The purpose of this Information Notice is to set out the terms and conditions of Medcon Ltd: 1031 Bp, Silvanus sétány 21. II/4.; company registration number: 01 09 675749,registered at the Budapest General Court; tax number: 10704145141; hereinafter: Service provider), Implantix - Implants, Esthetics & More brand and the privacy and data protection principles and policies of the Services provided by the Service Provider.
This Notice is published on the website of the Service Provider. implantix.hu (hereinafter referred to as: Websiteservices available or downloadable via the website (hereinafter referred to as "Services") and direct marketing and/or sales enquiries (hereinafter referred to as "direct marketing enquiries"): Service), personal data processing and processing operations. This notice shall govern any other cases where the Service Provider requires the application of this notice.
This Notice sets out the general terms and conditions applicable to each Service (e.g., the website terms of use, notices, etc: Terms of Use) is an integral part of it and should be read in conjunction with it, but is set out in a separate structure for ease of access. The Service Provider is also entitled to unilaterally amend this Privacy Policy as part of the modification of the Terms of Use, while informing the data subjects. The amended provisions shall become effective against the data subject concerned in the manner specified in the notification or in the Terms of Use.
When visiting the Websites and using the Service, the Service Provider processes the personal data of natural persons as data subjects (hereinafter: User) that are provided and the Service Provider is responsible for the personal data under applicable data protection laws.
| name: | Medcon Ltd. |
| Seats: | 1031 Bp, Silvanus sétány 21. II/4 |
| senior official: | Nikoletta Németh |
| tax number: | 27352599-1-41 |
| mailing address: | |
| e-mail address for data processing related claims: | |
| contact details of the data protection officer: | |
| supervisory authority for data protection: | National Authority for Data Protection and Freedom of Information 1122 Budapest, Szilágyi Erzsébet fasor 22/C. |
The Service Provider will use the personal data it collects to. Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.) in accordance with the provisions of.
The scope of the personal data processed is partly defined by Article 6 of Act XLVIII of 2008 on the Basic Conditions and Certain Restrictions of Economic Advertising Activities, Articles 13/A to 14/C of Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Information Society Services, Act C of 2000 on Accounting Obligations and Act XCII of 2003 on the Rules of Taxation.
In processing personal data, the Service Provider shall comply with the following principles set out in the applicable data processing legislation (Article 5(1) GDPR): a.) lawfulness, fairness and transparency; b.) purpose limitation; c.) data minimisation; d.) accuracy; e.) limited storage; f.) integrity and confidentiality; g.) accountability.
1. is entitled to process data only if it has a legal right to do so. The scope and title of the personal data processed varies depending on which of the following platforms and programs on the Website the User registers for or uses the Service:
1.1. Medcon Ltd: dental outpatient care
Data processed | Purpose of data processed |
full name | a contact the data necessary for the identification of Users |
e-mail address |
2. Processing of data relating to online visitors (cookies)
By using the Websites, the Service Provider is entitled to process certain personal data of Users who visit the Websites, with the consent of the data subject to the processing of data for the purpose of voluntary, predefined and specific processing (recording of User's history in order to enhance the user experience).
The fact of visiting the Websites managed by the Service Provider may result in the storage and processing of data in the User's terminal equipment by means of cookies for the purposes of identifying the User, facilitating the User's further visits, providing the User with targeted advertising and other targeted content and market research. In any case, the use of cookies requires the User's consent to the use of cookies in the „This website uses cookies” next to the information text, the consent given to the „I understand the Privacy Policy, I accept the use of cookies ” icon.
The User's consent to the use of cookies is not required in order to visit the website, however, without such consent, the website or some of its sub-pages may not function properly or the website may refuse the User access to certain data. A „I understand the Privacy Policy, I accept the use of cookies ” icon placed next to the „More information” icon, the User will be redirected to the sub-page of the website containing an extract of the part of the Privacy Policy related to the use of the website.
When using the website, certain user data are automatically processed by the Service Provider. These data are the following: a) certain data of the User's device connecting to the Website via an open network; b) the IP address used by the User.
The sole purpose of processing this data is to enable the Service Provider to obtain data on the number of visits to the website and to detect and log any errors or attempted attacks on the website. The following data are continuously logged by the Data Controller and deleted after 3 days: date of visit, IP address, operating system version data, browser type and version number, content accessed and the address of the previously visited content.
The legal basis for such processing is, on the one hand, the consent of the User and, on the other hand, the protection of the legitimate interests of the Service Provider. The Service Provider fulfils the information on data processing by publishing the contents of this chapter on the Websites and the User's acknowledgement and consent to this extent is given to the Service Provider by visiting the Website as an implicit conduct.
The User shall be solely responsible for not disclosing the names and e-mail addresses of users used to access the website operated by the Service Provider to unauthorized third parties, or disclosing them to such persons, or destroying or losing them. The Service Provider shall not be liable if the User's name and e-mail address or other data provided on the Website are handled in a manner that deviates from the provisions of this Policy and the applicable data protection legislation, or if the User makes them available to unauthorised third parties, discloses them to such third parties, destroys or loses them, and if the User is directly or indirectly exposed to a risk of legal disadvantage.
Duration of processing under this Chapter: 10 years from the date of recording of the personal data by the Service Provider.
3. Contact us
If the User sends an e-mail or postal letter to the Service Provider, the Service Provider will record the User's e-mail address and, if provided, the address and will process it to the extent and for the duration necessary for the provision of the service.
A Szolgáltató a kapcsolatfelvétel során megadott személyes adatokat ügyfélkapcsolat-kezelő (CRM) rendszerben rögzíti és kezeli a megkeresések nyomon követése, kapcsolattartás és szolgáltatásnyújtás céljából.
By ordering or using the Service provided by the Service Provider, the data subject consents and acknowledges that his/her personal data will be processed by Medcon Ltd. in accordance with the provisions of this Privacy Policy.
The processing of data is based on the voluntary and duly informed declaration of the users of the Internet content on the Websites, which contains the express consent of the User to the use of personal data provided or generated by him/her during the use of the Website.
The natural persons whose personal data are processed by the Service Provider, for whatever reason, have the following rights with regard to the Service Provider's processing:
[Right to rectification]
If the Data Controller processes personal data of the User inaccurately or incompletely, the right holder may request the Data Controller to correct the inaccurately processed personal data without delay or to complete the incompletely processed personal data without delay on the basis of the data provided and verified by the right holder.
The User (or a duly authorised representative acting on his/her behalf) may submit a request for rectification by sending a declaration to the Data Controller.
[Right to erasure]
The User is entitled to request the erasure of his/her personal data from all records of the Data Controller. Upon receipt of such a request, the Controller shall delete the personal data requested to be deleted without undue delay if one of the following grounds applies: a) the personal data is no longer necessary for the purposes for which it was processed; b) the data controller has withdrawn his or her consent to the processing and there is no other legal basis for the processing; c) it is proven that the personal data was unlawfully processed by the Controller; d) the Controller is obliged by law to delete the personal data.
The User may submit a request for erasure by sending a declaration to the Data Controller.
The Data Controller may refuse to erase personal data where one of the conditions set out in Article 17(3) of the GDPR applies.
[Right to restriction of processing]
The User has the right to request the Data Controller to restrict the processing of his/her personal data if: (a) the User contests the accuracy of his or her personal data collected and stored by the Controller, for a period of time relevant to the verification of the accuracy of such data; or (b) the processing carried out by the Controller is unlawful and the User objects to the erasure of his or her personal data collected and stored; or c) the purpose of the processing has ceased and the Controller has no further need for the personal data collected and stored, but the User requests the continued (limited) processing in order to establish, exercise or defend a legal claim; or d) the User exercises his or her right to object, for the period of the investigation of the lawfulness of the objection.
The User (or a duly authorised representative acting on his behalf) may submit a request for restriction by sending a declaration to the Data Controller.
The Data Controller is entitled to store the personal data subject to the restriction only. The Data Controller may process personal data subject to restriction only with the prior written consent of the data subject or in order to present, exercise or defend a legal interest or an important public interest of the European Union or of a Member State.
If the conditions for the restriction of personal data are not met, the Data Controller shall lift the restriction and shall inform the User thereof in advance.
[Right to data portability]
In relation to personal data that the Data Controller processes by automated means based on the consent of the User, the User may request the Company to provide the personal data provided by the User to the Data Controller in an electronic format, as defined in Article 20(1) of the GDPR.
When transferring collected and stored personal data in electronic form, the Data Controller shall take into account that the User has the right to transfer the collected and stored personal data transferred in electronic form to another data controller or to request the Data Controller to send such personal data directly to another data controller.
The User (or a duly authorised representative acting on his/her behalf) may submit a request for data transfer by sending a declaration to the Company.
[Right to protest]
The User may object to the processing of his or her personal data by the Data Controller, if the Data Controller carries out the processing in order to enforce the legitimate interests of the Data Controller or a third party.
The personal data controller (or his or her authorised representative acting on his or her behalf and duly verified) may submit a request to object by sending a statement to the Company.
Following the acceptance of the objection by the Controller, the Controller shall not be entitled to process the personal data concerned for the purposes of the legitimate interests pursued by the Controller or by a third party, unless the Controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
[Data Protection Officer]
A Data Protection Officer has been appointed to ensure that personal data is always processed in an open, accurate and lawful manner. Our Data Protection Officer is available at info@implantix.hue-mail address.
The Service Provider will process the personal and other technical data of the data subject for the period(s) specified in this Notice.
The Service Provider shall store the personal data for 5 years from the date of the declaration of consent to the termination of the contractual relationship; the data shall be subject to the provisions of Articles 56-57 of Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist Financing, and the data shall be processed for 8 years after the termination of the contractual relationship. Accounting records are kept for 8 years pursuant to Article 169 (2) of Act C of 2000 on Accounting.
Unless otherwise provided for in this Policy or the Terms of Use, the Service Provider processes the personal data of the data subject for the purpose of sending direct marketing or advertising communications until the data subject's consent is withdrawn. Unless otherwise provided for in this Policy, the termination of the Service or of the use of the Service (e.g. registration) does not constitute a withdrawal of consent to send direct marketing or commercial communications, which must be withdrawn separately for each type of communication (e.g. newsletter, e-DM, etc.).
You can request the withdrawal of your consent to the sending of direct marketing messages and the deletion or modification of your personal data by:
On behalf of the Service Provider, MediaCenter Hungary Kft (registered office: 6000 Kecskemét, Sosztakovics u. 3. II/6) stores the personal data on a server protected by 24-hour security.
Personal data are primarily accessible to the Service Provider and its internal employees, but they are not disclosed or given to third parties.
The Service Provider uses data processors to provide its Services, to serve Users and to operate the IT system that runs the Service. The data processors shall perform their data processing activities in accordance with the data protection provisions in force at any given time and in compliance with the law.
We work with the following data processors:
| company name | Located at | Activity |
| MediaCenter Hungary Kft | 6000 Kecskemét, Sosztakovics u. 3. II/6 | server service |
| MiniCRM Zrt. | 1075 Budapest, Madách Imre út 13–14. | központi ügyféladatbázis, feladatkezelés, számlázás, rendelések kezelése, hírlevél küldés |
| DataCrew Kft. | 8220 Balatonalmádi, Kert u. 15. | központi ügyféladatbázis |
Court, public prosecutor's office, investigating authority, rule-breaking authority, administrative authority, the National Authority for Data Protection and Freedom of Information, or other bodies authorised by law may request the Service Provider to provide information, data, or documents. The Service Provider shall provide the requesting body with the personal data necessary to achieve the purpose of the request, provided that the exact purpose and scope of the data have been specified. The Service Provider does not always provide the data subject with information about the transfer of data to authorities, courts or on the basis of legislation.
Transfers to processors do not require the consent of the data subject. The Service Provider shall keep records of data transfers.
By accepting this Notice, the User expressly accepts and consents to the Controller's transfer of his/her personal data to data processors.
CRM rendszer használata
A Szolgáltató az ügyfélkapcsolatok kezelése, megkeresések nyilvántartása és az adminisztratív folyamatok támogatása érdekében MiniCRM Zrt. által üzemeltetett ügyfélkapcsolat-kezelő rendszert használ.
A CRM rendszerben kezelt és tárolt adatok köre különösen: név, e-mail cím, telefonszám, megkeresések tartalma, ajánlat, szerződés, archivált emailek.
Our websites contain links to third party websites and services, including those of our third party partners. Please note that when you use a link to go from our Sites to another website or request a service from a third party, this Privacy Notice no longer applies to that link.
Service providers operating web stores for applications
The service providers (e.g. Apple Inc., Google Inc.) that operate mobile and tablet application stores (e.g. Apple Store, Android Store) manage the data of users of the Services installed on the end user's device independently of the Service Provider and send notifications of updates.
External intermediary service providers
Some service providers (e.g. Google Inc., Instagram Inc., Facebook Inc.; YouTube Inc.; Vimeo) provide registration and login facilitation applications when you use the Services, in accordance with their own privacy policies. The Service Provider will process the data transmitted to it in this context in accordance with the provisions of this Policy. The provider of the content made available through the Service and shared on the various social networking sites is considered to be the controller of personal data and is subject to its own terms of use and privacy policy. Examples of such external intermediary services include:
| Link to Privacy Notice | Link to terms of use | |
| | ||
| | ||
| | ||
| YouTube | ||
| Vimeo |
Web analytics and ad-serving external companies