2018.12.05.

Privacy Policy

Petersburger Productions Ltd. (hereinafter: Company) ensures the legality of handling data related to managing personal data. This privacy statement provides information on the process of processing data, in a transparent, understandable and easily-accessible way, in compliance with the general data protection regulation (hereinafter: GDPR), adjusted to the decree of (EU) 2016/679 drafted by the European Parliament and Council.  

1. Data management details

Company name: Petersburger Productions Kft.

Head office: 7633 Pécs, 18/b Építők Road

Corporate registration number: 02 09 075119

Tax number: 11691039-2-02

Phone: +36 20 310 8898

Representative person: Dr. József László Szentpéteri

E-mail: info@joepetersburger.com

Website: www.joepetersburger.com

2. Concepts related to data management

A complete, detailed definition of the term can be found in Article 4 of GDPR.

Personal data: any information regarding a natural person ("concerned" or "user”), according to which (e.g. name, number, location data, online identifier or physical, physiological, genetic, mental, economic, cultural or social characteristics of a natural person, based on one or more features) they can be identified, directly or indirectly.

Data handling: any operation made in an automated or non-automated way regarding personal data, such as collection, registration, systematization, tagging, storage, transformation or modification, inquiry, inspection, utilization, forwarding, transmitting, sharing or making them available in other ways, harmonization or interconnection, restriction, deletion or destruction, and capturing a photo, sound or image.

Data controller: a natural or legal person, who determines the purposes and means of processing personal data alone or jointly with others.

Data processor: a natural or legal person, who manages personal data on behalf of the data controller.

Profiling: A form of automated management of personal data where personal information is used to analyze and predict personal characteristics related to a natural person (e.g. interest, behavior, location, etc.).

Anonymization: handling personal data in a way that no longer identifies the personal data belonging to a specific natural person without the use of additional information.

Registry system: a set of personal data (centralized, decentralized or functional, according to geographic aspects), which is available on the basis of certain criteria.

Contribution of the person concerned: a clear statement of the will of the person concerned based on voluntary, specific and relevant information, indicating by his or her clear action that he or she has given his or her consent to the processing of his or her personal data.

Privacy incident: a breach of security that results in accidental or unlawful destruction, loss, alteration, unauthorized disclosure or unauthorized access to personal data transmitted, stored or otherwise treated.


3. The legal basis for handling data

According to Article 6 of the GDPR, the processing of personal data is lawful only, if at least one of the following is met:

Contribution of the person concerned: the person concerned has given his or consent to the handling of his or her personal data for one or more specific purposes.

The performance of the contract: the processing of data is necessary for the performance of a contract in which the person concerned is required to take action on the request of the person concerned prior to the conclusion of the contract (e.g. a call for proposals).

Legal obligation: the processing of data is necessary for the performance of a contract in which the person concerned is required to take action at the request of one of the parties or before the conclusion of the contract.

Vital interest: data management is necessary for the protection of the vital interests of the concerned or another natural person.

Public authority license, public interest: the processing of data is necessary to perform a task carried out in the framework of public interest or in the exercise of public authority bestowed on the data controller.

Enforcing legitimate interest: the processing of data is necessary for the legitimate interests of the data controller or a third party, unless the interests or fundamental rights and freedoms, which are necessary for the protection of personal data, regarding the person concerned, are given priority over these interests, particularly if the concerned person is a child.

Legal basis for processing data regarding enterprises: the contribution of the person concerned, based on Article 6 (1) (a) GDPR and the performance of contract under Article 6 (1) (b) GDPR.

4. The purpose of data management

4.a Sending newsletters

The purpose of data management: informing subscribers about upcoming events, news and updates

The legal basis for handling data: the contribution of the person concerned, based on Article 6 (1) (a) GDPR

Managed personal data: name, e-mail address

Duration of handling data: until the consent is withdrawn

Using a data processor: The Rocket Science Group LLC (the operator of MailChimp), the data processor adheres to the EU regulation GDPR and it is the member of the EU-US Privacy Shield Framework. Learn more: https://mailchimp.com/help/about-mailchimp-the-eu-swiss-privacy-shield-and-the-gdpr/

You can unsubscribe from the newsletter at any time by clicking the "unsubscribe" link in the newsletter. In this case, the email address is immediately deleted from the database. 


4.b Webshop and order by email

The purpose of data management: fulfilling orders

Legal basis for processing data: contract based on Article 6 (1) (b) GDPR

Managed personal data: name, e-mail address, phone number, shipping address, billing address

Duration of handling data: in accordance with the statutory deadline (2000 CTV Act on Accounting in Section 169), i.e. 8 years


4.c Taking portrait photographs

The purpose of data management: fulfilling orders

Legal basis for processing data: contract based on Article 6 (1) (b) GDPR

Managed personal data: photo (image), name, address, e-mail address, phone number

Duration of handling data: the preservation of image up to one year after delivery. Regarding the contract: in accordance with the statutory deadline (2000 CTV Act on Accounting in Section 169), i.e. 8 years.

Using a data processor: the entrusted printing office, photographic laboratory


4.d Registration for a workshop

The purpose of data management: fulfilling orders

Legal basis for processing data: contract based on Article 6 (1) (b) GDPR

Managed personal data: name, address / billing address, e-mail address, telephone number

Duration of data management: the preservation of image up to one year after delivery. Regarding the contract: in accordance with the statutory deadline (2000 CTV Act on Accounting in Section 169), i.e. 8 years.

Using a data processor: partner organization, entrusted persons


4.e Conclusion of contracts

The purpose of data management: fulfilling orders

Legal basis for processing data: contract based on Article 6 (1) (b) GDPR

Managed personal data: personal identification details, personal data, and financial identifiers

Duration of data management: 5 years from the date of the receivable, Law V of 2013 (Ptk.) as stated in § 6:22.

Using a data processor: "MENTOR-AUDIT" Auditor K ft.


The user is solely responsible for the accuracy and authenticity of the personal data.

The Company does not disclose the personal information of the user to an unauthorized third party.


4.f Send information / feedback on the web site


The purpose of data management: establishing connection with the interested parties and sending feedback

The legal basis for handling data: the contribution of the person concerned based on Article 6 (1) (a) GDPR

Managed personal data processed: name, e-mail address, phone number

Duration of data management: until the consent is withdrawn


The user is solely responsible for the accuracy and authenticity of personal data.

The Company does not disclose the personal information of the user to an unauthorized third party.


5. Rights of affected persons

About the rights of those concerned, information is available in Article 15-22 of the GDPR.

You have the right to:

• access your data;

• request the correction of your data;

• delete your data, make it forget;

• limit data management based on the terms of Article 18 of the GDPR;

• receive your data in a portable form;

• object to the handling of your data;

• protest against using your data for direct marketing.

You can contact the data controller at info@joepetersburger.com about the validation of the rights listed above. The data controller responds to the request received within 72 hours. 


6. Opportunity for legal remedy

You may contact the Hungarian National Authority for Data Protection and Freedom of Information for a complaint about your personal data.

Head office: 22/C Szilágyi Erzsébet fasor, Budapest, 1125

Postal address: 1530 Budapest, Pf. 5.

E-mail: ugyfelszolgalat@naih.hu

Phone: (+36) 1 391 1400

Website: www.naih.hu


Regarding a violation of rights, the person concerned is entitled to apply to a court of law based on Article 79 of the GDPR.


3rd December 2018


Sales and Presentation Techniques

Training

Strikingly, within each and every human being, deep inside is a natural-born presenter. You only have to summon it. How can you make an amazing presentation and overcome your stage fright at the same time?

Find out!
Contacts Contact Joe!

Follow Joe Petersburger in social media!