1. Name of data controller:
GP Ticket Kft.
2. Address of data controller
HU-1051 Budapest, Sas u. 11. 3/8a
3. Registration ID of data controller in the national data protection filing system
4. Data protection contact:
firstname.lastname@example.org (regarding issues arising in the course of the sale and purchase of motorsport tickets)
email@example.com (regarding issues arising in the course of the sale and purchase of fun articles)
5. Definition of data control:
Data control means the management of personal data of Customers/Consumers using the Webpages („User” or “Users”), necessary to the conclusion of the Sale and Purchase Agreements („SPA”), to the fulfilment of Ticket/Purchase Orders (“Order”), to exercise rights arising out of the SPAs and to send newsletters.
6. Legal basis of data control: the consent of the User
7. Scope of controlled data:
Personal data provided by the User in the course of completing an Order and signing up the newsletter (family and surname, e-mail address, phone number, fax number, address, delivery address, invoicing address) as well as the details of the Order and of the fulfilment of the Order.
Cookies qualifying as personal data
A cookie (also known as an HTTP cookie, web cookie, or browser cookie) is a small piece of data sent from a website and stored in a User's web browser while the User is browsing that website. Every time the User loads the website, the browser sends the cookie back to the server to notify the website of the User's previous activity. Cookies were designed to be a reliable mechanism for websites to remember useful information (such as items in a shopping cart) or to record the User's browsing activity (including clicking particular buttons, or recording which pages were visited by the User)
Cookies on the GP Ticket Website
A visit to a page on mygpstore.com, mygpticket.com and mygpticket.hu may generate the following types of cookies:
Anonymous analytics cookies
Every time a User visits the Website, software provided by another organization generates an 'anonymous analytics cookie'.
These cookies can tell whether or not the User has visited the site before. The User’s internet browser will tell GP Ticket if the User has these cookies and, if doesn't, new ones are generated. This allows GP Ticket to track how many individual Users it has and how often they visit the Website. Cookies cannot be used to identify individuals. GP Ticket use them to gather statistics: e.g. the number of visits to a page.
These cookies allow GP Ticket to know whether or not a User has seen an advert or a type of advert, and for how long it has been seen. Cookies are also used to help targeted advertising.
Other third party cookies
On some pages on the Website, other organizations (e.g. Facebook) may also set their own anonymous cookies. They do this to track the success of their application, or to customize the application for the Users. Because of how cookies work, the Website cannot access these cookies, nor can the other organization access the data in cookies GP Ticket use on the Website.
For example, when the User clicks on a Facebook like button or clicks on a social media sharing button on any of the Websites, the social network that has created the button will record that the User has done this.
8. Purpose of data control:
The purpose of data control is the conclusion of the SPA between the User and GP Ticket, performance of the SPA, exercising the rights arising out of the SPA and informing customers via newsletters. Function of cookies is to facilitate providing complete and customized services to Users.
9. Duration of data control:
Personal data connected to Orders are controlled by GP Ticket until the fulfilment or termination of the services, in the case of the sale and purchase of Fun articles until the end of the warranty period, thus 3 years reckoned from the takeover date of the Product or until lawful claims arising out of these transactions are asserted. Accounting documents are maintained for 8 years.
10. User’s rights with regards to the control of their personal data:
Users might request information about data control also by sending a postal mail to the address of the data controller. GP Ticket shall advise within the earliest reasonable timeframe, but within a maximum of 30 days.
Users who have given consent to the use of their personal data for the purposes of newsletter subscription may withdraw such consent and unsubscribe the newsletter any time on the Website.
How to turn cookies off?
It is usually possible to stop the User’s browser accepting cookies, or to stop it accepting cookies from a particular website.
All modern browsers allow the change cookie settings. These settings can be found in the 'options' or 'preferences' menu of the browser. To understand these settings, the following links may be helpful, or Users can use the 'Help' option in the browser for more details.
11. Name of data processor:
Processing of personal data is the task of the data controller’s staff.
The invoices are issued out of the billing system of the data controller’s partner company, the accounting office TRIASZ-AUDIT (TRIASZ_AUDIT Könyvvizsgáló, Számviteli és Adótanácsadó Kft.; HU-1037 Budapest, Jutas u. 54.).
12. Third parties’ access to personal data:
Personal data required to the performance of the SPAs shall be disclosed exclusively with the Shipping Company UPS Magyarország Kft. (HU-2220 Vecsés, Lőrinczi út 61.). In accordance with its contract concluded with the data controller, the Shipping Company is obliged to maintain confidentiality of personal data and use those restricted to the delivery of Tickets and Products to the customers.
GP Ticket Kft. reserves the right to forward personal data of Users suspected of fraud or any infringement of law to the competent authorities and/or K&H Bank, as the case may be.
12. Data security:
GP Ticket Kft. takes all necessary measures in order to ensure data security and to avoid any unauthorized access and modification, illegal forwarding of data or any destruction of those. Data controller excludes any liability for destruction, loss, or use of personal data for illegal purposes arising out of a technical failure, natural disaster, terrorist act or crime.
In the course of payments through a credit card, GP Ticket’s system does not have access to the particulars of the credit card. Following completion of the Order, Users are automatically directed to the webpage of K&H Bank, where the payment be effected. Data of the payment transactions are encrypted with 128 bits SSL encoding, which is the currently available most reliable encoding system.
14. Legal background:
- Act 112 of 2011 “On informational self-determination and freedom of information”
- Act 108 of 2001 “On certain issues of electronic commerce activities and information society services”
- Act 119 of 1995 “On handling of names and addresses for the purposes of research and direct marketing”
- Act 6 of 1998 “For the protection of individuals with regard to automatic processing of personal data”
14. Enforcement of rights:
Based on Act 112 of 2011 „On informational self-determination and freedom of information” and the Hungarian Civil Code, in the case of personal data infringement, Users are entitled to initiate legal proceedings before the competent court, or, might notify the National Authority for Data Protection and Freedom of Information (HU-1125 Budapest, Szilágyi Erzsébet fasor 22/c; Postal address: HU-1530 Budapest, Pf.: 5.; e-mail address: firstname.lastname@example.org) and initiate supervision of the issue.
Questions and remarks with regards to the protection of your personal data are welcome! Contact the data controller via e-mail (see e-mail addresses in paragraph 4.) or send a letter to GP Ticket’s postal address (see paragraph 2.).
All rights reserved. | You agree not to reproduce, duplicate, copy, sell, resell or exploit for any purpose, any portion of the web sites, use of the web sites, any data or image or access to the web sites.