Home

Privacy policy

1. Data controller

Name:
TRIDENT Kereskedelmi és Szolgáltató Korlátolt Felelősségű Társaság
Registered office:
2344 Dömsöd, Bucsi köz 8.
Mailing address:
2344 Dömsöd, Bucsi köz 8.

2. Hosting provider

Name:
Websupport Magyarország Kft.
Mailing address:
1119 Budapest, Fehérvári út 97-99.
Phone:
+36 1 700 2323

3. Description of the data processing carried out in the operation of the webshop

This document contains all relevant data processing information relating to the operation of the webshop, based on Regulation (EU) 2016/679 of the European Union, the General Data Protection Regulation (hereinafter: the Regulation, GDPR) and Hungarian Act CXII of 2011 (hereinafter: Infotv.).

4. Information on the use of cookies

What is a cookie?

The Data Controller uses so-called cookies when you visit the website. A cookie is an information package consisting of letters and numbers that our website sends to your browser in order to save certain settings, facilitate the use of our website and help us collect some relevant statistical information about our visitors.

Some cookies do not contain personal information and are not suitable for identifying the individual user; however, some of them contain a unique identifier — a secret, randomly generated sequence of numbers — which is stored on your device and thereby also makes you identifiable. The period of operation of each cookie is set out in the relevant description of the given cookie.

Legal background and legal basis of cookies

We fundamentally distinguish three types of cookies: cookies strictly necessary for operation (which serve the proper functioning of the Website), statistical cookies and marketing cookies.

The legal basis of the processing is your consent pursuant to Article 6(1)(a) of the Regulation in the case of statistical and marketing cookies, and the legitimate interest necessary to ensure the operation of the Website pursuant to Article 6(1)(f) of the Regulation in the case of cookies necessary for operation.

Main characteristics of the cookies used by the website

Cookies strictly necessary for operation

If you do not accept the use of these cookies, certain functions may not be available to you.

woocommerce_cart_hash
Helps WooCommerce determine when the cart contents/data change. Duration: until the end of the session.
woocommerce_items_in_cart
Helps WooCommerce determine when the cart contents/data change. Duration: until the end of the session.
wp_woocommerce_session_
Contains a unique code for each customer so that the system knows where to find the cart data of each customer in the database. Duration: 2 days.
woocommerce_recently_viewed
Controls the Recently Viewed Products widget. Duration: until the end of the session.
store_notice[notice id]
Allows customers to dismiss the webshop message (Store Notice). Duration: until the end of the session.
woocommerce_snooze_suggestions__[suggestion]
Allows customers to dismiss Marketplace suggestions. Duration: 2 days.
woocommerce_dismissed_suggestions__[context]
Number of dismissed suggestions, if enabled. Duration: 1 month.

Statistical cookies

Microsoft Clarity (active)
To measure site traffic, we use the Microsoft Clarity service of Microsoft Corporation (USA). Clarity records visitor behaviour in anonymous form (clicks, scrolling, mouse movements, page load times, errors). It automatically masks sensitive data (password fields, payment data, typed text) — it does not record personally identifiable information (PII). It is only loaded if you have expressly accepted analytics cookies via the cookie banner. Cookies: _clck (1 year), _clsk (1 day), MUID, CLID. Microsoft’s privacy statement: privacy.microsoft.com.
Google Tag Manager + Google Analytics 4 (active)
For detailed traffic analysis, we run Google Analytics 4 (Measurement ID: G-M92D0RH0NE) via the Google Tag Manager (Container: GTM-MBX9NBVR) service of Google Ireland Limited. With IP anonymisation. It operates on the basis of Google Consent Mode v2: by default all tags are in a denied state and only send data to Google if the user has accepted analytics cookies via the cookie banner. Main cookies: _ga (2 years), _ga_M92D0RH0NE (2 years), _gid, _gat. Google’s privacy policy: policies.google.com/privacy.

Marketing cookies

We currently do not run any active third-party marketing cookies. The list below prepares for the introduction of future services — if we were to enable any of them, the cookie banner will duly ask for your consent.

Google Adwords cookie
When someone visits our site, the visitor’s cookie identifier is added to the remarketing list. Google uses cookies — such as the NID and SID cookies — in Google products (Google Search) to customise advertisements. The AdWords conversion tracking function uses cookies to track sales and other conversions originating from advertisements.
Facebook pixel (Facebook cookie)
The Facebook pixel is code that enables conversion reports to be produced on the website, audiences to be compiled, and the site owner to receive detailed analytics data on visitors’ use of the website. With the Facebook pixel we can display personalised offers and advertisements to website visitors on Facebook. Facebook’s data policy: facebook.com/privacy/explanation

You can find more information on deleting cookies at the following links:

5. Data processed for the purpose of concluding and performing the contract

Several data processing situations may arise for the purpose of concluding and performing the contract. Please note that data processing related to complaint handling and warranty administration only takes place if you exercise one of the rights mentioned.

If you do not make a purchase through the webshop and are only a visitor, the provisions on data processing for marketing purposes may apply to you, provided you give us your consent for marketing purposes.

6. Issuing the invoice

The data processing takes place in order to issue an invoice in accordance with the law and to fulfil the obligation to retain accounting documents. Pursuant to Section 169(1)–(2) of the Hungarian Accounting Act (Sztv.), companies must retain the accounting documents directly and indirectly supporting the bookkeeping.

Data processed:
Name, address, email address, phone number.
Duration of processing:
Issued invoices must be retained for 8 years from the date of issue pursuant to Section 169(2) of the Sztv.
Legal basis of processing:
Pursuant to Section 159(1) of Hungarian Act CXXVII of 2007 on value added tax, the issuing of an invoice is mandatory, and it must be retained for 8 years pursuant to Section 169(2) of the Sztv. [processing under Article 6(1)(c) of the Regulation].

7. Further data processing

If the Data Controller intends to carry out further data processing, it will provide prior information on the essential circumstances of the processing (legal background and legal basis of the processing, purpose of the processing, scope of the data processed, duration of the processing).

8. Recipients of the personal data

Data processing for the storage of personal data

Name:
Websupport Magyarország Kft.
Registered office:
1119 Budapest, Fehérvári út 97-99.
Phone:
+36 1 700 2323

The Data Processor stores the personal data on the basis of a contract concluded with the Data Controller. It is not entitled to access the content of the personal data.

Data processing related to bookkeeping

Name:
COBBLER CONSULTING Kft.
Registered office:
2151 Fót, Bokor utca 62.

The Data Processor participates in the bookkeeping of the accounting documents on the basis of a written contract concluded with the Data Controller. In doing so, it processes the name and address of the data subject to the extent necessary for the accounting records, for the period corresponding to Section 169(2) of the Sztv., after which it deletes them without delay.

Data processing related to invoicing

Name:
KBOSS.hu Kft.
Registered office:
1031 Budapest, Záhony utca 7/D.

The Data Processor participates in keeping the records of the accounting documents on the basis of a contract concluded with the Data Controller. In doing so, it processes the name and address of the data subject to the extent necessary for the accounting records, for the period corresponding to Section 169(2) of the Sztv., after which it deletes them.

9. Your rights during the data processing

Within the duration of the data processing, you have the following rights in accordance with the provisions of the Regulation:

  • the right to withdraw consent,
  • access to personal data and information relating to the data processing,
  • the right to rectification,
  • restriction of data processing,
  • the right to erasure,
  • the right to object,
  • the right to data portability.

If you wish to exercise your rights, this involves your identification, and the Data Controller must necessarily communicate with you. Therefore, for the purposes of identification, you will need to provide personal data (however, identification may only be based on data that the Data Controller processes about you anyway). If you were our customer and wish to identify yourself for complaint or warranty administration, please also provide your order ID.

The Data Controller responds to complaints relating to data processing within 30 days at the latest.

10. The right to withdraw consent

You are entitled to withdraw your consent to the data processing at any time; in such a case, we will delete the data provided from our systems. Please note, however, that in the case of an order not yet fulfilled, the withdrawal may result in us being unable to complete the delivery to you. In addition, if the purchase has already taken place, we may not delete the data related to invoicing under the accounting rules; and if you have an outstanding debt towards us, we may continue to process your data on the basis of the legitimate interest related to debt collection even if you withdraw your consent.

11. Access to personal data

You are entitled to receive feedback from the Data Controller as to whether the processing of your personal data is in progress, and if such processing is in progress, you are entitled to access the personal data processed and to be informed of the following:

  • the purposes of the data processing;
  • the categories of personal data processed about you;
  • the recipients to whom the personal data have been or will be disclosed;
  • the envisaged period of storage of the personal data, or the criteria for determining this period;
  • your right to request the rectification, erasure or restriction of processing of the personal data;
  • the right to lodge a complaint with the supervisory authority;
  • if the data were not collected from you, all available information on their source;
  • the fact of automated decision-making (if such a procedure is used).

The Data Controller provides access to the personal data by sending you the processed personal data and the information by email following your identification.

12. The right to rectification

You are entitled to have the Data Controller rectify inaccurate personal data concerning you without delay upon your request.

13. The right to restriction of processing

You are entitled to have the Data Controller restrict the processing at your request if any of the following applies:

  • you contest the accuracy of the personal data;
  • the processing is unlawful, but you oppose the erasure of the data;
  • the Data Controller no longer needs the personal data, but you require them for the establishment of legal claims;
  • you have objected to the processing, but the Data Controller’s legitimate interest may also justify the processing.

If the processing is subject to restriction, such personal data may — with the exception of storage — only be processed with the consent of the data subject, for the establishment of legal claims, for the protection of the rights of another person, or on grounds of important public interest. The Data Controller informs you in advance (at least 3 working days before) of the lifting of the restriction on processing.

14. The right to erasure (right to be forgotten)

You are entitled to have the Data Controller erase the personal data concerning you without delay if any of the following grounds applies:

  • the personal data are no longer needed;
  • you withdraw your consent and there is no other legal basis for the processing;
  • you object to processing based on legitimate interest;
  • the personal data have been processed unlawfully;
  • they must be erased to comply with a legal obligation.

Erasure does not apply where the processing is necessary:

  • for exercising the right of freedom of expression and information;
  • for compliance with a legal obligation (e.g. in the context of invoicing — retention is required by law);
  • for the establishment, exercise or defence of legal claims.

15. The right to object

You are entitled to object at any time, on grounds relating to your particular situation, to the processing of your personal data based on legitimate interest. In this case, the Data Controller may no longer process the personal data unless it demonstrates that the processing is justified by compelling legitimate grounds which override your interests.

If personal data are processed for direct marketing purposes, you are entitled to object at any time to the processing of personal data concerning you for such purposes, including profiling. If you object, the personal data may no longer be processed for this purpose.

16. The right to data portability

If the processing is carried out by automated means or is based on your voluntary consent, you are entitled to request from the Data Controller the data you have provided, which the Data Controller makes available to you in XML, JSON or CSV format. If technically feasible, you may request that the Data Controller transmit the data in this form to another data controller.

17. Automated decision-making

You are entitled not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects concerning you or similarly significantly affects you. In such cases, the Data Controller is obliged to take appropriate measures to protect the rights of the data subject.

The above does not apply if the decision:

  • is necessary for entering into, or performance of, a contract between you and the Data Controller;
  • is authorised by Union or Member State law;
  • is based on your explicit consent.

18. Registration in the data protection register

Under the provisions of the Infotv., the Data Controller was required to register certain of its data processing activities in the data protection register. This notification obligation ceased on 25 May 2018.

19. Data security measures

The Data Controller declares that it has taken appropriate security measures to protect personal data against unauthorised access, alteration, transmission, disclosure, deletion or destruction, as well as against accidental destruction and damage, and against becoming inaccessible as a result of changes in the technology used.

The Data Controller does everything within its organisational and technical capabilities to ensure that its Data Processors also take appropriate data security measures when working with your personal data.

20. Remedies

If, in your view, the Data Controller has infringed a legal provision on data processing or has not complied with one of your requests, you may initiate the investigation procedure of the Nemzeti Adatvédelmi és Információszabadság Hatóság (Hungarian National Authority for Data Protection and Freedom of Information, NAIH) in order to have the presumed unlawful data processing terminated:

Mailing address:
1363 Budapest, Pf. 9.
Phone numbers:
+36 (30) 683-5969, +36 (30) 549-6838, +36 (1) 391 1400

We also inform you that, in the event of an infringement of the legal provisions on data processing, or if the Data Controller has not complied with one of your requests, you may bring a civil action against the Data Controller before a court.

21. Amendment of the privacy notice

The Data Controller reserves the right to amend this privacy notice in a manner not affecting the purpose and legal basis of the data processing. By using the website after the amendment enters into force, you accept the amended privacy notice.

If the Data Controller intends to carry out further processing of the collected data for a purpose other than that for which they were collected, it will inform you, prior to such further processing, of the purpose of the processing and of the following information:

  • the period of storage of the personal data;
  • your right to request access to the personal data, their rectification, erasure or the restriction of their processing, and, in the case of processing based on legitimate interest, to object;
  • in the case of processing based on consent, the fact that you may withdraw your consent at any time;
  • the right to lodge a complaint with the supervisory authority;
  • whether the provision of the personal data is based on a legal or contractual obligation;
  • the fact of automated decision-making (if such a procedure is used).

The processing may only begin thereafter; if the legal basis of the processing is consent, you must also consent to the processing in addition to being informed.