Privacy Notice

1 Purpose of the Privacy Notice

TRM Kft. (1015 Budapest, Hattyú u. 14, Hungary; hereinafter referred to as service provider, or
controller) as controller shall consider binding upon itself the content of this legal notice (privacy
notice). It shall undertake that its data processing related to its activity meets the requirements of this
notice, the national law in force and the acts of the European Union.

The data protection guidelines regarding the data processing of TRM Kft. are continuously available at
www.intohungarian.com/privacy.

TRM Kft. shall reserve the right to make modifications to this privacy notice at any time. Nevertheless,
it shall notify in time its audience on its website and Facebook page on the modifications made.

Should you have any question regarding this privacy notice, please refer to our contact details defined
in Section 2 of this privacy notice, contact us in writing, and our co-worker will answer your question.

TRM Kft. is committed to protect the personal data of its clients and partners and considers it
extremely important to respect the right to informational self-determination of its clients. TRM Kft.
shall process the personal data confidentially and shall also take any and all security, technical and
organisational measures that guarantee data security.

Rules pertaining to the processing of personal data possibly found in the material given to us by our
clients for data processing (e.g. translation) are included in our General Terms and Conditions available
on our website.

TRM Kft. sets out its data processing practice below.

2 Data of the controller

• Name: TRM Fordítási, Marketing és Informatikai Szolgáltató Kft.
• Registered office: 1015 Budapest, Hattyú u. 14., Hungary
• Company registration number: 01-09-726698
• Name of the court registering the company: Budapest Metropolitan Court as Court of
Registration
• VAT number: 13269643-2-41

2.1 Contact Information

You can contact us via mail, email and in person in working hours at our registered office and also via
phone as seen below. Detailed information on the erasure and retention of the processed data as a
consequence of the establishment of contact are set out in Section 4.2 of this notice.

• Registered office: 1015 Budapest, Hattyú u. 14., Hungary

• Represented by: István Antal Fülöp Managing Director
• Mailing address: TRM Kft., 1015 Budapest, Hattyú u. 14., Hungary
• Telephone number: +36-1-5999-299
• Email addresses:
TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 1/14
Privacy Notice
 o General email address: info@ intohungarian.com
o Official email address: info+kft@sosforditas.hu (this is the official email address
registered at the Court of Registration)
o Further email addresses according to our domain names.
o It is prohibited to use our company’s email address for private purposes as it may occur
that it is not the addressee who reads the received email but another co-worker
replies.

There is no data protection officer at the service provider.

2.2 Websites of the controller

• Websites:
o www.sosforditas.hu
o www.sos-forditas.hu
o www.sos-forditoiroda.hu
o www.trmkft.hu
o www.intohungarian.com
o www.fromhungarian.com
o www.fromslovak.com
o www.trmtranslations.com
o www.trmtranslations.hu
o www.broadstone.io
• Further pages:
o Facebook:
▪ https://www.facebook.com/trm.forditoiroda/
▪ https://www.facebook.com/prekladatelska/
▪ https://www.facebook.com/broadstoneio
o Twitter:
▪ https://twitter.com/trmtranslations
▪ https://twitter.com/broadstone_io
o LinkedIn:
▪ https://www.linkedin.com/company/trm-translations/
▪ https://www.linkedin.com/company/broadstone-io-business-support-
services

3 General Data Processing Guidelines

3.1 General Information
The data processing relating to the activity of TRM Kft. is based on voluntary consent and statutory
authorisation, including the possibilities set out in Subsections (a)-(f) of Section (1) of Article 6 of
Regulation (EU) 2016/679 of the European Parliament and of the Council. When data processing is
based on voluntary consent, the data subjects may withdraw their consent in any phase of the data
processing.

In certain cases, processing, storage, transmission of a certain set of the given data are statutorily
mandated of which we notify our clients separately.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 2/14

Privacy Notice
We call the attention of those disclosing data to service provider that in the case they give us the data
of someone other than themselves, it is the obligation of the disclosing person to obtain the consent
of the data subject, including data transmission that is for data processing (e.g. translation) purposes.

Service provider’s data processing principles are in accordance with the current legislation related to
data protection, and in particular with the following:

• Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of

Information (Privacy Act);
• Regulation (EU) 2016/679 of the European Parliament and of the Council (27 April 2016) –
Regulation on the protection of natural persons with regard to the processing of personal
data and on the free movement of such data, and repealing Directive 95/46/EC (General
Data Protection Regulation, GDPR);
• Act V of 2013 on the Civil Code of Hungary (Civil Code);
• Act C of 2000 on Accounting (Accounting Act);
• Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist
Financing (Act on Money Laundering);
• Act CCXXXVII of 2013 on Credit Institutions and Financial Enterprises (Act on the Credit
Institutions and Financial Enterprises).

3.2 Technical information

TRM Kft. shall choose and operate the IT tools applied during the performance of the service for the
processing of data as follows:

• the processed data are available to authorised persons (availability);

• the authenticity and authentication of the processed data are provided (authenticity of data
processing);
• the integrity of the processed data can be justified (data integrity);
• the processed data is protected against unauthorised access (confidentiality of data).

TRM Kft. shall protect the data with proper measures from unauthorised access, alteration,
transmission, disclosure, erasure, destruction or accidental destruction.

TRM Kft. shall provide protection of the security of data processing with technical and organisational
measures that provide a proper protection level in relation to risks arising in connection with data
processing.

During data processing TRM Kft. shall preserve the following:

• confidentiality: it shall protect the information so that only authorised persons may access it;
• integrity: it shall protect the accuracy and completeness of the information and the method
of processing;
• availability: it shall provide real access to the requested information whenever the
authorised user requests it and make the tools related to that available.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 3/14

Privacy Notice
4 Processed data set, the purpose, method and legal basis of data
processing
4.1 The processed personal data set
We may obtain your personal data for processing (i.e. data which can be connected to you) in the
following ways: on the one hand, during maintaining the contact via the Internet technical data related
to your computer or other device, browser, Internet address, the visited websites are generated in our
computer system automatically, on the other hand, you can also add your name, contact details or any
other personal data if you wish to contact us during the use of our website or any other way (e.g. via
telephone, in person or by post). The types of data processing not regulated herein are performed with
individual agreement and special information.

Further details in Section 4.2.

4.1.1 Cookies
4.1.1.1 The purpose of cookies
• they collect information on visitors and their devices;
• they remember the individual settings of the visitors which are/may be used for e.g.
requiring online transactions so that they do not have to be entered again;
• they facilitate the use of the website;
• they provide quality user experience.

In order to provide a customised service, the service provider places a small data package (cookie) on
the user’s computer and at a later visit it recognises the data. If the browser returns a previously saved
cookie, the service provider handling the cookie may connect the user’s current visit with its previous
visits but only regarding the content of the service provider.

The user may erase the cookies or block their receipt. The user can find information on this in the
description of the user’s browser.

4.1.1.2 Absolutely necessary session cookies

The purpose of these cookies is to allow the visitors to browse smoothly on the website of the service
provider, use its functions and the services available there. The validity of such cookies lasts until the
end of the session (browsing). By closing the browser, these cookies are automatically erased from the
computer or the device used for browsing.

4.1.1.3 Third-party cookies (analytics)

The service provider uses the cookies of Google Analytics as third party on its websites. With the use
of Google Analytics, a service for statistical use, service provider collects information regarding how
the visitors use the websites. The data is used for the development of the website and the
improvement of the user experience. These cookies remain in the browser of the visitor’s computer or
device used for browsing until their expiration or until the visitor deletes them.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 4/14

Privacy Notice
4.2 The intended use and retention period of the processed data
Description of data processing
Personal data related to business
organisations sending an offer to
our company (usually the personal
data found in the quotations
received)
Contact details and application
data of private persons applying for
a job (potential employees), notes
of the interview
Personal data content of bank and
postal data; personal data content
of invoices
Data of private persons in the case
of subcontractor-candidates
applying to our company for the
purpose of cooperation (usually the
name and contact details of the
contact person)
In the case of data of private
persons who visit our social media
sites and electronically express that
they like us (“like”, “follow”, etc.),
the personal data shared with our
company by the relevant social
media portals.
Data of non-corporate clients
(personal data of private clients)
TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary
Privacy Notice
Use
Assessment of the offers and follow-up;
analysis of the trends of the prices and
offers
Contact
For the assessment of the possible
employment
Contact
Retention of documentation for
taxation purposes (primarily emails,
invoicing data), if there has been an
assignment
For the purpose of contact
During the administration of the page
these data become available to us in
most cases. We use them only in
aggregated form for analytical
purposes.
Contact
Who might access it Legal basis Retention period
Co-workers and partners On the basis of consent (the partner determines the content After the expiry of offer validity until
concerned of its offer and the date when we shall erase it) the expiry of the retention period
defined in the offer determined by the
sender, or until the erasure request
Co-workers and partners The data processing is in line with the conditions of the client For 3 months from the application or
concerned contact as per Section (3) (a) of Article 65 of the Privacy Act until employment (whichever happens
(data is recorded directly from the data subjects; this privacy first) or until erasure request
notice shall contain the purpose of data processing; the type
and processing period of the processed data / data erasure
are pre-determined; the data are only used in connection
with the purpose previously determined; these shall not be
disclosed and our privacy notice covers all of this), and it is in
accordance with the purpose of the employees applying to
our company (which is the decision-making regarding the
employment). For this reason, during the data processing
performed in accordance with those set out herein, the right
to protection of data submitted to our company for job
application shall not override the legitimate interest of the
company related to the selection of employee.
Co-workers and partners Performance of contract Statutory retention period
concerned Compliance with legislation
Accountant
Delivering partner
Archives
Bank
Co-workers concerned Consent Until the end of cooperation or until
the designation of a new contact
person
Co-workers and partners Based on consent (directly on the relevant social media page) Until erasure request. Erasure request
concerned according to the rules of the relevant social media page. should be initiated directly according to
Social media administrator, if the rules of the relevant social media
available page (unlike, etc.)
Co-workers and partners Performance of contract Statutory retention period
concerned Compliance with legislation Until the end of cooperation
Until an erasure request
5/14

Data of the concerned private
persons in the case of the
subcontractors involved in the
project (usually the name and
contact details of the contact
person).
Personal data related to our
suppliers
List of telephone calls
The name and position of the co-
workers of our corporate partners
during the maintenance of contact
(client visits, quality check calls,
etc.)
Establishment of contact for direct
marketing purposes, including the offer
follow-up
If there has been an assignment:
retention of documentation for taxation
purposes (primarily emails, invoicing
data, bank transfers)
Contact
Retention of documentation for
taxation purposes (primarily emails)
Contact
Retention of documentation for
taxation purposes (primarily emails,
invoicing data), if there has been an
assignment
Retention of documentation for
taxation purposes
For the provision of high-quality client
experience the part of which is that we
are aware of the former interactions
and thus we will be able to fulfil the
requests, promises, etc. to our clients.
Based on a legitimate interest (balance of interests: Article 47 Until the end of the offer validity at the
of the GDPR), the processing of personal data for direct earliest
marketing purposes may be considered a processing based on
a legitimate interest. We make erasure possible at the
establishment of contact. The related information is part of
our privacy notice, this is the reason why the data subject – at
the time of the collection of personal data and in relation
thereto – may reasonably expect the performance of data
processing for the given purpose.
For the purposes of the above, the right of our client to not to
be contacted at all shall not have priority over the legitimate
interests of our company set out above.
Co-workers and partners Performance of contract Until the end of cooperation or the end
concerned Compliance with legislation of compensation and statutory
retention period or until the
designation of a new contact person
Co-workers and partners Performance of contract Until the expiry of the statutory
concerned Compliance with legislation retention period
Until the end of cooperation
Until an erasure request
Until the designation of a new contact
person
Until the end of the offer validity at the
earliest
Co-workers and partners Compliance with legislation Statutory retention period
concerned
Telephone service provider
Co-workers and partners Based on Article 47 of the GDPR, the processing of personal Until an erasure request
concerned data for direct marketing purposes may be considered a
processing based on a legitimate interest. If the relevant
company is our client, there is a relevant and proper
connection between the data subject and the controller,
which also results in the data processing of legitimate
interest. The data subject shall have the right to object to
data processing. The related information is part of our privacy
notice, this is the reason why the data subject – at the time of
the collection of personal data and in relation thereto – may
reasonably expect the performance of data processing for the
given purpose.
The legitimate interest of our company is to provide high-
quality client experience the part of which is that we are
aware of the former interactions and thus we will be able to
fulfil the requests, promises, etc. to our clients. It is the

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 6/14

Privacy Notice

In the case of company clients, the
data of the concerned private
persons (the contact persons of the
company client)
The name and contact details of
the company partner’s co-worker
in the case of cold calls made to
companies
Contact
Establishment of contact for direct
marketing purposes, including the offer
follow-up
If there has been an assignment:
retention of documentation for taxation
purposes (primarily emails, invoicing
data)
Contact
Establishment of contact for direct
marketing purposes
legitimate interest of our client’s co-worker not no retain
his/her personal data in vain. With regard to those set out in
the GDPR and that we only record the employee’s company
data (and name) as personal data, the employee’s relevant
legitimate interest shall not override the legitimate interest of
our company.
Co-workers and partners Performance of contract Statutory retention period
concerned Compliance with legislation Until the end of cooperation
Based on a legitimate interest (balance of interests: Article 47 Until an erasure request
of the GDPR) the processing of personal data for direct Until the end of the offer validity at the
marketing purposes may be considered a processing based on earliest
a legitimate interest. If the relevant company is our client,
there is a relevant and proper connection between the data
subject and the controller, which also results in the data
processing of legitimate interest.
Our marketing-purpose contacts:
• from a telephone database of companies with the calling of
numbers of companies in working hours
• whoever picks up the phone at the called company, we
ask/look for the co-worker (name, email address, phone
number) most relevant regarding our service
• we send our introduction email to the email address gained
this way. This is why the sent email is related to the job of the
recipient.
• accordingly, there are no children among the recipients of
the sent emails
Sending of emails shall not be abusive:
•we do not send unwanted email to an email address
containing personal data
• we do not send too many emails (we send no more than
one email once a month which means that in practice we
send only one or two per year)
• in our emails we write down the method of our data
processing and we provide an opportunity for opting out
As the sent marketing-themed emails enforce our legitimate
interest and we use the recipients’ personal data only for
purposes related to their job thus during the establishment of
contact in accordance with those set out above the interests
or basic rights and freedoms of the recipients do not override
the legitimate interests of our company.
Co-workers and partners Consent Until an erasure request
concerned Based on a legitimate interest (balance of interests: Article 47
of the GDPR) the processing of personal data for direct
marketing purposes may be considered a processing based on
a legitimate interest. If the relevant company is our client,

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 7/14

Privacy Notice

The voice of the company partner’s
co-worker in the case of cold calls
made to companies
For resolving disputes and documenting
consent
there is a relevant and proper connection between the data
subject and the controller, which also results in the data
processing of legitimate interest.
Our marketing-purpose contacts:
• from a telephone database of companies with the calling of
numbers of companies in working hours
• whoever picks up the phone at the called company, we
ask/look for the co-worker (name, email address, phone
number) most relevant regarding our service
• we send our introduction email to the email address gained
this way. This is why the sent email is related to the job of the
recipient.
• Accordingly, there are no children among the recipients of
the sent emails
Sending of emails shall not be abusive:
•we do not send unwanted email to an email address
containing personal data
• we do not send too many emails (we send no more than
one email once a month which means that in practice we
send only one or two per year)
• in our emails we write down the method of our data
processing and we provide an opportunity for opting out
As the sent marketing-themed emails enforce our legitimate
interest and we use the recipients’ personal data only for
purposes related to their job thus during the establishment of
contact in accordance with those set out above the interests
or basic rights and freedoms of the recipients do not override
the legitimate interests of our company.
Co-workers and partners Consent Until the end of the compensation
concerned period
Until an erasure request

The information related to the data processing performed during the assignments of our company are contained in the General Terms and Conditions which can be found
at www.intohungarian.com/gtc. Information can also be found on cases when the controller is not our company but our Client during the cooperation (e.g. when the Client
requires the handover of the data of interpreters).

You can find further information on the data processing regarding our employees, “hired” employees and employees with service contract in the TRM Employer data
processing document available for our employees.

Information on cookies can be found in Section 4.1.1 of this document.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 8/14

Privacy Notice
“Hattyúház” (1015 Budapest, Hattyú u. 14., Hungary) in which our office is situated has a video surveillance system which is operated by the building as a condominium
within its own competence, and our company has no impact on it or access to the data whatsoever. The related message calling for attention can be found at the entrances
of the building.

The list of our social media presence can be found in Section 2.2.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 9/14

Privacy Notice
5 Transmission and processing of data, circle of those becoming
familiar with the data, the physical storage place of the data
Name and data of the processor More information
Appeninn E-Office Nyrt. Property rental, extended to the places of data storage
H-1022 Budapest,
Bég utca 3-5.

Appeninn Üzemeltető Zrt. Property management, extended to the places of data storage
H-1022 Budapest,
Bég utca 3-5.

CIB Bank Management of bank transfer data

H-1027 Budapest,
Medve utca 2-4.

DX Informatikai Kft. Internet service provider

H-2030 Érd, Sóskúti út 56.

EV 44213142 Accounting; access to related information; general support of our

EV 50768934 activities, including access to projects.
EV 55017800

Google Inc. Email system in compliance with the GDPR and cloud-based data
Gordon House storage and retrieval within the EU and/or in compliance with the
Barrow Street GDPR and within the framework of the EU-US Privacy Shield
Dublin 4
Dublin, D04 E5W5 Availability of data protection information:
Ireland https://www.google.com/cloud/security/gdpr/
https://support.google.com/googlecloud/answer/6056650?hl=en
https://cloud.google.com/terms/
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
https://support.google.com/analytics/answer/6004245?hl=hu

IPS Kft. Courier service

H-1033 Budapest https://ipsfutar.hu/aszf/
Hévízi út 16. 1. em. 3.

Iron Mountain Kft. Document storage

H-1093 Budapest,
Czuczor u. 10.

KBOSS.hu Kft. Electronic invoocing, including data storage in electronic format (data
1031 Budapest include invoicing data and related email addresses).
Záhony utca 7/C.
Privacy and Terms&Conditions:
https://www.szamlazz.hu/adatvedelem/ és
https://www.szamlazz.hu/aszf/

Magyar Posta Zrt. Sending of cargo, mail and package based on the current terms and
H-1138 Budapest, conditions of the Magyar Posta Zrt.
Dunavirág utca 2-6.
Availability of data protection information:
https://www.posta.hu/ugyfelszolgalat/aszf
https://www.posta.hu/adatkezelesi_tajekoztato

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 10/14

Privacy Notice
 Magyar Telekom Nyrt. Mobile phone service
H-1013 Budapest
Krisztina Krt. 55. https://www.telekom.hu/rolunk/adatvedelem

Microsoft Corporation Data storage and retrieval within the EU, in compliance with the GDPR
Konrad-Zuse-Str.1
85716 Unterschleißheim https://privacy.microsoft.com/hu-HU/
Germany

Neo Interaktív Kft. File sending on the Internet

H-1118 Budapest,
Gombocz Zoltán u. 9. Availability of data protection information:
http://mammutmail.com/hu/menu/felhasznalasi-feltetelek

SGS Hungária Kft. ISO9001 auditing, SGS conducts a random check based on the
H-1124 Budapest, contract regarding the documentation of conducting the projects
Sirály utca 4.

Raiffeisen Bank Zrt. Management of bank transfer data

H-1133 Budapest,
Váci út 116-118.

Rackforest Kft. Domain, email and webhost

H-1132 Budapest, Privacy Policy: https://rackforest.com/wp-
Victor Hugo utca 11. content/uploads/2020/04/adatkezelesi-szabalyzat-2020-kls-1.pdf

Rackhost Zrt. Domain, email and webhost

H-9722 Szeged, Privacy Policy: https://www.rackhost.hu/privacy-policy
Tisza Lajos sgr. 41.

Rebelltel Zrt. VOIP phone lines

H-2483 Gárdony Privacy policy:
Vörösmarty u. 86. https://www.rebelltel.hu/download-documents/

Uniqa Biztosító Zrt. Insurances (handover of data in the case of a claim)

H-1134 Budapest,
Róbert Károly Krt. 70-74

Vodafone Zrt. Internet access

H-1096 Budapest, Privacy: https://www.vodafone.hu/adatkezeles
Lechner Ödön fasor 6.

VUB Bank Management of bank transfer data

Všeobecná úverová banka
Mlynské nivy 1
SK-829 90 Bratislava 25
Slovakia

6 Data subject’s rights and possibilities of enforcement of its

rights
The data subject may request information on the processing of his/her personal data and he/she may
also request the rectification of his/her personal data and – except for the mandatory data processing

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 11/14

Privacy Notice
– the erasure, withdrawal thereof. The data subject may also exercise his/her right to data portability
and right to object in a way indicated at the recording of data and at the contact details of the controller
free of charge within the limits provided by the law.

6.1 The right of information

TRM Kft. shall take appropriate measures to provide any information referred to in Articles 13 and 14
of the GDPR and any communication under Articles 15 to 22 and 34 relating to the processing of
personal data to the data subject in a concise, transparent, intelligible and easily accessible form, using
clear and plain language.

6.2 Right to access of the data subject

The data subject shall have the right to obtain from the controller confirmation as to whether or not
personal data concerning him or her are being processed, and, where that is the case, access to the
personal data and the following information: the purposes of the processing; the categories of
personal data concerned; the recipients or categories of recipients to whom the personal data have
been or will be disclosed, in particular recipients in third countries or international organisations; the
envisaged period for which the personal data will be stored; the right to rectification or erasure of
personal data or restriction of processing and the right to object; the right to lodge a complaint with
the supervisory authority; information regarding the data sources; the fact of automated decision-
making, including profiling and meaningful information about the logic involved, as well as the
significance and the envisaged consequences of such processing for the data subject.

The controller shall inform the data subject within no more than one month following the receipt of
the request.

6.3 Right to rectification

The data subject shall have the right to have his/her inaccurate personal data processed by TRM Kft.
rectified and the incomplete personal data completed.

6.4 Right to erasure

Data subject shall have the right to have TRM Kft. erase personal data concerning him or her without
undue delay where one of the following grounds applies:

• the personal data are no longer necessary in relation to the purposes for which they were
collected or otherwise processed;
• the data subject withdraws consent on which the processing is based and where there is no
other legal basis for the processing;
• the data subject objects to the processing and there are no overriding legitimate grounds for
the processing,
• the personal data have been unlawfully processed;
• the personal data have to be erased for compliance with a legal obligation in Union or
Member State law to which the controller is subject;
• the personal data have been collected in relation to the offer of information society services.

The erasure of data may not be initiated if the data processing is necessary: for exercising the right of
freedom of expression and information; for compliance with a legal obligation which requires

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 12/14

Privacy Notice
processing by Union or Member State law to which the controller is subject or for the performance of
a task carried out in the public interest or in the exercise of official authority vested in the controller;
for reasons of public interest in the area of public health or for archiving, scientific and historical
research purposes or for statistical purposes, for reasons of public interests; or for the establishment,
exercise or defence of legal claims.

6.5 Right to restriction of processing

TRM Kft. shall restrict the data processing at the request of the data subject if one of the following
conditions applies:

• the accuracy of the personal data is contested by the data subject, for a period enabling the
controller to verify the accuracy of the personal data;
• the processing is unlawful and the data subject opposes the erasure of the personal data and
requests the restriction of their use instead;
• the controller no longer needs the personal data for the purposes of the processing, but they
are required by the data subject for the establishment, exercise or defence of legal claims;
• the data subject has objected to processing pending the verification whether the legitimate
grounds of the controller override those of the data subject.

Where processing has been restricted, such personal data shall, with the exception of storage, only be
processed with the data subject's consent or for the establishment, exercise or defence of legal claims
or for the protection of the rights of another natural or legal person or for reasons of important public
interest of the Union or of a Member State.

6.6 Right to data portability

The data subject shall have the right to receive the personal data concerning him or her, which he or
she has provided to a controller, in a structured, commonly used and machine-readable format and
have the right to transmit those data to another controller.

6.7 Right to object

The data subject shall have the right to object at any time to the processing of his/her personal data
necessary for the performance of a task carried out in the public interest or in the exercise of official
authority vested in the controller, on grounds relating to his/her particular situation or to the
processing necessary for the enforcement of the legitimate interest of a third party, including profiling
based on the mentioned provisions. In the case of objection, the controller shall no longer process the
personal data unless it has compelling legitimate grounds for the processing which override the
interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal
claims.

6.8 Automated individual decision-making, including profiling

The data subject should have the right not to be subject to a decision based solely on automated
processing – including profiling – and which produces legal effects concerning him/her or similarly
significantly affects him/her.

6.9 Right to withdrawal

The data subject shall have the right to withdraw his/her consent at any time.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 13/14

Privacy Notice
6.10 Right to access to justice
Data subject – in the case of infringement of his/her rights – shall have access to justice against
controller. The court shall give priority to the case.

6.11 Procedure of the data protection authorities

The data subject shall have the right to lodge a complaint with the National Authority for Data
Protection and Freedom of Information

• Name: National Authority for Data Protection and Freedom of Information (NAIH)
• Registered office: H-1125 Budapest, Szilágyi Erzsébet fasor 22/C
• Mailing address: H-1530 Budapest, Pf.: 5.
• Telephone: +3613911400
• Fax: +3613911410
• Email: ugyfelszolgalat@naih.hu
• Website: http://www.naih.hu

6.12 Miscellaneous provisions

We give information on data processing not regulated herein upon data recording.

We hereby inform our partners that the court, public prosecutor, investigating authority, authority
dealing with offences, administrative authority, the National Authority for Data Protection and
Freedom of Information, the National Bank of Hungary and other authorities authorised by law may
contact the controller for giving information, or for the disclosure and handover of data and for
providing availability to documents.

TRM Kft. shall, if the authority defined the exact purpose and the set of the data, release personal data
to a number and extent which are absolutely necessary for the purposes of the establishment of
contact.

TRM Kft, 1015 Budapest, Hattyú u. 14., Hungary 14/14

Privacy Notice