General provisions
K9-Immun Ltd. (Registered office: 2094 Nagykovácsi, Rákóczi u. 3.; Company Registration Number: 13-09-150326) respects the privacy rights of visitors to the www.kutyaegeszseg.hu website (“Website”). This privacy statement covers the data collected by K9-Immun Ltd. and how it uses that data. This Privacy Statement also informs you of what you can do if you do not consent to the collection, processing or sharing (transfer) of your personal data when you visit the Website.
This data protection declaration can be amended at any time, so please visit this page periodically to ensure that you are aware of the content of our data protection declaration that is in force at all times and, knowing this, you can give or withdraw your consent to data management.
Personal data
K9-Immun LLC will only process your personal data (name, address, telephone number, e-mail address) if you have voluntarily provided them. If you provide us with the requested personal data, you consent to the processing of the data provided solely for the purposes of your identification and statistical processing, contacting you (including sending newsletters, notifying you of news, products, services related to K9-Immun LLC, fulfilling orders). We will only ask for your voluntary provision of personal data strictly necessary for the purposes indicated in this Privacy Policy and for your consent to the processing of such data. We will process your personal data only to the extent and for the duration necessary for the purposes specified in this Privacy Statement.
If you do not consent to us collecting and processing your personal data, please do not provide us with such data. If you have already provided us with personal data and you wish us to no longer process and delete it from our records, please contact us at [email protected].
The information you provide may be combined with information from other sources, including data provided to other organizations (with the understanding that such data may be shared or transferred) and publicly available data. This information helps us to better design our website. For this purpose, we may share the data you provide with our collaborators, who handle and protect the data according to our instructions. If we share your personal data with third parties for purposes other than those described above, we will seek your consent beforehand and ensure the possibility of deleting your personal data from our records.
Linked websites
The www.k9-doghealth.com website may contain links to other websites. The privacy policies of these websites may differ from that of this website. Therefore, please review the privacy statements of any linked or displayed websites on the K9-Immun LLC website. K9-Immun LLC is not responsible for the privacy policies or practices of such websites.
Automatic collection of non-personal data
In certain cases, non-personal data may be collected automatically. Such data includes the type of browser you use or the operating system, the domain name of the website from which you linked to our website or advertisement. We collect this data to better understand the needs of our visitors and thus enhance the effectiveness of our services and website.
Information automatically stored on your computer
When you visit any of our websites or advertisements, certain data may be stored on your computer. This information may include “cookies” or similar files, which allow us to tailor our website to your interests and preferences. Most browsers allow you to delete cookies, prevent their installation, or receive a warning before a cookie is stored on your computer. Please review your browser’s instructions to learn more about these functions. Note that removing or preventing cookies may hinder the full use of our website. You may need to download an application or change a security setting to access certain information on the K9-Immun LLC website.
Protection of personal data
K9-Immun LLC securely manages data and takes all necessary technical and organizational measures to protect it, according to the state of the art. K9-Immun LLC protects your personal data from unauthorized access, alteration, disclosure, deletion, damage, or destruction, to the best of its ability. If you provide personal data, we store it on servers that K9-Immun LLC has attempted to protect from unauthorized access or intrusion. K9-Immun LLC is not liable for unauthorized access to data by hackers using illegal means. By providing your data, you consent to it being stored outside of Hungary.
Data Management Information
K9-Immun LLC, as the data controller (Registered office: 2094 Nagykovácsi, Rákóczi utca 3; Company Registration Number: 13-09-150326; Tax Number: 23524620-2-13; “Data Controller”), in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (April 27, 2016) on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”), informs Data Subjects as follows regarding the processing of their personal data.
1. Name and contact details of the Data Controller:
K9-Immun LLC, Registered office: 2094 Nagykovácsi, Rákóczi utca 3; Company Registration Number: 13-09-150326; Tax Number: 23524620-2-13; Email: [email protected]; Phone: +36706294936.
2. Scope of personal data processed, legal basis for data processing, purpose, and duration of data processing:
| Processed Personal Data | Legal Basis for Data Processing | Purpose of Data Processing | Duration of Data Processing | |||
|
Consent of participants (General Data Protection Regulation, Article 6(1)(a)). Consent can be withdrawn at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Providing data is mandatory.
|
Using the service | In case of withdrawal of consent, personal data will be deleted (registration is automatically terminated). Billing information is stored for 8 years following performance based on the Accounting Act, Section 169 (2). | |||
|
Consent of participants (General Data Protection Regulation, Article 6(1)(a)). Consent can be withdrawn at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Providing data is voluntary.
|
Sending newsletters about updates, offers. | In case of withdrawal of consent, personal data will be deleted. |
3. Automated decision-making (including profiling):
Automated decision-making, including profiling, takes place during data processing. The logic used in automated decision-making: Sending personalized purchase reminders based on the nature and quantity of purchased goods, which alerts you to product depletion. The data processing through automated decision-making has the following significance and expected consequences for the Data Subject: It simplifies contract formation.
4. Transfer of personal data, recipients of personal data, or categories of recipients:
The Data Controller uses the following data processors for data processing:
| Name and address of data processor | Purpose of data processing | |
| DPD Hungary LLC. (headquarters: 1134 Budapest, Váci út 33. 2.; Company registration number: 01-09-888141; tax number: 13034283-2-44) |
Data required for the fulfillment (delivery) of the contract between absentees. | |
| GLS General Logistics Systems Hungary LLC. (headquarters: 2351 Alsónémedi GLS Európa u. 2.; Company registration number: 13-09-111755; tax number: 12369410-2-44) |
Data required for the fulfillment (delivery) of the contract between absentees. | |
| KBOSS.hu LLC. (Számlázz.hu) (headquarters: 1034 Budapest, Bécsi út 126-128., Company registration number: 01-09-303201, tax number: 13421739-2-41) |
Data required for invoicing purchases. | |
| CIB Bank LTD. (headquarters: 1027 Budapest, Medve u. 4-14. Company registration number: 01-10-041004, tax number: 10136915-4-44) |
Online payment by bank card | |
| Nel-Ki LLC. (headquarters: 1039 Budapest, Szindbád utca 2. 8. em. 78., Company registration number: 01-09-910682, tax number: 14587038-2-41) |
Carrying out accounting tasks. | |
| Dsys LLC. (headquarters: 1025 Budapest, Csalán út 43/B., Company registration number: 01-09-874235, tax number: 13806693-3-41) |
Hosting provider | |
| Rottenbacher Tamás (headquarters: 1039 Budapest, Zemplén Gy. u. 2., Registration number: 51044857, tax number: 67982839-1-41) |
Hosting provider | |
| Rottenbacher Tamás (headquarters: 1039 Budapest, Zemplén Gy. u. 2., Registration number: 51044857, tax number: 67982839-1-41) |
Programmer | |
| Facebook, Inc. (USA) | Profiling, advertising, analytical and measurement services, displaying behavior-based advertising | |
| GOOGLE LLC (USA – Google Data Protection Office, 1600 Amphitheatre Pkwy Mountain View, California 94043) | Profiling, advertising, analytical and measurement services, displaying behavior-based advertising | |
| SalesAutopilot LLC. (headquarters: 1024 Budapest, Margit körút 31-33., Company registration number: 01-09-286773, tax number: 25743500-2-41) |
Sending newsletters, storing e-mail addresses in the newsletter database | |
| PayPal (Europa) S.à r.l. et Cie, S.C.A. (headquarters: 22-24 Boulevard Royal L-2449 Luxemburg, Company registration number: R.C.S. Luxembourg B 118 349, tax number: LU22046007) |
Online payment by bank card |
Information about transferring data abroad:
Google LLC and its affiliates, and Facebook, Inc. are listed on the EU-U.S. Privacy Shield List according to the European Commission’s GDPR Article 45 adequacy decision and Commission Implementing Decision 2016/1260. Thus, the transfer of data to these entities is not considered a transfer to a third country outside the European Union and does not require the Data Subject’s separate consent, and it is permitted under GDPR Article 45. These companies have committed to GDPR compliance.
5. Duration of personal data storage or criteria for determining duration:
In case of withdrawal of consent, personal data will be deleted (registration is automatically terminated).
Billing information is stored for 8 years following performance based on the Accounting Act, Section 169 (2).
6. Data Subject’s rights related to data processing:
The Data Subject may request the Data Controller to:
- Access their personal data,
- Rectify their personal data, and
- Erase or restrict the processing of their personal data, except for mandatory data processing.
Right to access:
The Data Subject has the right to receive confirmation from the Data Controller as to whether their personal data is being processed, and if so, access to the personal data. The Data Controller will provide a copy of the personal data undergoing processing to the Data Subject. For any additional copies requested by the Data Subject, the Data Controller may charge a reasonable fee based on administrative costs. If the Data Subject submits the request electronically, the information will be provided in a widely used electronic format, unless otherwise requested by the Data Subject.
Right to rectification:
The Data Subject has the right to obtain from the Data Controller without undue delay the rectification of inaccurate personal data concerning them.
Right to erasure:
The Data Subject has the right to obtain from the Data Controller the erasure of personal data concerning them without undue delay, and the Data Controller is obliged to erase personal data without undue delay where one of the following grounds applies:
The personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
The Data Subject withdraws consent on which the processing is based according to General Data Protection Regulation, Article 6(1)(a) or Article 9(2)(a), and there is no other legal ground for the processing;
The Data Subject objects to the processing pursuant to General Data Protection Regulation, Article 21(1), and there are no overriding legitimate grounds for the processing, or the Data Subject objects to the processing pursuant to General Data Protection Regulation, Article 21(2);
The personal data has been unlawfully processed;
The personal data must be erased for compliance with a legal obligation in Union or Member State law to which the Data Controller is subject;
The personal data has been collected in relation to the offer of information society services referred to in General Data Protection Regulation, Article 8(1) (conditions applicable to a child’s consent).
Right to restriction of processing:
The Data Subject has the right to obtain from the Data Controller restriction of processing where one of the following applies:
The Data Subject contests the accuracy of the personal data, for a period enabling the Data Controller to verify the accuracy of the personal data;
The processing is unlawful, and the Data Subject opposes the erasure of the personal data and requests the restriction of its use instead;
The Data Controller no longer needs the personal data for the purposes of processing, but the Data Subject requires the data for the establishment, exercise, or defense of legal claims;
The Data Subject has objected to processing pursuant to General Data Protection Regulation, Article 21(1) pending the verification of whether the legitimate grounds of the Data Controller override those of the Data Subject.
Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the Data Subject’s consent or for the establishment, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or a Member State.
Right to data portability:
The Data Subject has the right to receive the personal data concerning them, which they have provided to the Data Controller, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another controller without hindrance from the Data Controller to which the personal data have been provided, where: (i) the processing is based on consent pursuant to General Data Protection Regulation, Article 6(1)(a) or Article 9(2)(a) or on a contract pursuant to General Data Protection Regulation, Article 6(1)(b); and (ii) the processing is carried out by automated means.
Right to object:
The Data Subject has the right to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them which is based on General Data Protection Regulation, Article 6(1)(e) or (f), including profiling based on those provisions. The Data Controller shall no longer process the personal data unless the Data Controller demonstrates compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the Data Subject or for the establishment, exercise, or defense of legal claims.
Where personal data are processed for direct marketing purposes, the Data Subject shall have the right to object at any time to processing of personal data concerning them for such marketing, which includes profiling to the extent that it is related to such direct marketing. Where the Data Subject objects to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.
General rules for the exercise of data subject rights:
The Data Controller shall provide information on action taken on a request to the Data Subject without undue delay and in any event within one month of receipt of the request. That period may be extended by two further months where necessary, taking into account the complexity and number of requests. The Data Controller shall inform the Data Subject of any such extension within one month of receipt of the request, together with the reasons for the delay. Where the Data Subject makes the request by electronic form means, the information shall be provided by electronic means where possible unless otherwise requested by the Data Subject.
The Data Controller shall provide the information and action taken free of charge. Where requests from a Data Subject are manifestly unfounded or excessive, in particular because of their repetitive character, the Data Controller may either:
- Charge a reasonable fee taking into account the administrative costs of providing the information or communication or taking the action requested; or
- Refuse to act on the request.
The Data Controller bears the burden of demonstrating the manifestly unfounded or excessive character of the request.
Where the Data Controller has reasonable doubts concerning the identity of the natural person making the request referred to in Articles 15 to 21, the Data Controller may request the provision of additional information necessary to confirm the identity of the Data Subject.
7. Legal remedies:
The Data Subject may bring an action against the Data Controller in court in case of violation of their rights. The court shall act in an expedited procedure. The Data Controller must prove that the data processing complies with the law. The adjudication of the lawsuit falls within the jurisdiction of the regional court, in the capital within the jurisdiction of the Budapest Regional Court. The lawsuit may also be brought before the court of the Data Subject’s place of residence or stay.
The Data Controller shall be liable for any damage caused to others by the unlawful processing of the Data Subject’s data or the breach of data security requirements. The Data Controller shall be exempt from liability if it proves that the damage was caused by an unavoidable cause outside the scope of data processing. The damage does not need to be compensated to the extent that it resulted from the intentional or grossly negligent conduct of the injured party.
The Data Subject may also contact the National Authority for Data Protection and Freedom of Information with a complaint regarding the processing of their personal data (Dr. Attila Péterfalvi, President of the National Authority for Data Protection and Freedom of Information, Postal address: 1530 Budapest, Pf.: 5., Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c, Phone: +36 (1) 391-1400; Fax: +36 (1) 391-1410; E-mail: [email protected]; website: www.naih.hu).
Contact
If you have provided personal data through the www.k9-doghealth.com website and wish to have that personal data deleted from our records, please write to the following address: [email protected].
Legal remedies
You have the following rights regarding your personal data:
- You can request information about the processing of your personal data,
- You can request the correction or – except for data processing required by law – the deletion of your personal data,
- You can demand compensation for damage caused by the unlawful processing of your data or the violation of technical data protection requirements, except if the damage was caused by an unavoidable cause outside the scope of data processing or if the damage resulted from your intentional or grossly negligent conduct.
If you believe that K9-Immun LLC has violated the provisions of this privacy statement or Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information, you may bring an action against the Data Controller under Section 22 of the latter Act.
If you have any questions regarding this privacy statement, you may send your questions to [email protected].
This statement is valid from May 24, 2018.
K9-Immun LLC’s data management registration number: NAIH-94007/2016.