Skip to content

Sports organisation online registration Privacy Notice

In this document, BioTechUSA Kft. outlines the rules followed in the processing of contact data of applicant organisations on the https://biotechusa.hu and /https://biotechusa.hu/sportszervezeti-regisztracio/ websites, and the organisational and technical measures taken in order to protect personal data.

Data Controller’s Details

BioTechUSA Kft. (registered office: H-1033 Budapest, Huszti út 60; company registration number: 0109352550, tax number: 25114681- 2- 44; phone: +36 1 453 2716; email: [email protected])

Our Data Protection Officer’s Contact Details: postal address: H-1301 Budapest, PO Box: 30.; email address: [email protected]

The Data Controller processes the recorded personal data confidentially, in line with data protection rules and regulations as well as international recommendations, as described in this Privacy Notice, and takes all security, technical and organisational measures required to guarantee the security of data.

While drafting and applying this Privacy Notice, the Data Controller acts pursuant to and applying the rules and regulations set out by Act CXII of 2011 on Informational Self-Determination and Freedom of Information, and Regulation (EU) 2016/679 of the European Parliament and of the Council, in full compliance with these in all regards.

The personal data processed by the Data Controller are primarily accessible to the authorised employees of the Data Controller.

The personal data processed: contact details: email address; phone number; Facebook, Instagram, and YouTube account details.

Purpose of data processing: to maintain contact with the organisation during and after the selection process for the potential conclusion of an athlete cooperation agreement.

Legal basis for data processing: Pursuant to Article 6(1)(a) of the GDPR, your consent to the processing of your personal data.

By registering, you consent to the Data Controller’s processing of your personal data as per this Privacy Notice. The processing of your personal data is based on your voluntary and explicit consent given in awareness of the information provided herein. You may withdraw your consent at any time; however, this shall not affect the lawfulness of processing prior to such withdrawal.

Duration of processing: until the withdrawal of consent. The Data Controller also uses a security period to protect your data: 180 days after your date of registration it permanently deletes your personal data.

Method of storing data, security of processing:

  1. The Data Controller uses a server service, which is operated – and maintained in the event of any arising problems – by a contracted company.
    Details of the data processing company: JLM PowerLine Korlátolt Felelősségű Társaság (registered office: H-2111 Szada, Ipari park út 12-14.; postal address: H-1033 Budapest, Huszti út 60; company registration number: 13 09 066529; tax number: 10819768-2- 13; phone; Fax: 06 1 453 2716; email: [email protected]).
  2. The Data Controller’s servers are operated – and maintained in the event of any arising problems – by companies contracted for this purpose. Details of the data processing company: Mongouse Kft. (registered office: H-1117 Budapest, Budafoki út 183., company registration number: 01 09 711243; tax number: 12943762-2-43; phone / fax: +361 464 5856; email: [email protected]). Details of the data processor company: Servergarden Kft. (registered office: H-1023 Budapest, Lajos utca 28-32., company registration number: 01 09 186097, tax number: 24855608-2-42, email: [email protected]).
    Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, the Data Controller shall implement appropriate technical and organisational measures to ensure a level of data security appropriate to the risk. The Data Controller implements appropriate measures to protect the data in particular from unauthorised access, alteration, transfer, disclosure to the public, erasure or destruction, accidental destruction and compromise, as well as from becoming inaccessible due to changes in the technology applied.
    The Data Controller’s IT system and network are protected against computer-assisted fraud, spying, sabotage, vandalism, fire and flood, computer viruses, hacking and denial-of-service attacks. The Data Controller has server-level and application-level protection mechanisms in place to provide for security.
    Electronic messages forwarded through the internet, irrespective of protocol (email, web, ftp, etc.) are vulnerable to network threats which may lead to unfair activities, challenging the contract, or the disclosure or alteration of information. The Data Controller will take all reasonable precautions to provide protection against such threats. It monitors its systems so that any security discrepancies can be logged and that it has evidence in case of security incidents. In addition, system monitoring also allows for the efficiency of the precautions applied to be verified.
    The Data Controller documents any personal data breaches, if any, comprising the facts relating to the personal data breach, its effects and the remedial action taken.

Your rights related to data processing:

The Data Controller shall provide information without any undue delay, and in any event within one month of receipt of the request, of the action taken in response to the request under paragraphs (a) to (e) below. That period may be extended by two further months where necessary, taking into account the complexity and number of the requests. The Data Controller shall provide information on any such extension within one month of receipt of the request, together with the reasons for the delay.

  1. Right of access: you have the right to obtain confirmation from the Data Controller as to whether or not your personal data is being processed, and, where that is the case, access to the personal data and information about the processing, as well as the right to request your processed personal data in electronic form from the Data Controller.
  2. Right to rectification: you have the right to obtain from the Data Controller without undue delay the rectification of inaccurate personal data concerning you, and to request your incomplete personal data to be supplemented.
  3. Right to erasure (‘right to be forgotten’): You may request the termination of processing in writing to the contact email address of the Data Controller indicated above, or by post. In such case, the Controller will take all reasonable steps to inform all additional processors of your request to terminate processing.
  4. Right to object: you have the right to object at any time to the processing of your personal data, where processing is based on the Data Controller’s legitimate interests.
  5. Right to restriction of processing: you have the right to obtain from the Data Controller restriction of processing where you contest the accuracy of the personal data; the processing is unlawful; the Controller no longer needs the personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims; or you have objected to processing.

Supervisory authority, right to legal remedy

If you are not satisfied with our data processing, you can lodge a complaint with the following authority:

Name: Hungarian National Authority for Data Protection and Freedom of Information

Registered seat: H-1055 Budapest, Falk Miksa utca 9-11.

Postal address: H-1363 Budapest, PO Box: 9

Phone: +36 1 391 1400

Fax: +36 1 391 1410

Email: [email protected]

Website: http://www.naih.hu

You also have the right to take legal action before the court to protect your data. In such case you may as well choose to start proceedings against the Data Controller at the competent court of your domicile or residence. You can find the contact details of the competent courts of your domicile or residence at the following link: http://birosag.hu/ugyfelkapcsolati-portal/birosag-kereso.

Contact details of the Data Controller:

If you have any questions related to data processing that are not clear based on this Privacy Notice, please write to [email protected], and our colleague will answer your question.

Effective from: 27th November 2024