GDPR

DATA PROTECTION STATEMENT

Your attention is drawn that in order to use website https://insurwiz.io we process certain personal data of you.

Please read this statement thoroughly and only use the website https://insurwiz.io when all provisions are clear and obvious and you agree the process of your personal data under the present statement.

1. Definitions

The following expressions which are used in the present statement shall be meant as following:

Data Controller: the operator and service provider of website https://insurwiz.io, the InsurWiz Technology Korlátolt Felelősségű Társaság (seat: Hungary, Budapest, 1095 Ipar street 5. 2nd floor, Reg. nr.: 01-09-329593, tax nr.: 26513258-2-43).
Data Subject: the user of website https://insurwiz.io whose personal data is processed by the Data Controller.
Personal Data: any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Website: the https://insurwiz.io website.

2. Contact data of Data Controller

InsurWiz Technology Korlátolt Felelősségű Társaság
Seat: Hungary, Budapest, 1095 Ipar street 5. 2nd floor
Registration number: 01-09-329593
Tax number: 26513258-2-43
Statistic number: 26513258-6201-113-01
Represented by: Ferenczi Ádám Attila CEO
Website: https://insurwiz.io
E-mail address: Contact
Telephone number: +36 1 786 1771
Postal address: Hungary, Budapest, 1095 Ipar street 5. 2nd floor

3. The Purpose of the Data Protection Statement

The Data Controller with the present statement informs Data Subject about the provisions related to the processing of each of their Personal Data, about measures being made in connection with the protection of Personal Data in possession of the Data Controller and about the possibilities of the Data Subject to obtain redress.

The purpose of the Data Protection Statement is to provide appropriate information about the circumstances of Personal Data processing for the Data Subject, on the basis of which they can make a well-founded decision on whether to use the Website or provide their Personal Data to the Data Controller through the Website.

4. The processing in connection with cookies

The Data Controller uses cookies on the Website. The cookie is a kind of information package made of letters and numbers which are stored on the Data Subject’s computer or mobile device by the server of the website. Later on the server is able to request and read the information from the stored package. The cookies are managed by the Data Subject’s browser. The purpose of the cookie is to make browsing and using of some funcions of the website easier and possible. Also to make the user experience better and to make it more confortable by storing the Data Subject’s personal settings. As well cookie makes it possible for the Data Controller to collect statistical information regarding the visitors of the Website.

Some part of the cookies are not storing Personal Data while others are containing an unique key – a secured, randomly generated number –, with which makes it possible to identifie the Data Subject, by that remember the visitor’s website settings. The Personal Data which is collected by the cookies and makes it possible to identify the user is processed by the Data Controller. The Data Controller regarding the collected data which make the user identifiable by the cookies is count as data controller.

During visiting the Website, the Data Controller informs the Data Subject regarding the cookies by a pop-up window in the end of the Website. The notification contains a link by which the visitor is able to read the present statement.

4.1. The cookies which are used by the Website.

The Data Controller uses the following cookies.

4.1.1. Strictly necessary cookies

These cookies are essential for the proper usage and function of the Website. Lack of these cookies some function of the Website is not available for the Data Subject. No information qualified as Personal Data is collected through these cookies.

Cookie name Description Who is using? Expire date

4.1.2. Statistical cookies:

a) The purpose of processing Personal Data, processed Personal Data, those person, who are entitled to access the Personal Data and term of data process:

These cookies are used to measure traffic and users' activity on the Website, allowing us to continuously improve its performance. These cookies are collecting direct identifiable informations from the visitor, which are counted as Personal Data.

Cookie name Description Who is using? Expire date
Google Analytics Data privacy and security Google -

b) The legal ground for processing Personal Data:

Legal ground for processing data is the voluntary consent of the Data Subject. Consent can be expressed by clicking on the „I accept” button on the cookie notification pop-up window on the bottom of the Website.

c) Right to withdraw:

Regarding that the legal ground for processing data is the voluntary consent of the Data Subject, he shall have the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Consent could be withdrawn by disabling and deleting the cookies in the settings of the browser.

4.2. Using your browser to control cookies:

The visitor of the Website is able to allow, swith off, and also to delete cookies in the settings of the browser. The Data Controller provides access to the Website’s functions and also makes the usage easier with the help of the cookies. In case of the visitor swithes off the cookies used by the Website the appearance and the usage of the functions is not guaranteed.

Guidance on how to control cookies for common browsers is linked below:

5. Data process in order to contact the Data Controller

Data Subject has the possibility to send a request or question to the Data Controller through the Website in order to get in contact with the Data Controller. The Data Subject shall give certain Personal Data during this process, so the following regulations shall be used in connection with this data process.

5.1. The legal ground for processing Personal Data:

Legal ground for processing data is the voluntary consent of the Data Subject. Consent can be expressed by marking the checkbox „I have read the Data Protection Statement.” after reading the present Data Protection Statement, and press „Send” button.

5.2. The purpose of processing Personal Data:

Purpose of processing data is to make it possible for the Data Controller to answer the request or question of the Data Subject and in connection with this, the Data Subject can be identified.

5.3. Processed Personal Data:

During contact, the Data Controller processes the following Personal Data of the Data Subject:

5.4. Term of data process:

Data Controller shall process Personal Data of the Data Subject, until it is unconditionally necessary in order to process and answer the request of the Data Subject, but not later, than the withdrawal of the consent of the Data Subject. Consent shall be withdrawn by sending a notice to the Data Controller using any of its contact data given in point 2.

5.5. Those person, who are entitled to access the Personal Data:

The Data Controller’s contributors, employees, and agents, who have been assigned by the Data Controller with the operation of the Website, and it is definitely necessary in order to perform their task or unavoidable by the nature of their acivity to know the Personal Data, are entitled to access the Personal Data of the Data Subject.

5.6. Right to withdraw:

Regarding that the legal ground for processing data is the voluntary consent of the Data Subject, he shall have the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Consent shall be withdrawn by sending a notice to the Data Controller.

6. Rights of the Data Subject

6.1. Right to be informed:

Data Subject is entitled to request the Data Controller using any of its contact data given in pont 2. to be informed about all data process concerned legal regulations in effect.

6.2. The Data Subject’s right to access to Personal Data:

The Data Subject is entitled to be informed by the Data Controller, that his or her Personal Data is being processed or not by the Data Controller, and if the Data Controller processes his or her Personal Data, Data Subject is entitled to access the Personal Data and the following information:

The Data Controller shall provide a copy of the Personal Data undergoing processing once. For any further copies requested by the Data Subject, the Data Controller may charge a reasonable fee based on administrative costs. Where the Data Subject makes such request, the information shall be provided in an electronic form. Information shall be given by the Data Controller one month within the request is being sent.

6.3. Right to rectification:

The Data Subject shall have the right to obtain from the Data Controller without undue delay the rectification of inaccurate Personal Data concerning him or her or to have incomplete Personal Data completed.

In case the Personal Data is incorrect, and the Data Controller has the correct data, the Personal Data is rectified by the controller.

6.4. Right to erasure:

The Data Subject shall have the right to obtain from the Data Controller the erasure of Personal Data concerning him or her without undue delay and the Data Controller shall have the obligation to erase Personal Data without undue delay where one of the following grounds applies:

After erasing or changing data, the erased data can not be restored.

Erase of data shall not be initiated, when one of the following reason occurs and the process of data is necessary: obligation shall be performed in compliance with a legal obligation in Union or Member State law to which the Data Controller is subject, for the establishment, exercise or defence of Data Controller’s legal claims.

6.5. Right to restriction of processing:

The Data Subject shall have the right to obtain from the Data Controller restriction of processing where one of the following applies:

Where processing has been restricted, such Personal Data shall, with the exception of storage, only be processed with the Data Subject's consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

A Data Subject who has obtained restriction of processing shall be informed by the Data Controller before the restriction of processing is lifted.

6.6. Right to object:

The Data Subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of Personal Data concerning him or her, including profiling based on those provisions. Where Personal Data are processed for direct marketing purposes, the Data Subject shall have the right to object at any time to processing of Personal Data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing. Where the Data Subject objects to processing for direct marketing purposes, the Personal Data shall no longer be processed for such purposes.

The Data Controller shall no longer process the Personal Data unless the Data Controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the Data Subject or for the establishment, exercise or defence of legal claims.

6.7. Right to data portability:

The Data Subject shall have the right to receive the Personal Data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another Data Controller.

6.8. Automated individual decision-making, including profiling:

Regarding that the decision, which is based on automated decision-making – including profiling – is based on the performance of the contract between the Data Subject and the Data Controller, the Data Subject is only entitled to ask for human decision making, and to submit objection against the decision.

6.9. Enforcement of claims before the court:

In case of the infringement of the Data Subject’s rights in connection with process of his or her Personal Data, the Data Subject shall file an action to the appropriate jurisdiction against the Data Controller.

6.10. Intiating legal action before the data protection authority:

In case the process of the Data Subject’s Personal Data is unlawful, the Data Subject shall lodge a complaint to the Hungarian National Authority for Data Protection and Freedom of Information, to any of the following contact data:

Hungarian National Authority for Data Protection and Freedom of Information

Seat: Hungary, Budapest, 1125 Szilágyi Erzsébet fasor 22/C.
Mailing address: 1530 Budapest, Pf.: 5.
Telephone number: 06-1-391-1400
Fax number: 06-1-391-1410
E-mail address: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu