Privacy Policy

1. Data Controller

Name: Annist Technologies Kft. (hereinafter referred to as: the “Data Controller”)
Address: 9027 Győr, Nagysándor József utca 31, Hungary
Email: info@annist.hu

Website: https://annist.hu

2. Applicable Laws on Data Processing

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, “GDPR”)

Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information (Hungary)

3. Scope and Data Subjects of the Data Processing

Purpose of data processing: Communication, providing information, or responding to inquiries.
Data subjects: Any natural person who, through the website https://annist.hu, provides or is provided with personal data that can directly or indirectly identify them.

This Privacy Notice applies to all natural persons who make inquiries, request or send offers through the website https://annist.hu, as well as to representatives or contact persons of legal entities.

4. Categories of Personal Data, Purpose, Duration, Legal Basis, and Source of Data

Categories of processed data:
Contact details (name, telephone number, email address), any additional information provided voluntarily during contact, IP address, and user agent.

Purpose of data processing:
To provide appropriate information to the data subject and maintain communication.

Legal basis of data processing:
The processing of personal data is based on the voluntary consent of the data subject. (Article 6 (1)(a) of the GDPR)

Duration of data processing:
Until the completion of a one-time inquiry or offer process.
If a business relationship is established with the Data Controller, the personal data will thereafter be processed under the relevant data protection notice applicable to contractual relationships.
If the information request or offer entails legal effects or significantly affects the data subject or the Data Controller, data will be retained until the applicable limitation period expires.
The IP address and user agent data are stored for 30 days.

5. Data Security Measures

The Data Controller ensures the appropriate level of security for personal data by applying adequate technical and organizational measures, protecting against unauthorized or unlawful processing, accidental loss, destruction, or damage.

6. Rights of the Data Subject

Your rights and remedies related to data protection, as well as their limitations, are set out in detail in the GDPR (in particular Articles 15, 16, 17, 18, 19, 21, 22, 77, 78, 79, and 82).
You have the right to request information about your personal data at any time, and to request rectification, erasure, restriction of processing, or to object to processing based on legitimate interest.

You may exercise your rights via the following contact details:

Email: info@annist.hu

In person: 9027 Győr, Nagysándor József utca 31, Hungary

The Data Controller does not appoint a data protection officer.

Right to Information

  • You may request information in writing at any time regarding:
  • which of your personal data are processed,
  • the legal basis and purpose of the processing,
  • the source of the data,
  • the duration of the processing,
  • your rights regarding the processing, and
  • whether and to whom your personal data have been disclosed.

Right to Rectification

You have the right to request that the Data Controller correct any inaccurate personal data concerning you.

Right to Erasure (“Right to be Forgotten”)

You may request in writing the deletion of your personal data.
This right does not apply where processing is necessary for compliance with a legal obligation to which the Data Controller is subject, or for the establishment, exercise, or defense of legal claims.

Right to Restriction of Processing

You may request in writing that the Data Controller restrict processing if:

  • you contest the accuracy of the personal data (restriction applies while verification is pending);
  • the processing is unlawful and you oppose deletion and instead request restriction;
  • the Data Controller no longer needs the data for processing purposes but you require them for legal claims.

Your request must specify the reason for restriction.

Right to Object

You have the right to object, on grounds relating to your particular situation, to the processing of your personal data based on legitimate interest.
In such cases, the Data Controller shall assess the request and, if justified, delete your personal data. You will be informed of the result of this assessment.

Right to Withdraw Consent

If processing is based on your consent, you may withdraw it at any time.
Withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. You may also request the deletion of your data upon withdrawal.

Common Rules on the Exercise of Rights

The Data Controller shall, without undue delay and in any event within one month of receipt of the request, provide information on actions taken or reasons for refusal.
Considering the complexity and number of requests, this period may be extended by a further two months.

7. Remedies and Legal Enforcement

If you believe that your personal data have been processed unlawfully, you may lodge a complaint with the supervisory authority or bring the matter before a court.

Complaint to the Supervisory Authority

You may initiate an investigation with the supervisory authority if you believe your personal data have been processed unlawfully, or your right to access public information has been violated.

Supervisory Authority:

National Authority for Data Protection and Freedom of Information (NAIH)

Address: 1055 Budapest, Falk Miksa utca 9–11, Hungary
Postal address: 1363 Budapest, Pf. 9.
Telephone: +36 (1) 391-1400
Fax: +36 (1) 391-1400
Email: ugyfelszolgalat@naih.hu

Website: https://naih.hu

Judicial Remedies

If you believe that your personal data have been processed unlawfully, you may bring an action against the Data Controller before a court of law.
Such cases fall under the jurisdiction of the competent regional courts (törvényszék) in Hungary.
Information on competent courts can be found at: https://www.birosag.hu/