MGI-BPO General data management guidelines
Updates version May 2021
If you are interested in our Data Management Policy related to our service contracts, you can find it here: https://mgi-bpo.hu/gdpr/
Who handles the personal data collected?
|Name of data controller:||BPO-TAX Adó és Könyvviteli Szolgáltató Kft.||BPO-AUDIT Könyvvizsgáló és Vezetési Tanácsadó Kft.|
|Registered office:||1146 Budapest, Zichy Géza u. 5.||1146 Budapest, Zichy Géza u. 5.|
|Phone:||+36 1 422 1339||+36 1 422 1339|
What personal data we collect about you and why we collect them
When creating a user account, personal data will be processed for identification and communication purposes with the data subject’s express, voluntary, and appropriately informed consent.
When uploading a CV, the personal data provided will be collected for the purpose of determining candidate suitability for the open positions of MGI-BPO, with the data subject’s express, voluntary, and appropriately informed consent.
When subscribing to our newsletter, the contact details are collected with the data subject’s express, voluntary, and appropriately informed consent. To maintain our client relationships, the necessary data management is our legitimate interest.
When filling in contact forms (which can be a personal contact form, a general contact form or a request for quote template), personal data is collected with the data subject’s express, voluntary, and appropriately informed consent for the purpose of contacting and handling the specific case.
Personal data is not only obtained through the interaction between the website and the user. Personal information may also be generated by technical processes such as contact forms, comments, cookies, website traffic analysis and embedded content from third parties. You can find more information about this in our Cookies Policy.
In the area of our office indicated by a sign, we use an electronic surveillance system to protect business secrets and property, i.e. the legitimate interests of MGI-BPO, which also allows direct surveillance, image capture and storage. The camera also records the behavior of everyone coming to the office. By entering the surveilled area, by conduct, all data subjects consent to data processing with their express, voluntary, and appropriately informed consent.
Whom we share user data with
For analysis and efficient operation of the website, we involve external service providers as specified in our Cookies Policy. These external service providers are:
We use the external Mailchimp service provider to send newsletters.
The software used for our surveillance system is MI Home, the privacy statement of which is available here: https://www.mi.com/global/about/privacy/
How long do we keep personal data for?
Data in a user account is kept until it is deleted by the user.
Data in contact forms are kept for 1 year.
Newsletter subscription data will be kept until deleted by the user.
We keep personal data collected for the purpose of analysis and efficient operation of the website as specified in the Cookies Policy.
Data recorded in the surveillance system in our office will be deleted after three days. The recordings will not be deleted if we still have a legal basis for further storage and use of the data. Such a legal basis could be e.g. pursuing the legitimate interest of the data controller / employer.
What are your rights as a user?
You have the right to withdraw your consent at any time during the processing of data on the website based on your consent. However, this shall not affect the lawfulness of the processing based on consent before its withdrawal. Furthermore, you may request access to, rectification or erasure of your personal data, in certain cases restrictions on the processing of your personal data, and you may object to the processing of your personal data. You have the right to data portability, to lodge a complaint with the supervisory authority, to a legal remedy, to choose the scope of the decision in the case of automated individual decision-making, and to request human intervention.
Right of access
You have the right to request information using the contact details provided as to whether your personal data are being processed. If such processing is in progress, you have the right to know which of your personal data are processed, on what legal basis, for what purposes and for how long.
To prevent unauthorized access to your personal data, we are obliged to make sure that the identity of the data subject and the person wishing to exercise the right to access is the same. To that end, the information is subject to the identification of the data subject.
Right to rectification
We will correct or supplement your personal data at your request.
Right to erasure
You can request the erasure of your personal data in writing using the contact details provided.
The request for erasure may be rejected if we still have a legal basis for the further storage and use of your data. For example, you are our Client and your contact information is essential to fulfill our contract. However, if there is no such obligation, we will comply your request within a maximum of 10 days and notify you at the contact details provided.
Right to restriction of processing
Using our contact details, you can request in writing that your personal data be restricted or, in other words, blocked. The blocking lasts as long as you deem it reasonable.
You can request the blocking of your personal data if for official or court proceedings they shall not be erased. In this case, personal data will be kept until requested by the authority or the court, after which they will be erased.
Right to object
You may object at any time to processing of personal data if, in your opinion, your personal data is being processed improperly. In this case, we must demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.
Right to lodge a complaint with a supervisory authority
If you consider that the processing of your personal data infringes the provisions of applicable data protection law, in particular the GDPR, you have the right to lodge a complaint with a supervisory authority of your habitual residence, place of work or place of the alleged infringement. In Hungary, a complaint can be lodged with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH).
Contact information for NAIH:
|Address:||1055 Budapest, Falk Miksa utca 9-11.|
|Postal address:||1363 Budapest, Pf. 9.|
Irrespective of your right to lodge a complaint, you can also go to court if your rights have been breached. You are also entitled to go to court concerning a legally binding decision of the supervisory authority concerning you. If the supervisory authority fails to deal with your complaint or inform you within three months of the procedural developments or the outcome thereof, you are entitled to a judicial remedy.
We keep your best interests in mind
We don’t want our personal data being misused in any way, don’t like spams and aggressive sales methods either. If you detect any anomalies, please contact us.