top of page

Privacy Policy

 

Salt&Staple website
(www.saltandstaple.com)

 

1. Introduction

​

Hegyi LevegÅ‘ Group Kft. (hereinafter referred to as the “Data Controller”) is committed to respecting the right of its partners and visitors to informational self-determination. The Data Controller processes personal data in strict confidence, in accordance with applicable European Union and domestic laws, as well as established data protection practices.

 

This Privacy Policy complies with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation, „GDPR”) and Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information („Information Act”).

 

The Privacy Policy is effective from February 1, 2025 and will remain in effect until amended or revoked.

 

The Data Controller reserves the right to unilaterally change this Privacy Policy at any time. Changes will be posted on this page and significant updates will be communicated through a prominent notice on the website of via email. Previous versions of this Privacy Policy will be archived and made available upon request.

 

2. Information about the Data Controller 

​

Company name: Hegyi LevegÅ‘ Group Kft. 

Represents: Szandra Völgyesi, Managing Director

Company registration number: 01-09-435130

Registered company address: Pásztó St. 39., 1172 Budapest, Hungary

Tax number: 32644609-2-42

E-mail address: hello@saltandstaple.com

Address of customer service: Pásztó St. 39., 1172 Budapest, Hungary

 

The designated Data Protection Officer of the Organisation is:

Name: Szandra Völgyesi

E-mail address: dpo@saltandstaple.com

 

3. The purpose and legal basis of data processing

​

By accepting this Privacy Policy, you agree that the personal data you provide when contacting us may be used by the Data Controller to respond to inquiries and provide relevant information about our services.

The legal basis for processing personal data is your voluntary informed consent pursuant to Article 6(1)(a) of the GDPR.

The Data Controller is not responsible for any errors or damages resulting from incorrect or incomplete data provided by the user.

 

4. Data processed

​

The Data Controller processes the following personal data:

  • First and last name,

  • Email address,

  • Company name,

  • Any personal information you choose to provide in your message.


Categories of data subjects: This Privacy Policy applies to individuals who contact us through our website or other communication channels.

The source of the personal data processed: Directly from the data subject.

Purpose of data processing: To facilitate communication between the Data Controller and the individual.

 

5. Duration of data processing

​

Personal data will be retained for up to one year from the date of consent, unless required for ongoing business communications or legal obligations. You may request deletion at any time by contacting hello@saltandstaple.com. A confirmation of deletion will be provided unless legal obligations require data retention.

 

6. Access and transmission

​

Access: Personal data is primarily accessed by the Data Controller.

Transmission: Personal data will not be shared with third parties unless required by law or a contractual agreement.

 

7. Processing method

​

Personal data is processed electronically.

Profiling: The Data Controller does not engage in automated decision-making or profiling that significantly impacts data subjects.

 

8. Rights of the data subject

​

Data subjects have the following rights:

  • Withdraw consent at any time

  • Request access to their personal data

  • Request correction or deletion of inaccurate or outdated data

  • Restrict processing of their data

  • Object to the processing of their data

  • Request data portability

 

Requests can be submitted via email at hello@saltandstaple.com or by post to the Data Controller's registered address. The Data Controller will respond within 30 days.

 

9. Data security

​

The Data Controller implements industry-standard security measures, including:

  • Pseudonymization and encryption of personal data

  • Access control and secure storage

  • Regular security assessments

  • Incident response measures in case of data breaches


10. Remedies

​

If you believe that your data protection rights have been violated, you may file a complaint with:

 

National Data Protection and Freedom of Information Authority (NAIH)
Address: 1055 Budapest, Falk Miksa utca 9-11.
Postal address: 1363 Budapest, Pf. 9.
Email: ugyfelszolgalat@naih.hu
Website: www.naih.hu

 

You also have the right to initiate legal proceedings in a Hungarian court.

 

Annex 1: Relevant legislation

​

This Privacy Policy is based on:

  • GDPR Regulation (EU) 2016/679

  • Act CXII of 2011 on Informational Self-Determination and Freedom of Information

  • Act V of 2013 (Civil Code)

  • Act CXXX of 2016 on Civil Proceedings

 

Annex 2: Definitions

​

Data Controller: the entity determining the purposes and means of personal data processing.

Processing: Any operation performed on personal data, such as collection, storage, transmission, or deletion.

Transmission: making data available to a specific third party.

Limitation of processing: indication of the personal data stored with a view to limiting their future processing.

Processor: the legal person who processes personal data on behalf of the Data Controller.

Recipient: the natural or legal person, public authority, agency or any other body with whom the personal data is communicated, whether or not it is a third party.

Third party: any entity other than the Data Controller and Data Processor.

Concerned: an identified or identifiable natural person; identify a natural person who can be identified directly or indirectly, in particular by means of an identifier such as name, number, location data, online identifier or one or more factors relating to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person.

Consent: A freely given, specific, informed, and unambiguous indication of the data subject's agreement to data processing.

Personal data: any information relating to the data subject.

 

This Privacy Policy aims to ensure transparency and compliance with GDPR requirements. If you have any questions, please contact us at hello@saltandstaple.com.

 

Budapest, February 1, 2025

bottom of page