Impressum
Provider name: Norbert Tompa MD
Service provider's registered office: 2030 Érd, Tarcal Street 6.
Service provider contact: info@drtompanorbert.hu
Registration office: Ministry of the Interior
Tax number: 45755039-1-33
Medical license issuing office: NEAK, neak@neak.gov.hu
Medical license number: 079980
Chamber membership:
Hungarian Medical Chamber, 1068 Budapest, Szondi u. 100., Email: mok@mok.hu
PMKIK, Törökbálint, Kazinczy Ferenc u. 124, 2045
Hosting provider details: Wix.com Ltd., registered office: 5 Yunitsman Street, Tel Aviv-Yafo, 6936025, Israel, email: support@wix.com
Privacy
It is very important for us to comply with currently valid data protection regulations and laws, so below we discuss and present in detail the data protection steps of the www.drtompanorbert.hu website and its data collection processes.
INTRODUCTION
The operator of the website: Dr. Tompa Norbert (hereinafter referred to as the "Provider")
Tax number: 45755039-1-43
Individual entrepreneur registration number: 58338847
2, WHAT PERSONAL DATA DO WE PROCESS AND FOR WHAT REASON?
Personal data is that which clearly enables the precise identification of an individual.
On the website www.drtompanorbert.hu, we process the following personal data, specifying the legal basis:
COMMUNICATION DATA
This includes any message you send to us via the website, by e-mail, social media message, or any other form of communication. We process and retain this data in order to maintain contact with patients and to provide a basis for decision-making in the event of possible legal claims. Our legal basis for this processing is the user's justified interest in our activities, which is manifested in the messages addressed to us.
USER DATA
This includes data generated during the use of the website, which enable the technical operation of the site, to maintain the security of the site, to store backups of user activity, and to always have access to the most relevant content. The legal basis for processing the data is the user's clear interest in our activities, which is necessary to ensure and for the technical operation of the site.
TECHNICAL DATA
This includes data generated during the use of the site, such as IP address, login information, browser data, time of visit to individual pages, page views and navigation paths, number and time of page visits, time zones, and data from the device you use to view the site.
The source of the data is our analytics software. We process this data to analyze user behavior on the site, to keep our site secure, and to understand the usefulness of our marketing decisions. The legal basis for processing the data is the user's clear interest in our activities, which allows us to process this data in accordance with security requirements and use it to increase business in order to operate more effectively.
We may occasionally use the collected data for purposes such as communicating targeted, relevant information via email or on various dynamic advertising platforms, and to measure the effectiveness of the communication.
The legal basis for processing the data is the user's clear interest in our activities, which allows us to process this data in accordance with security requirements and use it to increase business in order to operate more effectively.
We do NOT collect sensitive data such as ethnicity, religious beliefs, sexual life and orientation, political opinions and trade union membership, or health background, and genetic or biometric information.
3, HOW DO WE COLLECT DATA?
We may collect personal data in a way that the user provides us directly (for example, by registering or sending a message).
In addition, certain data is collected automatically when you use the site, for example, by using so-called “cookies” and similar technologies. These only come into operation after the user has given their consent.
For more information, please see our Cookie Statement.
We receive certain data from external partners, such as analytics providers such as Google (partner outside the EU), advertising networks such as Facebook™ (partner outside the EU), and Hotjar.
4, OUR PRACTICAL STEPS RELATED TO DATA PROTECTION
The protection of users' data and compliance with applicable regulations are extremely important to the Service Provider. After conducting a data protection impact assessment on the site, we have prepared a list of the data collected, their necessity and legal basis, and their legal compliance. The protection of users' data and compliance with applicable regulations are extremely important to the Service Provider. Therefore, we treat data protection as a top priority on the www.drtompanorbert.hu site and have made significant efforts to securely collect the information collected by the site. In order to protect the data provided on the forms and generated on the site, we use SSL certification on the entire website (Let's Encrypt Authority X3 certification).
In this data protection statement, we provide users with the ability to request information about the processing of their personal data, modify or delete their personal data via forms.
Sometimes, in order to carry out our business activities, it is necessary to provide data to our service partners (e.g. hosting providers, newsletter software).
In such cases, we always choose to comply with the requirements of the GDPR regulation and, in the case of a US-based partner, to participate in the EU-US Privacy Shield data protection initiative.
5, NOTE REGARDING PERSONAL DATA
From time to time, it is necessary to share certain personal data with certain partners in order to maintain normal business operations:
-IT service providers and service providers who perform troubleshooting and maintenance on computer systems
-Expert partners such as lawyers, accountants, bankers, insurers
-Government agencies that request reports on our activities
-Payment service providers who securely manage bank card data
International data transfers
From time to time, it is necessary to share user data with service partners outside the European Economic Area (EEA) in order to maintain business operations. Countries outside the EEA often do not provide the same level of data protection, which is why European laws prohibit the export of data unless the appropriate conditions are met. Whenever personal data is transferred outside the EEA, we take the following steps in addition to the steps discussed in point 4 to ensure the secure handling of data:
-We only transfer data to countries that the European Commission considers adequate from a data security perspective.
-We only use US-based services that are part of the EU-US Privacy Shield.
If the above is not met, we ask for the express consent of users to make the data transfer. Consent can be withdrawn at any time.
Links to external sites
This site occasionally contains links to external sites, or code snippets are embedded in the site that ensure the operation of external services. Clicking on these links or using embedded solutions may allow external partners to collect data about users. Although we do our best to properly vet our partners, we have no control over their privacy policies and are not responsible for their privacy practices.
6, PERIOD OF DATA PROCESSING
We only store your data for as long as we are required to do so by our legal/accounting/data reporting obligations or for the operation of the service. When deciding on the storage period, we take into account the amount, nature and sensitivity of the data and the potential impact of its leakage in the event of a data breach. For tax reasons, we need to retain customer billing and purchase data for at least 8 years to comply with our legal obligations. In certain circumstances, we may use the data in an anonymized form for statistical purposes, in which case we will store the data indefinitely without further notice.
7, VISITOR RIGHTS
As a citizen of the European Union, the General Data Protection Regulation (GDPR) law grants the following rights to users of the site:
a, Access to personal data
Users of the site have the right to request a copy of the personal data stored by www.drtompanorbert.hu. The request will generally be fulfilled free of charge, within 14 days of the request.
In the event of repeated, abusive, unfounded data requests, the Service Provider may charge a reasonable amount to provide the data, and additional time may be required to provide the data.
Furthermore, the Service Provider requests proof of identity before releasing the data, in order to prevent abusive use. To request personal data, please write to us at info@drtompanorbert.hu.
b, Modification of personal data
If personal data has been modified or has been provided incorrectly, users have the right to request modification of the data. To modify personal data, please contact us at info@drtompanorbert.hu.
c, Request deletion of personal data
Users have the right to request deletion of all their personal data. We will fulfill the request free of charge within 14 days of the request. The service provider requests proof of identity before deleting personal data to prevent misuse.
d, Request restriction of processing of personal data
Users have the right to request restriction of the provision of their data to third parties (service partners). When submitting the request, the service partners to be restricted can also be named. It is important to note that cooperation with certain service providers is essential for the operation of the site (e.g. PayPal as a payment service provider), so in case of their restrictions, the site's services become inaccessible to the user. The service provider requests proof of identity before restricting the transfer of personal data, in order to prevent abusive use.
In Hungary, the official body dealing with data protection is the National Authority for Data Protection and Freedom of Information (NAIH). Users can find out more about their rights related to data protection on the NAIH website.
National Authority for Data Protection and Freedom of Information
PERSONAL DATA
From time to time, it is necessary to share certain personal data with certain partners in order to maintain normal business operations:
-IT service providers and service providers who perform troubleshooting and maintenance on computer systems
-Expert partners such as lawyers, accountants, bankers, insurers
-Government agencies that request reports on our activities
-Payment service providers who securely manage bank card data
International data transfers
From time to time, it is necessary to share user data with service partners outside the European Economic Area (EEA) in order to maintain business operations. Countries outside the EEA often do not provide the same level of data protection, which is why European laws prohibit the export of data unless the appropriate conditions are met. Whenever personal data is transferred outside the EEA, we take the following steps in addition to the steps discussed in point 4 to ensure the secure handling of data:
-We only transfer data to countries that the European Commission considers adequate from a data security perspective.
-We only use US-based services that are part of the EU-US Privacy Shield.
If the above is not met, we ask for the express consent of users to make the data transfer. Consent can be withdrawn at any time.
Links to external sites
This site occasionally contains links to external sites, or code snippets are embedded in the site that ensure the operation of external services. Clicking on these links or using embedded solutions may allow external partners to collect data about users. Although we do our best to properly vet our partners, we have no control over their privacy policies and are not responsible for their privacy practices.
6, PERIOD OF DATA PROCESSING
We only store your data for as long as we are required to do so by our legal/accounting/data reporting obligations or for the operation of the service. When deciding on the storage period, we take into account the amount, nature and sensitivity of the data and the potential impact of its leakage in the event of a data breach. For tax reasons, we need to retain customer billing and purchase data for at least 8 years to comply with our legal obligations. In certain circumstances, we may use the data in an anonymized form for statistical purposes, in which case we will store the data indefinitely without further notice.
7, VISITOR RIGHTS
As a citizen of the European Union, the General Data Protection Regulation (GDPR) law grants the following rights to users of the site:
a, Access to personal data
Users of the site have the right to request a copy of the personal data stored by www.drtompanorbert.hu. The request will generally be fulfilled free of charge, within 14 days of the request.
In the event of repeated, abusive, unfounded data requests, the Service Provider may charge a reasonable amount to provide the data, and additional time may be required to provide the data.
Furthermore, the Service Provider requests proof of identity before releasing the data, in order to prevent abusive use. To request personal data, please write to us at info@drtompanorbert.hu.
b, Modification of personal data
If personal data has been modified or has been provided incorrectly, users have the right to request modification of the data. To modify personal data, please contact us at info@drtompanorbert.hu.
c, Request deletion of personal data
Users have the right to request deletion of all their personal data. We will fulfill the request free of charge within 14 days of the request. The service provider requests proof of identity before deleting personal data to prevent misuse.
d, Request restriction of processing of personal data
Users have the right to request restriction of the provision of their data to third parties (service partners). When submitting the request, the service partners to be restricted can also be named. It is important to note that cooperation with certain service providers is essential for the operation of the site (e.g. PayPal as a payment service provider), so in case of their restrictions, the site's services become inaccessible to the user. The service provider requests proof of identity before restricting the transfer of personal data, in order to prevent abusive use.
In Hungary, the official body dealing with data protection is the National Authority for Data Protection and Freedom of Information (NAIH). Users can find out more about their rights related to data protection on the NAIH website.
National Authority for Data Protection and Freedom of Information
PERSONAL DATA
From time to time, it is necessary to share certain personal data with certain partners in order to maintain normal business operations:
-IT service providers and service providers who perform troubleshooting and maintenance on computer systems
-Expert partners such as lawyers, accountants, bankers, insurers
-Government agencies that request reports on our activities
-Payment service providers who securely manage bank card data
International data transfers
From time to time, it is necessary to share user data with service partners outside the European Economic Area (EEA) in order to maintain business operations. Countries outside the EEA often do not provide the same level of data protection, which is why European laws prohibit the export of data unless the appropriate conditions are met. Whenever personal data is transferred outside the EEA, we take the following steps in addition to the steps discussed in point 4 to ensure the secure handling of data:
-We only transfer data to countries that the European Commission considers adequate from a data security perspective.
-We only use US-based services that are part of the EU-US Privacy Shield.
If the above is not met, we ask for the express consent of users to make the data transfer. Consent can be withdrawn at any time.
Links to external sites
This site occasionally contains links to external sites, or code snippets are embedded in the site that ensure the operation of external services. Clicking on these links or using embedded solutions may allow external partners to collect data about users. Although we do our best to properly vet our partners, we have no control over their privacy policies and are not responsible for their privacy practices.
6, PERIOD OF DATA PROCESSING
We only store your data for as long as we are required to do so by our legal/accounting/data reporting obligations or for the operation of the service. When deciding on the storage period, we take into account the amount, nature and sensitivity of the data and the potential impact of its leakage in the event of a data breach. For tax reasons, we need to retain customer billing and purchase data for at least 8 years to comply with our legal obligations. In certain circumstances, we may use the data in an anonymized form for statistical purposes, in which case we will store the data indefinitely without further notice.
7, VISITOR RIGHTS
As a citizen of the European Union, the General Data Protection Regulation (GDPR) law grants the following rights to users of the site:
a, Access to personal data
Users of the site have the right to request a copy of the personal data stored by www.drtompanorbert.hu. The request will generally be fulfilled free of charge, within 14 days of the request.
In the event of repeated, abusive, unfounded data requests, the Service Provider may charge a reasonable amount to provide the data, and additional time may be required to provide the data.
Furthermore, the Service Provider requests proof of identity before releasing the data, in order to prevent abusive use. To request personal data, please write to us at info@drtompanorbert.hu.
b, Modification of personal data
If personal data has been modified or has been provided incorrectly, users have the right to request modification of the data. To modify personal data, please contact us at info@drtompanorbert.hu.
c, Request deletion of personal data
Users have the right to request deletion of all their personal data. We will fulfill the request free of charge within 14 days of the request. The service provider requests proof of identity before deleting personal data to prevent misuse.
d, Request restriction of processing of personal data
Users have the right to request restriction of the provision of their data to third parties (service partners). When submitting the request, the service partners to be restricted can also be named. It is important to note that cooperation with certain service providers is essential for the operation of the site (e.g. PayPal as a payment service provider), so in case of their restrictions, the site's services become inaccessible to the user. The service provider requests proof of identity before restricting the transfer of personal data, in order to prevent abusive use.
In Hungary, the official body dealing with data protection is the National Authority for Data Protection and Freedom of Information (NAIH). Users can find out more about their rights related to data protection on the NAIH website.
National Authority for Data Protection and Freedom of Information
Authority,
1055 Budapest, Falk Miksa utca 9-11
Phone: 06.1.391.1400,
E-mail: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu
8, ANONYMOUS DATA AND “COOKIES”
The www.drtompanorbert.hu website, in e-mail messages and advertisements, uses so-called “cookies” and similar technologies, such as tracking codes, re-marketing tags, pixels, which are activated after the user’s consent. These technologies help us to better understand the behavior and interests of users, thus helping us to operate at a higher level and more efficiently.
Our goal is to make the use of www.drtompanorbert.hu as user-friendly and personal as possible. If the user wishes to prohibit the recording of non-personal data by these technologies, this can be done in the following ways:
-by disabling their loading using the cookie warnings displayed on the website
-by disabling “cookies” in the browser
-or using this tool
You can find more information about additional cookies and tracking codes on www.drtompanorbert.hu in our Cookie Statement.
COOKIE STATEMENT
1. WHAT ARE COOKIES AND HOW CAN I CHANGE THE SETTINGS?
Cookies are small text files that a website can use to improve your experience.
Some cookies are temporary and disappear when you close your browser, while others are permanent and remain on your computer for a longer period of time. By law, we may store cookies on your device if they are absolutely necessary for the operation of our website. We require your consent to use all other types of cookies. This website uses various types of cookies. Some of the cookies on this website are set by our third-party service providers.
Browsers allow you to change your cookie settings. Most browsers automatically accept cookies by default, but this can be changed to prevent automatic acceptance after you have set it.
For more information on how to change your browser settings, please refer to your browser's instructions or help. You can find information on the cookie settings of the most popular browsers at the following links:
Google Chrome
Firefox
Microsoft Internet Explorer 11
Microsoft Internet Explorer 10
Microsoft Edge
Safari
2. WHERE DO YOU GET INFORMATION AND CONSENT TO COOKIES?
When you visit our website for the first time, a pop-up window will appear at the bottom of the screen where you can specify which cookies you want to consent to.
This information window will also contain a link to this Privacy Statement.
3. TYPES OF COOKIES
3.1. Strictly Necessary Cookies
Essential cookies help our website to function properly by enabling basic functions such as site navigation and access to secure areas of the website. The website cannot function properly without these cookies.
ForceFlashSite: When you display a mobile website (old mobile under m.domain.com), it forces the server to display the non-mobile version and avoids redirecting to the mobile website - until you close your browser
hs: security cookie - until you close your browser
smSession: identifies logged-in users - lasts (2 days-2 weeks)
XSRF-TOKEN: security cookie - until you close your browser
3.2. Functional cookies
With the help of functional cookies, we can remember information that changes certain aspects of the website's behavior or appearance, for example, your preferred language or the region you are in.
svSession: identifies new visitors to the site and tracks browsing times - lasts (2 years)
SSR-caching: indicates how the website was displayed - until the browser is closed
smSession: identifies logged-in users - lasts (2 weeks)
3.3. Statistics cookies
By collecting and reporting data in an anonymous form, statistics cookies help the website owner to understand how visitors interact with the website.
_ga: Records a unique identifier, which is used to create anonymous statistics about the use of the website. - 2 years
_gid: Records a unique identifier, which is used to create anonymous statistics about the use of the website. - 2 years
_gat: Used by Google Analytics to control the frequency of requests. until browser is closed
collect: Collects data for Google Analytics about the user's device and browsing habits, across various devices and marketing channels. - until browser is closed
3.4. Marketing cookies
Personalized cookies are used to track visitors' website activity. The goal is to serve more relevant ads to individual users, display content that matches their preferences, and encourage them to take action.
ads/ga-audiences: Used by Google Adwords to target users who are likely to have a higher purchasing propensity based on their browsing habits. - until browser is closed
pref: Records a unique identifier from which Google creates statistics about the videos the user has watched on YouTube. - 8 months
fr: Used by Facebook to target users who are likely to have a higher purchasing propensity based on their browsing habits. - 3 months
tr: Used by Facebook to target users who are likely to have a higher purchasing propensity based on their browsing habits. - until browser is closed
3.5. Third-party cookies
TS*: security cookie - until browser is closed
TS01***********: security cookie - until browser is closed
TSxxxxxxxxx (where x is a random string of letters and numbers): security cookie - until browser is closed
TSxxxxxxxxx_d (where x is a random string of letters and numbers): security cookie - until browser is closed
4. CHECKING AND DISABLEING COOKIE SETTINGS DISABLE
Modern browsers allow you to change your “cookie settings”. Some browsers automatically accept “cookies” by default, but this setting can also be changed in order to prevent the visitor from automatically accepting them in the future.
In the event of a change, the browser will offer you the option to “set cookies” every time.
The Data Controller will not remember any identifiers or passwords even if “cookies” are enabled. The visitor can use the services in complete safety even if “cookies” are accepted.
We would like to draw the attention of our visitors to the fact that since the purpose of “cookies” is to support and facilitate the usability and processes of the website, if “cookies” are disabled, we cannot guarantee that the visitor will be able to fully use all the functions of the website.
In this case, the website may function differently in the browser than intended.