Personal data refers to any information that allows for the clear identification of an individual.

On our website, we process the following categories of personal data, along with the legal basis for each type:

Communication Data

This includes any messages you send us via our website, email, social media, or any other form of communication.

We process and store this data to fulfill orders and to have a legal basis in case of any claims or disputes.

The legal basis for this processing is your demonstrated interest in our business, as shown by your decision to contact us.

Customer Data

This includes any data related to purchasing our products or services, such as your name, shipping and billing address, email address, phone number, and purchase details.

This data is processed to successfully fulfill your orders and to maintain legally compliant records of all transactions.

The legal basis for storing this data is the fulfillment of a contract between you and the data controller.

User Data

This includes data generated through your use of the website, which is necessary for the technical operation of the site, maintaining security, storing activity logs, and providing access to relevant content.

The legal basis for processing this data is your legitimate interest in our services, and the necessity of storing this data for secure and functional website performance.

Technical Data

This includes data generated during your interaction with the website, such as IP address, login information, browser type and version, time spent on each page, navigation paths, visit timestamps, time zone settings, and the type of device used to access the site.

This data is collected through our analytics software.

We process this data to understand user behavior on the site, maintain site security, and evaluate the effectiveness of our marketing strategies.

The legal basis for processing is the user’s legitimate interest in our services, which enables us to process this data to ensure security and support business growth through more efficient operations.

Marketing Data

This includes your marketing preferences and the types of content you are interested in receiving from us. We process this data to allow participation in giveaways and to send you promotional materials related to the products or services you’ve shown interest in.

The legal basis for processing is your demonstrated interest in our services, allowing us to process this data for security-compliant and business-enhancing purposes.

We may also use collected data for purposes such as displaying targeted, relevant ads on platforms like Facebook™, Google™, YouTube™, and LinkedIn™, and for dynamic ad placements. We also analyze advertising performance to improve our campaigns.

The legal basis for processing this data remains your legitimate interest in our services, which supports both security compliance and business growth.

We do not collect any sensitive personal data such as ethnicity, religious beliefs, sexual orientation, political opinions, trade union membership, health information, or genetic/biometric data.

We may collect personal data in ways where the user provides it directly to us — for example, when placing an order or sending us a message.

In addition, certain data is collected automatically during website usage through technologies such as “cookies” and similar tools. These only become active once the user has given their consent.

For more information, please refer to our Cookie Policy.

We may also receive certain data from external partners, such as analytics providers like Google (a non-EU partner), advertising networks like Facebook™ (a non-EU partner), or payment processing services such as PayPal (non-EU), Paylike, and Barion.

Protecting user data and ensuring compliance with applicable regulations is a top priority for the data controller. Following a data protection impact assessment on this website, we compiled a detailed list of all collected data, their necessity, legal basis, and compliance with relevant laws.

• To protect data submitted through forms or generated on the site, we use full-site SSL certification (Let’s Encrypt Authority X3) for encrypted connections.

• To safeguard the website against attacks, we use premium security software (iThemes Security Pro) to protect stored data from “brute force” and malware-based threats.

• All purchase and user data stored in our databases is encrypted (pseudonymized), making it unreadable to any external parties.

• This Privacy Policy also includes forms that allow users to request information about the processing of their personal data, as well as to request the modification or deletion of their data.

In some cases, we may need to share certain data with trusted service providers to operate our business efficiently (e.g., hosting providers, delivery services, newsletter platforms).

Whenever we work with such partners, we ensure they comply with GDPR requirements. In the case of US-based partners, we only cooperate with those who are part of the EU-US Privacy Shield framework (or equivalent), and we sign a data processing agreement to guarantee responsible data handling.

Marketing communication is an essential part of our business operations. The legal basis for processing related data is either the user's demonstrated interest in our services or their explicit consent.

In line with the European Union’s Privacy and Electronic Communications Regulations (PECR), we may send marketing messages to users who have made a purchase from us or have expressly opted in to receive such communications.

We always make it easy and clear for users to withdraw their consent or unsubscribe from marketing messages. Every email contains an unsubscribe link, and users can also request removal from our database by contacting the data controller via email.

Even if you unsubscribe from marketing communication, you may still receive messages from us strictly related to order fulfillment.

In certain cases, it is necessary to share specific personal data with selected partners to ensure the smooth operation of our business:

- IT providers and service partners responsible for system maintenance and troubleshooting

- Professional partners such as legal advisors, accountants, bankers, and insurance providers

- Government authorities requesting reports on our business activities

- Payment processors who securely handle credit card information

- Courier services responsible for delivering customer orders to the specified shipping address

International Data Transfers

Occasionally, to support normal business operations, we may need to share user data with service providers located outside the European Economic Area (EEA).

Since countries outside the EEA do not always provide the same level of data protection, EU laws prohibit the transfer of personal data to such countries unless appropriate safeguards are in place.

Whenever personal data is transferred outside the EEA, in addition to the steps outlined in Section 4, we take the following measures to ensure secure data handling:

- We only transfer data to countries deemed adequate by the European Commission in terms of data protection.

- We only use US-based services that are part of the EU-US Privacy Shield framework.

If the above conditions are not met, we request explicit consent from users before making any such data transfer. This consent can be withdrawn at any time.

Links to External Sites

This site may occasionally contain links to external websites or embed code snippets from third-party services.

Clicking these links or interacting with embedded content may allow external partners to collect user data.

While we do our best to thoroughly vet our partners, we have no control over their privacy policies and cannot be held responsible for how they handle personal data.

We store user data only for as long as necessary to meet our legal, accounting, or reporting obligations, or to operate the service effectively.

When determining the appropriate retention period, we consider the volume, nature, and sensitivity of the data, as well as the potential impact of a data breach.

For tax purposes, we are required to retain billing and purchase data of customers for at least 8 years in order to comply with legal obligations.

In certain cases, we may use data in anonymized form for statistical purposes, in which case we may store such data indefinitely without further notice.

As a citizen of the European Union, the General Data Protection Regulation (GDPR) grants the following rights to users of this website:

Access to Personal Data

Users of the website have the right to request a copy of the personal data stored by the data controller. In general, such requests are fulfilled free of charge within 14 days of submission.

In cases of repeated, abusive, or unjustified requests, the data controller may charge a reasonable fee to provide the data and may require additional time to process the request.

The data controller may also request proof of identity before releasing any personal data, in order to prevent misuse. To request your personal data, please use the contact form below:

Modification of Personal Data

If your personal data has changed or was entered incorrectly, you have the right to request a correction. To update your personal data, please contact us via our email address.

Request for Deletion of Personal Data

Users have the right to request the deletion of all their personal data. We fulfill such requests free of charge within 14 days of submission. After personal data is deleted, the user account will no longer be accessible, meaning any purchased content will also become unavailable, as the personal data linked to the account is essential for accessing the service.

The data controller may request proof of identity before deleting any personal data in order to prevent misuse. To request deletion of your personal data, please use the contact form above.

Request to Restrict the Processing of Personal Data

Users have the right to request that their data not be shared with third parties (service providers). During the request process, users may specify which service providers should be restricted.

It is important to note that cooperation with certain service providers is essential for the proper functioning of the website (e.g. Barion as a payment processor). Therefore, restricting such partners may make the website's services unavailable to the user.

The data controller may request proof of identity before limiting the transfer of personal data, to prevent misuse. To request restriction of data sharing, please use the contact form above.

In Hungary, the official authority responsible for data protection is the National Authority for Data Protection and Freedom of Information (NAIH). Users can find more information about their data protection rights on the NAIH website.

National Authority for Data Protection and Freedom of Information (NAIH),
1125 Budapest, Szilágyi Erzsébet fasor 22/C., Mailing address: 1530 Budapest, P.O. Box: 5.,
Phone: +36 1 391 1400,
Fax: +36 1 391 1410,
Email: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu

The website uses so-called “cookies” and similar technologies such as tracking codes, remarketing tags, and pixels in emails, advertisements, and on the site itself — these only become active after the user has given consent.

These technologies help us better understand user behavior and interests, enabling us to operate more efficiently and deliver a higher-quality experience.

Our goal is to make the use of the website as user-friendly and personalized as possible. If users wish to disable the collection of non-personal data through these technologies, they may do so in the following ways:

- by rejecting cookies through the pop-up notification on the website

- by disabling cookies in their web browser settings

For more details about the cookies and tracking codes used on this website, please refer to our Cookie Policy.