Privacy Notice

Please read this Privacy Notice carefully! If you have any questions or comments about this privacy notice or the processing of your personal data, please contact us.

Please be informed that we handle, record, process and possibly transfer your personal data in accordance with the provisions of the European Union's General Data Protection Regulation ("GDPR").

2 INFORMATION ON THE ORGANIZATION

Data controller’s name	AutSoft Zrt.
Data controller’s address	1117 Budapest, Gábor Dénes utca 4, Infopark C épület, I. emelet
Data controller’s contact details	info@autsoft.hu
Data controller’s contact details	www.autsoft.net

Data Protection Officer	Patrik Cseh
Data Protection Officer’s contact details	dpo@autsoft.hu
Data Protection Officer’s contact details	1117 Budapest, Gábor Dénes utca 4, Infopark C épület, I. emelet

3 SCOPE OF PERSONAL DATA PROCESSED

3.1 FOR APPLICATION VIA THE CAREER PAGE

Based on data provided voluntarily by the Data Subject.

Personal data

Purpose

Legal basis

Duration of processing

name, e-mail address, phone number, attached CV, motivation letter

Identification of competencies required to apply for a job, evaluation of the application material

Based on Article 6(1)(a) GDPR

Voluntary consent of the data subject

Until consent is withdrawn¹, but no later than 1 (one) month after the position is filled

Applications for our positions can be made via careers.zenitech.co.uk. For information on how to apply, please see our career page and detailed privacy policy.

3.2 FOR CONTACT FORM

Based on data provided voluntarily by the Data Subject.

Personal data

Purpose

Legal basis

Duration of processing

name, email address, phone number, company, text and subject matter of message

Contact, contact keeping, reply to incoming requests

In case of an invidual:

Article 6(1)(a) GDPR

Voluntary consent of the data subject

In the case of a contact person of a non-natural person:

Article 6(1)(f) GDPR Legitimate interest of the controller

Until consent is withdrawn¹, but no later than 1 year after the purpose of the data processing has been fulfilled

3.2.1 CAPTCHA

In order to protect our site, we use reCAPTCHA, which may also collect personal date (grounds: GDPR, Art. 6 (1) (f)), further information are provided in the Google Privacy Policy and Terms of Service.

3.3 FOR NEWSTLETTER SUBSCRIPTION

Based on data provided voluntarily by the Data Subject.

Personal data

Purpose

Legal basis

Duration of processing

name, e-mail address

Send newsletter to subscribers

Based on Article 6(1)(a) GDPR

Voluntary consent of the data subject

Withdrawal of consent¹

¹ You may withdraw your consent at any time by sending an e-mail to the above address, by clicking on the link in the newsletter or by post.

4 AUTOMATED DECISION-MAKING AND PROFILING

We inform you that no automated decision-making and profiling will take place.

5 THE SCOPE OF THE DATA THAT CAN BE ACCESSED

The data may be processed and handled by the employees of our Organization who are responsible for the operation, maintenance and updating of the website.

The processing of application materials is carried out by the human resources staff of our Company, as well as by the direct supervisor and the manager exercising the authority of the employer.

6 DATA SHARED WITH

In order to provide our services to you, we work with subcontractors and partners, so the following organisations may also be involved in processing your data. There is no joint processing.

Recipient	The purpose of data processing
RACKFOREST Kft. 1132 Budapest, Victor Hugo u. 18-22	To provide domain, hosting
HubSpot 12nd Floor 30 North Wall Quay Dublin 1, Ireland Telefon: +353 1 5187500	Optimisation of online marketing, CRM, personalised offers Learn more about HubSpot's privacy policy: https://legal.hubspot.com/privacy-policy Read more about HubSpot's compliance with EU data protection regulations: https://legal.hubspot.com/data-privacy
Zenitech Hungary Kft. 3526 Miskolc, Arany János tér 1. C-D. ép. földszint	Exercise of ownership rights

7 INFORMATION AND DATA SECURITY

Our organization is committed to data security, so we take those reasonably expected measures by considering the available technology and cost of implementation, including technical measures, which ensure the security of your personal data (e.g., virus protection, use of firewall, regulation of entry/data processing privileges, etc.). In order to prevent unauthorised access or disclosure, we have set up appropriate physical, electronic and management procedures to protect and safeguard the data collected.

As a responsible company, we ensure the confidentiality, integrity and availability of information and information processing processes as detailed in our information security policy.

8 YOUR RIGHTS

You may request information about the processing of your personal data anytime, and request rectification, clarification, erasure, restriction, and exercise all your rights provided by the laws.

8.1 Right to request information (right of access)

You, as the data subject (hereinafter also referred to as "Data Subject"), may request information (via the contact details above) about

what personal data,
on what legal reason,
for what purpose,
from what source,
for how long as controlled,
to who, when, on what legal basis the organization granted access of forwarded what personal information of the data subject.

8.2 Right to rectification

You may request that the Data Controller modify any of your personal data (for example, you may change your postal address at any time). The Data Controller will comply with your request within a maximum of one month and will notify you by letter to the contact details you have provided.

8.3 Right to erasure, right to be forgotten

The Data Controller will delete your personal data in accordance with the provisions of Article 17(1) to (2) of the GDPR, if and in the manner set out therein (e.g., in the event of the purpose of the processing ceasing). You may also request the deletion of your personal data processed by the Data Controller via the contact details provided above. The Data Controller will reject your request for erasure if the further processing and storage of your personal data is required under the conditions set out in Article 17(3) of the GDPR. If there is no such obligation, the Controller shall comply with the request without undue delay, but not later than one month, and shall notify the data subject thereof to the contact details provided for that purpose.

8.4 Right to blocking (restriction of processing)

You may request that your personal data be blocked by the Controller (by clearly indicating the limited nature of the processing and ensuring that it is kept separate from other data), subject to the conditions set out in Article 18 of the GDPR. The consequence of blocking is that the personal data may be processed, except for storage, only for the purposes specified in Article 18(2) of the GDPR. The blocking is maintained by the Controller for the period specified in Article 18(1) of the GDPR. The Data Controller shall inform the data subject in advance of the unblocking.

8.5 Right to data portability

You may request that the Data Controller sends the personal data provided about you in a structured, commonly used, machine-readable format to the contact details provided for this purpose. You also have the right to have this data transmitted by the Controller to another controller, where technically feasible.

8.6 The right to object

You have the right to object at any time, on grounds relating to your situation, to the processing of your personal data where the processing of your personal data is based on the legitimate interests of the Controller. If the processing of personal data is carried out for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such purposes, including profiling, where it is related to direct marketing.

If you object to the processing of your personal data for direct marketing purposes, your personal data will no longer be processed for these purposes.

8.7 Complaints and remedies

If you have any questions or comments about this privacy notice or the processing of your personal data or the interpretation of the relevant legislation, please contact us at the contact details above.

You may also exercise your rights of judicial remedy in relation to the processing of your personal data by lodging a complaint with the supervisory authority if you consider that the processing of your personal data infringes the legal provisions governing data protection, or by bringing an action before the courts.

Supervisory Authority:

Nemzeti Adatvédelmi és Információszabadság Hatósága

Hungarian National Authority for Data Protection and Freedom of Information

Located in 1055 Budapest, Falk Miksa utca 9-11.

Mailing address: 1363 Budapest, Pf.: 9.

Phone: +36 1 391 1400

Fax: +36 1 391 1410

Email: ugyfelszolgalat@naih.hu

Website: www.naih.hu

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.