Policy of Mobile Motion Lab
We appreciate your trust in us and are committed to protecting your personal data. Mobile Motion Lab takes data privacy, data security and compliance with all applicable data protection laws seriously.
This Privacy Notice explains how we process and protect the personal data you provide when you browse https://old.mml.science/, use its services and contact it, and how you can contact us if you have any questions about how we handle your personal data.
This Privacy Notice is based on the provisions of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation or GDPR) and the Hungarian Act CXII of 2011 on Information Self-Determination and Freedom of Information and other legislation.
The data controller shall process personal data only in accordance with the provisions of applicable law and in strict compliance with the provisions on data management and data protection, taking into account the principles of lawfulness, fairness and transparency, purpose limitation, data minimisation, accuracy and limited storage.
Mobile Motion Lab’s data protection information is continuously available at https://mml.science/documents, as well as on the app and application it operates. Mobile Motion Lab reserves the right to change this privacy policy at any time, and will notify its users of any changes in due time.
Data controller and contact details
Mobile Motion Lab Kft.
- registered seat: 1038 Budapest, Blanka köz 4/C, Hungary
- company registration number: 01 09 377905
- tax number: 26398756
- Website: mml.science
- e-mail: info@mml.science
as a data controller, processes personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) in relation to the use of the https://mml.science/ website and related services.
The data controller provides online subscription and webshop services that require the processing of personal data. The data controller operates a website mml.science and an application. The Mobile Motion Lab is an online service app.mml.science. The controller interacts with personal data of natural persons in the course of operating these services.
Purpose and legal basis for processing
Purpose of data processing |
Scope of personal data |
Legal basis for data processing |
Duration of data processing |
browsing data of visitors to the Mobile Motion Lab website |
cookies |
consent of the data subject Article 6(1)(a) GDPR or legitimate interest of the controller Article 6(1)(f) GDPR |
|
newsletter |
name, e-mail address |
consent of the data subject Article 6(1)(a) GDPR |
until the withdrawal of the data subject’s consent, but no later than 10 years from the date of registration |
electronic contact, request a quote, initiate a contract |
name, address, e-mail address, telephone number, message content |
the conclusion of a contract based on Article 6(1)(b) of the GDPR |
5 years, in the event of a civil claim or dispute, accordingly to 6:22§ of the Civil Code |
management of contact details of contracted partners, exchange of information |
name, e-mail address, telephone number |
the conclusion of a contract based on Article 6(1)(b) of the GDPR |
the duration of the contractual relationship, accordingly to 6:22 § of the Civil Code if claims arising out of a contract or until the conclusion of any dispute arising from the contract. |
registration on the webshop interface |
name, address, email address, password, professional details, telephone number |
consent of the data subject Article 6(1)(a) GDPR |
until the data subject’s consent is withdrawn, but in any case for a period of 10 years at the latest |
billing |
name, address, e-mail address, telephone number |
legal obligation Article 6 (1) c) GDPR Act C of 2000 on Accounting § 169 (2) |
Five years from the last day of the calendar year in which the tax return must be filed (Chapters IX and XXVI of Act CL of 2017 on the Rules of Taxation 8 years from the last day of the 5th month following the last day of the financial year |
promotion |
In the case of processing based on the data subject’s consent, the data subject shall have the right to withdraw his or her consent at any time, in which case the Controller shall delete the personal data processed solely on the basis of consent. However, the withdrawal of consent shall not affect the lawfulness of the processing that preceded it.
Data processors
In the course of processing, the Controller may transfer personal data to its contracted processor(s) for the purpose of performing the following tasks.
- payment by credit card
- sending newsletters to subscribed users
- electronic invoicing
- internet or hosting service
- carrying out accounting tasks
The data controller will not disclose the data to third parties, except to the designated data processor(s). The controller shall only use processors that offer adequate guarantees to implement appropriate technical and organisational measures to ensure compliance with the legal requirements for processing and to protect the rights of data subjects.
The controller will not transfer the personal data of the data subject to a third country outside the European Economic Area.
Data security measures
The data controller shall ensure data security. To this end, the Data Controller shall take appropriate technical and organisational measures to:
- precisely regulates access to data;
- allow access only to persons who need the data to perform the task for which they are collected, and then only to the minimum necessary for the performance of that task;
- carefully select the data processors it engages and ensure the security of the data through an appropriate data processing contract;
- ensure the integrity (data integrity), authenticity and protection of the data processed.
The data controller shall notify the National Authority for Data Protection and Freedom of Information of a personal data breach involving personal data without undue delay and, where possible, no later than 72 hours after becoming aware of the personal data breach, unless the personal data breach is unlikely to pose a risk to the rights and freedoms of natural persons. Where the personal data breach is likely to result in a high risk to the rights and freedoms of natural persons, the controller shall inform the data subjects of the personal data breach without undue delay.
Rights of data subjects
The data subject may contact the controller at the contact details indicated in point 1.
- may ask to be informed about the processing of your personal data,
- have access to your personal data
- request the correction of your data,
- request the erasure of your personal data and the restriction of processing
- object to the processing of your personal data
- withdraw your consent to the processing.
You may exercise the above rights at any time. A legal representative is entitled to act on behalf of the minor data subject.
The controller shall process or reject (with reasons) the notification within 1 month of the request being made at the latest, or in exceptional cases within a longer period permitted by law.
The rights of the data subject are set out in detail in Chapter III of the GDPR.
Remedies
In the unforeseen event of a breach of your rights in relation to the processing of your personal data, you have the right to:
- to the controller with a request
- to the National Authority for Data Protection and Freedom of Information (1055 Budapest, Falk Miksa u. 9-11., postal address: 1363 Budapest Pf. 9, ugyfelszolgat@naih.hu ) with a complaint or
- bring an action in court.
Budapest, 1 June 2024.