Privacy Policy
1. Data Controller Information
Name: Crea+Inno Ltd.
Tax number: 13065793-1-41
Company registration number: 01-09-717039
Headquarters and mailing address: H-1025 Budapest, Zöldlomb Street 23.
Representative: Bence Mészáros, managing director
Email: info@phenomeni.com
Website: https://www.phenomeni.com/
Business start date: 30th July 2003
2. Brief Overview of Data Processing
This Privacy Policy (hereinafter: "Privacy Policy") aims to inform you, as the data subject, about all significant details regarding the processing of personal data in accordance with the European Parliament and Council Regulation 2016/679 (General Data Protection Regulation, "GDPR") and Act CXII of 2011 on the right of informational self-determination and freedom of information ("Infotv.").
By providing your data, you guarantee that the information is accurate, complete, and up-to-date.
If you wish to participate in events organized by Crea+Inno Ltd., registration is required, during which the Data Controller will collect data from you for the purpose of organizing these events.
3. What Data Will Be Collected and for What Purpose?
3.1 For events, the Data Controller will collect the following data:
Name (required for identification)
Email address (required for organizational purposes)
Phone number (required for organizational purposes)
3.2 For newsletter subscription, the Data Controller will collect the following data:
Email address (required for sending the newsletter)
Name (required for sending the newsletter)
The above data constitutes personal data.
4. Legal Basis for Data Processing
According to Article 6(1)(a) of the GDPR, the legal basis for personal data processing is the consent of the data subject. Data processing is always voluntary, and you may withdraw your consent at any time.
5. Duration of Data Processing
The Data Controller will process your personal data until you withdraw your consent. You can withdraw your consent by sending an email to info@phenomeni.com at any time. For newsletters, an unsubscribe option is available in the footer of every email.
6. Data Security Measures
Only the Data Controller has access to the personal data you provide, and only when performing their duties, such as for organizational purposes.
The Data Controller stores the personal data they process electronically on online storage (site123.com) in a way that is accessible only to them. The Data Controller takes all necessary measures to protect your personal data, including protection against unauthorized access or unauthorized data modification.
7. Rights Related to Data Processing
7.1. Right to Request Information
You are entitled to request feedback from the Data Controller regarding whether your personal data is being processed, and if such processing is occurring, you are entitled to access the following information:
Purposes of data processing
Categories of personal data concerned
Recipients or categories of recipients with whom the personal data has been or will be shared (including data processors)
The planned duration for storing personal data
Your rights related to personal data processing
The source of the data, if it was not collected from you
The Data Controller will fulfill your request within 30 days, and will send the information to the contact details you provided (postal address or email address).
7.2. Right to Rectification
You may request that the Data Controller correct any personal data about you. You also have the right to request the completion of incomplete personal data through a statement.
7.3. Right to Erasure
You may request the deletion of your personal data, and the Data Controller will fulfill this request within 30 days. The right to erasure does not apply if the Data Controller is required by law to store the data further or if the Data Controller is entitled to continue processing the personal data in accordance with Section 6(5) of the Infotv. (e.g., in relation to invoicing).
Please note that in such cases, we may refuse to provide services as submitting data is a prerequisite for participation in individual consultations and group sessions.
7.4. Right to Restriction
You may request that the Data Controller restrict the processing of your personal data if erasing the data would harm your legitimate interests. Restricted data may only be processed as long as the purpose for which the data was not deleted continues to exist.
7.5. Right to Object
If you have concerns about the legality of data processing, you have the right to object to the processing of your personal data. Your objection should include a request for the Data Controller to cease processing your personal data and delete your data.
If you object to the processing of your personal data, the Data Controller will examine the reasons for your objection within a month, make a substantive decision, and inform you of the decision in writing.
If the Data Controller finds that your objection is justified, all processing activities will cease, the relevant personal data will be restricted, and the Data Controller will notify all recipients of the objection and any subsequent measures taken with regard to the personal data. These recipients are also required to act to ensure your objection is respected. If you disagree with the Data Controller's decision or if the Data Controller does not comply with the one-month deadline, you may take the matter to court within 30 days from the notification of the decision or the last day of the deadline.
8. Legal Remedies for Data Processing
8.1. Complaint to the National Authority for Data Protection and Freedom of Information
The National Authority for Data Protection and Freedom of Information supervises compliance with data protection laws. If you believe that the Data Controller’s data processing does not comply with the applicable laws or if you believe there is an immediate risk of such non-compliance, you may file a complaint with the Authority at the following contact details:
Authority Name: National Authority for Data Protection and Freedom of Information
Postal Address: H-1363 Budapest, Pf. 9.
Email: ugyfelszolgalat@naih.hu
Phone Number: +36 1 391 1400
Fax Number: +36 1 391 1410
For more information about data protection, you can visit the Authority’s website: http://naih.hu/
8.2. Initiating Court Proceedings
If you believe the Data Controller has violated your right to privacy or that the decision regarding your objection was incorrect or not responded to, you may take the matter to court. The court in the district where you reside or stay is competent to hear the case.
Additionally, under specific legal conditions, if unlawful data processing or failure to meet data security requirements by the Data Controller causes you harm, you can seek compensation for damages in court. If the Data Controller has violated your personal rights, you may be entitled to non-material damages, which you may also claim in court.