Privacy Policy

Privacy Policy

 

Introduction

 

Tiborcz & Zebegnyei Law Firm (“Law Firm” or “Data Controller“) is committed to protecting the personal data of its clients and partners. The purpose of this Privacy Policy is to explain in a transparent and understandable way how we handle personal data during our legal activities. Our data management practices are following the applicable legislation, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council (“GDPR“) and Act CXII. of 2011 on the Right to Informational Self-Determination and Freedom of Information (“Information Act“).

 

  1. Definitions

 

Briefly: In this section, we have defined the most important terms used in the Privacy Policy to make it easier to understand.

 

Below are the key term’s explanations used in this Privacy Policy:

 

Definition

Explanation

Personal Data

Any information relating to an identified or identifiable natural person (data subject). Examples include name, identification number, location data or online identifier.

Concerned

The natural person whose personal data we process.

Data management

Any operation or set of operations which is performed on personal data, whether or not by automated means. For example, collection, recording, organisation, storage, modification, transmission, erasure.

Data manager

The natural or legal person who determines the purposes and means of the processing. In this case, Tiborcz & Zebegnyei Law Firm.

Data processor

The natural or legal person who processes personal data on behalf of the controller. For example, accountant, hosting provider.

GDPR

Regulation (EU) 2016/679 of the European Parliament and of the Council, which contains the General Data Protection Regulation and governs the processing of personal data in the European Union.

Information Act

Act CXII of 2011 on the right to informational self-determination and on the freedom of information, which regulates the processing and protection of personal data in Hungary.

Attorney Act

Act LXXVIII of 2017 on the professional activities of attorneys-at-law, which laying down the rules governing the practice of the profession of lawyer.

Pmt.

Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist Financing, which imposes obligations on law firms in the area of client identification.

Data protection incident

A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.

 

  1. Governing legislation

 

Briefly: This section lists the laws that govern how we process your personal data.

 

The Law Firm’s activities are subject to the following legislation, which sets out the framework and requirements for the processing of personal data:

 

Abbreviation of legislation

Full title of the legislation

GDPR

Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data

Information Act

Act CXII of 2011 on the right to informational self-determination and on the freedom of information.

Attorney Act

Act LXXVIII of 2017 on the professional activities of attorneys-at-law.

Pmt.

Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist Financing.

Art.

Act CL of 2017 on the Rules of Taxation.

VAT Act

Act CXXVII of 2007 on Value Added Tax.

Accounting Act

Act C of 2000 on Accounting.

 

  1. Data of the Law Firm related to data management

 

The Data Controller (hereinafter referred to as the Law Firm or the Data Controller) can be contacted at the following contact details:

 

Name of data controller

Tiborcz & Zebegnyei Law Firm

Seat

1021 Budapest, Hűvösvölgyi út 38B fszt. 4.

E-mail address

tzl@tz.legal

Website

www.tz.legal

 

The Law Firm complies with all applicable laws and regulations, particularly the provisions of the GDPR, in all its data management activities.

 

  1. Data processing in connection with the conclusion and performance of contracts

 

Briefly: This section explains in detail how and why we process your personal data when entering and fulfilling contracts, what data we collect, how long we keep it and who has access to it.

 

The Law Firm processes personal data about its clients, partners and their representatives and contacts during the conclusion and performance of contracts. The purpose of data processing is the preparation, conclusion and performance of contracts, the maintenance of contacts and the fulfilment of our legal obligations.

 

  • Activities carried out by the Data manager

 

  • Provision of legal services: Legal advice, representation in and out of court, drafting of documents, legal opinions.
  • Concluding and performing contracts: Preparing, concluding and amending contracts of engagement and other legal documents.
  • Contact: Communicate with clients and partners via email, telephone, face-to-face or online platforms (e.g. MS Teams).
  • Compliance with legal obligations: Customer identification, prevention of money laundering and terrorist financing (Pmt.), tax and accounting obligations.

 

  • Purpose of data processing

 

Aim

Description

Conclusion and performance of contracts

Processing of data necessary for the preparation, conclusion and performance of legal mandates and other contracts.

Contact

Ensuring continuous communication with clients and partners to ensure effective delivery of tasks.

Compliance with legal obligations

Compliance with the legal requirements applicable to the Law Firm (e.g. the Civil Code, the Attorney Act, the Accounting Act), including client identification and disclosure.

Billing and accounting

Invoicing services, recording and accounting for financial transactions in accordance with legal requirements.

Enforcement of rights and obligations

Exercise of rights and obligations under contracts, enforcement or defence of legal claims.

 

  • Legal basis for processing data

 

Legal basis

Explanation

Performance of the contract [GDPR article 6. (1) b)]

The processing is necessary for the conclusion and performance of a contract of engagement in which the party concerned is.

Fulfilling a legal obligation [GDPR article 6. (1) c)]

The processing is necessary for the fulfilment of the legal obligations applicable to the Law Firm (e.g. Pmt., Accounting Act).

The legitimate interest of the Law Firm [GDPR article 6. (1) f)]

The processing is necessary for the purposes of the legitimate interests of the Law Firm (e.g. processing of contact details).

 

  • List of affected persons

 

  • Natural person clients (principals)
  • Natural person representatives and contact persons of legal person clients
  • Partners (e.g. contractors, service providers) and their representatives, contacts

 

  • Scope of personal data processed

 

Type of person concerned

Personal data processed

Natural person customers

Name, name at birth, place and date of birth, mother’s name, nationality, address or residence, tax identification number, number and copy of identity documents, number and copy of address card, telephone number, e-mail address, postal address, documents related to the case, special data (if necessary).

Representatives of legal person clients

Name, title, telephone number, e-mail address, address or residence, number and copy of identity documents, postal address.

Partners and their representatives

Name, title, telephone number, e-mail address, address or residence, number and copy of identity documents, postal address.

 

  • Duration of data processing

 

Type of data processing

Retention period

Data relating to the contract of entrustment

5 years after the termination of the mandate (Attorney Act), 10 years for countersigning deeds, 10 years from the registration of the right in real estate registry cases.

Accounting documents, invoices

8 years from the date of issue (Section 169 (2) of the Accounting Act).

Data on the prevention of money laundering

8 years, in some cases 10 years, from the termination of the business relationship or the completion of the transaction (Section 56 (2) of Pmt.).

In the event of a dispute

5 years from the end of the proceedings closed by a final decision.

 

  • Data processors

 

During data processing, the Law Firm uses data processors:

 

Name of data processor

Seat

Tárhely.Eu Szolgáltató Kft.

1144 Budapest, Ormánság street 4.

Microsoft Ireland Operations Limited

One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland

 

  • The following persons within the controller’s organisation are entitled to access

 

  • Office manager lawyers
  • The lawyers and the colleagues involved in the case

 

  • Data transmission

 

  • Legal obligation: the Law Firm is obliged to provide information to the authorities and courts in cases provided for by law.
  • Postal and courier services: providing name and address details for the delivery of mail.
  • At the request or with the consent of the client: transfer of data to third parties (e.g. experts) in order to perform the case.

 

  • Consequences of failure to provide data

 

If the data subject fails to provide the necessary personal data, the Law Firm cannot conclude or perform the engagement contract and cannot provide the requested legal services.

 

  1. Data processing in non-contractual contacts

 

Briefly: In this section we explain how we handle the personal data of people who are not our customers but who contact us, for example to enquire or request information.

 

The Law Firm also processes the personal data of natural persons who do not have a contractual relationship with the Law Firm, but who contact or communicate with the Law Firm in some way. This includes, for example, general enquiries, requests for consultations, job applications or any other enquiries.

 

  • Purpose of data processing

 

  • Contact and communication: Receiving and responding to enquiries from data subjects, providing information.
  • Possibility of future cooperation: Preparing possible future assignments, managing job applications.
  • Fulfilling legal obligations: Fulfilling the Law Firm’s legal obligations, such as compliance with the rules of legal professional privilege.

 

  • Legal basis for processing

 

Legal basis

Explanation

Consent of the data subject [GDPR article 6 (1) a)]

The data subject voluntarily contacts the Law Firm and provides personal data for communication purposes.

The legitimate interest of the Law Firm [GDPR article 6 (1) f)]

The processing is necessary for the purposes of the legitimate interests pursued by the Law Firm, such as maintaining effective communication and promoting business.

 

  • List of affected persons

 

  • Natural persons who interact with the Law Firm but are not clients or partners.
  • Interested parties, requesting information.
  • Applicants for a job or cooperation.
  • Other lawyers, experts who initiate professional contacts.

 

  • Scope of personal data processed

 

Type of data

Personal data processed

Basic identification data

Name, e-mail address, telephone number, postal address.

Content of communication

The content of messages, letters, attached documents sent by the data subject, which may contain personal data or specific data (e.g. CV).

Technical datas

Technical data generated during electronic communications, such as IP address, timestamp, device information.

 

  • Duration of data processing

 

Type of data

Retention period

Contact details

Until the purpose of the contact is fulfilled, but for a maximum of 1 year from the date of the contact.

Data relating to job applications

Until the evaluation of the application or, in the case of an unsuccessful application, for 3 months from the date of notification or, with the consent of the person concerned, for a maximum of 1 year.

In the event of a dispute

5 years from the end of the proceedings closed by a final decision.

 

  • Data processors

 

In the course of data processing, the Law Firm may use the following data processors:

 

Name of data processor

Seat

Tárhely.Eu Szolgáltató Kft.

1144 Budapest, Ormánság street 4.

Microsoft Ireland Operations Limited

One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland

 

  • The following persons within the controller’s organisation are entitled to access

 

  • The lawyers and the colleagues of the Law Firm who are responsible for handling and responding to enquiries.

 

  • Data transmission

 

  • The Law Firm will not transfer the personal data of the data subject to third parties, unless required to do so by law or with the prior consent of the data subject.

 

  • Consequences of failure to provide data

 

  • If the data subject does not provide the required personal data, the Law Firm cannot respond to the request and cannot provide the requested information or service.

 

  1. Data processing in the context of legal obligations

 

Briefly: This section explains how the Law Firm processes and retains your personal data for legal obligations, such as tax, accounting and anti-money laundering purposes.

 

The Law Firm also processes personal data to fulfil certain legal obligations. These obligations include taxation, accounting, prevention of money laundering and terrorist financing, and client identification.

 

  • Data management related to taxation and accounting

 

Purpose of processing: To fulfil the obligations imposed by tax and accounting legislation, such as invoicing, bookkeeping, tax returns.

 

Legal basis: Compliance with a legal obligation [GDPR Section 6 (1) c); Accounting Act 169. §].

 

Data subjects: Customers and partners to whom we invoice or from whom we receive invoices.

 

Personal data processed:

 

Data type

Data processed

Identification data

Name, address, tax identification number or tax number

Billing data

Invoice number, amount, date of payment, payment method

 

Duration of processing: 8 years from the date of the exhibition [Accounting Act. Section 169. § (2)].

 

  • Data processing for the prevention of money laundering and terrorist financing

 

Purpose of data processing: To comply with the customer due diligence and reporting obligations required by the Money Laundering Act, in order to prevent money laundering and terrorist financing.

 

Legal basis: Compliance with a legal obligation [GDPR Section 6 (1) c); Pmt. 7-9. §].

 

List of affected persons: Customers, their representatives and beneficial owners.

 

Personal data processed:

 

Type of data

Data processed

Identification data

Name, place and date of birth, mother’s name, address, nationality

Document details

Type, number, expiry date, copy of identity document

Other data

Data on beneficial ownership, political public figure status

 

Duration of processing: 8 years from the end of the business relationship, in some cases 10 years [Pmt. 56. § (2)].

 

  • Customer identification-related data processing

 

Purpose of data processing: To comply with the client identification obligations required by the Lawyers’ Act and the Pmt. and to facilitate the security of legal transactions.

 

Legal basis: Compliance with a legal obligation [GDPR Section 6 (1) c); Attorney Act 32-33. §].

 

List of affected persons: customers and their representatives.

 

Personal data processed:

 

Data type

Data processed

Identification data

Name, name at birth, place and date of birth, mother’s name, address

Document details

Type, number, expiry date, copy of identity document

 

Duration of data processing: 8 years from the date of data collection or termination of the business relationship, in some cases 10 years [Pmt. 56. § (2)].

 

  • Preservation of certified documents

 

Purpose of processing: to keep the countersigned documents and related documents in accordance with the legal requirements, in order to ensure compliance with the rules governing the activities of lawyers.

 

Legal basis: Compliance with a legal obligation [GDPR Section 6 (1) c); Attorney Act 53. § (5)].

 

List of affected persons: Natural persons named in the countersigned documents.

 

Personal data processed:

 

Type of data

Data processed

Data of the document

Full content of the deed, including personal data

 

Duration of data processing: 10 years from the date of countersignature, unless a longer retention period is required by law.

 

  • Case record keeping

 

Purpose of data processing: To keep case records in order to ensure the controllability of the lawyer’s activities and to protect the rights of clients.

 

Legal basis: Compliance with a legal obligation [GDPR section 6 (1) c); Ügyvédi tv. 53. § (2)].

 

List of affected persons: Clients, opposing parties, other persons involved in the case.

 

Personal data processed:

 

Data type

Data processed

Case details

Case identifier, name of client, name of opposing party, subject of the case

 

Duration of data processing: 5 years after the termination of the case, 10 years in case of countersigning a deed [Attorney Act 53. § (3)].

 

  • Transmission of data under legal obligation

 

In certain cases, the Law Firm is obliged to transmit personal data to authorities, courts or other bodies (e.g. National Tax and Customs Office, Hungarian Bar Association) in order to fulfil its legal obligations.

 

  1. Data recipients and categories of recipients

 

Briefly: This section describes the third parties to whom the Law Firm may transfer your personal data, such as data processors, public authorities or parties involved in the handling of your case, and the conditions under which the transfer may take place.

 

In processing personal data, the Law Firm pays particular attention to the confidentiality of the data and only discloses it to third parties to the extent necessary and on the basis of law. Below is a description of the possible recipients of the data and the categories of third parties to whom the personal data may be disclosed.

 

  • Use of data processors

 

The Law Firm uses data processors to perform certain tasks, who process the data in accordance with the instructions of the Law Firm for the purposes and in the manner set out in this Notice.

 

List of Data processors:

 

Name of data processor

Seat

Tárhely.Eu Szolgáltató Kft.

1144 Budapest, Ormánság street 4.

Microsoft Ireland Operations Limited

One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Íreland

 

Important notes on data processors:

 

  • Processors may use the data only on the instructions of the Law Firm and for the purposes specified.
  • Processors must ensure that appropriate technical and organisational measures are taken to ensure the security of the data.
  • The Law Firm only works with data processors who guarantee compliance with the GDPR.

 

  • Data transmission under legal obligation

 

In order to comply with its legal obligations, the Law Firm may be required to transfer personal data to the following bodies:

 

Addressee

Purpose of data transfer

Tax authorities

Meeting legal obligations related to taxation (e.g. NAV)

Courts and authorities

Participating in legal proceedings, responding to requests from public authorities

Hungarian Bar Association

Supervising the activities of lawyers, checking compliance with professional rules

Financial information units

Notifications for the prevention of money laundering and terrorist financing (e.g. notification under the Money Laundering Act)

 

Other features of data transmission:

 

  • The transfer of data shall be carried out in the cases and in the manner provided for by the applicable legislation (e.g. Pmt., Attorney Act, Art.).
  • The Law Firm will always ensure that the transfer is lawful and secure.
  • The data subject will be informed of the transfer, unless excluded by law.

 

  • Transfers with the consent or at the request of the customer

 

The Law Firm may transfer personal data to third parties in the course of the performance of the case, with the express consent or at the request of the client, for example:

 

Addressee

Purpose of data transfer

Experts

Obtaining the necessary expertise (e.g. forensic experts) to deal with the case properly

Legal representative of the opposing party

Transmission of documents and statements required in legal proceedings

Other contributors

Other persons or organisations involved in the case (e.g. translators, notaries)

 

Conditions for the transfer of data:

 

  • Transfers are only made with the explicit consent or at the request of the customer.
  • The Law Firm will inform the client of the purpose and recipient of the transfer.
  • We ensure the security and confidentiality of your data during transmission.

 

  • International data transmission

 

In principle, the Law Firm does not transfer personal data to countries outside the European Economic Area (EEA). However, if the nature of the case so requires and the client expressly requests or consents, international transfers may take place.

 

In case of international data transfers:

 

  • We ensure that the transfer complies with the requirements of Chapter V of the GDPR.
  • We apply appropriate safeguards, such as the general data protection clauses adopted by the European Commission.
  • We inform the customer about the details of the transfer and the risks involved.

 

  • Data transmission to postal and courier services

 

When using postal and courier services, the Law Firm will provide the necessary personal data (e.g. name, address) to the service providers in order to deliver the mail.

 

Service providers for example:

 

  • Magyar Posta Zrt.
  • Courier services (e.g. DHL, GLS, FedEx)

 

  1. Rights of data subjects and their enforcement

 

Briefly: In this section we list your rights regarding data processing and explains how you can exercise these rights.

 

The Law Firm is committed to respecting and ensuring the rights of data subjects. Below, we explain what rights you as a data subject have in relation to the processing of your personal data and how you can exercise these rights.

 

  • Right of access

 

You have the right to receive feedback on whether your personal data are being processed and, if so, to have access to the data and related information. This includes the purposes of the processing, the categories of data processed, the duration of the processing and the third parties who receive or intend to receive the data.

 

  • Right to rectification

 

If the personal data we hold about you is inaccurate or incomplete, you have the right to request that it be corrected or completed.

 

  • Right to erasure (“right to be forgotten”)

 

You may request the erasure of your personal data if:

 

  • The data is no longer necessary for the purposes for which it was collected or processed.
  • You withdraw your consent on which the processing is based and there is no other legal basis for the processing.
  • You object to the processing and there is no overriding legitimate ground for the processing.
  • The data have been unlawfully processed.

 

However, in some cases we cannot delete data due to legal obligations (e.g. accounting requirements).

 

  • Right to restriction of processing

 

You can ask us to restrict the processing of your personal data if:

 

  • There is a dispute about the accuracy of the data (pending verification of accuracy).
  • The processing is unlawful, but you oppose the deletion of the data and instead request a restriction on its use.
  • We no longer need the data, but you want it to pursue legal claims.
  • You have objected to the processing (as to whether our legitimate interests override your legitimate interests).

 

  • Right to data portability

 

You have the right to receive the personal data we process about you in a structured, commonly used, machine-readable format and the right to transfer this data to another controller.

 

  • Right to object

 

You have the right to object to the processing of your personal data based on legitimate interests at any time. In this case, the data will no longer be processed unless we can demonstrate compelling legitimate grounds for the processing which override your interests.

 

  • Right to withdraw consent

 

If the processing is based on consent, you have the right to withdraw your consent at any time. Such withdrawal shall not affect the lawfulness of the processing that took place before the withdrawal.

 

  • Rights of redress

 

  • Complain to the supervisory authority: If you believe that the processing of your personal data infringes the provisions of the GDPR, you have the right to lodge a complaint with the National Authority for Data Protection and Freedom of Information (NAIH).
  • Contact:
  • Address: 1055 Budapest, Falk Miksa utca 9-11.
  • Website: www.naih.hu
  • E-mail: ugyfelszolgalat@naih.hu
  • Phone number: +36 (1) 391-1400
  • Legal remedy: you have the right to go to court if your rights are infringed. You can also bring a case before the courts in your place of residence or domicile.

 

  • How to exercise your rights as an interested party

 

To exercise your rights, please contact us using the contact details below:

 

  • E-mail: TZL@TZL.legal
  • Postal address: 1021 Budapest, Hűvösvölgyi út 38B fszt. 4.

 

Please clearly indicate in your request which right you wish to exercise and provide your contact details to facilitate a response.

 

  1. Data security measures

 

Briefly: This section describes in detail the technical and organisational measures we take to ensure the security and protection of your personal data.

 

The Law Firm attaches great importance to the security of personal data. To this end, we apply appropriate technical and organisational measures to ensure that data processing complies with the relevant legislation and that the rights of data subjects are protected.

 

  • Technical measures

 

Measure

Description

Secure data storage

Personal data is stored on secure, password and firewall protected servers that are regularly updated and maintained.

Encrypted communication

SSL/TLS encryption is used during electronic data transmission to protect your data.

Restrict access

Access to data is controlled according to authorisation levels; only authorised staff have access to personal data.

Virus protection and firewall

We protect our systems against external attacks with up-to-date antivirus software and firewalls.

Regular backup

We back up your personal data at regular intervals to preserve and restore it..

Regulation of the use of external storage media

We regulate the use of external storage media (e.g. USB, external hard drive) to prevent unauthorised copying of data.

 

  • Organisational measures

 

Measure

Description

Development of data management policies

Our internal policies set out the data management process, data security requirements and procedures for handling data breaches.

Colleague training

We regularly train our colleagues on the importance of data protection and security, as well as on current legislation and internal policies.

Confidentiality

All our employees and agents sign a confidentiality agreement and are obliged to treat any personal data they receive as confidential.

Handling data protection incidents

We have established procedures for the identification, notification and handling of data breaches, including the notification of data subjects and the authority.

 

  • Physical protection

 

Measure

Description

Office security

Office premises are protected by security locks, alarms and access control systems, preventing unauthorised access.

Storage of documents

Paper documents are stored in lockable cabinets or filing cabinets that can only be accessed by authorised persons.

Regulation of annihilate

Paper documents and media that become redundant are securely destroyed by shredding equipment.

Cleaning and maintenance supervision

Cleaning and maintenance work in the office is carried out under controlled conditions, always ensuring the security of your data.

 

  • Data security audits and reviews

 

Measure

Description

Regular audits

We regularly review the effectiveness of our data security measures and update them as necessary to reflect technological and legal changes.

Involvement of external experts

Where necessary, we engage external data protection and IT security experts to monitor and improve our processes and systems.

 

  1. Data management of website and social media pages

 

Briefly: This section explains how we handle your personal information when you use our website and social media pages, including cookies and social media interactions.

 

The Law Firm is present online, with its own website and social media profiles. When using these platforms, we also consider the protection of the personal data of the data subjects to be important, and therefore we detail our data management practices in this regard below.

 

  • Website use and cookie management

 

Website address: www.tz.legal

 

Purpose of data processing:

 

  • Ensure the proper functioning of the website.
  • To improve the user experience.
  • Generating visitor statistics.
  • Technical protection of the IT system.

 

Scope of personal data processed:

 

  • Technical data: IP address, browser type, operating system, time of visit, pages visited.
  • Data collected by cookies: visitor habits, preferences.

 

Cookies:

 

The website uses cookies to improve the user experience and to ensure the functionality of the website. Cookies are small text files that are saved by the browser on the user’s device.

 

Types of cookies used:

 

Type of cookie

Purpose of it

Validity period

Session cookies

Providing the basic functions of the website, facilitating navigation.

Until the end of the session.

Functional cookies

Remember user preferences (e.g. language preferences).

Up to 1 year.

Analytical cookies

Generating visitor statistics, measuring website performance (e.g. Google Analytics).

2 years.

Third party cookies

Cookies placed by third party service providers (e.g. social media plugins).

Various.

 

Setting up cookie management:

 

Users can control or disable the use of cookies in their browser settings. If cookies are disabled, certain features of the website may not function properly.

 

Legal basis:

 

  • The data subject’s consent [Article 6 (1) (a) GDPR]: for cookies that are not strictly necessary.
  • Legitimate interest of the law firm [Article 6 (1) (f) GDPR]: for cookies that are essential for the functioning of the website.

 

  • Social media sites

 

The Law Firm is present on social media, where interested parties can find out about the firm’s activities and news.

 

Platforms:

 

 

Purpose of data processing:

 

  • Liaising with clients and interested parties.
  • Providing information about the office’s services and professional news.
  • Marketing activities.

 

Scope of personal data processed:

 

  • Data made public by the user (e.g. name, profile picture).
  • The content of messages and comments sent by the user.

 

Characteristics of data processing:

 

  • The data subject voluntarily contacts the Law Firm through social media platforms.
  • The data will be processed in accordance with the privacy policy of the relevant social media platform.
  • The Law Firm is not responsible for the data management practices of social media providers.

 

Legal basis:

 

  • The data subject’s consent [Article 6 (1) (a) GDPR]: based on the data subject’s voluntary interaction.
  • Legitimate interest of the Law Firm [Article 6 (1) (f) GDPR]: To maintain communication and marketing activities.

 

  • Data processors and third parties

 

In operating the website and social media pages, the Law Firm uses the following data processors and service providers:

 

Service provider name

Seat

Activity

Tárhely.Eu Szolgáltató Kft.

1144 Budapest, Ormánság street 4.

Website hosting service

Facebook Ireland Ltd.

4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

Social media platform service

LinkedIn Ireland Unlimited Company

Wilton Plaza, Wilton Place, Dublin 2, Ireland

Business social media platform service

Google Ireland Limited

Gordon House, Barrow Street, Dublin 4, Ireland

Google Analytics (website analytics)

 

Third party processing:

 

  • Social media platforms and Google Analytics are independent data controllers with their own privacy policies.
  • Data subjects are advised to inform themselves about the data management practices of these service providers.

 

  • Consequences of failure to provide data

 

  • You do not have to accept cookies when using this website, but some features may not function properly without them.
  • Participation in social media platforms is voluntary, and failure to provide this information may result in the inability to use certain services.

 

  1. Amendments to the privacy notice

 

The Law Firm reserves the right to modify this Privacy Policy at any time in accordance with changes in legislation and changes in its activities. The current Privacy Policy will always be available on our website.

 

The date of entry into force of this privacy notice: January 1, 2025.

 

Tiborcz & Zebegnyei Law Firm

data manager

 

We hope that our privacy notice will answer all your questions. If you have any further questions or comments, please do not hesitate to contact us using our contact details.