General Terms and Conditions

General Terms of Business

Data protection

1. The Service Provider considers the protection of personal data highly important in its activities. It shall always manage the personal data provided to it according to the valid legal regulations, ensures their security, and takes the technical and organisational steps and creates the procedures that are required for the meeting of the related regulations.

2. The data protection statement is always formulated according to the currently valid legal regulations, with special attention to

2.1. Act LXIII of 1992 on the protection of personal data and the publication of data of public interest (hereinafter: Data Protection law);

2.2. European Parliament and Council Directive 95/46/EC of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data;

2.3. Act VI of 1998 on the promulgation of the Convention for the protection of individuals with regard to automatic processing of personal data, dated Strasbourg, 28 January 1981;

2.4. Act CVIII of 2001 on certain issues of electronic commerce activities and information society services;

2.5. Act CXIX of 1995 on the use of name and address information serving the purposes of research and direct marketing.

3. In the activities of the Service Provider, the management of prrsonal data is always based on voluntary consent. Pursuant to the data protection act, the Service Provider may use the Users’ data only for contracting, invoicing and own advertising purposes.

4. Stakeholders’ rights and their enforcement

4.1. A stakeholder may ask for information on the management of his/her personal data, and may ask for a correction of his personal data, or – with the exception of data management ordered by legal regulations – for the deletion of the personal data at the numbers/addresses of Service Provider defined in this statement.

4.2. At the stakeholder’s request, the Service Provider gives information on the data managed by it, the purpose, the legal basis, the time period, the data processor’s name, address (seat), and the activity related to data management, and who received the data and for what purpose. The Service Provider shall provide the information within the shortest possible time of the submission of the request, at the most within 30 days, in writing, free of charge.

4.3. Incorrect personal data shall be corrected by the Service Provider at the stakeholder’s request.

4.4. The Service Provider shall delete the personal data in the following cases:

4.4.1. the management of the data is against the law,

4.4.2. the stakeholder requests it,

4.4.3. the data is incomplete or wrong – and this condition cannot be corrected legally -, provided that the law does not exclude deletion,

4.4.4. the purpose of data management has ceased to exist,

4.4.5. the statutory deadline of storing the data has expired,

4.4.6. it was ordered by court or the data protection supervisor.

4.5. It will inform the stakeholder and all the parties to whom the data had been forwarded for data management on the correction or deletion. This notice may be omitted if it does not violate the stakeholders’ interests considering the purpose of data management.

4.6. If his rights are violated, the stakeholder may turn to litigation against the data manager.

4.7. The Service Provider shall reimburse the damage caused to others with the unlawful management of stakeholder’s data or the violation of the technical data protection requirements. The data manager is released from the responsibility, if he proves that the damage was caused by a reason beyond its control, and outside the scope of data management. There is no need to reimburse the damage to the extent it originated from the wilful or seriously negligent behaviour of the party suffering the damage.

4.8. You may submit a request for remedy or any complaints to the Office of the Data Protection Supervisor, at the following address:
Name: Data Protection Supervisor’s Office
Address: 1051 Budapest, Nádor u. 22.
Postal Address: 1387 Budapest, Pf. 40.
Phone: 06- 1-475-7186, 06- 1-475-7100
Fax:0 6-1-269-3541
E-mail: adatved@obh.hu
Website: www.abiweb.obh.hu

4.9. The data manager’s data and contacts: Phőnix Budapest Kft. Hotel Kastély Szirák
Address: H-1067 Budapest, Szondi u.34.
Mail address: H-3044 Szirák
Phone: +36 32 485 300
Fax: +36 32 485 285
E-mail: info@kastelyszirak.hu
Web: www.kastelyszirak.hu