Privacy policy

PRIVACY POLICY
COLORON / Medicontur Kft.

Basics
Effective from: 2024.08.01

Data Controller: Medicontur Esthetics Limited Liability Company (registered office: 1113 Budapest, Karolina út 65. 1. door; company registration number: 01-09-393757; tax number: 27537772-2-43; hereinafter referred to as "Medicontur Esthetics" or "data controller").

Contact details of the data controller: See section 8 of this Privacy Policy.

Purpose of Data Processing

This Privacy Policy details the data processing principles for the website https://esthetics.hu/, its associated sites, and (sub)domains (collectively referred to as "the Website").

Medicontur compiled this Privacy Policy in compliance with the EU General Data Protection Regulation (GDPR 2016/679) concerning the protection of personal data and its free movement, replacing Directive 95/46/EC. The data processing complies with GDPR regulations and is periodically updated for legal or organizational reasons.

Key Purposes:

  1. Contractual purposes.
  2. Legal compliance.
  3. Marketing purposes.
  4. Legitimate interest.
  5. Diagnostic and research purposes.
  6. Other specified purposes.

Personal data is processed electronically and manually within the defined scope of these purposes.

Specific Data Processing Purposes, Data Types, and Legal Basis

1. Contractual Purposes
Purpose: To provide services and sell products via the Website.
Examples:

  • Registration and account creation.
  • Online order processing and payments.
  • Customer service, warranties, and operational communication.
  • Handling requests, stock notifications, and other user inquiries.

Data Collected:

  • Data you provide directly (name, email, address, phone, etc.).
  • Financial details (for purchases).
  • Indirectly collected data (cookies, IP addresses, browser data).

Legal Basis:

  • User consent (GDPR Article 6(1)(a)).
  • Contract performance (GDPR Article 6(1)(b)).

2. Legal Compliance
Purpose: Fulfillment of legal and regulatory obligations.
Examples:

  • Compliance with national and EU laws.
  • Execution of authority directives.

Data Collected:

  • Similar to contractual purposes, including data necessary for compliance.

Legal Basis:

  • Legal obligations (GDPR Article 6(1)(c)).

3. Marketing Purposes
Purpose: To enhance services and send targeted promotional communications.
Examples:

  • Personalized offers based on user activity.
  • Sending newsletters, updates, and promotional content.
  • User segmentation and profiling.

Data Collected:

  • Directly provided data (email, username, phone, etc.).
  • Cookie and tracking data for personalized content.

Legal Basis:

  • User consent (GDPR Article 6(1)(a)).
  • Legitimate interest (GDPR Article 6(1)(f)).

4. Legitimate Interest
Purpose: To ensure operational security and business interests.
Examples:

  • Fraud prevention.
  • Website maintenance and updates.
  • Legal claims enforcement.

Data Collected:

  • User-provided data (similar to contractual and marketing purposes).
  • Indirectly collected data (IP addresses, logs, technical data).

Legal Basis:

  • Legitimate interest (GDPR Article 6(1)(f)).

5. Diagnostic and Research Purposes
Purpose: To conduct diagnostic and research activities, particularly for websites like https://www.colorvisioncheck.com/ and https://www.colorvisiontraining.com/.
Examples:

  • Collecting diagnostic data about color blindness.
  • Developing tools and solutions for vision issues.

Data Collected:

  • Diagnostic test data, such as results from the specified websites.
  • Special categories of personal data (e.g., health-related details).

Legal Basis:

  • Explicit user consent (GDPR Article 9(2)(a)).

Data Retention

  1. Contractual data: Retained for the duration of the contract plus 8 years.
  2. Legal data: Retained as long as required by law.
  3. Marketing data: Retained for 8 years after the last user interaction.
  4. Diagnostic data: Retained until research is completed, after which anonymization occurs.

Data Sharing and Security

Data Sharing:
Personal data may be shared with:

  • Payment service providers (e.g., Barion Payment Zrt., PayPal).
  • External consultants or service providers.
  • Authorities, as required by law.

Security Measures:

  • Secure servers and encryption for sensitive information.
  • SSL technology to protect data integrity during online transactions.

User Rights

You can exercise the following rights at any time:

  1. Access your data and request information about its processing.
  2. Request correction, deletion, or restriction of your data.
  3. Withdraw consent for data processing.
  4. Object to data processing based on legitimate interest.
  5. Request data portability.
  6. File a complaint with a data protection authority.

Contact details for inquiries:

Cookie Policy

Purpose:
Cookies are used to enhance website functionality, analyze usage, and store user preferences.

Types of Cookies:

  1. Necessary Cookies: Essential for basic website operation.
  2. Analytical Cookies: For statistical analysis and traffic monitoring.
  3. Functional Cookies: To store user preferences (e.g., language or currency).

Cookie Consent Management:
Users can manage cookie preferences via the website footer or their browser settings.