Terms of purchase

DIAPOLO DEUTSCHLAND E.K. (von Imhof-Str. 5, Reisbach, 94419 hereinafter referred to as provider, data controller), as a data controller for diapolo.hu, is responsible for the content of this legal notice. You are responsible for ensuring that all data management related to your activity meets the requirements set out in this Code and the applicable legislation.

DDIAPOLO DEUTSCHLAND E.K. is committed to protect the privacy of its customers' information self-determination rights in order to protect the privacy of their committed users and partners. Diapolo Media Kft., as the operator and data manager of this website, treats personal information confidentially and will take all security, technical and organizational measures that guarantee the security of the data.
In this document, the operator describes the data management principles described below, the activities and rules related to the data managed by the site. The data management principles relating to the operation of the website are in line with existing data protection legislation, in particular:
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Regulation (EC) No 95/46
CXII. of 2011 Law on Information Self-Destruction and Freedom of Information (hereinafter: Information, Privacy Act);
CVIII. of 2001 Act on Electronic Commerce Services and Certain Issues of Information Society Services (Eker.tv)
XLVIII of 2008. Act on the Fundamental Terms and Limitations of Economic Advertising (Grt.).

1., Definitions, explanations
1.1. concerned: any natural person identified, directly or indirectly, by any specific personal data;
1.2. personal data: data relating to the data subject, in particular the name, identifying mark, and the knowledge of one or more physical, physiological, mental, economic, cultural or social identities of the data subject, as well as the conclusion deducted from it;
1.3. contribution: a voluntary and explicit statement of the person's wishes concerned, based on appropriate information and with which he or she gives his / her unambiguous consent to the handling of his or her personal data, covering all or part of operations;
1.4. protest: the statement of the person concerned with which he or she is objecting to the handling of his / her personal data and requesting the termination of data processing and the processing of the data processed;
1.5."data controller" means a natural or legal person or an organization that does not have legal personality who either independently or with other determines the purpose of the processing of data, makes and executes decisions on data handling (including the equipment used) or performs with the data processor entrusted to it;
1.6. data management: irrespective of the method used, any operation or all of the operations, such as collecting, capturing, enrolling, systematizing, storing, modifying, using, querying, transmitting, publishing, aligning or linking, blocking, deleting and destroying any of the operations, or to prevent further use of the data, to take photographs, sound or images, and to record the physical characteristics (e.g. finger or palm print, DNA sample, iris image) suitable for identifying the person;
1.7. transfer of data: making the data available to a specific third party;
1.8. disclosure: making the data available to anyone;
1.9. data cancellation: making data unrecognizable in such a way that their recovery is no longer possible;
1.10. data designation: Providing the identification of the data with a view to distinguishing it;;
1.11. data encryption: for the purpose of limiting the further handling of the data by means of an identification mark for a definite or fixed period of time;
1.12. data destruction: complete physical destruction of data-containing media;
1.13. data processing: performing technical tasks related to data management operations, irrespective of the method and device used to implement the operations and the location of the application, provided that the technical task is carried out on the data;
1.14. "data processor" means a natural or legal person or an organization without legal personality who performs the processing of data on the basis of a contract concluded with the data controller, including the conclusion of a contract under the law;
1.15. third party: a natural or legal person or a non-legal entity which is not the same as the data subject, the data controller or the data processor;
1.16. third country: any State other than an EEA State.

2., Data management principles during the operation of the site
Personal data can be handled if
a) the person concerned agrees to it or
b) it orders the law of a local government on the basis of the mandate of the law and within the scope specified therein for the purpose of the public interest (mandatory data management)..
Personal data may also be handled if the acquisition of the person concerned is impossible or disproportionate and the processing of personal data is necessary for the fulfillment of the legal obligation of the data controller or for the legitimate interests of the data controller or third party, protection of the rights of the defense.
If the personal data has been collected with the consent of the person concerned, the data controller shall record the data recorded in the absence of a different provision of the law
a) with a view to fulfill a legal obligation on him/her, or
b) to enforce the legitimate interests of the data controller or third party when the enforcement of this interest is proportionate to the limitation of the right to the protection of personal data
without further special consent and after withdrawing the consent of the person concerned.
Personal data can only be handled for a specific purpose, in order to exercise the right and to fulfill obligations. At all stages of the data handling, it must comply with this objective, and data capture and handling must be fair.
Only personal data is essential for achieving the purpose of data management can only be used to reach the goal and only to the extent and time necessary to attain it.
Personal data can only be handled with appropriate informed consent.
Before the data is processed, the data subject shall be informed that the data is based on consent or is compulsory. The data subject must be informed, in a clear, unambiguous and detailed manner, of all the facts related to his or her data management, in particular the purpose and legal basis of the data handling, the data controller and the person entitled to be processed, the duration of the data handling, if the personal data of the data subject and to fulfill the legal obligation for the data controller or to enforce a legitimate interest of a third party, and who will be able to access the data. The information should also include the rights and remedies available to the data subject in question.
Data management must ensure the accuracy, completeness and up-to-date of the data as well as the identity of the data subject for the time needed for the purpose of data management.
Personal data may be transmitted to a data processor or data processor performing data processing in a third country if the data subject explicitly agrees or the above conditions for data processing are met and the data protection level in the third country is managed and processed in an adequate level of protection of personal data . Data transmission to EEA States shall be deemed to be the transfer of data within the territory of Hungary.

3., The scope of the personal data handled and the data handling characteristics
Data management of the activity of diapolo.eu is based on a voluntary contribution. In some cases, however, the management, storage, and transmission of a particular set of data are made mandatory by law, which will be specifically notified to visitors,and users.

3/1. Details of visitors to the diapolo.eu web site
The purpose of data management: during the site visit, the website's hosting provider records the visitor data to check the functionality of the service and to prevent abuses.
Legal Basis for Data Processing: Contribution of the Contributor and CVIII of 2001 on certain aspects of information society services. Law 13 / A. § (3).
The range of data processed is the date, time, IP address of the user's computer, the address of the page visited, the address of the page you have visited, the user's operating system, and the browser.

Google Analytics webanalitical software and external server helps you independently measure and audit your site's visit and other webanalytic data. The data controller can provide detailed information on how to handle measurement data at www.google-analytics.com.
For the tailor-made service, external service providers have a small data packet, Cookies are placed and read back. If your browser returns a previously saved cookie, the service providers that handle it will have the ability to link the user's current visit to the previous one, but only for their own content.
On the diapolo.eu website, web beacons will not be used.

3/2. The contact details of diapolo.eu, application, and the details of information request 
The purpose of data management is to get in touch, keep thee contact, and request information.
The legal basis for data handling is the volunteer's contribution.
The scope of the data processed: name, e-mail address, phone number, subject, text, date and time of the message, and other personal data provided by the person concerned.
Deadline for deletion of data: the cessation of the purpose of data management or the withdrawal of the consent.

The cancellation or modification of personal data can be initiated in the following ways:
► by mail: DIAPOLO DEUTSCHLAND E.K.  von Imhof-Str. 5, Reisbach, 94419 hereinafter referred to as provider, data controller
► by e-mail at info@diapolo.hu.

User rights and how to exercise them: User's rights and obligations are based on Info TV. 14-21. §. The User is entitled to the right of information under the law and may request the rectification, deletion or blocking of his / her data. For details on the rights and obligations, see the sections of the law described above on the following website: http://njt.hu/cgi_bin/njt_doc.cgi?docid=139257.296244 (Sections 14-21)

Opportunities for remedies related to data management: The options for remedies available to the user affected by the data processing are Info Info. 22-23. § contains: http://njt.hu/cgi_bin/njt_doc.cgi?docid=139257.296244 http://njt.hu/cgi_bin/njt_doc.cgi?docid=139257.296244

For more information about data management, please contact the Data Manager at info@diapolo.hu and at the National Privacy and Information Authority (Headquarters: Szilagyi Erzsebet fasor 22 / c, 1125 Budapest, Mailing address: 1530 Budapest, Pf .: 5, Phone number: +36 (1) 391-1400).

4., Storage of personal data, data management
The DIAPOLO DEUTSCHLAND E.K. has computer technology tools and data storage solutions at its headquarters (Nagytetenyi Street 222, 1225 Budapest).

5., Data manager's data and contact details
Name: DIAPOLO DEUTSCHLAND E.K. and the employees performing the tasks related to the performance of a specific contract with them.
Head office: von Imhof-Str. 5, Reisbach, 94419
Online availability: info@diapolo.hu

6., Data processor's data and contact information
Name: DIAPOLO DEUTSCHLAND E.K. and the employees performing the tasks related to the performance of a specific contract with them
Head office: von Imhof-Str. 5, Reisbach, 94419
Online availability: info@diapolo.hu

7., Possibilities of Remedies
The interested data owner can contact the National Data Protection and Data Liberation Authority for an appeal to. Contact Office:
National Privacy and Freedom Authority
Szilagyi Erzsebet fasor 22/C. Budapest, 1024
Website: http://www.naih.hu