{"id":3179,"date":"2021-05-27T12:33:49","date_gmt":"2021-05-27T12:33:49","guid":{"rendered":"https:\/\/www.commsignia.com\/?page_id=3179"},"modified":"2021-08-18T07:53:12","modified_gmt":"2021-08-18T07:53:12","slug":"event-privacy-policy","status":"publish","type":"page","link":"https:\/\/www.commsignia.com\/event-privacy-policy\/","title":{"rendered":"Event Privacy Policy"},"content":{"rendered":"\n

entering into force on 27 May 2021.<\/em><\/p>\n\n\n\n

The purpose of this Privacy Policy is to provide data subjects (including You) with information about the data processing performed by Commsignia Ltd. (defined below as Data Controller), related to the online or offline events (including webinars and product presentations) organized by it <\/strong>(hereinafter referred to as \u201cevents\u201d<\/strong>).<\/p>\n\n\n\n

In general, the  Data Controller acts in accordance with the legislation on data protection and advertising being in force – in particular in accordance with the provisions of the Act CXII of 2011 on the right to informational self-determination and on the freedom of information (hereinafter: \u201cInfotv<\/strong>.\u201d); as well as that of the regulation (EU) 2016\/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (hereinafter: \u201eGDPR<\/strong>\u201d). Data Controller processes the data subject\u2019s personal data confidentially, ensures their protection, and takes the necessary technical and organizational measures and establish procedural rules necessary to enforce the GDPR and other data protection rules.<\/p>\n\n\n\n

Data Controller<\/u><\/strong><\/p>\n\n\n\n

Commsignia <\/strong>Korl\u00e1tolt Felel\u0151ss\u00e9g\u0171 T\u00e1rsas\u00e1g (7252 Attala, Sz\u00e9chenyi utca 14., phone number: +36 70 883 9700, e-mail: info@commsignia.com,<\/a>  hereinafter: \u201eData<\/strong> Controller<\/strong>\u201d)<\/p>\n\n\n\n

Scope of data being processed, purpose and period of data processing<\/u><\/strong><\/p>\n\n\n\n

Providing your information is voluntary, however, in the absence of your data, we do not have the opportunity to register you to the events held and organized by the Data Controller. Based on the relevant legislation on disease control measures, the Data Controller may be obligated to check the COVID-19 immunity certificate and other credentials of the data subject, verifying whether the data subject is permitted to attend to the specific event.<\/p>\n\n\n\n

The Data Controller takes photographs and produces video recordings of the events, which (partially or as a whole) may be used by the Data Controller for marketing, PR or employer branding purposes.<\/p>\n\n\n\n

Apart from the inspection of the COVID-19 immunity certificate, the Data Controller does not process sensitive data.<\/p>\n\n\n\n

1. Activity linked to data processing<\/strong><\/td>Registering to and attending events<\/strong><\/td><\/tr>
Data subject<\/strong><\/td>Natural persons registering to and attending the events.<\/td><\/tr>
Data processed<\/strong><\/td>Name, e-mail address of the data subject.<\/td><\/tr>
Purpose of data processing<\/strong><\/td>The Data Controller processes personal data for the purpose of organizing and holding the event. Namely the Data Controller may send handouts, calendar event invitations and other relevant information to the e-mail address provided by the data subject regarding the specific event the data subject is registered to.<\/td><\/tr>
Period of data processing<\/strong><\/td>Personal data is processed until the day after the event the data subject is registered to is held or until the withdrawal of the consent of the data subject (whichever is the sooner). The consent can be withdrawn at any time by sending an e-mail to the e-mail address specified above.<\/td><\/tr>
Legal ground of data processing<\/strong><\/td>The freely given consent of the data subject, based on Point a) Paragraph (1) of Article 6 of GDPR.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
2. Activity linked to data processing<\/strong><\/td>Verification of COVID-19 immunity or age<\/strong><\/td><\/tr>
Data subject<\/strong><\/td>Natural persons attending the indoor events of the Data Controller (not including natural persons under the age of 6 years).<\/td><\/tr>
Data processed<\/strong><\/td>In case of the verification of immunity: The content of the COVID-19 immunity certificate issued by the authorities of Hungary (family name, given names, number of passport and identity card and the certificate, the date of vaccination or the date of the expiration of the certificate). As the COVID-19 immunity certificate is only valid with an identity card or passport, the content of either of these documents has to be processed (inspected) by the Data Controller. The COVID-19 immunity certificate issued by foreign authorities may be accepted by the Data Controller if the conditions laid down in the Government Decree No 484\/2020. (XI. 10.) on the second stage of the protective measures applied in emergency<\/em> are met, in which case the content of such certificates (and the identity document of the data subject) is processed. In case of the verification of age: The content of the passport, identity card, driver\u2019s licence, or student card. The data processing consists of the inspection of the aforementioned documents. The staff member of the Data Controller looks at the documents for the time it is necessary to verify the COVID-19 immunity or age of the specific data subject but does not record their content in any way.<\/td><\/tr>
Purpose of data processing<\/strong><\/td>Certain events may only be attended by people immune to COVID-19 or children under the age of 18 years, accompanied by a person with verified COVID-19 immunity as laid down in the Government Decree No 484\/2020. (XI. 10.) on the second stage of the protective measures applied in emergency<\/em>. Therefore, the purpose of the data processing is the verification of whether the data subject is permitted to attend the event of the Data Controller, in accordance with the Government Decree mentioned above.<\/td><\/tr>
Period of data processing<\/em><\/strong><\/strong><\/td>Personal data is only processed during the inspection of the COVID-19 immunity certificate and\/or other documents mentioned above. The Data Controller does not record the content of these documents in any way.<\/td><\/tr>
Legal ground of data processing<\/strong><\/td>With regards to Point c) of Paragraph (1) of Article 6 of GDPR, the data processing is necessary for compliance with the legal obligation laid down in the provisions of the Government Decree No 484\/2020. (XI. 10.) on the second stage of the protective measures to applied in emergency <\/em>on the organization of events (including especially Paragraph 6\/C and 7), to which the Data Controller is subject.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
3. Activity linked to data processing<\/strong><\/td>Photography and filming during events<\/strong><\/td><\/tr>
Data subject<\/strong><\/td>Natural persons attending the event.<\/td><\/tr>
Data processed<\/strong><\/td>Recorded image and (in case of video recordings) voice of the data subjects.<\/td><\/tr>
Purpose of data processing<\/strong><\/td>The Data Controller processes personal data for the purpose of taking pictures and recording videos of the events, and using such pictures and video recordings for marketing, PR, employer branding purposes. The pictures and video recordings may be edited, cropped, or otherwise modified in the course of creating marketing, PR, employer branding materials (e.g., image videos, brochures, advertisement etc).<\/td><\/tr>
Period of data processing<\/em><\/strong><\/strong><\/td>Personal data is processed until the pictures and video recordings are usable for the purpose of processing. Hence within 5 working days of the event, the Data Controller deletes recordings that are not useable for the purposes mentioned herein and the Data Controller revises the usefulness of the pictures and video recordings periodically and deletes the ones that cannot be used in the future.<\/td><\/tr>
Legal ground of data processing<\/strong><\/td>When consent is required for such data processing, the legal grounds of the data processing is the freely given consent of the data subject, based on Point a) Paragraph (1) of Article 6 of GDPR and section (1) of Paragraph 2:48 of Act V of 2013. on the Civil Code of Hungary. As aid down in section (2) of Paragraph 2:48 of Act V of 2013. on the Civil Code of Hungary, in case of recordings made of a crowd (t\u00f6megfelv\u00e9tel in Hungarian) it is not required to obtain the consent of the persons affected. The consent of the data subject can be withdrawn by sending an e-mail to the e-mail address above.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

Data Controller does not perform profiling.[1]<\/sup><\/p>\n\n\n\n

Persons having access to personal data<\/u><\/strong><\/p>\n\n\n\n

The data may be accessed by the employees of Data Controller and by the data processors defined in this Policy in order to perform their duties. Thus, for example, the data processors defined in this Policy may have access to personal data in order to provide services, handle cases and process data.<\/p>\n\n\n\n

Data transfer<\/u><\/strong><\/p>\n\n\n\n

The data subject\u2019s data are not transferred to third parties, except for the transfer to the data processor defined below. Other data transfer to a third party or any recipient may only take place if the Data Controller informs the data subject about the potential recipient in advance and then the data subject gives their prior consent or if the given data transfer is otherwise required by law. Data Controller shall not transfer personal data to third countries or international organizations in the course of its data processing activities, unless otherwise stated in this Policy.<\/p>\n\n\n\n

Data processor<\/u><\/strong><\/p>\n\n\n\n

For the sole purpose of the data processing task to be executed, the Data Controller uses<\/p>\n\n\n\n