Terms of Use

- personal data: any information relating to an identified or identifiable natural person ("data subject"); identify a natural person who, directly or indirectly, in particular by an identifier such as name, number, location, online identifier or one or more factors relating to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person identifiable;

- data management: any operation or set of operations on personal data or files, whether automated or non-automated, such as collection, recording, systematisation, segmentation, storage, transformation or alteration , query, access, use, communication through transmission, distribution or otherwise making available, coordination or interconnection, restriction, deletion or destruction;

- data controller: means any natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or the specific criteria for the designation of the controller may also be determined by Union or Member State law;

- data processor: any natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller;

- Privacy Incident: A security breach that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or compromise of personal information that is transmitted, stored, or otherwise handled. results in unauthorized access

The data controller is Viniczai Kitchen Kft. (hereinafter: Data controller's registered office: 8000 Székesfehérvár, Jancsár köz 8., representative: 06 (20) 420-5025, e-mail address: info@viniczaietterem.hu).

The processing of personal data must be carried out lawfully and fairly and in a way that is transparent to the data subject. Personal collection may only take place for a specific purpose, for a specific, clear and legitimate purpose. The data processed must be appropriate and relevant to the purpose of the processing and must be limited to what is necessary. The data processed must be accurate and, where necessary, kept up to date. All reasonable measures shall be taken to ensure that personal data which are inaccurate for the purposes of data processing are erased or rectified without delay. Personal data must be stored in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the data were processed. Personal data must be processed in such a way as to ensure adequate security of personal data, including protection against unauthorized or unlawful processing, accidental loss, destruction or damage, by appropriate technical or organizational measures.

Data management involves persons visiting the Website operated by the Data Controller, those ordering products on the Website, those interested in the Data Controller's services through the Website, those who like the Website on Facebook, subscribers, contacts and subscribers via chat bot (Facebook Messenger). < / p>

1. If you are interested in services on the Website, the Data Controller manages the following data of the data subject: name, e-mail address, telephone number.
2. Data managed by visitors to the Website: When using the website, different types of cookies may be installed on the device of the visitor concerned. Each cookie may store the visitor's IP address or part of it, the type of browser, information about the use of the website (time of visit, pages visited, duration of the session, number of clicks).

-2016/679 EU Regulation (General Data Protection Regulation, hereinafter: the Regulation)
- Act CXII of 2011 on the right to information self-determination and freedom of information. Act (Ektv.)
- Act CVIII of 2001 on certain issues of electronic commerce services and information society services. law
- Act XLVIII of 2008 on the basic conditions and certain restrictions of economic advertising activity. law.

- personal data: any information relating to an identified or identifiable natural person ("data subject"); identify a natural person who, directly or indirectly, in particular by an identifier such as name, number, location, online identifier or one or more factors relating to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person identifiable;

- data management: any operation or set of operations on personal data or files, whether automated or non-automated, such as collection, recording, systematisation, segmentation, storage, transformation or alteration , query, access, use, communication through transmission, distribution or otherwise making available, coordination or interconnection, restriction, deletion or destruction;

- data controller: means any natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or the specific criteria for the designation of the controller may also be determined by Union or Member State law;

- data processor: any natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller;

- Privacy Incident: A security breach that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or compromise of personal information that is transmitted, stored, or otherwise handled. results in unauthorized access

The data controller is Viniczai Kitchen Kft. (hereinafter: Data controller's registered office: 8000 Székesfehérvár, Jancsár köz 8., representative: 06 (20) 420-5025, e-mail address: info@viniczaietterem.hu).

The processing of personal data must be carried out lawfully and fairly and in a way that is transparent to the data subject. Personal collection may only take place for a specific purpose, for a specific, clear and legitimate purpose. The data processed must be appropriate and relevant to the purpose of the processing and must be limited to what is necessary. The data processed must be accurate and, where necessary, kept up to date. All reasonable measures shall be taken to ensure that personal data which are inaccurate for the purposes of data processing are erased or rectified without delay. Personal data must be stored in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the data were processed. Personal data must be processed in such a way as to ensure adequate security of personal data, including protection against unauthorized or unlawful processing, accidental loss, destruction or damage, by appropriate technical or organizational measures.

Data management involves persons visiting the Website operated by the Data Controller, those ordering products on the Website, those interested in the Data Controller's services through the Website, those who like the Website on Facebook, subscribers, contacts and subscribers via chat bot (Facebook Messenger).

1. If you are interested in services on the Website, the Data Controller manages the following data of the data subject: name, e-mail address, telephone number.
2. Data managed by visitors to the Website: When using the website, different types of cookies may be installed on the device of the visitor concerned. Each cookie may store the visitor's IP address or part of it, the type of browser, information about the use of the website (time of visit, pages visited, duration of the session, number of clicks).

1. In the case of an interest sent through a website, the purpose of the data processing is to inform the data subject about the service of interest to him. 2. For more information about the purpose of cookies used by the Website, see the "Cookies Used on the Website" section.

1. In the case of advice requested through the Website & nbsp; Article 6 (1) of the Regulation b) and Ektv. 13 / A. §. This information is necessary for the conclusion of the consultancy contract and the performance of the consultancy. Without this data, the contract for the consultation cannot be concluded and fulfilled (the customer cannot place his order, the Data Controller cannot invoice and perform the consultation). The management of the telephone number, the tax number, is based on the voluntary consent of the person concerned (Article 6 (1) (a) of the Regulation). If entered, the tax number will appear on the invoice.
2. In the case of data provided in the case of an interest sent via the Website & nbsp;, the legal basis for the processing is the voluntary consent of the data subject (Article 6 (1) (a) of the Regulation).
3. Legal basis for data management in the case of cookies & nbsp; 13 / A. §., Decree Article 6 (1). b). In the case of cookies that serve a convenience or marketing function, or to analyze the use of the website, to improve its performance: the voluntary consent of the data subject (Article 6 (1) (a) of the Regulation). In connection with the use of the Facebook plugin, the legal basis for data management is the Ektv. 13 / A. § and Article 6 (1) of the Regulation. (a).
4. The Data Controller may also process the data subject's data if this is necessary for the protection of his or her legitimate interests, unless those interests take precedence over the data subject's interests or fundamental rights and freedoms which require the protection of personal data. (Article 6 (1) (f) of the Regulation). This may be the case if the Data Controller has a claim against the data subject (eg an unpaid account).

1. Data processed in the case of & nbsp; interest sent through the Website & nbsp; will be handled by the Data Controller until the data subject is provided with the requested information. The Data Controller shall automatically delete the data no later than after 1 year thereafter, unless the data subject has contacted the Data Controller again. In the event of a repeated request, the Data Controller shall process the personal data no later than 1 year from the fulfillment of the information.
2. For information about the lifespan of cookies, see "Properties of Cookies Used". Marking the Website as a "favorite" on Facebook, or in case of subscription, the data management lasts until the data subject's request for deletion (unsubscribe, unmarked).

Personal data may be accessed by authorized employees of the Data Controller, their contractual representatives who need access to personal data in order to perform their duties, as well as the Chief Executive Officer and the Deputy Data Controller. We transfer personal data to third parties only for the purpose of data processing. The data processor may only process the personal data obtained in accordance with the instructions of the data controller, may not process data for its own purposes, and must store and retain personal data in accordance with the provisions of the data controller.
The Data Controller uses Google Analytics, a service operated by Google, Inc., to analyze website usage, which collects information and generates a statistical report on website usage without uniquely identifying visitors. This service uses cookies, which are installed on the affected person's computer. The information collected by the cookie about your use of the website is stored on Google LLC's data processing server (located at 1600 Amphitheater Parkway, Mountain View, CA 94043, USA., Phone: 650-253-0000, e-mail: data-protection -office@google.com). Google LLC is listed on the Privacy Shiled Framework. For data management related to the use of the Facebook plugin, the data processor is Facebook Inc., located at 1 Hacker Way, Menlo Park, California 94025, USA, phone: +1 650-543-4800, e-mail: privacyshield@support.facebook.com. Facebook Inc. is listed on the Privacy Shiled Framework Compliance List.

A cookie is a set of textual information that the Website transmits to a small file on the hard drive of the affected user's computer or mobile device. A cookie typically contains the name of the computer domain from which the cookie came, as well as the cookie expiration date and a randomly generated number (value). The cookies used by the Website serve several purposes. Some cookies are technically necessary for the operation of the site, as without them the site and its basic functions would not be usable. Some cookies make it easier to use the Website by remembering the visitor's actions and personal settings (such as language, font size and other custom settings related to the display of the website) for a certain period of time, so that the visitor does not have to re-enter them each time or again. navigates from one page to another. There are cookies that serve to increase the performance of the Website by collecting information and reporting on statistics about the use of the Website. Some cookies serve advertising purposes by helping visitors to show you the most interesting ads.

Session cookies: & nbsp; Temporary cookies that remain in the cookie file of the affected browser's web browser until you leave the Website and are automatically deleted at the end of the session or when you close the browser. These are necessary for browsing the website and using the functions, among other things, allowing the visitor to memorize the actions performed by the site, function or service. Usage Cookies: & nbsp; they are used to make the Website memorize the settings and ways in which the user uses the Website. This is so that you do not have to enter them again on your next visit. Without the data in the cookies that store your preferences, our website will be able to operate less smoothly. Performance statistical cookies: & nbsp; cookies that are used by the Data Controller to collect information about how visitors use the Website, such as which page they viewed, what session they started there, and how long they viewed the page, how long the session lasted. The Data Controller uses Google Analytics, which uses cookies to collect information and generate a statistical report on the use of the website without uniquely identifying visitors. The purpose of using these cookies is to give the Data Controller an idea of ​​the use of the Website and to further develop and provide a user-friendly experience for visitors.

these cookies can be used to serve ads of interest to the affected visitor and to increase the effectiveness of the appearance of the Website. For example, cookies in this feature can remember a visitor's recent searches, past interactions with individual advertisers 'ads or search results, and visits to advertisers' websites, and help analyze relevant data to serve relevant ads.

During data management and storage, the Data Controller ensures the security of the managed and stored data, access from unauthorized persons and protection against unauthorized modification and alteration by measures in accordance with the state of the art (eg firewall).

The Data Controller provides the level of protection you expect when handling your data.

As a data subject, you may request from the Data Controller access to, rectification, erasure or restriction of the processing of personal data concerning you and may object to the processing of such personal data. You have the right to receive feedback from the Data Controller as to whether your personal data is being processed. If such data processing is in progress, you have the right to be informed about the purposes of the data processing, the categories of personal data concerned, the categories of recipients of the data, the planned period of storage (if this is not possible, the criteria for determining this period). The Data Controller will provide you with a copy of the personal data processed. For further copies, the Data Controller may charge a reasonable fee based on administrative costs. If you have submitted your application electronically, the information must be provided in a widely used electronic format, unless you request otherwise.

1. Personal data is no longer needed for the purpose for which it was collected or otherwise processed;
2. the data subject withdraws his or her consent on which the processing is based and there is no other legal basis for the processing;
3. the data subject objects to the data processing and there is no overriding legitimate reason for the data processing or the data subject objects to the data processing pursuant to Article 21 (2) of the Regulation;
4. Personal information has been compromised;
5. personal data must be deleted in order to fulfill a legal obligation under EU or Member State law applicable to the controller;
6. Personal data was collected in connection with the provision of information society services directly to children.

1. You dispute the accuracy of your personal information, in which case the limitation shall apply to the period of time that allows the controller to verify the accuracy of your personal information;
2. The processing is illegal and you oppose the deletion of the data and instead request a restriction on its use;
3. The controller no longer needs personal data for data processing purposes, but the data subject requests them in order to make, enforce or protect legal claims; or you have objected to the data processing; in this case, the restriction shall apply for as long as it is determined whether the legitimate reasons of the controller take precedence over the legitimate reasons of the data subject.
4. You have the right to receive the personal data concerning you provided to the Data Controller in a structured, widely used machine-readable format and to transfer this data to another data controller.

1. the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
2. data management is necessary to protect the legitimate interests of the controller or a third party.

In that case, the controller may not further process the personal data unless the controller demonstrates that the processing is justified by compelling legitimate reasons which take precedence over the interests, rights and freedoms of the data subject or which are the subject of legal claims, related to the enforcement or protection of Where personal data are processed for the purpose of direct business acquisition, the data subject shall have the right to object at any time to the processing of personal data concerning him or her for that purpose, including profiling, in so far as it relates to direct business acquisition. If a privacy incident is likely to pose a high risk to your rights and freedoms, the Data Controller will notify you of the privacy incident without delay.

Viniczai Kitchen Kft. (Hereinafter: Data Controller's registered office: 8000 Székesfehérvár, Jancsár köz 8., representative: 06 (20) 420-5025, e-mail address: info@viniczaietterem.hu) may submit its application to the Data Controller in the above cases. The Data Controller will inform you without undue delay, but within 1 month of receipt of the request, of the action taken on the request. If necessary, taking into account the complexity of the application and the number of applications, this deadline may be extended by a further 2 months. The Data Controller will inform you of the extension of the deadline within 1 month from the receipt of the request, indicating the reasons for the delay. If you have submitted your application electronically, the information should, if possible, be provided electronically, unless you request otherwise. If the Data Controller does not take action on your request, it will inform you of the reasons for the non-action without delay, but no later than within 1 month from the receipt of the request. In the event of failure to take action or action taken, you may lodge a complaint with the National Data Protection and Freedom of Information Authority and have the right to a judicial remedy.

You have the right to initiate proceedings before the National Data Protection and Freedom of Information Authority & nbsp; if there has been or is an imminent threat of an infringement of the processing of personal data. Contact details of the Authority: postal address: 1530 Budapest, Pf .: 5., telephone number: +36 (1) 391-1400, e-mail address: ugyfelszolgalat@naih.hu, website: http://naih.hu . If your rights are violated, you can take legal action against the Data Controller. The trial falls within the jurisdiction of the tribunal. The lawsuit may, at your option, be brought before the court of your domicile or residence. A party who does not otherwise have legal capacity to sue may also be a party to a lawsuit. The Authority may intervene in the proceedings in order for the person concerned to succeed.