PRIVACY POLICY

We have reviewed our activities related to the management of personal data in accordance with the mandatory and applicable rules of the General Data Protection Regulation of the European Union (GDPR), and we are committed to carrying out them in accordance with the requirements set forth in that regulation and in the domestic legislation in force.

Information and contact information of the Data Controller
The operator of the website (hereinafter: Data Controller): TheCottageHU
Our contact details: Our postal address: 19 Hársfa u. 7090 Tamási.
Our e-mail address: info@thecottage.hu
Our telephone number: +36 20 772 816
NTAK number: Várhegy MA22036505; Tuskós MA22037400

Basic principles of data management
We are committed to the protection of the personal data of our visitors to the website and of all those involved, and we consider it of utmost importance to respect their right to informational self-determination.
We treat personal data confidentially and take all security, technical and organizational measures that guarantee the security of personal data.
If you have any questions that are not clear based on this data management information, please contact us at our contact details above! We strive to respond as quickly as possible, but if it takes more time to properly answer your question, we undertake to answer it within 15 days at most.
You can request information about the management of your personal data at any time in writing (by e-mail or in a letter sent to our postal address) or orally (by phone). We would like to draw your attention to the fact that in the case of your inquiry by telephone - if justified by your request for data management (e.g. you request the deletion of your data) - then we must identify whether the request is legitimate before fulfilling it. If identification is not possible, we can only provide general information about data management. For this reason, we recommend that you indicate your question or request in writing.

Applicable legislation
We undertake to process personal data in accordance with the applicable legal regulations, especially those listed below:
· Regulation (EU) 2016/679 of the European Parliament and of the Council (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free flow of such data, and the repeal of Regulation 95/46/EC ( general data protection regulation), otherwise known as GDPR: General Data Protection Regulation;
· year CXII. Act (Infotv.) on the right to self-determination of information and freedom of information.

Complaint handling and additional legal remedies
We do our best to handle personal data in accordance with the law. If you feel that we have not complied with this or if you have any questions in this regard, please let us know at our contact details above.
Személyes adataid védelméhez fűződő jogaid megsértése esetén további jogorvoslati lehetőségért – amennyiben az Adatkezelő a jelzésed ellenére sem szünteti meg jogsértő magatartását – a Nemzeti Adatvédelmi és Információszabadság Hatósághoz fordulhatsz, az alábbi elérhetőségen:
Hivatalos név: Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH)
Postai cím: 1363 Budapest, Pf. 9.
Telefonszám: +36 1 391 1400
E-mail: ugyfelszolgalat@naih.hu
Weboldal: www.naih.hu

Data managed on the website
The public content of our website can be viewed by anyone without providing personal data, it is not linked to registration or login.
In connection with visiting and using the website, we process the data listed below for the purpose and for the time stated in this information, and we ensure the enforcement of your rights related to data management as follows:

Management of cookies

What is a cookie?
A cookie is a text file placed on the device you use to access the Internet (computer, smartphone) when opening and using our website, which typically contains information about the connection between the web server and your device or the operation of the website (for example, a so-called session or session identifier, which is a unique string of letters, numbers and other punctuation marks; the time when the website was opened by you, visited, etc.), and the content of which is occasionally read back from there - while you are browsing our website or when you visit it again later.
With the help of the content of the cookie, the website (server) can improve the user experience and implement the services provided on the website.

Purpose of data management
Identifying and distinguishing the sessions of users visiting our website, storing the data provided during them, and preventing data loss.

Scope of managed data
The cookies used on our website are so-called functional cookies that support the operation of the website, which contain the time of visiting the website, the session ID and other session-related information that can be interpreted by the website's program code (strings of numbers and characters), but are not suitable for identifying the user visiting the website .
The information stored in functional cookies is not forwarded to third parties.

Duration of data management
The validity of one of the functional cookies used on our website (so-called session cookie) expires as soon as you leave the website or close our page in the browser program. The other functional cookie is valid for 1 year.

Legal enforcement
Most Internet browsers automatically allow the use of cookies. However, you can change, disable and delete this setting at any time. You can access, learn about, and view the content of the cookies stored on your device at any time.
You can manage cookies, disable or delete them in the settings of well-known Internet browsers, typically in the sub-menu called security, data protection or data protection settings, under the name cookies.
You can find more information about the management of cookies in the help of the given program or on the following links by clicking on the name of the program: Internet Explorer, Chrome, Mozilla Firefox, Edge.

Google Analytics service
We use the Google Analytics service to analyze and measure the visits, traffic data and performance of our website. The information collected from the website is automatically transmitted to Google, but it does not contain (cannot contain!) personal data. The collected and transmitted information is not used to identify website visitors, but only statistical data suitable for differentiating sessions from one another. You can read more information about Google Analytics data management by clicking here.

Purpose of data management
In order to measure the performance of the website and to create statistics on its use, distinguishing the visitors who visit the website and their sessions from each other.

Scope of managed data
The Google Analytics service uses cookies to measure the performance of the website and to prepare statistics on its use, which contain information that can be interpreted by the service (individual character strings consisting of letters, numbers and other punctuation marks).

Duration of data management
The validity of the cookies used by the Google Analytics service can vary. There are cookies whose validity expires when you close the page in the Internet browser program, and there are also some whose validity is even shorter (1 minute) or possibly significantly longer (e.g. 24 hours or 2 years, for example). At the same time, the content of the cookies valid for a longer period of time can only be accessed by our website - and through it by the Google Analytics service - if you visit our website again from the same device and you have not deleted these cookies from it in the meantime.

Legal enforcement
If you do not want the Google Analytics service to collect data on website visits, you have the option of prohibiting it by installing and using the program for this purpose. You can read more information about the browser extension that disables the collection of Google Analytics data by clicking here, and you can download and install it here.
You can also block the use of cookies used by Google Analytics - together with all other cookies. You can access the content of the cookies stored on your device at any time, learn about it, view it and delete it.
You can manage, block or delete cookies in the settings of well-known Internet browser programs, typically in the submenu called security, data protection or data protection settings, under the name cookies.
You can find more information about the management of cookies in the help of the given program or on the following links by clicking on the name of the program: Internet Explorer, Chrome, Mozilla Firefox, Edge.

Cookies used by social media services
Our visitors with a social media account can share or recommend some of the content and news displayed on our website to others on Facebook. Facebook also uses cookies, so-called tracking cookies, to carry out user-initiated activity.
You can find more information about Facebook's data management and the use of cookies here:
https://www.facebook.com/about/privacy
https://www.facebook.com/policies/cookies/

Purpose of data management
Providing social media services for website visitors.

Scope of managed data
The cookies used by social media service providers contain information that can be interpreted by the service (individual character strings consisting of letters, numbers and other punctuation marks).

Duration of data management
The validity of cookies used by social media services to carry out user-initiated activities usually expires as soon as you leave the website or close our page in the browser program, you can find more detailed information about the validity of individual cookies in the above information published by the service providers.

Legal enforcement
You can also block the use of cookies by social media providers - along with all other cookies. You can access the content of the cookies stored on your device at any time, learn about it, view it and delete it
Known internet browser programs usually have the option to manage cookies, block their use or delete them in their settings, typically in the sub-menu called security, data protection or data protection settings, under the name cookies.
You can find more information about the management of cookies in the help of the given program or on the following links by clicking on the name of the program: Internet Explorer, Chrome, Mozilla Firefox, Edge.

Image and video recordings displayed on the website
On our website, we regularly report on news, events, events and programs related to our activities, in which we also publish pictures and videos.
We pay particular attention to ensuring that the content of the images and videos published on our website does not violate the privacy rights or legitimate interests of others, and that we have permission and authorization for their legal use in all cases.

Purpose of data management
Information for website visitors.

Legal basis for data management
Data management is based on voluntary consent in accordance with the EU General Data Protection Regulation (GDPR) and CXII of 2011 on the right to self-determination and freedom of information. based on the Act (Infotv.).

Scope of managed data
The likeness of the identifiable and recognizable natural persons in the recordings.

Duration of data management
Until the consent of the data subject is withdrawn, or until the given content is deleted from our website.

Legal enforcement
You can request information about the management of your data at any time at our contact details above.
You can also request the deletion of your data, and at your request, the recordings in which you can be identified or recognized will be removed from our website.

Who can see the data?
The information published on our website can be read and viewed by anyone who visits the site.

Data processed during inquiry and contact
You can contact us via our contact details on our website. Your personal data used during the recording will only be used for contact purposes, they will not be forwarded.

Purpose of data management
Information for interested parties.

Legal basis for data management
In the event of an inquiry or request for information, voluntary consent is based on the EU's General Data Protection Regulation (GDPR) and CXII of 2011 on the right to self-determination and freedom of information. based on the Act (Infotv.).

Scope of managed data
When contacting us, we process the following data that you freely choose:
· name,
· e-mail,
· phone mumber,
· address (postal address).

Duration of data management
We process your personal data for different periods depending on the nature of the contact.
After providing the necessary information, we will not keep it any longer, unless a claim can be legally asserted in the case of occasional contact, in which case we can keep it for a maximum of 5 years for the purpose of its verification.

Legal enforcement
You can request information about the management of your data at any time at our contact details above.
You can also request the correction of your data at any time if you find that, for example, you entered it incorrectly or that we recorded it incorrectly or incompletely.
You can also request the deletion of your data, and if there is no legal obstacle to this, we will comply with your request immediately (otherwise, we will inform you of the reason for refusing the deletion).

Who can see the data?
Only our employees are entitled to access the data you provide.

Security of data management
In order to ensure the security of the personal data we manage, we take all technical and organizational measures necessary to protect the data against accidental deletion (destruction), unauthorized use or modification. Access to the data managed in our IT systems is granted only to our employees using an authorization system.
With the above, we ensure that an unauthorized person cannot access, disclose, transmit, modify or delete the processed data.

Transmission of data
Your personal data will not be passed on to those who do not have the right to access it, and will only be forwarded to third parties if you have given your prior consent. An exception to this may be if we are required by law to transmit the data, such as a possible official investigation, in which case we are obliged to hand over the data necessary for the purpose of the inquiry to the official request of the acting authority (e.g.: police, prosecutor's office, court, etc.). Your separate consent is not required for this, as this is our task defined by law.

Review and availability of the Data Management Information
We reserve the right to revise and amend this information as necessary, which may be justified in the event of a change in the relevant legislation or our data management activity, as well as in the case of a change in the technology used for it. If the amendment also affects your personal data processed on the basis of your voluntary consent, we will inform you of this immediately, and further processing of your personal data will be suspended until you consent to it again.

The currently valid Data Management Information is always available here, publicly published on the website.

ADDENDUM - VENDÉGEM APPLICATION:

"2021. CLVI of 2016 on state tasks for the development of tourist areas entered into force on January 1. amendment of the law, which obliges the accommodation service provider to record the legally defined data of the users of the accommodation service in the storage provided by the hosting provider appointed by the Government for the purpose defined by the law.

The accommodation provider designated by the Government is the Hungarian Tourist Agency (MTÜ).

The tasks of the storage facility introduced by the amendment of the law are performed by the Guest Information Closed Database (VIZA) system.

VIZA is an IT system protected by multiple, asymmetric encryption, in which from September 1, 2021, the legally defined personal data of all guests staying at Hungarian accommodation will be stored in an encrypted manner. The accommodation service provider manages the guests' data until the last day of the first year after they become aware of it, the VIZA system keeps the data submitted to it for a maximum of two years. The data may be searched specifically and exclusively by the police, in order to carry out their crime prevention and law enforcement tasks.

The purpose of the VIZA is to ensure the protection of the rights, safety and property of the person concerned and others, as well as the control of compliance with the provisions on the residence of third-country nationals and persons with the right of free movement and residence, i.e. the primary purpose of the VIZA is to maintain public order, public security, the order of the state border , promoting the protection of the rights, safety and property of the data subject and others.

MTÜ provides the VENDÉGEM application free of charge to accommodation providers who use a maximum of 8 rooms with 16 beds as accommodation. For more information, please visit the information page of the MY GUEST application info.vendegem.hu.

According to the laws in force in Hungary, regardless of age, all citizens must have an official identity card (identity card, passport or driver's license in card format), including newborns. Based on the legislation, the recording of data is equally mandatory for all guests who use it, so neither age nor other variables - e.g. based on the fee to be paid for the service, discounts, length of stay, family relationship with the user - it is not possible to waive the recording of the data.

The guest who has reached the age of 14 using the accommodation service presents his/her personal identification document to the accommodation provider for the purpose of recording the data.

If the document is not presented, the accommodation provider will refuse the accommodation service."