Privacy Policy

Introduction

Our goal is to ensure that you feel safe on our website, so it is important to us to protect your privacy and personal rights. Therefore, please read the following summary of how our website works carefully. You can trust that data processing is transparent and fair, and we will do everything we can to handle your data carefully and responsibly. The purpose of the following Privacy Policy is to provide you with information about how we use your personal data, in relation to which we comply with the strict requirements of Act CXII of 2011 on the Right to Information Self-Determination and Freedom of Information (hereinafter: Infotv.) and the General Data Protection Regulation (GDPR). The data management principles of Nivis Assistance Zrt. are in line with the applicable data protection legislation, in particular the following: Act CXII of 2011 – on the right to informational self-determination and freedom of information (Infotv.); Act V of 2013 – on the Civil Code (Ptk.); Act CLV of 1997 – on consumer protection (Fgytv.); Act XIX of 1998 – on criminal procedure (Be.); Act C of 2000 – on accounting (Számv. tv.); Act CVIII of 2001 – on electronic commerce services and certain issues of services related to the information society (Eker. tv.); Act C of 2003 – on electronic communications (Eht.); Act CXXXIII of 2005 Act – on the rules of personal and property protection and private detective activities (SzVMt.);Act XLVIII of 2008 – on the basic conditions and certain limitations of economic advertising activities (Grt.),Act CLIX of 2012 – on postal services (Postatv.)

According to the GDPR, other data protection laws applicable in EU member states and other data protection regulations, the data controller:

Nivis Assistance Zrt. Company registration number: 01-10- 045876 Registered office: Hungary, 1071 Budapest, Dembinszky utca 44. Tax number: 14186060-2-42 central telephone number: +36 1 999 088 e-mail address: info@nivis.hu. Data protection officer of the data controller: Edmond Mácsai The data protection officer can be reached at the following e-mail address or postal address: e-mail: info@nivis.hu postal address: Nivis Assistance Zrt. 1071 Budapest, Dembinszky utca 44.

Personal data

Personal data is data that can be linked to a data subject - in particular the name, an identification number and one or more physical, physiological, mental, economic, cultural or social identity of the data subject - and conclusions that can be drawn from the data concerning the data subject. In addition to the name, address, telephone number, e-mail address and tax identification number of the registered user, additional data is automatically collected during each visit to our website for technical reasons: such as the IP address that your Internet service provider assigns to your computer for the purpose of connecting to the Internet or information about the Internet location from which you visited our offer, such as the settings of the browser you use. (technical information) This technical material may in some cases constitute personal data. As a general rule, however, we only use this technical data to the extent that it is technically necessary for the operation of our website and to protect it against attacks and misuse, and in addition, in pseudonymized or anonymized form for statistical purposes.

We collect and use your personal data only to the extent necessary for the operation of the website and the provision of our content and services, for example, when you register on our website, log in to your existing customer account or order products. We collect and use your personal data only with your consent. An exception to this is when it is not possible to obtain prior consent due to certain circumstances and the data processing is permitted by law.
The security of your personal data is of paramount importance to us. Therefore, we take technical and organizational measures to protect the data we process, thus preventing its loss or misuse by third parties. Our employees who perform data processing tasks are subject to mandatory confidentiality rules. The security of your personal data is also guaranteed by the fact that it is transmitted encrypted; for example, we use SSL (Secure Sockets Layer) to communicate with your browser. A padlock symbol appears in your browser so that you can see when an SSL connection is established. In order to ensure that your data is always protected, we regularly review our technical security measures and, if necessary, modify them in accordance with new technological requirements. These principles also apply to companies that process and use data on our behalf and in accordance with our instructions.

We collect, process and use your personal data for the following purposes:

Funeral service contracts

Sending quotes
Customer service and identification option in a telephone system
Providing data for funerals to institutions performing public service tasks
We may process your personal data based on the following legal principles:

Article 6(1)(a) of the GDPR serves as the basis for the processing of your data, for which we obtain your consent for certain processing purposes.
Article 6(1)(b) of the GDPR regulates that personal data may be processed for the performance of a contract, e.g. in connection with the purchase of a product. The same applies to processing activities that are necessary for activities prior to entering into a contract, such as handling inquiries about products or services.
Article 6(1)(c) of the GDPR applies in cases where we are subject to a legal obligation to process your data, e.g. in connection with tax obligations. Article 6(1)(d) of the GDPR states that personal data may be processed to protect your vital interests or those of other natural persons.
Article 6(1)(f) of the GDPR refers to our legitimate interest, for example when we use service providers to fulfill orders (e.g. delivery services), when we perform statistical surveys and analyses, or when we log login attempts. Our interest is to provide a user-friendly, attractive and secure website and to optimize it in a way that both serves our business interests and meets your expectations.

We only process and store personal data for as long as it is necessary to achieve the purpose of the processing or for as long as we are required to do so by law or other regulation. As soon as the purpose ceases or is fulfilled, we will delete your personal data or restrict access to it. Restricted access means that the data will be deleted as soon as the retention periods specified in the law, articles of association or contracts allow this, unless there is otherwise a reason to assume that the deletion would jeopardize your legitimate interests and provided that the deletion does not require a disproportionately burdensome expenditure of resources due to the specific circumstances of the storage.

In accordance with Article 6(1)(f) of the GDPR, our website collects a variety of general data and information about each access and temporarily stores this in server log files. Log files are created by the automatic logging of the computer system. The following data may be collected: Access to the website (date, time and frequency) How you reached the website (referring page, hyperlink, etc.) The operating system you use The IP address assigned to your computer by your internet service provider when connecting to the internet. The collection and storage of this data is necessary for the operation of the website, in order to ensure the functionality of the website and to present the content of our website correctly. We also use this data to optimize our website and ensure the security of our IT systems. For this reason, we store the data for a maximum of seven days as a technical precaution.

We also use this data for marketing, market research and service structuring purposes. To meet your expectations, we create and analyze pseudonymized user profiles, but only if you have not exercised your right to object or withdrawn your consent to the use of your data in this way.

Nivis Assistance Zrt. is committed to providing you with the highest possible quality of service. Our goal is to maintain your trust in us. Accordingly, we would like to provide clear information about how we use and store cookies on our website www.nivis.hu.
Cookies are small text, image or software files that are placed and stored on your computer, smartphone or other devices used to access the Internet when browsing websites. Cookies are extremely useful tools that allow the website to recognize you and to log the times when you visit a particular page. They also enable you to establish a secure connection to the website and enhance your user experience by improving your experience with the website, ensuring connectivity and/or tailoring the content of a particular page to your interests.
The information stored on your computer by cookies for a short period of time may include: the websites you have visited with the computer containing the cookie; the advertisements you have clicked on; the type of browser you are using; your IP address; and information you have provided to the website (cookies can be used to avoid having to enter information repeatedly).
A separate Cookie Policy applies to cookies, web analytics services and social media plug-ins used.

We use your data to send you the information you have requested about our products, services and other special offers to the email address you have provided. We will only do this with your prior consent or where permitted by law. Consent to such communications is subject to Article 6(1)(a) and Article 7 of the GDPR.

We use your data to send you the information you have requested about our products, services and other special offers to the email address you have provided. We will only do this with your prior consent or where permitted by law. Consent to such communications is subject to Article 6(1)(a) and Article 7 of the GDPR.

We use your data to send you the information you have requested about our products, services and other special offers to the email address you have provided. We will only do this with your prior consent or where permitted by law. Consent to such communications is subject to Article 6(1)(a) and Article 7 of the GDPR.

c.   Postal items
We will not send you marketing materials by post.

We want you to read our emails with interest and therefore we try to compile only information that you are likely to find interesting. We therefore measure and store the opens and clicks made with your user profile. This information includes whether you open our emails and if so, when, which content you click on in the email, as well as whether you receive our emails and if not, why not. We also use this data for statistical purposes.
Of course, you can unsubscribe from receiving such emails, i.e. you can withdraw your consent for the future, for which an unsubscribe link is provided in every email and newsletter. We will then ask you to confirm your unsubscribe on our website. You can also contact us at any time at the following contact details to withdraw your consent:

e-mail: info@nivis.hu
postal address: Nivis Assistance Zrt. 1071 Budapest, Dembinszky utca 44.
It is not possible to unsubscribe from certain information messages that are necessary for the performance of contracts and the operation of our website, including service emails.

a.   Contact
When you contact us by phone, email or via the contact form, we will store the data you provide on the basis of Article 6(1)(a) GDPR in order to be able to answer your questions. We will log the contact in order to be able to prove it according to legal requirements. We obtain your consent to the processing when you fill in the form and this Privacy Policy can also be viewed at that time. We will delete the data in this regard when the communication in question has ended and the matter has been finally resolved.

b.   Miscellaneous
According to Article 6(1)(c) and (f) of the GDPR, we store and use your personal data and technical information where this is necessary to prevent or investigate abuse or other unlawful conduct on our website, e.g. to maintain data security in the event of an attack on our IT systems. This may also be done in accordance with the instructions of administrative authorities or courts, insofar as this is required by law, in order to protect our rights and interests and insofar as this is necessary to defend against claims.

We always provide the highest possible level of security when transferring your personal data, therefore we only transfer your data to service providers and partners who have undertaken contractual obligations and have been carefully selected in advance. We only transfer data to organizations that are established in Hungary or the European Economic Area and are therefore subject to strict EU data protection laws or to organizations that are subject to equivalent security regulations. We do not currently transfer data to third countries and do not plan to do so.

a.   Transfer to affiliated companies of the Group pursuant to Article 6(1)(b) of the GDPR
In order to conclude contracts for services and deliveries available on our website, we transfer your personal data to companies affiliated with the Group in Hungary, which we store in a central database for internal Group-level billing and accounting purposes. This is necessary in particular so that you can use all of our services. If you wish to use the service in an office operated by another legal entity belonging to the Group, we will notify the office you have selected about your order and the other office will process it. If you contact the office or our telephone customer service in case of a question or complaint, they will also have access to the service data in order to be able to handle your case.

b.   Data transfer to service partners in accordance with Article 6(1)(b) and (f) of the GDPR
In order to operate and optimize our website and to fulfill contracts, we commission various service providers to perform certain tasks on our behalf, such as providing central IT services, hosting our website, processing payments and delivering products. We transfer the information collected for each purpose to these service providers (e.g. name, address, email address).

Some of these companies act on our behalf to process and fulfill orders and can therefore only use the data provided in accordance with our instructions. In this case, we are legally responsible for ensuring that the companies we have commissioned take appropriate data security precautions. We therefore agree on specific data security measures with these companies and regularly monitor these measures.

Contrary to external data processing requirements, we transfer data to third parties in the following cases of contract performance, in which case these parties are responsible for the use of the data themselves:

Performing a cremation service
For the purpose of paying funeral fees
For the purpose of identification due to death abroad

c.   Transfer of data to other third parties pursuant to Article 6(1)(c) and (f) of the GDPR
Finally, we may transfer your personal data to third parties or public authorities in accordance with applicable data protection legislation if we are legally obliged to do so (e.g. on the basis of an order from an administrative authority or a court) or if we are entitled to do so (e.g. because it is necessary for the investigation of a criminal offence or to prove and enforce our rights and interests).

If you wish to contact Nivis Assistance Zrt., you can do so using the contact details provided in this information or on the website. Nivis Assistance Zrt. deletes all e-mails received by it, together with the sender's name, e-mail address, date, time and other personal data provided in the message, no later than five years after the data was disclosed.
The purpose of data management: enforcing the rights of clients and the data controller, providing evidence to resolve potential legal disputes, subsequent provability, and subsequent proof of agreements, quality assurance.
The legal basis for data management: the voluntary consent of the data subject.
Scope of data managed: letters and personal data provided during correspondence
The deadline for data deletion: 5 years (general limitation period according to the Civil Code)

Data processors:

Name: Adytum Kft. Registered office: 3530 Miskolc, Arany János u. 11-13. Tax number: 11877495-2-05 Company registration number: 05-09-007768
Data processing task: provision of cremation services. Name: Budapest Funeral Institute Ltd.
Registered office: 1136 Budapest, Hegedűs Gyula utca 49-51., Tax number: 10987553-2-41, Company registration number: 01-10-042694
Data processing task: performance of public service tasks during funeral services
Name: De-Facto Kft.
Registered office 1111 Budapest, Irinyi J. utca 31. fszt. 8., Tax number: 12172126-2-43 Company registration number: 01-09-561423
Data processing task: performing accounting and bookkeeping tasks
Name: National Heritage Institute Headquarters: 1086 Budapest, Fiumei út 16-18.
Data processing task: performing cemetery administration during the use of funeral services

Nivis Assistance Zrt. stores the applications received.
Purpose of data processing: application for a position at Nivis Assistance Zrt., participation in the selection procedure
Legal basis for data processing: voluntary consent of the data subject.
Type of personal data processed: cover letters, CVs, applications, and other personal data provided in them.
Duration of data processing: six months from the date of submission of the application.

Of course, you have rights regarding the collection of your data, which we are pleased to inform you about. If you wish to exercise any of the rights listed below free of charge, simply send us a message. You can use the following contact details free of charge, except for any costs that your service provider may charge for forwarding the message:

e-mail: info@nivis.hu
postal address: Nivis Assistance Zrt. 1071 Budapest, Dembinszky utca 44.

For your own security, we reserve the right to request additional information to verify your identity when responding to a request. If identification is not possible, we also reserve the right to refuse to respond to the request.

a. Right to information
You have the right to request information from us about the personal data stored about you.

b. Right to rectification
You have the right to request immediate correction and/or completion of personal data stored about you.

c. Right to restriction of data processing
You have the right to request that we restrict the processing of your personal data if you dispute the accuracy of the data stored about you, if the processing is unlawful and we no longer need the data, but you do not want us to erase the data and you need it to submit, enforce or defend legal claims, or if you have objected to the processing.

You have the right to request that we restrict the processing of your personal data if you dispute the accuracy of the data stored about you, if the processing is unlawful and we no longer need the data, but you do not want us to erase the data and you need it to submit, enforce or defend legal claims, or if you have objected to the processing.

e. Right to information
If you have exercised your right to rectification, erasure or restriction of processing, we will inform all recipients of your personal data of how we have rectified, erased or restricted the processing of your data, unless this proves impossible or involves a disproportionate effort.

f. Right to data portability
You have the right to request a copy of the data you have provided to us and to have it sent to you or to a third party in a structured, commonly used and machine-readable format. If you request that the data be sent directly to another controller, we will only do so if this is technically feasible.

g. Right to object
If we process your personal data on the basis of legitimate interest pursuant to Article 6(1)(f) of the GDPR, you have the right to object to the processing at any time pursuant to Article 21 of the GDPR.

h. Right to withdraw consent You have the right to withdraw your consent regarding the collection of data at any time with future effect. This will not affect data collected prior to the withdrawal. We hope you understand that it may take some time to process the withdrawal of your consent due to technical reasons, and during this time, you may still receive messages from us.

i. Right to lodge a complaint with a regulatory authority
If the processing of your personal data violates data protection laws or your data protection rights have been violated in any other way, you may lodge a complaint with a regulatory authority.

National Data Protection and Freedom of Information Authority
Postal address: 1530 Budapest, Pf. 5.
Registered office: 1125 Budapest, Szilágyi Erzsébet fasor 22/c
Telephone: 06/1/391-1400
Fax: 06/1/391-1410
E-mail: ugyfelszolgalat@naih.hu
URL: http://naih.hu

Please note that when your data is deleted, you will no longer be able to access our services through our website. This may involve re-downloading the services. Therefore, please make a backup copy of your data before exercising your right to deletion. We will only restrict access to that data, but will not delete the data, if we are required to store the data by law, by our founding documents or by contractual obligations, in order to prevent the data from being used for other purposes.

The security of your personal data is of utmost importance to us. Therefore, we protect the data stored with us using technical and organizational measures to effectively prevent its loss or manipulation by third parties. Our employees who process personal data are bound by data confidentiality and are obliged to comply with it. To ensure the protection of your personal data, we transmit this information in an encrypted and secure form. To guarantee the long-term security of your data, we regularly review our technical security measures and adjust them to the applicable technological standards when necessary. These principles also apply to companies that process and use data based on our orders and instructions.

Nivis Assistance Zrt. and its data processors implement appropriate technical and organizational measures, taking into account the state of the art, implementation costs, the nature, scope, circumstances, and purposes of data processing, as well as the varying likelihood and severity of risks to the rights and freedoms of natural persons. These measures are designed to ensure a level of data security appropriate to the degree of risk.

Nivis Assistance Zrt. selects and operates the IT tools used for processing personal data during service provision in a manner that ensures that the processed data:

a) is accessible to authorized individuals (availability); b) ensures authenticity and verification (data processing authenticity); c) maintains its integrity and immutability (data integrity); d) is protected against unauthorized access (data confidentiality).

Nivis Assistance Zrt. protects data with appropriate measures, particularly against unauthorized access, alteration, transmission, disclosure, deletion, or destruction, as well as accidental loss, damage, or inaccessibility resulting from technological changes.

To protect electronically managed data records in its various registries, Nivis Assistance Zrt. implements appropriate technical solutions to ensure that stored data—unless permitted by law—cannot be directly linked or assigned to the data subject. Taking into account the state of technological advancement, Nivis Assistance Zrt. applies technical, organizational, and structural measures to safeguard data processing security, providing a level of protection appropriate to the risks associated with data processing.

Nivis Assistance Zrt. ensures the preservation of the following during data processing:

a) Confidentiality: Protects information so that only authorized individuals can access it. b) Integrity: Safeguards the accuracy and completeness of the information and its processing methods. c) Availability: Ensures that authorized users can access the required information when needed, along with the necessary resources.

Nivis Assistance Zrt. and its partners involved in data processing ensure that their IT systems and networks are protected against computer-assisted fraud, espionage, sabotage, vandalism, fire, flooding, computer viruses, cyber intrusions, and denial-of-service attacks. The operator maintains security through both server-level and application-level protective measures.

We inform users that electronic messages transmitted over the internet, regardless of the protocol (email, web, FTP, etc.), are vulnerable to network threats that may lead to dishonest activities, contract disputes, or the disclosure or modification of information. To protect against such threats, the data controller will take all reasonable precautions. The systems are monitored to record any security deviations and provide evidence in the event of a security incident. Additionally, system monitoring enables the assessment of the effectiveness of the implemented security measures.

Nivis Assistance Zrt., as the data controller, keeps a record of any potential data protection incidents, including the facts related to the incident, its impacts, and the measures taken to remedy it.

Our website contains links to other companies' websites. We are not responsible for the data security practices of other websites accessible through these links. Please inquire with these external websites regarding their applicable privacy policies.

To ensure that our Privacy Policy complies with the applicable legal requirements at all times, we reserve the right to make changes at any time. This also applies in cases where the Privacy Policy needs to be updated to reflect new or modified products or services. 4o m

Érvényes: 2020. július 1. napjától