Pedetti Apartman Balatonfüred

🏡 Pedetti Apartman 🌿

HUMagyar DEDeutsch
Pedetti Apartman - slide 1 Pedetti Apartman - slide 2 Pedetti Apartman - slide 3 Pedetti Apartman - slide 4 Pedetti Apartman - slide 5 Pedetti Apartman - slide 6 Pedetti Apartman - slide 7 Pedetti Apartman - slide 8 Pedetti Apartman - slide 9 Pedetti Apartman - slide 10 Pedetti Apartman - slide 11 Pedetti Apartman - slide 12 Pedetti Apartman - slide 13 Pedetti Apartman - slide 14

Pedetti Apartman - GDPR Information

Dear Guests!

We inform you that for the booking, the provision of certain personal data detailed below is necessary for the successful completion of the booking. In connection with data processing, the data controller hereby informs you about the personal data processed by it, the principles and practices followed in the processing of personal data, the organizational and technical measures taken to protect personal data, and the ways and possibilities of exercising the rights of data subjects.

We inform you that the recorded personal data is handled confidentially, in accordance with data protection legislation and international recommendations, and in accordance with this declaration. We also inform you that the legal regulation of personal data processing fundamentally changes from May 25, 2018, as from this date, Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter: GDPR) becomes mandatory. By booking through Facebook or email, as a user you accept the provisions of this privacy notice (hereinafter: Privacy Notice).

I. Basic Concepts

  1. personal data: any information relating to an identified or identifiable natural person (data subject) - in particular the name, identifier of the data subject, as well as knowledge characteristic of one or more of their physical, physiological, mental, economic, cultural or social identity -, as well as conclusions about the data subject that can be drawn from the data.

  2. data file: the totality of data processed in one register;

  3. data subject: any natural person who is identified or - directly or indirectly - identifiable on the basis of any information;

  4. data processing: the performance of technical tasks related to data processing operations, regardless of the method and tool used for performing the operations and the place of application, provided that the technical task is performed on the data;

  5. third party: a natural or legal person or organization without legal personality who or which is not identical with the data subject, the data controller or the data processor;

  6. data protection: the totality of technologies and organizational methods that enable the inviolability, integrity, usability and confidentiality of the collected data assets;

  7. data protection incident: a breach of data security that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to, personal data transmitted, stored or otherwise processed;

  8. data processing: regardless of the procedure used, any operation or set of operations performed on data, such as in particular collection, recording, registration, organization, structuring, storage, adaptation or alteration, use, consultation, disclosure, transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure and destruction, as well as preventing further use of data, taking photographs, sound or image recordings, and recording physical characteristics suitable for identifying a person (e.g. fingerprint or palm print, DNA sample, iris image).

  9. data controller: the natural or legal person or organization without legal personality who or which alone or jointly with others determines the purposes of data processing, makes and implements decisions concerning data processing (including the instrument used), or has it implemented by the data processor.

  10. data transfer: making data available to a specified third party. 11. data deletion: making data unrecognizable in such a way that their restoration is no longer possible.

  11. restriction of processing: the marking of stored personal data with a view to limiting their future processing;

  12. consent: any freely given, specific and informed indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her - comprehensively or for specific operations. It shall be deemed consent if the data subject finalizes the booking by email or on a social media page or in any way, or performs technical settings to this effect, as well as any other statement or action that clearly indicates the data subject's consent to the planned processing of his or her personal data in the given context.

kötelező adatkezelés: amennyiben az adatkezelést törvény vagy – törvény felhatalmazása alapján, az abban meghatározott körben – helyi önkormányzat rendelete közérdeken alapuló célból elrendeli.
nyilvánosságra hozatal: az adat bárki számára történő hozzáférhetővé tétele.
profilalkotás: személyes adatok automatizált kezelésének bármely olyan formája, amelynek során a személyes adatokat valamely természetes személyhez fűződő bizonyos személyes jellemzők értékelésére, különösen a munkahelyi teljesítményhez, gazdasági helyzethez, egészségi állapothoz, személyes preferenciákhoz, érdeklődéshez, megbízhatósághoz, viselkedéshez, tartózkodási helyhez vagy mozgáshoz kapcsolódó jellemzők elemzésére vagy előrejelzésére használják.
II. Az adatkezelő megnevezése, elérhetőségei

Adatkezelő neve: Major Péter

Adatkezelő elérhetősége: Cím: 8230 Balatonfüred, Tamási Áron u. 11/E

Szálláshely cím: Pedetti Apartman, 8230 Balatonfüred, Nádor u. 51

Telefonszám: +36705527552 E-mail cím: majorpet@gmail.com

III. Purpose of data processing

The data controller processes the personal data of Guests for the following purposes:

  1. Primarily for the purpose of booking the apartment and due to reporting obligations, it is necessary to provide certain personal data detailed later.

  2. We also need your personal data for issuing invoices for the accommodation.

  3. The provision of your personal data is also important from the perspective of booking-related communication, so that if any significant circumstances arise that you need to know about, we can inform you about them.

IV. Legal basis for data processing The data controller processes guests' personal data on the following legal basis:

  1. For the purpose specified in point III. a), Article 6(1)(b) of the GDPR, namely the performance of a contract to which the Guest, as data subject, is party.

  2. For the purpose specified in point III. b), Article 6(1)(c) of the GDPR, namely compliance with a legal obligation to which the data controller is subject, specifically the data controller's obligation to prepare receipts and invoices.

  3. For the purpose specified in point III. c), data processing is carried out on the basis of Article 6(1)(a) of the GDPR, in order to properly inform about essential circumstances arising from the contractual relationship. In case the necessity of data processing for other purposes or on other legal basis arises, the data controller is obliged to inform the data subject individually, prior to the commencement of data processing, about all important information concerning the intended data processing and the related rights.

V. Scope of processed data

Booking with the data controller is not tied to separate registration, however, for booking the following personal data must be provided:

  1. Name (family and given name),

  2. Phone number,

  3. E-mail address,

  4. Billing address.

VI. Duration of data processing

Data processing regarding the Guest's phone number and e-mail address begins from the time of providing the booking date and is deleted after the Guest's departure from the apartment. Regarding the Guest's name and billing address, data processing takes place for the period specified in the accounting law, for 8 (eight) years, after which the data controller destroys them. VII. Data security The data controller takes all necessary steps to ensure the security of the personal data provided by Guests both in the network system and during data storage and safekeeping. The data controller performs its workflows on a password and antivirus protected computer. VIII. Guest rights and enforcement possibilities

  1. The Guest is entitled to receive feedback from the data controller as to whether processing of his or her personal data is underway, and if it is underway, then to receive information about his or her processed data and all relevant information concerning the data processing.

  2. The Guest may request that the data controller rectify without undue delay the inaccurate personal data concerning him or her. Taking into account the purposes of the processing, he or she may request the completion of his or her personal data.

  3. You may request the erasure of your personal data, except if the processing is necessary for compliance with the data controller's legal obligations or for the establishment, exercise or defense of legal claims. The data controller shall erase the personal data without undue delay if the processing of the data is unlawful, it is incomplete or incorrect, the purpose of data processing has ceased, the storage period has expired, or it has been ordered by a court or authority, or its erasure is necessary for compliance with a legal obligation incumbent on the data controller.

  4. If the data controller processes personal data based on the data subject's consent, the data subject may withdraw such consent. If the data processing has no other legal basis, the data controller shall erase the personal data affected by the withdrawn consent.

  5. The Guest is entitled to request that the data controller restrict processing if · the Guest contests the accuracy of the personal data – for a period enabling the controller to verify the accuracy; · the processing is unlawful but the Guest opposes the erasure of the data and requests the restriction of their use instead; · the data controller no longer needs the personal data for the purposes of processing, but the data subject requires them for the establishment, exercise or defense of legal claims; or · the data subject has objected to processing based on public interest or the legitimate interests of the data controller or a third party. During the restriction period, the data controller may not use the personal data for purposes other than storage.

  6. When exercising the Guest's rights, the data controller shall examine the data subject's request and take the necessary measures, and shall inform the Guest about these or the reasons for their omission within one month of receiving the request.

  7. Enforcement of rights: The Guest may send his or her request concerning data processing to the data controller specified in point I, to the address or e-mail address specified therein. In case of violation of his or her rights, the data subject may turn to the court competent according to the address of the data controller, or – at his or her choice – to the court competent according to his or her place of residence, or in the absence thereof, according to his or her place of stay, and may file a lawsuit. The Guest may also lodge a complaint with the National Authority for Data Protection and Freedom of Information (1125 Budapest, Szilágyi Erzsébet Fasor 22/c., hereinafter: NAIH), and may initiate an investigation on the grounds that a violation of rights has occurred or there is a direct danger thereof in connection with the processing of his or her personal data.