data unless the Data Controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

If personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.

Right to data portability

Where processing is based on consent or on a contract, and the processing is carried out by automated means, you have the right to receive your personal data, which you have provided to the Data Controller, in a structured, commonly used and machine-readable format. You also have the right to transmit those data to another controller without hindrance from the Data Controller to which the personal data have been provided, where technically feasible.

Automated individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. The Data Controller must implement suitable measures to safeguard your rights and freedoms and legitimate interests, including the right to obtain human intervention on the part of the Data Controller, to express your point of view, and to contest the decision.

This shall not apply if the decision:

  • Is necessary for entering into, or performance of, a contract between you and the Data Controller;
  • Is authorised by Union or Member State law to which the Data Controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
  • Is based on your explicit consent.

In cases where decisions are based on explicit consent or are necessary for the performance of a contract, the Data Controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the Data Controller, to express your point of view and to contest the decision.

If you wish to exercise any of these rights, or if you have any questions or concerns regarding the processing of your personal data, you should contact the Data Controller directly. Remember, your rights ensure you have control over your personal data in the digital age, enabling you to protect your privacy effectively.

Registration in the Data Protection Registry

According to the provisions of the Info Act, the Data Controller had to register certain data processing activities in the data protection registry. This obligation to report ceased on May 25, 2018.

Data Security Measures

The Data Controller declares that it has taken appropriate security measures to protect personal data against unauthorized access, alteration, transmission, public disclosure, deletion or destruction, and against accidental destruction, damage, and becoming inaccessible due to changes in the applied technology.

The Data Controller does everything within its organizational and technical capabilities to ensure that the Data Processors also implement appropriate data security measures when working with your personal data.

Remedies

If you believe that the Data Controller has violated any legal provision on data processing or has not fulfilled any request, you may initiate an investigative procedure with the National Authority for Data Protection and Freedom of Information to cease the alleged unlawful data processing (mailing address: 1363 Budapest, Pf. 9., email: [email protected], phone numbers: +36 (30) 683-5969, +36 (30) 549-6838, +36 (1) 391 1400).

We also inform you that in case of violation of the legal provisions on data processing, or if the Data Controller has not fulfilled any request, you may file a civil lawsuit against the Data Controller in court.

Amendment of the Data Processing Information

The Data Controller reserves the right to modify this data processing information in a manner that does not affect the purpose and legal basis of the data processing. By using the website after the modification becomes effective, you accept the amended data processing information.

If the Data Controller intends to carry out further data processing for a purpose different from the purpose of the collection of the data, it will inform you of the purpose of the data processing and the following information before such further processing:

  • the duration of the storage of personal data, or if that is not possible, the criteria used to determine that period;
  • your right to request access to and rectification or erasure of personal data or restriction of processing concerning you, and to object to processing as well as the right to data portability in case the processing is based on consent or on a contractual relationship;
  • if the processing is based on consent, that you may withdraw consent at any time;
  • the right to lodge a complaint with a supervisory authority;
  • whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, and whether you are obliged to provide the personal data and the possible consequences of failure to provide such data;
  • the existence of automated decision-making, including profiling, and, at least in those cases, meaningful information about the logic involved, as well as the significance and the expected consequences of such processing for you.

Data processing can only commence following this, and if the legal basis for data processing is consent, in addition to being informed, you must also give your consent.