a iBioScience Limited Liability Company on data management related to the use of the ibioscience.hu website

Pursuant to Articles 16 and 17 of Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (hereinafter referred to as “Info Act”) and Articles 12 (1), 13 and 14 of Regulation (EU) 2016/679 of the European Parliament and the Council (hereinafter referred to as “GDPR”), iBioScience Limited Liability Company hereby informs the data subjects about the processing of data related to the use of the ibioscience.hu website.

01. Name and contact details of the data controller: iBioScience Limited Liability Company; registered office: 7625 Pécs, Dr. Majorossy Imre utca 36.: website: https://www.ibioscience.hu; telephone number: 36-70-674-6611

02. Name and contact details of the representative of the data controller: Károly Fehér managing Director; iBioScience Limited Liability Company; registered office: 7625 Pécs, Dr. Majorossy Imre utca 36.: website: https://www.ibioscience.hu; telephone number: 36-70-674-6611

03. Name and contact details of the representative of the Data Protection Officer: Károly Fehér managing Director; iBioScience Limited Liability Company; registered office: 7625 Pécs, Dr. Majorossy Imre utca 36.: website: https://www.ibioscience.hu; telephone number: 36-70-674-6611

04. Purpose of the processing:
– Online content service – the internet server of the data controller automatically registers the IP address and the type of operating system of the computer of the visitors and the time of the visit to the website in order to monitor quality of the service, prevent abuse, ensure the proper functioning of the service and prevent abuse.
– Contacting the visitor – if the visitor contacts the controller by e-mail, the controller records the visitor’s e-mail address.
– The purpose of using cookies is to speed up the use of the website, to balance the load on the servers, or to assist and facilitate the use of the website by means of automatic functions. Cookies are files or pieces of information sent by a web server accessed by a visitor to the web browser on the visitor’s computer. A cookie usually contains the name of the website from which it came; the value of the cookie, i.e. a randomly generated unique number; and its lifetime, i.e. how long it remains on the online communication device. The cookie is stored in a file in the user’s device’s back memory. The contents of the file can be retrieved from the browser at any time by the web server that sent the cookie.

The following table sets out the data processing practices to cookies used by www.ibioscience.hu:

Name
Service
Target
Types of cookies and duration of use
_ga The _ga cookie installed by Google Analytics collects data about visitors’ use of the website and browsing for the analytical report of the website. The cookie stores information anonymously and assigns a randomly generated number to identify unique visitors. 2 years
_gid The _gid cookie installed by Google Analytics collects information about how visitors use the website, and also prepares an analytical report on this. Some of the data collected includes the number of visitors, their source, and the pages they visit anonymously. 1 year
_hjFirstSeen The Hotjar software uses a cookie to identify the first activity of a new visitor. Records whether Hotjar saw the visitor for the first time. 30 minutes
_hjIncludedInSessionSample The Hotjar software uses a cookie to record whether a visitor is included in the data sample set by the site’s daily activity limit. 2 minutes
_hjIncludedInPageviewSample The Hotjar software uses a cookie to record whether a visitor is included in the data sampling determined by the pageview limit of the website. 2 minutes
_hjAbsoluteSessionInProgress The Hotjar software uses the cookie to detect the visitor’s first pageview activity. This is the true / false flag set by the cookie. 30 minutes
uncode_privacy[consent_types] uncode_privacy [consent_types] ibio.hu This cookie is set by Uncode WordPress and is used to manage the privacy settings of the website. 1 year
_GRECAPTCHA This cookie is set by Google’s recaptcha service to identify bots to protect your site from malicious spam attacks. 5 months 27 days
_hjSessionUser_2500938 no data 1 year
_hjSession_2500938 no data 30 minutes
_gat This cookie is installed by Google Universal Analytics to limit the rate of requests and thus limit the collection of data on high-traffic websites 1 minute

05. Legal basis of processing:

  • For online content services under point 4.A., Article 6(1)(a) GDPR. the data subject has given his or her consent to the processing of his or her personal data for on or more specific purposes.
  • in the case of contact with a visitor under point 4.B., Article 6(1)(a) GDPR: the data subject has given his or her consent to the processing of his or her personal data for on or more specific purposes.
  • In the case of cookies used by the website under point 4.C., Article 6(1)(a) GDPR: the data subject has given his or her consent to the processing of his or her personal data for on or more specific purposes and Article 155(4) of Act C of 2003 on electronic communications.

06. Categories of personal (and, if any) and special categories of personal data processed:

The person concerned

  • Name
  • your e-mail address
  • telephone number
  • IP address

07. The data subjects concerned by the processing:

  • visitors to the website
  • those who contact the controller
  • those requesting a quote from the controller

08. General processing period of the processed data: 2 years from the date of accessing the website.

09. Name and address of the data processor: No data processor will be used.

10. The legal basis for the transfer, if any, is the fact of transfer to a third country or international organization: No data will be transferred to a third country or international organization.

 

INFORMING DATA SUBJECTS OF THEIR FUNDAMENTAL RIGHTS 

  1. Information

Data subjects have the right to receive concise, transparent, comprehensible and easily accessible information. The Data Controller shall comply with the Data Subject’s request in writing or by any other appropriate means, after verifying the identity of the Data Subject, without undue delay and within a maximum of 1 month.

The Data Controller shall provide such data free of charge, unless the request is unfounded, excessive or repetitive.

  1. Right of access of the data subject

The Data Subject is entitled to access to personal data and the following information: a copy of the personal data (additional copies for a fee).

  1. Right to rectification

The Data Subject is entitled to correct or complete inaccurate data without undue delay.

  1. Right to erasure (right to be forgotten)

At the request of the data subject, the Controller shall delete personal data relating to the Data Subject without undue delay where one of the following situation applies:

  • the purpose has ceased to exist or has become obsolete, the data is no longer needed
  • the data subject withdraws his or her consent and the legal basis for the processing ceases to exist
  • the Data Subject objects to the processing
  • unlawful processing
  • to comply with a legal obligation.

In the context of the Data Subject’s right to be forgotten, if the Data Controller is obliged to delete personal data that has been made public, the Data Controller shall take reasonable steps, taking into account the available technology and the cost of implementation, to inform other data controllers in order to delete links, copies or duplicates in question.

An exception to the exercise of the Data Subject’s rights under points 3 and 4 is made where the processing is necessary. Processing is necessary if it is indispensable for one of the following purposes:

  • freedom of expression
  • for the performance of a legal obligation or in the exercise of official authority
  • in the public interest in the field of public health
  • archiving in the public interest for scientific and historical research purposes
  • to pursue legal claims
  1. Right to restriction of processing

The Controller shall restrict processing at the request of the data subject where

  • the data subject contests the accuracy of the personal data
  • the processing is unlawful and the Data Subject opposes the erasure of the data
  • the Controller no longer needs the personal data but the Data Subject requires them for the establishment, exercise or defence of legal claims
  • the Data Subject has objected to the processing and the Controller is still under investigation.
  1. The right to data portability

The Data Subject is entitled to receive the data he or she has provided to the Data Controller:

  • in a structured, widely used, machine-readable format
  • is entitled to transfer it to another controller
  • request the direct transfer of the data to the other controller (if technically feasible)

LEGAL REMEDIES

  1. Data Protection Officer
  2. Right to lodge a complaint with a supervisory authority

Supervisory authority: National Authority for Data Protection and Freedom of Information, 1055 Budapest, Falk Miksa utca 9-11., website: www.naih.hu

  1. Right to judicial remedy against the Controller/Processor

Independently of the administrative procedure and other procedures, the data subject may bring an action against the Controller and the Processor before the courts in the place where the Controller/Processor is established. Proceedings may also be brought in the courts of the Member State in which the Data Subject is domiciled. The ordinary court with general jurisdiction over the controller is the Pécs General Court (7623 Pécs, Rákóczí út 34.)

 

Publication and registration clause

I have published the above privacy notice on the website, which is available to anyone without restriction via the following link. The link is https://www.ibioscience.hu/hu/adatvedelmi-nyilatkozat

 

Pécs, April 2022

 

Károly Fehér
Managing Director