Data Processing Information

Valid: from 01.01.2026

Issued by: Mihály Diósy, Managing Director of Vinyl Creative Kft.

Website: vinylco.hu

1. Data controller

Name: Vinyl Creative Kft.
Registered at: 1118 Budapest, Kelenhegyi út 39.
Tax number: 24687012-2-43
E-mail: info@vinylco.hu
Telephone: +36 30 829 9609

The data controller is responsible for processing personal data securely and in accordance with applicable law (in particular EU Regulation 2016/679 GDPR).

2. Purpose of data processing

The Service Provider uses personal data exclusively for the following purposes:
– keeping in touch, scheduling appointments, confirmation,
– invoicing and keeping records required by law,
– sending informational emails (if requested by the user),

Data processing is always based on the participant’s voluntary consent.

3. Scope of processed data

Data processed during the application for a job offer, contact or use of the service may include:
– name, email address, telephone number,
– billing data (name, address, tax number)

4. Legal basis for data processing

The legal basis for data processing:
– the Customer’s consent,
– and the legal obligation (deletion of data).

5. Duration of data processing

Storage period of personal data:
– registration and contact data: 1 year from the last contact,
– billing data: 8 years according to accounting regulations,
– in case of newsletter subscription: until unsubscription.

6. Data processors

The Service Provider uses the following data processors during data processing:

– Google (Google Ireland Ltd.) – Google Forms / Gmail / Drive interface

These data processors handle the data securely only on the instructions of the Service Provider.

7. Data security

The Service Provider ensures the security of the data:
– uses password-protected devices and accounts,
– stores electronic data only with reliable, encrypted service providers,
– keeps paper-based documents in a locked place.

Only the data controller and authorized data processors have access to the data.

8. Rights of data subjects

Data subjects may request:
– access to their personal data,
– rectification, erasure of their data (“right to be forgotten”),
– restriction of data processing, objection to data processing,
– data portability.

In the event of a request, the data controller will respond within 30 days.
If the data subject feels that their rights have been violated, they may file a complaint with the National Authority for Data Protection and Freedom of Information (NAIH).

9. Transfer of data to third parties

The Service Provider does not sell, resell or share personal data with third parties for advertising purposes.
Data transfer occurs only in the event of a legal obligation or an official request.

10. Final provisions

The Service Provider reserves the right to amend this information.
The current version is always available on the website.
The amendment enters into force on the day of publication.