- name, e-mail address, phone number, address, number of persons who wish to use the service, number of children who wish to use the service and their age provided by the data subject
- booking of a hotel service, communication with regard to the booking
- performance of the contract (point (b) of Article 6(1) of the GDPR)
If the controller cannot fulfil the booking, data processing will not take place.
a.) the data will only be transferred to data-processing company operating the online quotation and booking systems; the name of that processor: Morgens Design Kft. seat: 8800 Nagykanizsa, Csányi László utca 2.
b.) data will also be transferred to the following banks that carry out bank transactions: – OTP Bank Nyrt, (H-1051 Budapest, Nádor utca 21.) OTP Mobil Kft. (H-1143 Budapest, Hungária krt. 17.) K&H Bank Zrt. (H-1095 Budapest, Lechner Ödön fasor 9.)
c.) the e-mail address will be transferred within the European Union in encrypted (SHA-256 hash algorithm), non-reversible form for statistical and analytical purposes and for personalised advertising to the following company:
– Google Ireland Limited (address: Google Building Gordon House, Barrow St, Dublin 4, Ireland)
d.) the e-mail address will be transferred to a third country, to the following company in encrypted (SHA-256 hash algorithm), non-reversible form for statistical and analytical purposes and for personalised advertising:
– META Inc (1601 WILLOW ROAD MENLO PARK, CA 94025-USA)
– Microsoft Inc (One Microsoft Way. Redmond, Washington 98052-6399-USA)
– with regard to the transfer of data under 7.a.b: performance of contract
– with regard to the transfer of data under 7.c.d: the data subject’s consent
The data subject shall have the right:
- profiling and automated decision-making do not take place
The controller and the organisation involved as a processor store the data on their own computing devices which are held at the registered seat, and in the case of the processor, they can be found in a server farm. The controller and processor choose and operate their IT devices so that the data processed could be accessed by the authorised persons, their credibility and validation remain assured, it could be verified that they had not been modified and they are protected against unauthorised access. Data are protected against unauthorised access, modification, transfer, disclosure, erasure or destruction as well as accidental destruction, damage and unavailability due to the change of the applied technology in such a way that, by having regard to the current technological development, the controller takes care of the protection of processing security with technological, organisational and structural measures that provide an adequate level of protection against the risks associated with processing.
In the event of any breach of their rights, the data subject may have recourse to court against the controller. The reconsideration of the legal action falls within the competence of the regional court (Contact detail of Zalaegerszeg Regional Court: 8900 Zalaegerszeg Várkör u 2.). At the data subject’s option, the action can be brought to the regional court in whose jurisdiction the data subject’s home address or temporary residence is located. Such cases will be given priority by the court.
You may lodge an appeal or a complaint to the Hungarian National Authority for Data Protection and Freedom of Information. Name: Hungarian National Authority for Data Protection and Freedom of Information Seat: 1055 Budapest, Falk Miksa utca 9-11. Postal address: 1363 Budapest, Pf.: 5. Phone: 06.1.391.1400 Fax: 06.1.391.1410 E-mail: ugyfelszolgalat@naih.hu Website: http://www.naih.hu
The Privacy Policy of the controller is available at https://kolping.hotel.hu/en/privacy-policy.
Kolping Hotel**** Spa & Family Resort | Tel.: +36 83 344 143 | sales@kolping.hotel.hu |