Privacy Policy

Data protection information

1. General legal notice

digitá Kft. (hereinafter referred to as the "Data Controller") acknowledges the contents of this legal notice as binding.

The Data Controller processes the personal data of registered users in connection with its sales and service activities, solely for the purpose of fulfilling orders and fulfilling its obligations (e.g. billing) and providing the service. It only processes personal data that is necessary for the purpose of the processing and is suitable for the purpose. Process personal data only to the extent and for the duration necessary to achieve the purpose.

The controller will only use personal data for marketing and promotional purposes if the data subject has given his or her explicit consent.

The Data Controller is committed to protecting the personal data of its customers and partners, and attaches great importance to respecting the right to information self-determination of its customers. The Data Controller handles personal data confidentially and takes all security, technical and organisational measures to ensure the security of the data.

The Data Controller reserves the right to change this information.

2. Data controller's data


digitálismunkatá Ltd.


1091 Budapest, Üllői út 55.

Registration number:


Registering authority:

National Tax and Customs Office Budapest Tax and Customs Directorate

Tax number:


Email address:

3. Privacy Policy

The data processing of the Data Controller's activities is based on voluntary consent or on legal authorisation. In the case of processing based on voluntary consent, data subjects may withdraw their consent at any time during the processing.

In certain cases, the processing, storage and transmission of some of the data provided is required by law.

The attention of the Data Controller is drawn to the fact that if the data subject does not provide his/her own personal data, the data subject is obliged to obtain the consent of the data subject.

The legal representative of a User who is under the age of 16 or otherwise incapacitated may give consent on behalf of.

Its data management principles comply with the applicable data protection legislation, in particular:

  • Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.);
  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation, GDPR);
  • Act V of 2013 - on the Civil Code (Civil Code);
  • Act C of 2000 - on Accounting (Accounting Act);
  • Act LIII of 2017 - on the Prevention and Combating of Money Laundering and Terrorist Financing (Pmt.);
  • Act CCXXXVII of 2013 - on Credit Institutions and Financial Undertakings (Hpt.).

4. Scope of data processed

No data is required to visit the site, but personal data is required to make a purchase and register.

Personal data to be provided during registration/purchase: first name, last name, email address, password, billing name, billing address

Personal data to be provided during online administration: email address, surname, first name

Additional personal data processed for registered users: IP address

Data technically recorded in the course of the operation of the system: the data of the computer of the data subject which are recorded by the Data Controller's system as an automatic result of technical processes. The data that are automatically recorded are automatically logged by the system at the time of log-in, during the activities carried out in the system and at the time of log-out, without any specific declaration or action by the data subject. This data is used by the Data Controller to enhance the user experience, to improve the system, to provide useful feedback (e.g. suspected user account sharing). Access to this data is restricted to authorised employees of the Data Controller.

During the visit of the site, our system records the IP address of the user, which in some cases can be used to identify the person concerned, the type of operating system and browser used, the visited page and the referrer of the page visited. The purpose of this recording is to guarantee the security of the system, to identify possible hacker attacks, to disable IP addresses from which unwanted traffic (e.g. overload attack or attempted intrusion) is coming.

The Data Controller shall back up the data at regular intervals. The purpose of backups is primarily technical in nature and is essential for the continued operation of our sites' systems.

5. Purpose of data processing

Identification of the user for the purposes of fulfilling the order or for other purposes related to the purchase (cancellation, modification of the order, provision of services, etc.), i.e. customer processing.

Notify the user of changes, news, information about the service

Creating visitor statistics for your own use.

Sending marketing emails (about new or existing online courses, events, services, promotions, etc.), which can be optionally requested by the user. It is possible to subscribe and unsubscribe to marketing emails at any time by going to the Privacy Settings menu or by using the unsubscribe link in the marketing emails.

6. Duration of processing

The data provided during registration and generated during the use of the service will be stored until the user requests their deletion. The deletion can be initiated at any time by the user by using the delete profile function on the profile page.

The data of the invoice resulting from an order placed on our site are stored for the period specified in the applicable accounting law.

7. Data subjects and data processors

The Data Controller's designated employees are entitled to access the processed data.

7.1. Server and hosting services


RackForest Ltd.


1132 Budapest, Victor Hugo u. 18-22

Email address:


Scope of data transmitted:

last name, first name, email address, password (encrypted), billing name, billing address, IP address

The purpose of the transfer:

providing server and hosting services, including for data storage.

7.2. Billing

Name: Ltd.


1031 Budapest, Záhony utca 7.

Email address:


Scope of data transmitted:

last name, first name, email address, billing name, billing address, purchase details

The purpose of the transfer:

issuing a fee claim and invoice

7.3. Marketing email


The Rocket Science Group LLC d/b/a Mailchimp


675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA

Email address:


Scope of data transmitted:

first name, last name, email address, purchase details

The purpose of the transfer:

send marketing emails

7.4. Marketing email

I acknowledge the following personal data stored in the user account of digitálismunkatá Kft. 1091 Budapest Üllői Út 55.  in the user database of will be handed over to OTP Mobil Ltd. and is trusted as data processor. The data transferred by the data controller are the following:
Name, address, email address.

The nature and purpose of the data processing activity performed by the data processor in the SimplePay Privacy Policy can be found at the following link:

8. Data subject's rights and means of enforcement

The data subject may request information about the processing of his or her personal data, and may request the rectification, erasure or withdrawal of his or her personal data, except for mandatory data processing, and may exercise his or her right to data portability and objection in the manner indicated when the data were collected, or by contacting the controller at the above contact details.

8.1. Right to information

The Controller shall take appropriate measures to provide data subjects with all the information on the processing of personal data referred to in Articles 13 and 14 of the GDPR and each of the disclosures referred to in Articles 15 to 22 and 34 of the GDPR in a concise, transparent, intelligible and easily accessible form, in clear and plain language.

8.2. The data subject's right of access

The data subject shall have the right to obtain from the controller feedback as to whether or not his or her personal data are being processed and, if such processing is taking place, the right to access the personal data and the following information:

  • the purposes of the processing;
  • the categories of personal data concerned;
  • the recipients or categories of recipients to whom or with whom the personal data have been or will be disclosed, including in particular recipients in third countries or international organisations;
  • the intended duration of the storage of the personal data;
  • the right to rectification, erasure or restriction of processing and the right to object;
  • the right to lodge a complaint with a supervisory authority;
  • information on data sources;
  • the fact of automated decision-making, including profiling, as well as the logic used and clear information on the significance of such processing and its likely consequences for the data subject.

The controller shall provide the information within a maximum of one month from the date of the request.

8.3. Right of rectification

The data subject may request the correction of inaccurate personal data concerning him or her processed by the Controller and the completion of incomplete data.

8.4. Right to erasure

The data subject shall have the right, upon request and without undue delay, to obtain the erasure of personal data concerning him or her by the Data Controller on one of the following grounds:

  • the personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
  • the data subject withdraws the consent on which the processing is based and there is no other legal basis for the processing;
  • the data subject objects to the processing and there are no overriding legitimate grounds for the processing;
  • the personal data have been unlawfully processed;
  • the personal data must be erased in order to comply with a legal obligation under Union or Member State law to which the controller is subject;
  • personal data are collected in connection with the provision of information society services.

The erasure of data cannot be initiated if the processing is necessary:

  • to exercise the right to freedom of expression and information;
  • for the purposes of complying with an obligation under Union or Member State law to which the controller is subject to which the processing of personal data is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • for archiving, scientific and historical research purposes or for statistical purposes in the public interest in the field of public health;
  • or to bring, enforce or defend legal claims.

8.5. Right to restriction of processing

At the request of the data subject, the Data Controller shall restrict processing if one of the following conditions is met:

  • the data subject contests the accuracy of the personal data, in which case the restriction applies for the period of time necessary to allow the accuracy of the personal data to be verified;
  • the data processing is unlawful and the data subject opposes the erasure of the data and requests instead the restriction of their use;
  • the controller no longer needs the personal data for the purposes of processing, but the data subject requires them for the establishment, exercise or defence of legal claims; or
  • the data subject has objected to the processing; in this case, the restriction applies for the period until it is established whether the legitimate grounds of the controller override those of the data subject.

Where processing is restricted, personal data, other than storage, may be processed only with the consent of the data subject or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or of an important public interest of the Union or of a Member State.

8.6. Right to data retention

The data subject has the right to receive personal data relating to him or her which he or she has provided to the controller in a structured, commonly used, machine-readable format and to transmit such data to another controller.

8.7. Right to object

The data subject shall have the right to object at any time, on grounds relating to his or her particular situation, to processing of his or her personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or necessary for the purposes of the legitimate interests pursued by the controller or by a third party, including profiling based on those provisions. In the event of an objection, the controller may no longer process the personal data, unless there are compelling legitimate grounds for doing so which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.

8.8 Automated decision-making in individual cases, including profiling

The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her.

8.9. Right of withdrawal

The data subject has the right to withdraw his or her consent at any time.

9. Contact, Remedies

A user who feels that the Data Controller has violated his/her right to the protection of personal data may seek redress by lodging a complaint with the National Authority for Data Protection and Freedom of Information.

National Authority for Data Protection and Freedom of Information

Address for correspondence: 1374 Budapest, Pf. 603.

Address: 1055 Budapest, Falk Miksa utca 9-11.

Phone: +36 (1) 391-1400

Fax: +36 (1) 391-1410

E-mail address:

you can enforce. Detailed legal provisions on this and on the obligations of the controller are set out in the following laws:

  • Act CXII of 2011 - on the Right to Informational Self-Determination and Freedom of Information (Info Act, Data Protection Act)
  • Act CVIII of 2001 - on certain issues of electronic commerce services and information society services (Eker. tv.)
  • Act XLVIII of 2008 on the Basic Conditions and Certain Restrictions on Economic Advertising (Act XLVIII of 2008)

However, the Data Controller will endeavour to clarify any issues that may arise and will be happy to consult you on any data protection issues that may arise.

10. Placing an anonymous visitor identifier ("cookie")

An anonymous visitor identifier ("cookie") is a unique set of signals that the web server places on a visitor's computer to identify them and store profile information. Such a sequence of signals is not in itself capable of identifying the visitor in any way, but only of recognising the visitor's computer. It does not contain a name, e-mail address or any other personal information. Acceptance of cookies is not required to browse the Website, but the shopping (login) function will not work if cookies are disabled in the browser.

Not only does the Website send a cookie to the visitor's browser, but also an external, independent auditing service (Google Analytics) measures the site's visit by such a tool. Details of how this measurement data is handled can be found at

The Website contains so-called remarketing tags for the purpose of building remarketing lists, so that after your visit, external service providers, including Google, may display advertisements on Internet websites, these so-called interest-based advertisements. Remarketing lists are not personally identifiable, they do not contain any personal data of the visitor, they only identify the browser software. Google uses cookies for remarketing tags. The Website uses so-called conversion tracking to measure the effectiveness of Google Adwords ads. The conversion tracking cookie is for a limited time only, is optional, does not record or use any personal information.

Visitors can disable Google's use of cookies by visiting the Google Ads settings at You can also opt-out of cookies from other third-party providers by visiting the Network Advertising Initiative opt-out page ( Facebook like buttons are available on the Website. These buttons also place cookies on the visitor's browser. For more information about Facebook's privacy policy, please visit The Website uses Facebook's so-called conversion tracking pixel to measure the effectiveness of Facebook ads. No personal data of the visitor is recorded during conversion tracking. Disabling Google and Facebook cookies does not affect the purchase.