×
Privacy Policy
PRIVACY NOTICE ON DATA PROCESSING REGARDING THE WEBSITE
1. Processing of personal data
1.1 The Mining Support Ltd as data controller (hereinafter: “DataController”) processes personal data of the users of the www.mining-support.com, www.weheat.systems, www.radon.hu websites (hereinafter:“Website”) as personal data of data subjects concerning data processing of the Company, in compliance with the provisions of Regulation (EU)2016/679 of the European Parliament and of the Council of 27 April 2016on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealingDirective 95/46/EC (General Data Protection Regulation, hereinafter:“GDPR”) and in compliance with other applicable laws.
2. Details of the Company regarding data processingData controller’s name: Mining Support Ltd.Registered seat: 3300 Eger, Petofi S. u. 19Represented by: Matyas Gati and Istvan SulyokT elephone: +36302308111 E-mail:ms@mining-support.com Web:www.mining-support.com
3. Data processing regarding the Newsletter
3.1 On the Website any visitor has the opportunity to subscribe to the regular newsletter sent by the Data Controller via the Website (hereinafter:“Newsletter”). The purpose of data processing is to send regularNewsletter to the subscribers (hereinafter: “Subscriber”).
3.2 The following personal data of the Subscriber are processed by DataController in connection with the Newsletter: name, e-mail address.
3.3 The legal ground of data processing is the consent of the Subscriber.Subscriber has the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
3.4 Data Processor processes personal data on the above defined purpose up to the time when Subscriber withdraws the consent or till any claim can been forced regarding the data processing, but not more than 5 years following the date of the subscription, or in case of a dispute, not more than 1 year following the final closing of the dispute.
4. Data processing regarding visitor’s messages
4.1 On the Website any visitor has the opportunity to send messages to theMining Support Ltd via the contact platform. The purpose of data1
processing is to identify and process visitors’ messages and to be able to reply to the messages.
4.2 The following personal data of the visitor are processed by Data Controller in connection with the Newsletter: name, e-mail address, and other personal data provided by the visitor in the message sent.
4.3 The legal ground of data processing is the consent of the visitor. Visitor has the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
4.4 Data Processor processes personal data on the above defined purpose up to the time when visitor withdraws the consent or till any claim can been forced regarding the data processing, but not more than 5 years following the date of the last message, or in case of a dispute, at least 1year following the final closing of the dispute.
5. The recipients or categories of recipients of the personal data
5.1The following data processors are in contractual relation with the DataController:a)Mining Support Kft. (registered seat: 3300 Eger, Petőfi Sándor utca 19.; tax number: 14030725-2-10) who is entrusted with developing and maintaining the Website and the services related thereto (any further services). Mining Support Kft. has access to the personal data processed by Data Controller in connection with the Website.Google LLC (registered seat: 1600 Amphitheatre Parkway, Mount View, CA,USA) who is entrusted with [email services of the Group]. Google LLC has access to the personal data processed by Data Controller in connection with [the emails sent from and to the Group].Pont ez Holding Ltd.(registered seat: 1025 Budapest, Zsindely utca 20.) who is entrusted with the server hosting and handling of the website. Pont ez HoldingLtd. has access to the personal data processed by Data Controller in connection with the hosting server.
5.2 Data processors can only process personal data transferred to them byData Controller if data processing is based on written agreement with theData Controller and only according to the Data Controller’s instructions.
5.3 Data processors are entitled to process personal data according to theData Controller’s instruction until the termination of the data processing contract or at the latest until the time of transferring back or deleting the personal data or within the period when Data Controller is entitled to process those personal data.2
5.4 Data Controller entrusts only such data processors that provides sufficient appropriate safeguards in order to prove that processing is performed in accordance with GDPR and appropriate technical and organizational measures were implemented.
5.5 In cases set out by law the Data Controller is obliged to transfer personal data prescribed by law and processed by the Data Controller to institutions, organizations, entities prescribed by law. Data Controller has to inform data subjects about the fact of such data transfer, if it isn’t prohibited by the law.
6. Measures for security of processing
6.1 Data Controller takes all the reasonable steps to avoid any unlawful access or usage of personal data or the devices which used for data processing. Data Controller ensures the security of processed personal data in compliance with the provisions of the GDPR.
7. Rights of the data subjects
7.1 The data subject has the right to withdraw his or her consent at any time.The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
7.2 According to Sections 15-22 of GDPR data subject is entitled to submit request to Data Controller for access to personal data concerning him or her are being processed by Data Controller and for rectification or erasure of personal data, or for restriction of processing and data subject can exercise the right for data portability.
7.3 The data subject can exercise her/his right regarding data processing and her/his right to withdraw consent through a request sent to Data Controller‘s registered seat or e-mail address after identifying her or himself.
7.4 If Data Controller has well-established doubts regarding the identification of the person who submitted the request, Data Controller is entitled to ask for more necessary information in order to identify the data subject.
7.5 Data Controller provides information on action taken on a request underArticles 15 to 22 to the data subject without undue delay and in any event within one month from receipt of the request. That period may be extended by two further months where necessary, taking into account the complexity and number of the requests. Data Controller informs the data subject of any such extension within one month of receipt of the request, together with the reasons for the delay. Where the data subject makes there quest by electronic form means, the information are provided by electronic means where possible, unless otherwise requested by the data subject. 3
7.6 If Data Controller does not take action on the request of the data subject,Data Controller informs the data subject without delay and at the latest within one month of receipt of the request of the reasons for not taking action and on the possibility of lodging a complaint with a supervisory authority and seeking a judicial remedy.
7.7 Providing information regarding exercising data subject’s rights is free of charge. Where requests from a data subject are manifestly unfounded or excessive, in particular because of their repetitive character, DataController may either:a)charge a reasonable fee taking into account the administrative costs of providing the information or communication or taking the action requested; orb)refuse to act on the request.
8. Availability of remedy8.1Data Controller makes all the efforts to ensure the lawful and to the extent possible the most secure processing of personal data. Therefore, it is appropriate to directly liaise with Data Controller if any problems occur before taking any other remedies, in order to solve the problems as soon as possible.8.2Data subject has the right to lodge a complaint with the supervisory authority competent in the Member State of his or her habitual residence, place of work or place of the alleged infringement if the data subject considers that the processing of personal data relating to him or her infringes the GDPR. If the supervisory authority does not handle a complaint or does not inform the data subject within three months on the progress or outcome of the complaint, the data subject has the right to an effective judicial remedy. Proceedings against a supervisory authority shall be brought before the courts of the Member State where the supervisory authority is established.
8.3 The data subject has the right to an effective judicial remedy.4