Ha lenne bármilyen kérdésed, nyugodtan lép velünk kapcsolatba!
Thank you for your confidence in choosing Ticketninja to organize and run your event. Below we would like to draw your attention to the privacy requirements of the operation of Ticketninja. The framework for the protection of personal data is contained in Act CXII of 2011 on the Right to Information and the Freedom of Information. and Regulation 2016/679 of the European Parliament and of the Council (EU) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Regulation 95/46 / EC (General Data Protection Regulation, GDPR). Our company strives to ensure that the products we develop also provide all the features that may be required to comply with GDPR.
Personal Data Any data relating to an identified or identifiable natural person (data subject). For example, personal information includes your name, address, date of birth, the content of the message sent to us, or the details of your order.
Non-natural person data is not considered personal data. That is, information about a company, institution, public office, association (such as company name, contact information, or order information from a company) is not covered by personal data. Also excluded is data where the data subject is not identifiable, ie anonymous or statistical data.
According to the GDPR, it is the data controller who determines the purposes and means of the processing of personal data, individually or jointly with others. In the case of Ticketninja, your company / institution qualifies as a data controller when collecting, using or transmitting personal data of users. As a result, it is your responsibility and responsibility to properly configure the system, properly inform the stakeholders (whose personal information is processed by the system), and make and obtain the necessary statements of consent.
Please note that the user data stored in the system and the data requested and provided by you for your event are also used by Szintézis-Net Kft., Therefore they are also considered as data controllers for certain data. Synthesis-Net informs users about this fact and about data management on Ticketninja’s website.
According to the GDPR, a data processor is the person who handles personal data on behalf of the data controller. Szintézis-Net Kft. Shall be considered as a data processor in the course of its operation, if it carries out data processing operations on your behalf (read, store, transmit, analyze, delete or modify them) on personal data. In this capacity, Szintézis-Net Kft. Hereby certifies that in the course of the processing of personal data, it shall act in accordance with the applicable data protection laws, and shall at all times ensure the confidentiality, integrity and availability of the personal data. Operations on personal data shall be carried out only on the instructions of the sponsor, and personal data obtained in the course of this activity shall be deleted immediately after the successful completion of the activity, unless it is no longer needed.
Organizers are required to inform participants about the data management that is specifically requested from users in addition to user registration. If such additional information is required for the organization, successful conduct of the event, or the participation of the user (eg, the user responds to and submits to several parallel programs), the user is only required to be informed of such data management without consent; as data processing is necessary here for the proper performance of the contract. Any request for information other than for the purpose of the event or appropriate participation requires the explicit, informed and informed consent of the user. The user can also express his consent by checking the checkbox.
Please note that in the case of consent based data processing, consent can only be legally given through one explicit, actionable act. “No protest” and the pre-ticked checkbox do not constitute legal consent. You may not be required to consent to the management of optional data beyond what is required to provide the service.
The Organizer may use personal data provided by users only for the purpose for which they have been provided and for which the Organizer has previously informed them. Inform users of any use other than the original purpose
The organizer may only store user-provided data for the purpose of organizing the event for as long as is necessary for the original purpose of data management (event organization, conducting, billing, etc.). After that, the organizer is obliged to destroy the personal data obtained.
The Organizer shall take appropriate organizational and technical measures to protect the confidentiality, integrity and availability of the personal data in its possession from any intentional or negligent human behavior, omission, malicious act, unavoidable external circumstance, elemental strike or other event. Users should, however, be aware that any network, server, database, internet or email connection may not be completely free from any errors that may occur and should pay special attention to this when publishing personal information.
Szintézis-Net Kft. Has the right to transfer personal data to its personal data processing partners to carry out certain business functions, including marketing, database management, back-up and disaster recovery, and contracted businesses providing e-mail services. These addressees are considered to be data processors under data protection law. The data processor only performs his / her duties on the instructions of the Company, and can not make any independent decisions regarding the management of your personal data. The Company has ascertained in advance that the data processor is established within the European Union and provides adequate guarantees that the data processing it manages is in compliance with the data protection laws of Hungary and the European Union. The data processor has provided the Company with the appropriate guarantees that it applies and maintains data security measures to ensure the confidentiality, integrity and availability of the personal data it manages.
In addition to the aforementioned, the Company may only transmit your personal data to a court or other authority in cases set forth by law, upon an official request, or statutory requirements.
For the purpose of preventing future disputes or in the event of a dispute, in order for the Company to be able to prove the facts, the Company may retent personal data after the failure to conclude a contract, the performance of the contract or the termination of the contract, for five years after the failure of the contract or five years from the termination of the contract in accordance with the general rules of limitation of Act V of 2013. on the Civil Code of Hungary. The purpose of the data handling under this clause is to enable the Company to enforce or defend the rights and claims of the Company arising from the contract in the event of such legal claims and claims being filed.
The Company is required to store the personal data of your billing or ordering in accordance with the applicable accounting and tax laws.
The Company keeps personal information handled with your consent as long as it is required to accomplish the purpose of the data management or as long as you do not request the deletion of your personal information. Your account created by Ticketninja and its related data will be retained by Szintézis-Net Ltd. until your account is deleted or is requested to be deleted.
Szintézis-Net Kft. handles the personal data personally or by contracted partners that have been transferred personal data in accordance with these Rules. Szintézis-Net Kft. will take all reasonable steps to protect the personal data received during the provision of the service in order to avoid loss, misuse, unauthorized use and access, disclosure, personal data modification and destruction. Users should keep in mind that no network, server, database, internet or e-mail connection can be completely free of any errors that may arise and should therefore pay particular attention to disclosing personal information.
This privacy policy does not apply to personal data that the user has provided to other users or visitors through the use of the service, including information provided by the user to the organizers on the event side or publicly available on the service.
The provisions and procedures described in these regulations apply only to the services of Szintézis-Net Kft. The service may also include links to third party pages, but for the contents of these pages and third party policy and data protection provisions, Synthesis-Net Ltd. is not responsible.
The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information: the purposes of the processing; the categories of personal data concerned; the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations; where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period; the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing; the right to lodge a complaint with a supervisory authority; where the personal data are not collected from the data subject, any available information as to their source; the existence of automated decision-making, including profiling.
The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
a) the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
b) the data subject withdraws consent on which the processing is based on the data subject’s consent or the rightful purposes of the data handler, and where there is no other legal ground for the processing;
c) the data subject objects to the processing and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing
d) the personal data have been unlawfully processed;
e) the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
a) for exercising the right of freedom of expression and information;
b) for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
c) for reasons of public interest in the area of public health in accordance with points (h) and (i) of Article 9(2) as well as Article 9(3);
d) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) in so far as the right referred to in paragraph 1 is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
e) for the establishment, exercise or defence of legal claims.
Please note that your application for cancellation must be submitted in writing (by mail or email) and must indicate which personal information is to be deleted and for what reasons.
If the Company upholds your Opinion relating to the deletion, the personal data processed will be deleted from all of your records and will inform you accordingly.
You are entitled to object to the handling of your personal data and in such cases the Company may not process your personal data unless it can be demonstrated that
a) the data management is justified by compelling reasons of lawfulness on the part of the Company that have priority over your interests, rights and freedoms or
b) data management is related to the submission, validation or protection of the legal requirements of the Company.
If your data has been processed with your consent, you have the right to withdraw the consent at any time, but that does not affect the lawfulness of the data handling that has been effected prior to the withdrawal.
In the event of violation of your personality rights, you may appeal to the Court of Justice.
At any time, you can ask for help from the National Privacy and Information Authority for privacy issues:
mail address: 1534 Budapest, Pf.: 834
address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c
Tel.: +36 (1) 391-1400
Fax: +36 (1) 391-1410
www: http://www.naih.hu
e-mail: ugyfelszolgalat@naih.hu
With respect to the enforcement of your rights, issues not resolved in these Rules are governed by the Act CXII of 2011 on Information Self-determination and Freedom of Information, as well as the European Parliament and Council Regulation (EU) No 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Regulation (EC) No 95/46 (General Data Protection Regulation, GDPR). Synthesis-Net Ltd. reserves the right to change this Privacy Policy and Information Policy.
