Privacy Statement
Name of the Data Controller
The issuer of this information, also the Data Controller:
Company name: Platinum Bt.
Address: 7500 Nagyatád, Munkás utca 36. Hungary
VAT: 25212394-2-14
Mailing address: 7500 Nagyatád, Kossuth u 1. Hungary
Represented by: Soós György
Contact: info@platinumsport.hu; +36 30 522 5069 (hereinafter referred to as: the Company)
Name and contact details of the Data Protection Officer: Soós Olivér Gábor Email: oliver.soos@platinumsport.hu Phone: +36 30 322 5513
Our webpage address: https://www.platinumsport.hu.
IT Service Providers
Company name: Websupport Magyarország Kft.
www.websupport.hu
Address: 1132 Budapest, Victor Hugo utca 18-22.
Company Name: Google LLC
Address: Mountain View, California, USA
(Considered to be established in the EU under the EU-U.S. Privacy Shield Framework.)
Company name: Meta Platforms Ireland Ltd. ( Facebook, Instagram )
Address: 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland
Financial Service Providers
Company Name: K&H Bank Zrt.
Address: 1095 Budapest, Lechner Ödön fasor 9.
Company name: Stripe Inc
Address: 354 Oyster Point Blvd South San Francisco, CA 94080 United States
Company name: WISE
Address: Avenue Louise 54, Room S52 Brussels 1050 Belgium
Company Name: PayPal (Európa) S.à r.l. et Cie, S.C.A.
Address: 22-24 Boulevard Royal, L-2449 Luxemburg
Purpose of the Policy
The purpose of the AVAKASZT is to define the scope of personal data processed by the Data Controller, the method of data processing, and to ensure the adherence to the constitutional principles of data protection and data management, as well as the requirements of data security, in order to respect the privacy of natural persons and protect the personal data of data subjects during the automated processing or handling of their personal data.
Interpretative Provisions
Data Controller
A natural or legal person, or an organization without legal personality, who or which independently or jointly determines the purpose of data processing, makes and executes decisions regarding data processing (including the tools used), or can execute them with the data processor.
Data Processing
Any operation or set of operations performed on data, regardless of the applied procedure, including collection, recording, storage, organization, alteration, use, retrieval, transmission, disclosure, alignment or combination, blocking, deletion, and destruction of data, as well as preventing further use of the data, taking photographs, sound or video recordings, and recording physical characteristics that can be used for identification (e.g., fingerprints, palm prints, DNA samples, iris images).
Personal information
Data that can be linked to the data subject – particularly the data subject’s name, identification number, contact details, as well as one or more characteristics related to their physical, physiological, mental, economic, cultural, or social identity – as well as any conclusions about the data subject that can be drawn from the data.
Consent
The voluntary and explicit declaration of the data subject’s will, based on adequate information, by which the data subject provides their unequivocal consent to the processing of their personal data – either in full or for specific operations.
Data Processing
The technical tasks associated with data processing operations, regardless of the method or tool used for performing the operations, as well as the location where the tasks are carried out, provided that the technical task is performed on the data.
Data Processor
A natural or legal person, or an organization without legal personality, who or which processes data under a contract – including a contract based on legal provisions.
Data Subject
Any identified or identifiable natural person based on personal data, either directly or indirectly.
Scope of Personal Data, Purpose of Data Processing
The legal basis for data processing is the voluntary consent of the Customer. The Customer gives consent by expressly accepting the data processing in accordance with this Privacy Policy after reviewing it – by ticking the relevant checkbox – or by using the Website, registering, and voluntarily providing the relevant data. In relation to the inquiry, the Customer gives their explicit and voluntary consent by sending a request, allowing the Data Controller to send news and information related to the business to the email address provided by the Customer during registration.
The management of the email addresses serves to identify the User and for communication purposes during the use of the services. The Data Controller will send information related to the services it provides to the User in electronic form via email.
The purpose of data processing is to provide information that the Data Controller deems useful and important. The Data Controller stores the data provided by the User in a manner that is purpose-bound.
The User of the Website acknowledges that by using the website, they consent to the processing of their data by Google Inc. The Website uses the Google Analytics web analytics service provided by Google, Inc. (headquarters: 1600 Amphitheatre Parkway Mountain View, CA 94043) (hereinafter referred to as: Google).
The Data Controller does not verify the personal data provided to it. The person providing the data is solely responsible for its accuracy. By providing an email address, any User assumes responsibility that only they will use the services from that email address. In light of this responsibility, any liability related to logins made using the provided email address lies solely with the User who provided/registered the email address.
Comments submitted by visitors may be checked by an automatic spam filter service.
How long do we store personal data?
The processing of data provided by the User/Customer via email begins with registration and lasts until its deletion.
The above provisions do not affect the fulfillment of retention obligations specified by law (e.g., accounting regulations).
When leaving a comment, the comment and its metadata remain in the system indefinitely. This is to ensure that all subsequent comments become familiar to and approved by us, meaning they will not be added to the list of comments awaiting moderation.
Personal data of registered users on the website (if any) is also stored in their user profile. Each user can view, edit, or delete their personal data at any time (except for changing their username). The website administrators can also view and edit this information.
What rights does the user have regarding their own data?
If a user has a registered account or has written a comment on the website, they can request to receive an export file of their personal data, which includes any information they have previously provided. Users can also request the deletion of any personal data they have provided. This does not apply to data that we are required to retain for administrative, legal, or security reasons.
Comments
When submitting a comment, in addition to the information provided in the comment form, the IP address of the commenter and the browser identification string will be collected for the purpose of filtering out unwanted content.
An anonymized string (usually called a hash) derived from the email address will be sent to the Gravatar service if it is used on the site. The terms of the Gravatar service can be viewed at the following link: https://automattic.com/privacy/. After the comment is approved, the content of the comment and the profile picture will be publicly displayed.
Media
If an image is uploaded to the website by a registered user, any EXIF data containing GPS location information should be avoided. Visitors to the site can download and extract location data from images available on the site.
Cookies
When we write a comment on the website, the provided name, email, and website address are stored in cookies. The purpose of this storage is for convenience, so that when making the next comment, these fields do not need to be filled in again. The cookies expire after one year.
If we visit the login page, temporary cookies are set to determine if the browser accepts cookies. These cookies do not contain personal information and are deleted once the browser is closed.
When logging in to the website, several cookies are created to save login information and display options for the editor interface. The login cookies are valid for two days, while the cookie storing the display options for the editor interface is valid for one year. If the “Remember me” option is checked, the login will persist for two weeks. Upon logging out, the login cookies are removed.
If we edit a post or page, an additional cookie is stored by our browser. This cookie does not contain personal data; it simply stores the post ID number that we edited. It expires after one day.
To register
By registering for the event, a contractual relationship is established between the data subject and the data controller for the proper organization of the sporting event, ensuring participation, determining and publishing the time and placement, and the creation of images, sound, and image and sound recordings (photos, audio recordings, video recordings) for marketing purposes, which may be used by the data controller for an unlimited time, place, and manner.
The legal basis for data processing is the performance of the contract, the legitimate interests of both parties, and primarily the consent of the data subject, which is given by registering for the event. The consequence of not providing consent is that the data subject will not be able to participate in the event.
By registering, each participant expressly consents to the creation of images, sound, and image and sound recordings (photos, audio recordings, video, and drone recordings) regarding the event, which the data controller may use for marketing purposes, including posting on online and social media platforms, with unlimited use in terms of place, time, and method.
By registering, each participant expressly declares that they have informed the data subjects of the personal data provided during registration – in cases where the data concerns other natural persons, such as an emergency contact – about the data processing information and that these individuals have consented to the data processing.
By registering, participants also accept that their results may be published by the data controller in any written or non-written form, including online and social media platforms, and may be forwarded to other news agencies. The data published with the results includes: identifier, name, race, time result, city of residence, and age.
The scope of the data subjects includes all participants in the event and all individuals present at the event site in relation to the recordings.
Categories of personal data processed: participant’s name, email address, Ötpróba ID gender, date of birth, home address, t-shirt size, name and phone number of emergency contact, name, email address, and phone number of parent/guardian for children, name of accompanying person in case of team registration, billing information, race number, location data, images, sound, and images, video, drone, and sound recordings; the participant may also provide health-related information such as blood type, possible illnesses, allergies, intolerances, drug sensitivities, and health insurance number (TAJ number); for walking tours and cycling tours organized by the data controller, the same rules for data processing apply, with the difference that only the name and email address need to be provided by the data subject.
The recipients who may access the processed data include the data controller’s employees and subcontractors responsible for tasks related to organizing sports events, as well as all designated data processors of the data controller. This is due to the complexity and multi-faceted nature of event organization and execution.
Embedded Content from Other Websites
Posts available on the website may include embedded content from external sources (e.g., videos, images, articles, etc.). Embedded content from external sources behaves exactly as if the visitor were visiting the other website directly.
These websites may collect data about visitors, use cookies, employ third-party tracking, and monitor interactions with the embedded content, including tracking user behavior if the visitor has an account and is logged into that website.