Our company follows the principles below when processing personal data:
a) We process personal data lawfully, fairly, and transparently for you.
b) We collect personal data only for specified, explicit, and legitimate purposes and do not process them in a manner incompatible with these purposes.
c) The personal data we collect and process are appropriate, relevant, and limited to what is necessary for the purposes of processing.
d) Our company takes all reasonable measures to ensure that the data we process is accurate and up-to-date when necessary; inaccurate personal data is promptly deleted or corrected.
e) We store personal data in a form that allows identification only for as long as necessary to achieve the purposes of data processing.
f) We ensure appropriate security of personal data by implementing suitable technical and organizational measures to protect against unauthorized or unlawful processing, accidental loss, destruction, or damage.

Our company processes your personal data
a) Based on your informed and voluntary consent, only to the necessary extent and always for a specific purpose. This includes collecting, recording, organizing, storing, and using your data.
b) In certain cases, processing your data is based on legal requirements and is mandatory; in such cases, we will explicitly inform you.
c) In some instances, our company or a third party has a legitimate interest in processing your personal data, such as for operating, developing, and securing our website.

Name / Company: AIVAREX Kft.
Registered Address: 1165 Budapest, Nyílpuska utca 5.
Tax Number: 12342594-2-42
Website Name and Address: www.aivarex.hu
Privacy Policy Availability: www.aivarex.hu

Name: AIVAREX Kft.
Registered Address: 1165 Budapest, Nyílpuska utca 5.
Mailing Address: 1165 Budapest, Nyílpuska utca 5.
Email: aivarex@aivarex.hu
Phone: +36 1 401 0419

Name / Company: Rackhost Zrt.
Registered Address: 6722 Szeged, Tisza Lajos körút 41
Mailing Address: 6722 Szeged, Tisza Lajos körút 41
Email: info@rackhost.hu

Our website only requests personal data from visitors if they wish to make an inquiry. If you have questions regarding data processing, you can request further information via **aivarex@aivarex.hu** or by postal mail. We will respond without delay, within **20 days** (but no later than **1 month**) to the contact details you provide.

- GDPR (General Data Protection Regulation) is the European Union’s new Data Protection Regulation;
- Data processing: Any operation or set of operations performed on personal data or data sets, whether automated or not, including collection, recording, structuring, storing, modifying, retrieving, consulting, using, disclosing, transmitting, making available, aligning, combining, restricting, erasing, or destroying.
- Data processor: A natural or legal person, public authority, agency, or other entity that processes personal data on behalf of the data controller.
- Personal data: Any information relating to an identified or identifiable natural person (data subject). A natural person is identifiable if they can be identified, directly or indirectly, particularly by reference to an identifier such as a name, number, location data, online identifier, or factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
- Data controller: A natural or legal person, public authority, agency, or other entity that determines the purposes and means of processing personal data, alone or jointly with others. If the purposes and means of processing are determined by EU or Member State law, the data controller may be designated according to specific criteria set by such laws.
- Data subject's consent: The data subject’s voluntary, specific, informed, and unambiguous indication of their wishes by which they signify agreement to the processing of personal data relating to them through a statement or a clear affirmative action.
- Data breach: A security breach leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed.
- Recipient: A natural or legal person, public authority, agency, or other entity to whom personal data is disclosed, whether or not they are a third party. Public authorities that may access personal data in accordance with EU or Member State law for a specific investigation are not considered recipients; processing by these public authorities must comply with applicable data protection rules.
- Third party: A natural or legal person, public authority, agency, or other entity other than the data subject, data controller, or data processor, as well as persons who, under the direct authority of the data controller or data processor, are authorized to process personal data.

Principles of Data Processing
The data controller declares that it processes personal data in accordance with this privacy policy and complies with applicable laws, paying particular attention to the following:

The processing of personal data must be lawful, fair, and transparent to the data subject.

The collection of personal data must be limited to specified, explicit, and legitimate purposes. Data processing must be appropriate and relevant and should only extend to the necessary extent.

Personal data must be accurate and up-to-date. Inaccurate personal data must be promptly deleted.

Personal data must be stored in a form that allows identification of data subjects only for as long as necessary. Storage for longer periods may only occur for public interest archiving, scientific or historical research, or statistical purposes.

Personal data processing must be carried out in a way that ensures adequate security through appropriate technical or organizational measures, protecting against unauthorized or unlawful processing, accidental loss, destruction, or damage.

The principles of data protection must be applied to any information related to an identified or identifiable natural person.

The primary goal of data processing is to protect the visitors of the service provider's website.

The legal basis for data processing is the consent of the data subject. The duration of data processing and the deletion of data. The duration of data processing is always dependent on the specific user purpose, but the data must be immediately deleted once the originally intended purpose has been fulfilled. The data subject can withdraw their consent for data processing at any time by sending an email to the contact email address. If there is no legal obstacle to deletion, the data will be deleted. The data processor and its employees are authorized to access the data.

The data subject may request access to their personal data, rectification, deletion, or restriction of its processing from the data controller, and may object to the processing of their personal data, as well as exercise their right to data portability. The data subject may withdraw their consent for data processing at any time, but this does not affect the lawfulness of the data processing based on the consent before withdrawal. The data subject has the right to submit a complaint to the supervisory authority. The data subject has the right to request that the data controller correct or complete inaccurate personal data without undue delay. The data subject has the right to request the deletion of inaccurate personal data without undue delay, and the data controller is obliged to delete personal data without undue delay if there is no other legal basis for data processing. Personal data modification or deletion can be initiated by email, phone, or letter using the provided contact options.

The purpose of data processing is to issue and send an invoice, either electronic or paper, as an email attachment. The legal basis for data processing is mandatory processing based on the law. The data subjects are the service provider's customers.

Duration of data processing: Data processing takes place according to legal requirements or until the withdrawal of consent. You can withdraw your consent for data processing at any time by sending an email to the contact address. Data will be deleted once consent for data processing is withdrawn. You can withdraw your consent for data processing at any time by sending an email to the contact email address. Deletion of invoicing data may occur according to legal regulations. The data processor and its employees are authorized to access the data. Data storage method: electronic. Invoice data modification or deletion can be initiated by email, phone, or letter using the provided contact options.

Scope of processed data:
Specific purpose of the processed data:
Name: Identification, communication, invoicing. Company name: Identification, communication, invoicing.
Address: Identification, communication, invoicing.
Email: Identification, communication.
Phone: Identification, communication.
Tax number / tax identification number: Customer identification.
Invoice data: Invoice identification.
Invoice issue date: Technical informational operation.

The data subject may object to the processing of their personal data, in which case the procedures outlined in this notice and the related laws will apply.

Cookies are small data files (hereinafter referred to as cookies) that are placed on your computer via the website when you use it, and they are saved and stored by your internet browser. Most commonly used internet browsers (Chrome, Firefox, etc.) accept and enable cookies by default, but it is up to you to refuse or disable them by modifying your browser settings, and you can also delete cookies already stored on your computer. Each browser provides more detailed information about cookies in its "Help" section.

Some cookies do not require your prior consent. We provide brief information about these cookies when you first visit our website. These include authentication, multimedia player, load balancing, session cookies that help customize the user interface, and security cookies focused on the user.

Cookie Type: The website uses Google Analytics.

Function: This cookie, used by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), records how users use the website. Based on the information recorded, reports can be generated to help further develop the website.

The cookie records the following information anonymously:
(i) The number of visitors to the website,
(ii) The website visitors' sources of entry, and
(iii) Which pages on the website the visitors accessed. Validity (deletion date or deadline): 1 year.

Social media is a medium where messages are spread through social users. Social media uses the internet and online platforms to allow users to become content creators, not just consumers. Social media includes platforms like Facebook, Twitter, Instagram, TikTok, YouTube, etc., where user-generated content is shared. Social media presentations may include public speeches, presentations, product or service demonstrations. Information shared on social media can be in the form of forums, blog posts, images, videos, audios, message boards, emails, etc. Consequently, the scope of processed data may include not only personal data but also the user's public profile picture.

Data subjects: Visitors to the website. The purpose of data collection is to promote the website or associated pages. The legal basis for data processing is the voluntary consent of the data subject. The duration of data processing: As per the regulations of the respective social media platform. Data deletion deadline: As per the regulations of the respective social media platform. Those authorized to access the data: As per the regulations of the respective social media platform. Data storage method: Electronic. It's important to note that when users upload or submit personal data, they grant the social media platform operator worldwide permission to store and use such content. Therefore, it is essential to ensure that the user has full authorization to share the information.

Google Analytics: Our website does not use Google Analytics. If the aforementioned page were to use Google Analytics: Google Analytics creates reports for website operators based on internal cookies (cookies) regarding user habits.

Google uses the information to evaluate how users use the website. In addition, Google provides reports related to website activity to the website operator to enable further services.

Data is stored on Google's servers in an encrypted format to prevent misuse of the data. You can disable Google Analytics as follows. A quote from the page: Website users who do not wish for Google Analytics JavaScript to create reports about their data may install the Google Analytics opt-out browser extension. The extension prevents Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sending information to the Google Analytics system. The extension can be used in most modern browsers.

The Google Analytics opt-out browser extension does not prevent data from being sent to the website or other internet analytics services.
https://support.google.com/analytics/answer/6004245?hl=en

Google Privacy Policy:
https://policies.google.com/privacy?hl=en Detailed information about the usage and protection of data is available through the above links.

Detailed Privacy Policy:
https://static.googleusercontent.com/media/www.google.com/en//intl/en/policies/privacy/google_privacy_policy_en.pdf