Privacy Policy
1. Purpose of the Policy
The purpose of this Policy is to establish the data protection and data management principles applied by Sun System Trade and Service Limited Liability Company (registered office: 1188 Budapest, Kancsó utca 7, company registration number: 01-09-860845, registration authority: Budapest Metropolitan Court Registry Court, tax number: 13545659-2-43) and the data protection and data management policy of the Company.
Sun System Trade and Service Limited Liability Company, as the Service Provider, aims to ensure that the services provided by the Company are available to all individuals in all areas, regardless of their nationality or place of residence, while respecting their rights and fundamental freedoms, particularly the right to privacy, during the processing of their personal data (data protection).
2. Identification of the Data Controller
Name: Sun System Ltd.
Registered Office: 1188 Budapest, Kancsó utca 7.
Branch and Mailing Address: 2225 Üllő, Zöldmező utca 3.
Phone Number: +36 1 291 3535
Email Address: webshop@sunsystem.hu
Data Management Registration Number: N/A
3. Scope of Processed Personal Data
3.1. Registration. During the registration process, the User is required to provide the following personal data:
– Username
– Personal email address
– Password
– Billing address (billing name, street name, house number, city, postal code)
– Shipping address (shipping name, street name, house number, city, postal code)
– Phone number
4. Legal Basis, Purpose, and Method of Data Management
4.1. The processing of data is based on the voluntary, informed declaration of the users of the internet contents available on the website www.australiangold.hu (hereinafter: website) which includes the users’ explicit consent for the use of their personal data provided during the use of the website.
The legal basis for data processing is the voluntary consent of the data subject according to Section 5(1)(a) of Act CXII of 2011 on Informational Self-Determination and Freedom of Information [Infotv.]. The consent is given by the User through the use of the website, registration, express acceptance of the registration rules during registration, or voluntary provision of the relevant data.
4.2. The purpose of data processing is to ensure the provision of products and services available on the website. The Service Provider stores the data provided by the user solely for the purpose of fulfilling the order and for the subsequent verification of the terms of the potential contract, in a purpose-bound manner.
4.3. The automatically recorded data is intended solely for statistical purposes, technical development of the IT system, and protection of users’ rights.
4.4. The data controller uses the provided personal data in the manner and for the purposes described in these points. Disclosure of personal data to third parties or authorities is only possible with the prior, explicit consent of the user, unless otherwise provided by law.
4.5. The data controller does not verify the accuracy of the provided personal data. The person providing the data is solely responsible for the accuracy of the provided data. When providing an email address, the User assumes responsibility for using the provided email address for the exclusive purpose of availing the service. Consequently, any liability arising from actions related to accessing the account using the provided email address rests solely with the User who registered the email address.
4.6. Prior to and during the use of services related to the information society, the Service Provider continuously provides the User with the opportunity to prohibit data processing.
4.7. The data specified above cannot be linked to the identifier data of the service recipient, and they cannot be disclosed to any natural or legal person without the consent of the service recipient.
5. Duration of Data Processing
5.1. The processing of personal data provided during registration begins with registration and continues until its deletion. In the case of non-mandatory data, data processing starts from the moment of data provision and continues until the deletion of the respective data. The registration can be deleted by the User or by the Service Provider upon the User’s request at any time.
5.2. Logged data is stored by the system for a period of 6 months from the date of logging, with the exception of the date of the last visit, which is automatically overwritten.
5.3. The above provisions do not affect the fulfillment of retention obligations specified by law (e.g., accounting regulations) or data processing based on additional consents given during the registration on the website or by other means.
6. Persons with Access to Data, Data Transmission, Data Processing
6.1. Primarily, the data can only be accessed by the Service Provider and its internal employees, but they cannot be made public or disclosed to third parties.
6.2. In the operation of the underlying IT system, order fulfillment, and settlement of accounts, the Service Provider may engage data processors (e.g., system operator, transport company, accountant). The Service Provider is not responsible for the data processing practices of such external entities.
Designation of data processors:
Accounting: SMALL SNAIL Ltd., 2096 Üröm, Ady Endre Street 57.
System administration: ShopRenter.hu Ltd., H-4028 Debrecen, Kassai Street 129, info [at] shoprenter.hu
Courier service: Magyar Posta Zrt., H-1138 Budapest, Dunavirág Street 2-6.
Courier service: GLS General Logistics Systems Hungary Package Logistics Ltd., 2351 Alsónémedi, GLS Európa Street 2.
Courier service: Fáma First Ltd., 1194 Budapest, Viola Street 38.
6.3. In addition to the above, the transmission of personal data relating to the User may only occur in cases determined by law or with the User’s consent.
7. User Rights and Remedies
7.1. The User is entitled to request information at any time regarding the personal data concerning them that is processed by the Service Provider, and may modify their data after logging into the website. The User is also entitled to request the deletion of their data through the contact information provided in this section.
7.2. At the User’s request, the Service Provider shall provide information on the personal data concerning the User, including the purpose, legal basis, duration of data processing, and the recipients or categories of recipients of the data. The Service Provider shall provide the requested information in writing within 30 days from the submission of the request.
7.3. The data subject may exercise their rights using the following contact information:
Email: webshop@sunsystem.hu
Mailing address: Sun System Ltd., 2225 Üllő, Zöldmező Street 3.
The Customer may address any questions or remarks regarding data processing to the personnel of the Service Provider through the provided contact information.
7.4. The user is entitled to request the correction or deletion of inaccurately recorded data at any time. The user can correct some of their data on the website themselves. In other cases, the Service Provider shall delete the data within 3 working days from the receipt of the request, and in such cases, the data cannot be restored. The deletion does not apply to data processing required by law (e.g., accounting regulations), which the Service Provider shall retain for the necessary period.
7.5. The User may enforce their rights before a court based on the Act on Informational Self-Determination and Freedom of Information, as well as the Civil Code (Act V of 2013). In case of complaints regarding the data processing practices of the data controller, the User may also contact the National Authority for Data Protection and Freedom of Information (NAIH) (Szilágyi Erzsébet fasor 22/C, 1125 Budapest).
7.6. If the User provides third-party data during registration or causes any form of harm during the use of the website, the Service Provider is entitled to seek compensation from the User. In such cases, the Service Provider shall provide all necessary assistance to the competent authorities for the identification of the infringing person.
8. Use of Email Addresses
8.1. The Service Provider pays special attention to the lawful use of the email addresses it manages and uses them for sending informational or promotional emails only in the manner defined below.
8.2. The handling of email addresses primarily serves the identification of the User, order fulfillment, and communication during the use of services. Therefore, emails are primarily sent for these purposes.
8.3. In the event of changes to the services provided by the Service Provider or changes to the Terms and Conditions, the Service Provider may send notifications regarding the changes and other similar services to the concerned parties electronically via email. It is not possible to unsubscribe from such „notification lists,” but the Service Provider does not use these notifications for advertising purposes.
8.4. The Service Provider only sends emails containing advertisements or newsletters to the electronic addresses provided during registration with the explicit consent of the User, in compliance with legal requirements and in the prescribed manner. The User can unsubscribe from the newsletter at any time using the link provided at the bottom of the newsletter.
9. Other Provisions
9.1. The Service Provider may collect data on user activity that cannot be linked to other data provided by users during registration or data generated during the use of other websites or services. Data automatically recorded during system operation includes the data of the user’s computer generated during the use of the service, which is automatically logged by the data controller’s system as a result of technical processes. The automatically recorded data, except in cases required by law, cannot be linked to other personal user data. Only the data controller has access to this data. During visits to the website, one or more cookies, which are small files containing character strings, are sent to the visitor’s computer, allowing their browser to be uniquely identified. These cookies are provided by Google and are used through the Google AdWords system. These cookies are only sent to the visitor’s computer when visiting specific subpages, and they store only the fact and time of visiting that particular subpage, without any other information. The use of these sent cookies is as follows: external service providers, including Google, use these cookies to store if the user has previously visited the advertiser’s website and show ads to the user on external service providers’ websites, including Google’s partners’ websites, based on this information. Users can disable Google cookies on the page for opting out of Google ads. (Users can also disable cookies from external service providers on the Network Advertising Initiative’s opt-out page.)
Applied cookies:
Analytics and tracking cookies
Cross-site tracking on the website
Login and user identification session cookies
The „Help” function found in most browser menus provides information on how to:
Disable cookies in the browser,
Accept new cookies, or
Instruct the browser to set new cookies or
Disable other cookies.
9.2. Whenever the Service Provider intends to use the provided data for a purpose other than the original data collection purpose, the User will be informed, and the User’s prior explicit consent will be obtained or the User will be given the opportunity to prohibit such use.
9.3. The Service Provider undertakes to ensure the security of the data, takes technical measures to protect the collected, stored, and processed data, and does everything necessary to prevent their destruction, unauthorized use, and unauthorized alteration. The Service Provider also ensures that any third parties to whom the data may be transmitted or disclosed are also obliged to fulfill these obligations.
9.4. The Service Provider reserves the right to unilaterally modify this Policy with prior notice to the Users. After the modifications come into effect, by continuing to use the service, the User accepts the provisions of the modified Policy.
9.5. If any provision in this Policy is declared invalid or unlawful by a legal regulation or a decision of an authority, it shall not affect the validity of the other provisions, which shall remain in force.
9.6. In matters not regulated by this Policy, Hungarian law shall apply, with particular reference to data protection regulations.
Acceptance of Message and Privacy Statement:
As a User, I declare that I have read and understood the above and consent to the data protection and data processing practices as described by the Service Provider. I acknowledge that the personal data provided by me may be processed by the Service Provider for the purposes defined in the Terms and Conditions and the Privacy Policy. I also accept that the Service Provider may engage data processors to process and handle the data provided by me. I am aware that I can exercise my User rights and legal remedies as specified in the Terms and Conditions.
Acceptance date: [date]
Signature: ________________________________________