Privacy

policy

Publication of Privacy PolicyExit Visual Builder

Góra Edina, as the data controller (hereinafter: Controller), handles your personal data in accordance with this privacy and data handling policy (hereinafter: Policy) during the operation of the edinagora.eu website. This Policy outlines the principles for processing personal data managed by the Controller when visiting the edinagora.eu website and contacting us through it. When you share personal data with us or when we have access to your personal data, we use the data in accordance with this Policy. Please read the Policy carefully to understand how we handle your personal data and to learn about your rights regarding data processing. If you have any questions or concerns regarding your personal data, please contact me.

When formulating the provisions of this Policy, the Controller has given special consideration to Regulation (EU) 2016/679 of the European Parliament and of the Council (“General Data Protection Regulation” or “GDPR”) and Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information (“Info Act”). The Controller is committed to protecting the personal data of visitors to edinagora.eu, current and future clients, and respects their right to informational self-determination. The handling of personal data is confidential, and the Controller implements all necessary security, technical, and organizational measures to ensure the security of data.

This policy enters into force on December 1, 2021.

Data Controller

  • Name of the Data Controller: Edina Góra
  • Tax number: Y7222566M (ES)
  • Address: Carretera General Las Arenas 75B, Fase II., Piso 107
    38400 Puerto de la Cruz, Santa Cruz de Tenerife, España. 
  • Post address: Carretera General Las Arenas 75B, Fase II., Piso 107
    38400 Puerto de la Cruz, Santa Cruz de Tenerife, España.
  • Phone number of the Data Controller: +34 631 18 93 95
  • E-mail: studio [kukac] edinagora [pont] eu
  • Website: https://edinagora.eu

Hosting provider:

Terms

Controller: Any natural or legal person, public authority, agency, or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. For the services referred to in this Policy, the Controller is the operator of the website.

Data processing: The processing of personal data or sets of personal data by automated or non-automated means, including collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Data  Any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

Data processor: a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller.

Recipient: the natural or legal person, public authority, agency or any other body with whom or to which the personal data are disclosed, whether or not a third party. Public authorities that may have access to personal data in the context of an individual investigation in accordance with Union or Member State law are not recipients. The processing of those data by those public authorities should be in accordance with the applicable data protection rules for the purposes for which the data are processed.

Consent of the data subject: a freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she signifies, by a statement or by an act expressing his or her unambiguous consent, that he or she signifies his or her agreement to the processing of personal data concerning him or her.

Data security incident: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

User: the natural person who visits the website and whose personal data is processed by the data controller.

External service provider: third-party service partners used by the controller, directly or indirectly, in connection with the operation of the websites or the provision of services available through them, to whom personal data are or may be transferred or who may transfer personal data to the controller in order to provide their services. Service providers that do not cooperate with the controller, but collect data about users by accessing the website of the service, which may be used to identify the user, either individually or in combination with other data, are also considered as external service providers.

Range of data processed

IP address, date, time, previously visited page titles, data related to the user’s operating system and browser, and the duration spent on the website may be automatically recorded during the visit to the website (edinagora.eu) through the use of cookies. This includes the start and end time of the user’s visit, IP address, and in some cases, depending on the user’s computer settings, the browser version, type and language of the operating system, device parameters, settings provided by the user on the website, visited subpages, and time spent on those pages. The operator of the website does not link (and cannot link) this data with personal data. The user decides on the sharing of this information by giving express authorization and providing cookie settings in their browser. The handling of other data provided during the use of the website (such as name, email address, phone number, etc.) also occurs with the voluntary consent of the user. The operator of the website requests that “Minors,” as defined by applicable local laws, refrain from engaging in transactions (orders or any other transactions) without the consent of a parent or legal representative.

Purpose of data processing

The data processing through the website serves the continuous communication between subscribed users and the operator of the site, as well as the management of data related to the use of associated services. Through cookies, the system automatically generates data about the duration of visits and the number of pages visited to enhance and optimize the services of the website by the operator. The Operator also uses cookies to make the website more user-friendly for subsequent visits. Any other data provided by the user is used and managed by the operator solely for the purpose of providing higher-quality services to the user. The Operator may establish communication with the user via email, telephone, fax, or postal mail, except where the user has indicated a preference against any of these methods. The Operator does not use personal data for purposes other than those specified. The handling of data provided on the website is done with the voluntary consent of the user. Without the user’s consent, the operator does not transmit, disclose, sell, rent, or make personal data accessible to third parties, unless required by law.

The legal basis for data processing

The legal basis for data processing is provided under Article 6(1)(a) of the GDPR, based on the consent of the data subject, as well as Article 13/A(3) of Act CVIII of 2001 on certain issues related to electronic commerce services and information society services (Eker tv.), and Article 6(1)(f) of the GDPR.

Duration of data processing

Session IDs are automatically deleted when leaving the website. However, another part of the cookies assists the website operator (Data Controller) by allowing them to recognize the user’s previous settings, provided data, information, and other characteristics of website usage. This helps avoid the need for the user to re-enter these details during their next visit, ensuring that settings automatically load for a more pleasant user experience. The expiration period of these cookies varies, but typically they remain on the user’s device until deleted by the user.

Data accessors

The personal data provided by users cannot be accessed by anyone other than the website operator (Data Controller). The operator does not transfer personal data to third parties, except as required by law or in exceptional circumstances. Before complying with any authority’s data requests, the operator carefully assesses whether there is a legitimate basis for such data transfer for each specific data set.

Data subject’s rights in relation to data processing

The legal basis for data processing is the voluntary consent of the users. Users have the right to request information about the processing of their personal data. Upon request, the website operator provides information to the data subject about the data managed, the purpose and legal basis of processing, duration, the name and address of the operator, and activities related to data processing, as well as who received or will receive the data and for what purpose. Requests for information can be made to the operator’s postal address or via email at studio@edinagora.eu. Users can also request correction or deletion of their personal data using the same contact details. In cases of improper use of the website’s services or upon the user’s request, the associated data will be deleted. Deletion requests are processed within a maximum of 7 working days from the initiation of the deletion request. In newsletters sent by the operator, users can independently delete their personal data by clicking on the unsubscribe link without needing to submit a separate request.

Possibility of enforcement of data processing

If a user feels that the website operator has violated their right to the protection of personal data, they may enforce their rights before a civil court or request assistance from the National Authority for Data Protection and Freedom of Information (NAIH). Detailed legal provisions regarding this and the obligations of the website operator are contained in Act No. CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information. When developing the Privacy Statement, we relied on Act No. CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information, as well as Act No. VI of 1998 on the Protection of Individuals with Regard to the Processing of Personal Data. The website operator will investigate the complaint within a maximum of 30 days. If the data subject does not agree with the outcome, they have the right to appeal to the National Authority for Data Protection and Freedom of Information.

Cookies

When you post a comment on the website, the name, email and website address you provide will be stored in cookies. This storage is for your convenience so that you do not have to fill in these fields the next time you post. Cookies expire after one year. When you visit the login page, we set temporary cookies to determine whether your browser accepts cookies. These cookies contain no personal information and are deleted as soon as we close the browser. When you log in to the website, we create a number of cookies that save your login information and the display options for the editor interface. The login cookies are valid for two days and the cookie storing the display options of the editor interface is valid for one year. If the “Remember me” option is checked, the login will continue for two weeks. When logging out, the login cookies are removed. If we edit a post or page, another cookie is stored by our browser. This cookie does not contain any personal data, it simply stores the ID number of the post we have edited. It expires after one day. The website uses Google Analytics cookies for analytics purposes, which collect information about how users use the website. Information about this service is available via the following link: https://www.google.com/analytics/terms/us.html

Embedded content from other websites

Entries on the website may use embedded content (e.g. videos, images, articles, etc.) from external sources. Embedded content from external sources behaves exactly as if you had visited another website. These sites may collect data about visitors, use cookies or third-party tracking code, monitor user behaviour in relation to embedded content if we have an account and are logged in to the site.

Current data protection legislation:

  • Act CXII of 2011 on freedom of information and freedom of information (‘Infotv’)
  • Act CVIII 2001 on certain aspects of e-commerce services and information society services (in particular§ 13/A)
  • Act XLVII of 2008 on the prohibition of unfair commercial practices against consumers;
  • Act XLVIII of 2008 on the basic conditions and certain limitations of economic advertising (in particular§ 6)
  • Act XC 2005 on freedom of information
  • Act C of 2003 on electronic communications (specifically§ 155)
  • Opinion No 16/2011 on the EASA/IAB Recommendation on best practice in behavioural online advertising

Edina Góra, responsible for data processing, reserves the right to amend and supplement this declaration. To review these rules and any new information, visit this website regularly.