top of page

 EIGHTH HOUSE 

Data Processing and Privacy Statement


 

Service provider: Kristóf Csörnyei

Registered office: 33 Telepes Street, Budapest 1147

Hungarian tax number: 58343212-1-42

Email: nyolcadikhaz@gmail.com

Phone: +36 30 958 18 02

The website of the individual business called the “Eighth House” owned by Kristóf Csörnyei -- which is available under the domain name www.nyolcadikhaz.com -- allows identifiable natural persons  (hereinafter: Data Subject and/or Customer) to contact him and to make an appointment for an astrological consultation by filling in personal data. Kristóf Csörnyei (hereinafter: Service Provider and/or Data Controller) acts in accordance with this Privacy Policy in all data management of Customers. The Service Provider as Data Controller hereby informs the Customer as Data Subject about the managed personal data, the principles and practices of data management, the organizational and technical measures taken to protect personal data, and the manner and possibilities for the Customer to exercise his or her rights.

The Data Controller handles the recorded data confidentially, in accordance with the General Data Protection Regulation introduced on 25 May 2018, which is reflected in this Policy. Familiarization with and acceptance of the provisions of this Privacy Policy constitutes Consent from the Customer as Data Subject.


 

Concept definitions

Personal data: this includes any information relating to a Data Subject -- an identifiable natural person -- who can be identified, directly or indirectly, in particular by reference to an identifier, such as name, address, email address, IP address, telephone number, place and date of birth.

Consent: means any freely given, specific, informed and unambiguous indication of the Data Subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Objection: a statement of the Data Subject by which he or she objects to the processing of his or her personal data, and/or requesting the termination of data processing and/or requesting the deletion of processed data.

Data Controller: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purpose of the data processing, makes and implements decisions on data processing (including the means used).

Data Processor: the natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Data processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Data management: the performance of technical tasks related to data processing operations, regardless of the method, means and location used to perform the operations.

Data transfer: when the data is made available to a specific third party.

Third party: means a natural or legal person, public authority, agency or body other than the Data Subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.

Data disclosure: when the data is made available to anyone.

Data deletion: making data unrecognizable in such a way that it is no longer possible to recover it.

Data blocking: when each form of data processing has been made impossible on a temporary or permanent basis.

Data destruction: the complete physical destruction of data or the media containing them.


 

Scope of personal data; purpose and pretense of data processing

When making an inquiry and/or making an appointment on the Website, the Data Subject (hereinafter: Customer) must provide the following personal data: name, e-mail address, telephone number, billing address, place of birth and exact time in minutes.

The legal basis for data management is the voluntary consent of the Customer. The Customer gives his consent to the processing of the data indicated above by expressly accepting this Privacy Policy after prior acquaintance -- by means of using the Website and voluntarily providing the data in question, and by means of ticking the relevant box (“I consent to the Privacy Policy”). During the inquiry and appointment, the Customer gives his express and voluntary consent to the Data Controller to eventually send news and information related to the company to the e-mail address provided by the Customer during registration.

The purpose of data management is to answer the inquiries and questions submitted on the Website; facilitated and expedited online appointment booking and subsequent automated confirmation; collecting the birth data needed to prepare the natal chart on which the consultation is based; obtaining contact details to communicate any update with regards to the booked consultation; and providing fast online billing after consultation. The Service Provider stores the data provided by the Customer during the online inquiry and appointment booking only for these purposes and does not use them for other purposes.


 

Storage of personal data, security and duration of data processing

The Service Provider's independent data repository is Wix.com Ltd. The Service Provider is informed about the data provided by the Customer through the services of Wix.com Ltd. The Privacy Policy of Wix.com Ltd. regarding data retention is available at https://www.wix.com/about/privacy. The user of the Website acknowledges that he consents to the processing of his data by Wix.com Ltd. by using the Website.

The Customer's data is processed by computer data processing. The data that is automatically recorded is the dynamic IP address of the Customer's computer, the type of operating system and browser of the computer used by the Customer (depending on the settings of the customer's computer) and  the customer's activity related to the Website. The use of this data serves technical purposes: on the one hand, the secure operation and subsequent control of the servers, and on the other hand, the Data Controller uses this data to compile page usage statistics and analyze user needs in order to improve the quality of services. The above data is not suitable for the identification of any Data Subject, and the Data Controller cannot link them with other personal data.

In order to obtain independent website traffic and other web analytics data, the Data Controller uses Google Analytics software. The Privacy Policy of Google Inc. for this data is available at https://google.com/intl/h_All/policies/privacy. The user of the Website acknowledges that he or she consents to the processing of his or her data by Google Inc. by using the website.

During visits to the Website, one or more cookies will be sent to the Customer's computer, through which his or her browser will be uniquely identified. These cookies are used only to improve the user experience, to automate the login process and to measure the effectiveness of advertising activities, and the Data Controller is not able to combine them with other personal data.

The Data Controller may not use the personal data provided for purposes other than those described above. The disclosure of personal data to third parties or authorities is not possible, unless otherwise required by law, only with the prior express consent of the Customer.

The Data Controller does not verify the personal data provided to him. The Customer is solely responsible for the accuracy of the provided data. When providing an email address, the Customer is also responsible for ensuring that only he or she uses the service from the provided email address. In view of this, all responsibility for logging in to a given email address rests solely with the Customer who registered the email address.

The data management lasts from the date of data submission by the Customer until the deletion of the data by the Data Controller. Based on act CXII of 2011 on Informational Self-Determination and Freedom of Information ("Privacy Act"), the Customer has the right to request the change or deletion of the personal data recorded by the Website during the inquiry and appointment booking. The Customer can do this by email at nyolcadikhaz@gmail.com. In case of deletion request, the Data Controller will completely delete the Customer's data in his register.


 

The persons entitled to access personal data

It is only the Data Controller who is entitled to get acquainted with the Customer's personal data, and he does not disclose them or transfer them to third parties.

However, the Data Controller may use a data processor (e.g. system operator, accountant, etc.) in connection with the operation of the underlying IT system, fulfillment of service orders or settlement of bills. The controller is not responsible for the data management practices of such external actors.

In addition to the above, the transfer of personal data concerning the Customer may only take place in cases specified by law or on the basis of the Customer's consent.


 

Customer rights

The Customer is entitled to request information about the personal data managed by the Data Controller at any time and may request their modification as well. The Customer is also entitled to request the deletion of his data via the contact details provided in this section.

At the request of the Customer, the Data Controller shall provide information about his or her personal data; the purpose, legal basis and duration of the data processing; as well as who receives or has received their data and for what purpose. The Data Controller shall provide the requested information in writing within 30 days of the submission of the request by the Customer.

The Customer may contact the Data Controller with any questions or remarks related to data management via the above contact details.

  • Mailing address: 1147 Budapest, Telepes utca 33. fsz. 2.

  • Email address: nyolcadikhaz@gmail.com

  • Phone number: +36 30 958 18 02

The Customer has the right at any time to request the correction or deletion of incorrectly recorded data. The client can enforce his rights in court and also request the help of a data protection commissioner (22 Nádor Street, Budapest 1051). In the event of a violation of the law, the Customer may appeal to the Hungarian National Authority for Data Protection and Freedom of Information (9-11 Falk Miksa Street, Budapest 1055).

If the Customer provided the data of a third party during the registration in order to use the service, or caused damage in any way during the use of the Website, the Service Provider as Data Controller is entitled to enforce compensation from the Customer. In such a case, the Service Provider as Data Controller shall provide all possible assistance to the acting authorities in order to establish the identity of the infringing person.


 

Other provisions

The Service Provider's system may collect data on the activity of users, which cannot be linked to other data provided by Customers as Data Subjects during registration, or to data generated when using other websites or services.

The Service Provider as Data Controller undertakes to fully ensure the security of the data, as well as to take the technical measures that ensure that the recorded, stored and processed data are protected, and to do everything possible to prevent their destruction, unauthorized use and unauthorized alteration. The Service Provider as Data Controller also undertakes to inform any third party to whom the data may be transmitted or transferred to fulfill their own obligations in this regard.

The Service Provider as Data Controller reserves the right to unilaterally amend this Policy with prior notice to the Customer. Following the entry into force of the amendment, the Customer implicitly accepts the contents of the amended Policy by using the Website.

The Service Provider as Data Controller acknowledges that the content of this Policy is binding and he undertakes that his data processing and data management related to his service complies with the requirements and terms set out in this Policy.


 

This Privacy Policy is effective as of 21 December, 2021.

bottom of page