PRIVACY POLICY

The website www.kalangu.net (hereinafter: Data Controller) hereby discloses the rules of data management, data management principles, and information on data management relating to the Data Controller and services related to the Data Controller.

The Data Controller only requests, uses, and stores personal data if it is absolutely necessary for the operation of the website and fulfilling its activities. It only requests data that is necessary for sending newsletters and other information, fulfilling orders, contract conclusion, and fulfilling obligations (invoicing) related to the performance. It only processes personal data that is essential for the realization of the purpose of data processing and suitable for achieving the purpose. Personal data is only processed to the extent necessary for achieving the purpose for which it was collected and stored for a limited period of time.

The Data Controller protects the personal data of registered users in all expected ways.

DATA CONTROLLER
Representative: Eva Tornallyay
Address: 9523 Villach, Millstätter Str. 8a., Austria
Email address: evat@kalangu.net

LEGAL BASIS OF PROCESSING
The Data Controller collects and processes personal data on the basis of the legal bases defined by Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data (General Data Protection Regulation or “GDPR”).

PERSONS CONCERNED
Registered users through the website. If the User does not provide their own personal data, the data provider User is obliged to obtain the consent of the User.

RIGHTS OF THE USERS
The persons concerned are entitled to several rights regarding their personal data.

The persons concerned may request from the Data Controller:
– information on the processing of personal data,
– the rectification of personal data,
– erasure or blocking of personal data,

If the data processing is carried out on the basis of a consent declaration, it can be revoked at any time without affecting the data processing carried out until the time of revocation based on the consent declaration. The persons concerned may request information, modification, or deletion of their personal data in writing or by email from the Data Controller.

If they feel that their rights are not being adequately fulfilled, the persons concerned can file a complaint with the competent authority. In Austria, this is the Data Protection Authority, whose contact details are:

Österreichische Datenschutzbehörde
Barichgasse 40-42
1030 Wien
T +43 1 52 152-0
E dsb@dsb.gv.at

THE PURPOSE OF DATA COLLECTION

1. Sending newsletters for marketing purposes, which contain useful tips, inspirational stories, promotions, events, and professional materials,
2. Registration for courses, coaching, workshops, and training services through the website,
3. The conclusion of contracts required for fulfilling orders,
4. Invoicing,
5. Communication, contact.

SCOPE OF DATA PROVIDED DURING DATA COLLECTION

1. Data stored in case of subscribing to the Kalangu Coaching Newsletter: name and email address.
2. Data required to sign up for courses, coaching, workshops, and training services: full name, contact information (phone, email), address, billing address.
3. Data required for concluding contracts for services: full name, contact information (phone, email), address, company name, billing address, tax number. These data are stored by the service provider itself and are not passed on to third parties.
4. Data required for issuing invoices: full name, contact information (phone, email), address, company name, billing address, tax number.
5. Contact form on the webpage: name, phone number and email address.

PERSONS AUTHORIZED TO ACCESS THE DATA PROVIDED IN THE COURSE OF DATA COLLECTION

1. Web hosting provider: MAXER Hosting Kft., 1134 Budapest, Victor Hugo u. 18-22., Hungary.
2. Mailchimp – com, The Rocket Science Group, 512 Means Street, Suite 404, Atlanta, GA 30318, USA, provides the newsletter sending service.
3. Billzone.eu online invoicing software: N-Ware Ltd. 1139 Budapest, Gömb u. 26., Hungary.

INFORMATION COLLECTED OTHERWISE THROUGH THE USE OF THE WEBSITE

1. Information collected in connection with the use of the website
If the User does not provide specific data or information about himself or herself on the website, the Data Controller does not collect or process any personal data related to the User in a way that would allow the User to be personally identified.

By visiting the website, all Users consent to the use of cookies managed by external providers necessary to record data and information described in this section generated by technical processes automatically through cookies used on the website.

Such data include data generated by the User’s computer during the use of the website, which is automatically logged in when visitors enter or leave the website and recorded by cookies used in technical processes. The system logs the data automatically when visitors enter or leave the website, without the User’s separate declaration or action.

These data are not linked to any other data that may allow the User to be identified. Only external providers managing cookies and the Data Controller are authorized to access these automatically recorded data.

The Data Controller only uses cookies of external providers (Google, Facebook) on the website. Cookies are short text files that the website sends to the hard drive of the User’s computer and contain information about the User.

The Data Controller uses the services of Google Analytics in connection with the website. Cookies managed by Google Analytics help to measure website visitation and other web analytics data. Information collected by cookies is transmitted and stored on external servers operated by Google. Google uses this information primarily to monitor the visitation of the website and compile analyses on activities performed on the website on behalf of the Data Controller. Google is authorized to disclose this information to third parties if required by law, and is also authorized to share this information with third parties it uses for data processing. Google Analytics can provide detailed information on the management of this data.

The Data Controller displays its advertisements on websites through external providers (Google, Facebook). Using cookies, these external providers store information that the User has already visited the Data Controller’s website and show adverts tailored to the User’s interests (i.e., remarketing).

The use of Google cookies can be disabled using the Ads Settings (for more information, see http://www.google.hu/policies/technologies/ads/). Users can also disable the cookies of external providers at the Network Advertising Initiative (http://www.networkadvertising.org/choices/) opt-out website.

The Data Controller assumes no liability whatsoever for the data management performed by the above-mentioned external providers, as the data management of such providers is subject to data protection regulations defined by these companies.

2.    The Method of Data Usage in Connection with the Collected Data
Data collected through the technologies above and described above cannot be used to identify the User, and the Data Controller does not link these data to any other data that may enable identification of the User.

The primary purpose of using this data is to enable the Data Controller to operate the website properly, including tracking website visitation data and detecting any potentially fraudulent behavior related to website usage.

The Data Controller may also use the information obtained in this way to analyze usage trends or improve and develop website functions, as well as to obtain comprehensive traffic data on website usage without personal identification (e.g., number of visitors, most viewed topics and content) and transfer or release such data to third parties in an aggregated and anonymous form.

3.    Option to Disable Cookies
If Users do not wish that data and information described above should be collected about them in connection with website usage, they may change their browser settings to partially or entirely disable the use of cookies or modify cookie message settings in other ways.

4.    Cookies Set by Third Parties
The website may contain information, particularly advertisements, from third-party advertisers who have no connection with the Data Controller. Such third-party advertisers may also place cookies on the User’s computer or use similar technology to collect data to send the User targeted advertisement messages related to their own services. In such cases, data management is subject to data protection regulations defined by these third-party advertisers, and the Data Controller assumes no liability whatsoever for data management performed by these companies.

DATA SECURITY
The Data Controller undertakes to ensure the security of the data, to take technical and organisational measures and to establish procedural rules to ensure that the data recorded, stored or processed are protected and to prevent their destruction, unauthorised use or unauthorised alteration. It also undertakes to require all third parties to whom it transfers or discloses data on the basis of the consent of the Users to comply with the requirement of data security.

The Data Controller shall ensure that the processed data cannot be accessed, disclosed, transmitted, modified or deleted by unauthorised persons. The processed data may only be accessed by the Data Controller, its employees and the Data Processor(s) it employs, and shall not be disclosed by the Data Controller to third parties who are not authorised to access the data.

The Data Controller shall make every effort to ensure that the data are not accidentally damaged or destroyed. The Data Controller shall impose the above undertaking on its employees involved in the processing activity.

The User acknowledges and accepts that, in case of providing his/her personal data on the website, despite the fact that the Data Controller has state-of-the-art security measures in place to prevent unauthorized access or disclosure of the data, the data cannot be fully protected on the Internet. In the event of unauthorised access or disclosure of data despite our efforts, the Data Controller shall not be liable for any such acquisition or unauthorised access or for any damage suffered by the User as a result thereof. In addition, the User may also provide personal data to third parties who may use it for unlawful purposes or in unlawful ways.

Under no circumstances will the Data Controller collect sensitive data, i.e. data concerning racial or ethnic origin, membership of national or ethnic minorities, political opinions or political parties, religious or philosophical beliefs, membership of representative associations, health, pathological addiction, sexual life or criminal records.

From the point of view of data security, it is important to note that if the User accesses the Controller’s website from a shared computer in a public place, the public access may result in the User’s data being made available to third parties, for which the Controller cannot be held liable.

RETENTION TIME
The Data Controller stores the stored personal data for the duration of the purpose of the processing, primarily for the duration of the legal relationship with the User (at the end of which period the data provided by the User will be deleted), or until the User requests the deletion of his/her data or withdraws his/her consent.

Users may request their deletion from the database by e-mail after the order has been completed. They can unsubscribe from the newsletter at any time by clicking on the unsubscribe link at the bottom of the newsletter. The data provided for ordering and invoicing purposes will be stored by the Data Controller until the end of the period required by law.