Privacy Policy

Effective: from 1 January 2025 | Last modified: 1 January 2025

1. Introduction

This Privacy Policy (hereinafter: Policy) sets out the internal rules governing data-processing activities on the egyedirobotok.microweb.hu website (hereinafter: Website) operated by Remicro Kft. (hereinafter: Data Controller).

This Policy complies with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and Hungarian Act CXII of 2011 (Infotv.).

2. Definitions

• Personal data: any information that identifies or makes identifiable a natural person.
• Data Controller: the legal entity determining the purposes and means of processing personal data (Remicro Kft.).
• Data Processor: the natural or legal person processing personal data on behalf of the Data Controller.
• Data Subject: any identified or identifiable natural person whose personal data is processed.
• Consent: the data subject's freely given, specific, informed, and unambiguous indication of will.
• Personal data breach: a security breach leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or unauthorized access to personal data.

3. Data Controller's Details

• Name: Remicro Kft.
• Registered office: 9700 Szombathely, 11-es huszár út 186.
• Phone: +36 30 181 2500
• Email: egyedirobotok@microweb.hu
• Data Protection Contact: egyedirobotok@microweb.hu

4. Data Processing Activities

4.1. Contact Form

Data Processed	Name, address, phone number, email address, message text
Purpose of Processing	Receiving and answering user inquiries, preparing robot-rental offers, sending confirmation emails
Legal Basis	Data subject's consent (GDPR Art. 6(1)(a))
Retention Period	5 (five) years from submission
Data Transfer	SMTP provider (for email delivery)

4.2. Cookies

Cookie Type	Session cookie
Purpose	Providing CSRF protection (required for secure form operation)
Lifetime	Until browser is closed
Personal Data	Does not contain personal data

5. Data Processors

The Data Controller engages the following processors:

Processor	Activity	Data Processed
SMTP email provider	Email sending and delivery	Name, email address, message content
Hosting provider	Storage of the Website and data	All data submitted via the form

6. Data Security

The Data Controller applies the following technical and organizational measures to protect personal data:

• CSRF protection: session-based token against form forgery
• Honeypot field: protection against automated (bot) submissions
• Input validation: server-side validation of all user input
• Email header injection protection: filtering of newline characters
• XSS protection: escaping of all displayed data
• Encrypted communication: SMTP connection with TLS/SSL encryption
• Passwords and credentials: stored in environment variables, not in source code

7. Personal Data Breach Handling

In the event of a personal data breach, the Data Controller:

1. Immediately investigates the cause and circumstances of the incident
2. Takes the necessary measures to prevent further data loss
3. Notifies the Hungarian National Authority for Data Protection and Freedom of Information (NAIH) within 72 hours when the breach is likely to result in a risk to the rights and freedoms of data subjects
4. Where the risk is high, also notifies the affected data subjects without undue delay
5. Documents the incident and the measures taken

8. Data Subject Rights

The data subject may exercise the following rights at egyedirobotok@microweb.hu:

• Right to information and access: the data subject is entitled to information about and a copy of the data processed.
• Right to rectification: the data subject may request correction of inaccurate data and completion of incomplete data.
• Right to erasure ("right to be forgotten"): the data subject may request deletion if processing is no longer necessary or consent is withdrawn.
• Right to restrict processing: the data subject may request that their data be used only for limited purposes.
• Right to data portability: the data subject may request their data in a structured, machine-readable format.
• Right to object: the data subject may object to the processing of their data.
• Withdrawal of consent: the data subject may withdraw consent at any time, free of charge; this does not affect the lawfulness of processing before withdrawal.

The Data Controller fulfills requests within 30 days at the latest.

9. Remedies

If the data subject believes the Data Controller has infringed their right to personal data protection:

• Hungarian National Authority for Data Protection and Freedom of Information (NAIH)
  Address: 1055 Budapest, Falk Miksa utca 9-11, Hungary
  Phone: +36 1 391 1400
  Email: ugyfelszolgalat@naih.hu
  Website: www.naih.hu
• Court remedy: the data subject may bring an action before the regional court of their place of residence or stay.

10. Amendments to this Policy

The Data Controller reserves the right to amend this Policy. The amended Policy takes effect upon publication on the Website. Material changes are communicated to data subjects via the Website.

---

Remicro Kft. — 9700 Szombathely, 11-es huszár út 186.
Email: egyedirobotok@microweb.hu | Phone: +36 30 181 2500

← Back to home