Privacy Policy

I. The Service Provider

Name: MikroVPS Kft.
Address: 2600 Vác, Thomas Edison utca 27., Hungary
Phone: +36307564514
Tax number: 25189861-2-13
EU VAT number: HU25189861

Customer service contact details for the service:

• e-mail: support@mikrovps.net (For technical reasons, MikroVPS Kft. can only accept inquiries in writing (email, support ticket).) Hereinafter referred to as the Provider

II. Data Protection Officer Contact Details

MikroVPS Kft. does not have a data protection officer, as it does not process data or operate in a sector where this is required.

III. Purposes and Legal Bases of Data Processing

The purpose of this notice is to inform visitors to our website, our current and prospective Clients, in an understandable and transparent manner, about the scope of the data processed and the basis on which we do so. As legal text does not promote clarity, legal references are provided in a separate section at the end of this notice.

Server Log Files

On our servers, we log the IP address, the requested website address and subpage (in case of website viewing), email address (in case of email download, sending/receiving), FTP/SSH login IP address, and the time and duration of these.

Contact Form

When using the contact form (Open Support Ticket) on our website and Client Portal, we request your email address and name. The purpose of this is to facilitate online communication. The processing of this data is based on your consent.

Blog/Website Comments

On our website and blog, it is possible to write comments, thereby interacting with the author of the post and/or other visitors. Comments are managed and stored by the Disqus system, which requires logging in. The legal basis for data processing is the consent of the data subject.

Newsletter/eDM

We may send newsletters about our promotions, news, and other information to those who subscribe or consent to it. Newsletters are considered advertising as they contain our company name and address. You can subscribe to the newsletter by providing your name and email address, as well as when ordering a service, with separate confirmation (opt-in). The time and IP address of subscription (opt-in) and unsubscription (opt-out) are recorded.

Facebook Page

For online communication and information purposes, we maintain a Facebook page where it is possible to comment, express opinions, rate, and submit content. We access personal data (name, comment) with the consent of the data subject. We do not use this data, and it does not leave the Facebook system through us.

Billing

When a service is ordered, we issue an invoice automatically, for which we must request the necessary data: name, address, email address, and in the case of a company/organization, the name of a contact person.

Contact by Phone

If you call our telephone customer service, we record your phone number and may also record the conversation. We process this data based on your consent, for the purpose of calling you back if necessary, and identifying you (if you are already our Client).

Business, Professional Partner Contacts

In the course of business/professional relationships, we process the personal data of partners' managers, employees, and contact persons based on legitimate interest: name, phone number, email address.

Cookies

A cookie is an information package consisting of letters and numbers, which websites usually send to your browser with the aim of saving certain settings, facilitating the use of the website, and helping to collect some relevant statistical information about visitors. Cookies do not contain personal information and are not suitable for identifying individual users. Cookies often contain a unique identifier – a secret, randomly generated string of numbers – which is stored on your device. Some cookies expire after closing the website, while others are stored on your computer for a longer period. You can prevent all cookie-related activities and delete data files placed during previous visits; your browser's guide will instruct you on the exact method, which can be found on the following pages:

• Manage cookies and site data in Chrome
• Information about cookies for Firefox
• Manage cookies in Internet Explorer
• Manage cookies in Edge Some browsers also allow you to automatically delete browsing data every time you close them. You can read about this here. If you have previously received a cookie from Facebook – either because you have an account or because you have visited facebook.com – your browser sends data related to this cookie when you visit a site with a "Like" button or other social plugin (like this website). More information can be found here. Share buttons (Facebook, Google+, Twitter) and embedded content (e.g., YouTube) placed on the site may also place cookies on your machine.

List of cookies used on the site Cookie Preferences

IV. Withdrawal of Consent

We process your data based on your consent in the following cases:

• sending newsletters containing advertising, upon subscription.
• contact via the website contact form by interested parties
• operation of the Facebook page
• commenting on the blog
• telephone contact
• ordering a service Consent can be withdrawn at any time, in the same simple way it was given:
• You can withdraw your consent for newsletters by clicking the unsubscribe link at the end of the newsletter or by disabling it in the Client Portal (opt-out). The IP address and time of unsubscription are recorded.
• In the case of the Facebook page, you can withdraw consent by unliking the page.
• In the case of Disqus comments, by deleting the comment.
• For other data processing operations based on consent, please send a short message to the email address support@mikrovps.net. Data processing prior to the withdrawal of consent is considered lawful.

V. Contract and Legal Obligation

Maintaining billing records and issuing invoices is a statutory obligation. Upon ordering services, a contract is concluded with our Clients when they accept the General Terms and Conditions. Our Client Portal always requests the minimum amount of data necessary for concluding the contract and performing the service.

VI. Designation of Legitimate Interest

• -

VII. Data Storage Duration

• Contact form (name, email address): until deletion request
• Comments received on the blog (name, email address, comment): until deletion
• Newsletter subscription (name, email address): until unsubscription
• Facebook page (name, comment): until deletion request
• Billing name and address: for the period prescribed by law, current year + 8 years
• Business partner data (name, email address, phone number): until deletion request
• Cookies from the mikrovps website: until the cookies' validity period, or until the user deletes them from their browser
• Server log files: maximum 3 months

VIII. Data Transfer, Data Processing

MikroVPS uses external data processors to perform certain tasks.

Receiving and Sending Emails

Google Inc., Mountain View, California, USA Privacy Policy: policies.google.com/privacy Access to correspondence and all its data.

Billing

Ambrits Informatikai Tanácsadó Bt. Tax number: 20937054-2-08 Data Processing Information: www.cmfx.hu/adatkezelesi.php Access to issued invoices.

Gravatar Profile Picture

Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA Privacy Policy: automattic.com/privacy/ An anonymized, coded string generated from the email address is transmitted.

Facebook Page

Facebook Inc.; Menlo Park, California, USA Privacy Policy: www.facebook.com/about/privacy/update Access to the user's name, comment.

Credit Card Payment

OTP Mobil Kft. Tax number: 24386106-2-43 Data Processing Information: www.simple.hu/adatkezelesi-tajekoztato Access to billing data, invoice amount.

PayPal Payment

PayPal (Europe) S.à r.l. et Cie, S.C.A Privacy Policy: www.paypal.com/ee/webapps/mpp/ua/privacy-full Access to billing data, invoice amount.

Blog Comment Management

Disqus, Inc. Privacy Policy: help.disqus.com/terms-and-policies/disqus-privacy-policy Website/blog comment management.

Accounting

Horváth és Tsa Univerzal Kft. Tax number: 20937054-2-08 Access to issued invoices.

Domain Registration

In the case of domain registration, the Provider is obliged to transfer personal data to the organization performing the registration. In certain cases, it is also necessary to transmit the number of an identity card or other identification document. In such cases, the copy of the data handled by us is deleted immediately after transmission.

IX. Transfer to Third Countries

The sole third country to which data is transferred is the United States of America. An adequacy decision was reached with the USA on July 12, 2016 (https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/eu-us-privacy-shield_en), which Google (https://policies.google.com/privacy/frameworks) adheres to. Automattic complies with GDPR through contractual clauses (https://automattic.com/privacy/).

X. Rights of the Data Subject

Access to Personal Data

Visitors, clients, and partners of the MikroVPS website are entitled to request feedback on whether their personal data is being processed and, if so, are entitled to access the following information:

• purposes of data processing
• categories of personal data concerned
• recipients or categories of recipients to whom the personal data have been or will be disclosed, including recipients in third countries or international organizations
• the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
• the data subject's right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing We will provide a copy of the personal data undergoing processing. The right to obtain a copy shall not adversely affect the rights and freedoms of others.

Right to Rectification

Through our Client Portal, our Clients have the opportunity to update and keep their data current.

Right to Erasure (‘Right to be Forgotten’)

We are obliged to erase personal data concerning our Client, principal, or website visitor without undue delay upon request, or even without request, if:

• the personal data are no longer necessary in relation to the purposes for which I collected or otherwise processed them;
• the principal/client/visitor withdraws consent on which the processing is based, and where there is no other legal ground for the processing;
• the principal/client/visitor objects to the processing and there are no overriding legitimate grounds for the processing;
• the personal data have been unlawfully processed;
• the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
• the personal data have been collected in relation to the offer of information society services. If we have made the personal data public and are obliged to erase it, taking account of available technology and the cost of implementation, I shall take reasonable steps to inform controllers processing the personal data that my client/principal/website visitor has requested the erasure by such controllers of any links to, or copy or replication of, those personal data. We do not have to erase personal data if processing is necessary for the establishment, exercise, or defense of legal claims. If a request for erasure of such data is received, we will consider it and respond in writing with the decision. I must inform all recipients to whom the personal data have been disclosed of any erasure, unless this proves impossible or involves disproportionate effort. We will inform our Client/principal/user of these recipients if requested.

Right to Data Portability

Where personal data are processed by automated means, and if the legal basis for processing is consent or a contractual basis, our Client/principal/website visitor is entitled to receive the personal data concerning him or her, which he or she has provided to me, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller, where technically feasible.

Right to Object

My client/principal may object to the processing of his/her personal data on grounds relating to his/her particular situation at any time, where the legal basis for processing is legitimate interest. In this case, I may no longer process the personal data unless I demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of my client/principal or for the establishment, exercise or defense of legal claims.

XI. Automated Individual Decision-Making

In the case of orders placed on our website, our system performs a risk analysis based on the currently available information (billing data, email address, IP address, cart content).

XII. In Case of Complaint

We handle your personal data with the utmost care. If, however, you feel that we have not taken all reasonable measures to protect your personal data, or if you simply have a question, please write to us at the email address info@mikrovps.hu.

XIII. Legislation

Sending newsletters containing advertising is only possible based on consent, as prescribed by Article 6(1)(a) of Regulation (EU) 2016/679 of the European Parliament and of the Council and Section 6(1)-(3) of Act XLVIII of 2008 on the Basic Requirements and Certain Restrictions of Commercial Advertising Activities. For data processing related to website contact, blog comments, Facebook page operation, visitor statistics and conversion measurement, cookies, and business relationships and agreements, I have taken into account Article 6(1)(a) of Regulation (EU) 2016/679 of the European Parliament and of the Council. The basis for data processing related to billing is Article 6(1)(c) of Regulation (EU) 2016/679 of the European Parliament and of the Council, Section 78(3) of Act CL of 2017 on the Rules of Taxation (retention period for documents), and Section 169(e) of Act CXXVII of 2007 on Value Added Tax (mandatory elements of an invoice).