Committed
data protection
It is very important to us to comply with the currently applicable data protection regulations and laws. Below we describe in detail the data protection measures taken by stratos.hu and Stratos Magasépítő Zrt., as well as our data collection processes.
The data is processed by Stratos Magasépítő Zrt., which is the entity responsible for handling personal data.
Stratos Magasépítő Zrt.
1044 Budapest, Váci út 83.
What personal data
do we process?
Personal data is information that clearly allows an individual to be accurately identified. Below we detail the data processed on stratos.hu and their legal basis.
Communication data
This includes any message you send us through the website, via email, social media messaging or any other form of communication.
We process and retain this data to fulfil orders and to provide a basis for decision-making in the event of potential legal claims.
The user's demonstrable interest in our activities, expressed through the messages addressed to us.
User data
This includes data generated while using the website, which enables the technical operation of the site, maintains its security, stores records of user activity, and ensures that you always have access to the most relevant content.
The user's clear interest in our activities, which requires the storage of this data to ensure the provision and technical operation of the site.
Technical data
This includes data generated while using the website, such as IP address, login information, browser data, the time spent on individual pages, page views and navigation paths, the number and timing of visits, time zones, and the details of the device used to view the site.
The source of this data is our analytics software. We process this data to analyse user behaviour on the site, maintain the secure operation of our site, and understand the usefulness of our individual marketing decisions.
The user's clear interest in our activities, which allows us to process this data in accordance with security requirements.
Marketing data
This includes visitor preferences regarding the marketing content they are willing to receive from us. We process this data to enable participation in prize draws and to send advertisements related to those products/services in which the user has expressed interest.
We may occasionally use the collected data for purposes such as delivering targeted, relevant advertisements on the Facebook™ platform and on various dynamic advertising surfaces, and to measure the effectiveness of these advertisements.
The user's clear interest in our activities, which allows us to process this data in accordance with security requirements and to use it for business growth in pursuit of more effective operation.
Important: In the course of our activities we do not collect sensitive data such as ethnicity, religious views, sexual life and orientation, political opinions and trade union membership, or health background, as well as genetic or biometric information.
How do we
collect data?
Direct submission
We may collect personal data when the user provides it to us directly (e.g. by placing an order or sending a message).
Automatic collection
Certain data is collected automatically during use of the site, for example through so-called "cookies" and similar technologies. These only become active after the user gives their consent.
External partners
We receive certain data from external partners, such as analytics providers (Google), advertising networks (Facebook™), and payment providers (PayPal, Barion).
For more information, please see our Cookie Policy.
Our practical measures
related to data protection
Protecting user data and complying with the applicable regulations is extremely important to Stratos Magasépítő Zrt.
SSL encryption
To protect the data submitted via forms and generated on the site, we apply SSL certification across the entire website (Let's Encrypt Authority X3 certification).
Security software
To protect the site against attacks, we use premium security software to defend the stored data against "brute force" and virus-based attacks.
Encrypted storage
In the site's databases, purchase and user data are stored in encrypted form (pseudonymised), so they cannot be read by third parties.
User rights
In this policy we provide users with the ability to request information about the processing of their personal data, as well as to modify or delete it.
Occasionally, in the course of our business activities, it is necessary to share data with our service partners (for example, hosting providers, courier companies, newsletter software). In such cases, we always choose partners that meet the requirements of the GDPR, and for US-based partners we ensure their participation in the EU-US Privacy Shield data protection framework, and sign a data processing agreement with them.
Communication and
consent
Conducting marketing communication is indispensable to the operation of the business. The legal basis for related data processing is the expression of interest in our services, or the user's explicit consent.
Under the European Union's Privacy and Electronic Communications Regulations (PECR), we send marketing messages to our users if they have purchased from us or have expressly consented to receiving marketing messages.
We always make it easy and visible to withdraw consent and unsubscribe from messages. Every email contains the necessary unsubscribe link at the bottom, or removal from the database can be requested at the info@stratos.hu email address.
Even after unsubscribing from marketing communications, we may still send messages, but only in connection with the fulfilment of orders.
Partners and
international transfers
It is sometimes necessary to share certain personal data with selected partners in order to maintain normal business operations.
Partners with whom we may share data
- •IT providers and service providers that perform troubleshooting and maintenance on our IT systems
- •Professional partners such as lawyers, accountants, bankers, insurers
- •Government bodies requiring reports on our activities
- •Payment service providers that securely handle bank card data
- •Courier services that deliver incoming orders to the specified shipping address
International data transfers
In order to maintain business operations, it is sometimes necessary to share user data with service partners based outside the European Economic Area (EEA). Countries outside the EEA often do not provide the same level of protection for data, which is why European law prohibits the export of data unless the appropriate conditions are met.
Whenever personal data leaves the EEA, we take the following measures to ensure the safe handling of the data:
- •We only transfer data to countries deemed adequate from a data protection perspective by the European Commission.
- •We only use US-based services that are part of the EU-US Privacy Shield data protection framework.
If the above conditions are not met, we request the user's explicit consent for the data transfer to take place. Consent may be withdrawn at any time.
Links to external sites
This site occasionally contains links to external sites, or embeds code snippets that enable the operation of external services. Clicking on these links or using the embedded solutions may allow external partners to collect data about users. Although we make every effort to properly review our partners, we have no control over their data protection practices and are not responsible for their data processing policies.
How long do we store data?
We only store user data for as long as our legal/accounting/reporting obligations require, or as long as is necessary for the operation of the service.
When determining the retention period, we take into account the amount, nature and sensitivity of the data, as well as the potential impact of leakage in the event of a data breach.
For tax purposes we are required to retain customers' billing and purchase data for at least 8 years, in order to fulfil our legal obligations.
Under certain circumstances we may use the data in anonymised form for statistical purposes, in which case we store the data without notice for an unlimited period.
The visitor's
rights
As a citizen of the European Union, the General Data Protection Regulation (GDPR) guarantees site users the following rights.
Access to personal data
You have the right to request a copy of the personal data we hold about you. The request is generally fulfilled free of charge, within 14 days of submission. We require proof of identity before the data is released.
Modification of personal data
If your personal data has changed or was entered incorrectly, you have the right to request its modification. Please contact us at info@stratos.hu.
Deletion of personal data
You have the right to request the deletion of all your personal data. We fulfil the request free of charge within 14 days of receipt. Please note that after your personal data is deleted, services related to your user account may become unavailable.
Restriction of data processing
You have the right to request that the provision of your data to third parties (service partners) be restricted. When submitting the request, you may also specify which service partners you wish to restrict.
Supervisory authority
In Hungary, the official body responsible for data protection is the National Authority for Data Protection and Freedom of Information (NAIH).
Address
1125 Budapest, Szilágyi Erzsébet fasor 22/C.
Mailing address: 1530 Budapest, Pf.: 5.
Contact details
Phone: 06.1.391.1400
Fax: 06.1.391.1410
Email: ugyfelszolgalat@naih.hu
Website: www.naih.hu
Anonymised data
and "cookies"
The www.stratos.hu site, email messages and advertisements use so-called "cookies" and similar technologies, such as tracking codes, re-marketing tags, and pixels, which are activated only after the user's consent.
These technologies help us better understand user behaviour and interests, thereby supporting a higher-quality and more efficient operation.
If the user wishes to prevent these technologies from recording non-personal data, they may do so in the following ways:
- •by disabling their loading via the cookie notifications displayed on the website
- •by disabling "cookies" in the browser
For further information about the other cookies and tracking codes on the website, please see our Cookie Policy.