Terms of purchase

General terms and conditions Privacy Policy

General terms and conditions

We would like to draw the attention of our dear Customers to the fact that the sole owner of this website is QX-IMPEX KFT.

Please read the following General Order Terms carefully. You may use this website only if you accept the following general terms and conditions, so please do not use this page if you do not agree with these terms and conditions!

In the course of its sales activities, it serves exclusively the needs of businesses, retailers and wholesalers, professional users, and sole proprietors. The ordering interface of QX-Impex.hu cannot accept and fulfill the orders of individuals who qualify as consumers, therefore these GTC do not contain provisions on “consumer contracts”.

In the present legal relationship, the Buyer is a person acting within the scope of his / her profession, independent occupation or business activity. 8: 1 § (1) bek. A legal person or an economic organization without legal personality, a sole proprietor, on whose behalf a person acting on its behalf warrants that he or she is entitled to represent the given enterprise. The contract concluded between the Seller and the Buyer, which is a company, is not a consumer contract, so this legal relationship is not covered by Government Decree 45/2014 (II.26.).

1. GENERAL ORDER CONDITIONS

These General Order Terms and Conditions - the QX-IMPEX Trade and Service Limited Liability Company

headquarters: 7673 Pécs, Mecsekalja-Cserkút II loader HRSZ. 089/6.
company registration number: 02-09-064259
tax number: 11368650-2-02
e-mail: info@qx-impex.hu
tel .: +36 72 522 222

- hereinafter: Service Provider and QX-Impex KFT. contains the rights and obligations of the Customer using the services provided by the Customer - hereinafter: the Customer.

We would like to inform you that you, as the Customer, declare, by using the website available at qx-impex.hu, that you know and accept the following, the Civil Code. (Act V of 2013) 6: 77-6: 81 § General Order Conditions. If you wish to be a customer or an active user of the options offered by our Online Ordering System, please read the General Order Terms carefully and use our services only if you agree with all its points and consider them binding on you.

This document is concluded in electronic form only. The contract regulated by the following conditions is governed by Art. shall be deemed to be a contract concluded in absentia.

GENERAL INFORMATION
1. SERVICE PROVIDER

qx-impex.hu

Owner: QX-Impex Kft.
Location: H-1087 Budapest, Asztalos S. u .9.
Registered office: 7673 Pécs, Mecsekalja-Cserkút II loader HRSZ. 089/6.
Company registration number: 02 09 064259; issued by the Court of Registration of the City Court of Pécs
Tax number: 11368650-2-02
The operator of the online store: QX-Impex Kft.

Hosting provider

Hosting provider: UNAS Online Kft
Registered office: Sopron, Kőszegi út 14.
E-mail and web address: unas@unas.hu; www.unas.hu

LICENSES, CERTIFICATES

4690 '08 Wholesale of miscellaneous products

1.1. The scope of the order conditions extends to all electronic services that are provided through the Online Ordering System (hereinafter: Online Ordering System) located at www.qx-impex.hu (hereinafter: Website).

1.2. Through the Online Ordering System, registered customers can place orders from the following product groups:

gift
flower accessories
decoration
game
sports equipment
home decor
creative-hobby
souvenir

In the Online Ordering System, you can browse the Available Products by product categories. In addition to the listed products, you can view a short description, price and other features of each product, without claiming completeness. For more information about the product, click on the product image or name. This will take you to the product page where you can get more detailed information about the product. If you need more detailed information, please contact the operator at the telephone number provided in the operator's data.

Warning: The images shown on the product data sheet may differ from the actual product and in some cases are for illustration purposes only.

Registered customers see their own net prices reduced by their individual discounts in the Online Ordering System.

If the operator indicates an incorrect price for the product, despite the care required of him, and the price of the product differs from its generally accepted price, the operator is not obliged to provide the product at the incorrect price, but is obliged to offer the customer the possibility of buying at a reasonable price. If the buyer does not wish to exercise this option, he has the right to withdraw from the contract unilaterally.

There is no extra packing fee. The detailed delivery tariff is part of these terms and conditions, under the menu item Delivery terms.

1.3. Ordering in the Online Ordering System is possible by placing an order electronically, as specified in these General Ordering Conditions.

1.4. The services of the Online Ordering System may only be used by the Customer who validly and successfully registers in the Online Ordering System and acknowledges the provisions of these General Ordering Terms.

Registered Customers may access the Website only by entering the customer code and password provided to them. The Service Provider shall not be liable for any damages resulting from the loss of the customer code or password. The Website may also contain confidential data that can only be disclosed to the Customer belonging to the customer code, therefore the Customer may not disclose it to third parties, and is obliged to ensure the protection of this data against third parties.

1.5. The products, logos, trademarks, trademarks, licenses and intellectual property in the Online Ordering System are protected, and the Customer using the electronic services of the Online Ordering System may not take any commercial, economic or moral measures that damage the reputation of the products listed in the Online Ordering System, or endanger.

1.6. No part of this site may be reproduced or transmitted in any form or by any means without the prior written permission of the owner of the Website. The owner of the Website has the right, in case of breach of the obligation regulated in this section, to demand compensation for any pecuniary and non-pecuniary damage resulting therefrom, and to initiate legal or other official proceedings in this connection.

1.7. The owner of the Website welcomes any opinions, comments, ideas in connection with its activities, which, however, it is not obliged to treat as confidential information and does not take any responsibility for the disclosure and use of the data and information obtained in this way.

1.8. Contact details of the Service Provider's telephone Customer Service:

Phone: +36 1 459 0570
Fax: +36 1 459 0579
Postal address: 7623 Pécs, Megyeri út 59.
Internet address: www.qx-impex.hu
E-mail: info@qx-impex.hu

Opening hours:
Monday - Friday: 8 a.m. to 4 p.m.
Saturday: 8 a.m. to 1 p.m.

By post: 7623 Pécs, Megyeri út 59.

Our customer service provides the following services:

order processing
arranging the delivery of products on working days
provision of information
Handling complaints
sending newsletters.

2. ORDER AND ITS CONDITIONS

2.1. The Service Provider informs its Customers that the Service Provider fulfills the demand for the products indicated in the Online Ordering System to the extent of its stocks.

2.2. The time of placing orders (date, hour, minute) is recorded and the orders are processed in the order of receipt.

2.3. For the order, the Customer can enter the requested number of pieces next to the corresponding product in the product groups. We have set minimum order quantities for our products. When ordering these products, please observe the minimum order quantities indicated on the order surface.

Minimum order value is $ 100.

If a product is in a sales assistant display, in the case of an order, we always consider the entire offerer as the minimum quantity. If you order less quantity, we will not be able to open the offer. In this case, the full offerer will be shipped.

2.4. The essential properties and characteristics of the ordered goods and the instructions for the use of the goods can be found in detail in the instructions for use supplied with the product.

2.5. Should the Customer have any questions regarding the goods before ordering, the Service Provider's Customer Service is at their disposal. The Service Provider encloses the instructions for use of the product distributed by it - where required by law - with the goods.

2.6. If the Customer does not receive the mandatory instructions for use together with the goods due to an administrative error, he must immediately notify the Service Provider's Customer Service before using the goods, and the Service Provider is obliged to replace the instructions for use.

2.7. The order is accepted through the Service Provider's website only from a registered Customer and only if the Customer completes all the fields required for the order. The Service Provider shall not be liable for any delivery delays or other problems or errors that can be traced back to the order data provided incorrectly and / or inaccurately by the Customer.

2.8. By placing an order, the Customer re-declares that he accepts these General Order Terms and acknowledges that he is bound by them.

2.9. The Service Provider sends an electronic confirmation of the receipt of the Customer's order to the Customer.

2.10. The order and its confirmation shall be deemed to have been received by the Service Provider or the Customer when it becomes available to it. The confirmation shall be deemed received even if the Customer provides an incomplete or incorrect e-mail address during registration and the Service Provider sends the confirmation to this address.

3. PRICES

3.1. The wholesale price is always the net price shown next to the selected product, which does not include VAT.

3.2. The Service Provider reserves the right to change the prices of the products that can be ordered from the Website, provided that the change takes effect at the same time as it appears on the Website. Although the Service Provider carefully checks the prices of the products on the Website, it reserves the right to correct any obvious errors, calculation, editing and technical errors, as well as any price changes that are justified by a significant change in legislation. The Service Provider shall not be liable for any clearly incorrectly published prices or images arising from possible technical problems related to the operation of the Website. Service Provider reserves the right to discontinue the distribution of certain products due to quality or other problems.

3.3. Please read the terms and conditions of the Online Ordering System before submitting your order, even if you have used it before.

4. SHIPPING AND PAYMENT

4.1. The products are delivered in accordance with the conditions in force at the time of the order.

4.2. The Service Provider delivers the ordered goods through its own logistics and through the GLS - Courier Service system.

4.3. GLS will deliver the selected products to your home throughout Hungary within 1 working day of dispatch. The Service Provider packs the ordered products in all cases in such a way that it complies with the GLS parcel delivery conditions.

QX-IMPEX Kft. Does not take responsibility for damages caused by delays caused by the GLS logistics Customer. Due to such a delay, QX-IMPEX Kft. Cannot be fined.

All Customers can find the delivery costs in the Online Ordering System by logging in with their own code and password in the personal menu item.

4.4. After receiving the package, the Customer is obliged to receive the products item by item and in case of a quantity discrepancy or quality problem, to notify the Service Provider by e-mail to the e-mail address within 24 hours. Failure to do so will result in the Service Provider not being able to accept a complaint.

4.5. Payment for the ordered products is made in cash or by bank transfer in advance on the basis of the invoice issued by the Service Provider.

4.6. The Customer is obliged to fulfill the obligation to pay the purchase price by the payment deadline specified in the invoice.

4.7. The Service Provider is also entitled to use a third party to collect its claims, who may act on behalf of the Service Provider from the 15th day after the expiry of the invoice. The costs related to the collection of receivables transferred to a third party shall be borne by the Customer.

5. QUALITY

5.1. All products marketed by the Service Provider, which are required to do so by regulation, have been tested and have all marketability permits.

6. WARRANTY

6.1. The Service Provider undertakes a different warranty and guarantee for the goods sold by it, depending on the product types, in accordance with the applicable legislation.

6.2. The Service Provider shall provide a replacement for the ordered product, in case the product is found to be defective after production after the opening and the defect occurred before the receipt, or repurchase the product until the stock lasts.

The condition of the exchange or redemption is that the buyer notifies these defective products in writing to the e-mail address within 48 hours of receipt. An additional condition for replacement or repurchase is that the product to be repurchased is intact, the packaging and texture are flawless, clean, free of all impurities and price tags, and the product can be clearly identified. If several products are exchanged or repurchased, it is a condition that the products are picked together by article number.

As the Customer does not qualify as a consumer in the legal relationship established on the basis of these GTC, Decree 45/2014 on the detailed rules of contracts between the consumer and the company. (II. 26.) does not have the right of withdrawal pursuant to Section 20 (1) of the Government Decree.

It is not possible to take back, even partially, the goods of impeccable quality ordered, delivered and received by the Customer by the Service Provider, unless the parties enter into a different agreement specifying the conditions of take-back.

7. PRIVACY STATEMENT

7.1. The Service Provider takes appropriate precautions in order to preserve the security of the personal data of its Customers. It puts in place adequate physical and electronic procedures to protect the information collected. QX-Impex KFT. any personal data obtained in the course of the use of the websites in accordance with Act LXIII of 1992 on the Protection of Personal Data and the Disclosure of Data of Public Interest. in accordance with the provisions of law. If the Customer transmits any personal data to the Service Provider, he / she hereby consents to its registration and management by the Service Provider.

The Service Provider draws the attention of its Customers to the fact that QX-Impex KFT. You can also access other organizations' websites from its websites. The Service Provider is not responsible for the content and correctness of the data provided on them, or for the security of the Customer's data. When using these websites, the Service Provider recommends that you check the privacy policy of the organization that publishes the page. QX-Impex KFT. shall not be liable for any direct or indirect damages arising out of the operation or use of the Website, including computer viruses or so-called damages caused by "spam", lost profits, data loss, damages related to loss of use. The Service Provider reserves the right to change or terminate this website at its sole discretion.

The complete Privacy Notice is available at the following link: https://www.qx-impex.hu/adatvedelmi-tajekoztato

8. OTHER

8.1. The Service Provider is entitled to unilaterally amend these terms and conditions at any time. Any change will take effect at the same time as it appears on the Website.

8.2. The Service Provider is entitled to send a newsletter regarding the novelties, promotions and other news to the e-mail address provided by the Customer by means of a separate subscription. If you do not wish to receive the Customer's newsletter, you can unsubscribe at any time in the manner available in the newsletter.

8.3. In order to resolve the legal dispute arising from the violation of the above, the parties stipulate that the Pécs City Court or a Pp. Jurisdiction of the Baranya County Court, taking into account its rules of jurisdiction.

9. CONFIDENTIALITY AGREEMENT

9.1. The Parties acknowledge that all facts, data and information concerning the operation of the Parties which come to their knowledge in the course of their co-operation shall be treated as confidential information.

The parties are obliged to treat the scope of confidential information, which is considered a business, banking or securities secret, in accordance with the provisions of the relevant legislation. Disclosure of a trade secret or disclosure to any third party constitutes a serious breach of contract.

The parties expressly classify the agreement as a business secret if they enter into an agreement with terms and conditions different from these General Terms and Conditions, in particular the provisions concerning the price of the goods and the terms of payment.

9.2. The obligation of confidentiality and the consequences of a breach thereof shall be borne by the Parties until such time as the information covered by business secrecy is lawfully disclosed in another way or as long as either Party has a legitimate interest in maintaining it as confidential.

9.3. The Parties shall indemnify the other Party for the material and non-material damage caused by the breach of the confidentiality obligation set forth in this Agreement.

9.4. It shall not be considered a breach of the obligation of confidentiality if either Party, at the request of the competent authority or court, communicates to the authority or court information and data classified as business secrets or confidential.

9.5. The Customer acknowledges that by accepting the contract concluded with the Service Provider, he also consents to the Service Provider entrusting the collection of the claim to a third party and handing over the Customer's data to him in case of possible delay or non-contractual performance of the Customer. The Service Provider declares that it does not consider this procedure to be a violation of trade secrets or misuse of personal data.

Statement

The Customer declares that he / she has read and understood the general order conditions described above and accepts its provisions as binding on him / her.

PRIVACY NOTICE

PRIVACY NOTICE

QX-Impex Ltd. - www.qx-impex.hu

Data Protection Notice for the Processing of Personal Data of Natural Persons

Name of data controller: QX-Impex Ltd.

Version: v2.0

This policy is valid until it is withdrawn and covers officials, employees and the organisation's data protection officer.

Valid from: 04/08/2020

Chapter 1

General ¬ non-specific information

1.1 Purpose of the Privacy Notice

QX-Impex Kft. and 7673 Pécs, Mecsekalja-Cherkút II loader HRSZ. 089/6. /(hereinafter referred to as service provider, data controller) as data controllers, recognize the content of this legal notice as binding on themselves. You undertake to comply with the requirements set out in this Privacy Notice and applicable international law, as well as in european union acts.

The data protection policy for the data management of QX-Impex Kft. is continuously available: 7623 Pécs, Megyeri út 59. - 1089 Budapest, Sándor Asztalos u .9. - www.qx-impex.hu/adatvedelmi-tajekoztato

QX-Impex Kft. reserves the right to change this notice at any time. Of course, you will notify your audience in due course of any change at the web address provided above.

QX-Impex Kft. / is committed to protecting the personal data of its customers and partners, and considers it of paramount importance to respect the right of its customers to informational self-determination. QX-Impex Kft. / treats personal data confidentially and takes all security, technical and organizational measures that guarantee the security of the data.

1.2 General information on data processing

For the purposes of data processing, a person designated as a "controller" (who, alone or in the case of multiple processing, together with others determines the purpose of the processing of the data, makes and executes decisions on the processing of the data, or has the processor carry it out) (hereinafter referred to as "the controller") processes personal data only for a specific purpose, for the exercise of rights and for the performance of an obligation. At all stages of data processing, it is appropriate for the purpose of data processing.

The controller only handles personal data to the extent and for the time necessary for the purpose to be achieved.

The data controller records and registers the data processed for different purposes separately (treated as data management) in the data protection register and provides information on it in the "Data Management Purposes" section of the Data Management Information.

The controller shall ensure the accuracy, completeness and ¬ if necessary ¬ up-to-dateness of the data subject in view of the purpose of the data processing in question and ensure that the data subject can only be identified for the time necessary for the purpose of the processing.

1.3 General information about data processors

The data controller uses data processors to perform certain data management operations (such as storing data on the hosting provider's server). The rights and obligations of the data processor in relation to the processing of personal data are determined by the data controller. The data processor does not make a substantive decision concerning data management, processes the personal data obtained only in accordance with the provisions of the data controller, does not process data for its own purposes, and stores and stores personal data in accordance with the data controller's provisions. The data processing contract is in writing by the data controller and the data processor (s). The data controller has not been entrusted with the processing of data by an organization that has an interest in the use of the personal data to be processed in the course of its own business. The data controller is responsible for the legality of the instructions given by the data controller. Details of the data and activities of the data processors used are provided for data management purposes.

7623 Pécs, Megyeri út 59

Chapter 2

Data controller data

2.1 Data of the data controller

Name: QX-Impex Kft.

Headquarters: 7623 Pécs, Megyeri út 59

Mailing address: 7623 Pécs, Megyeri út 59.

Company registration number: 02 09 064259

Name of the court of registration: Court of Registration of the General Court of Pécs

Tax number: 11368650-2-02

2.2 DPO - Contact details of the Data Protection Officer

If you have any questions for our company, you can contact us at the contact details below. Our data protection officer is at your disposal.

The name of our data protection officer is Irén Vujevics

Mailing address: 7623 Pécs, Megyeri út 59.

E-mail: office@qx-impex.hu Phone number: +36 30 504-1148

Chapter 3

The scope of personal data processed, as data management purposes, determined separately

Target 1 ¬ Customer Registration - Customer Management - Online ordering interface

1.) Data of the Data Controller

Contact person (name): Irén Vujevics

Phone number: +36 30 504-1148

Email address: office@qx-impex.hu

Data controller tax number: 11368650-2-02

Name of data controller: QX-Impex Kft.

Country: Hungary

Postcode: 7673

Name of the settlement: Pécs

Name of public area, type of public area, house number. 7623 Pécs, Megyeri út 59

Note: in case of multiple data management, it is necessary to list the data of the other data controllers as well, to mark the data controllers numbered and separated from each other!

2.) Address or website of actual data management: 7623 Pécs, Megyeri út 59.

www.qx-impex.hu

3.) Purpose of data management: Customer register

Description of the purpose of data management: Data management required for the activity related to the continuous service of existing customers.

4.) Legal basis for data management

Title of legal basis for data processing: Consent of the data subject, Article 6 (1) (a), I Section 5 (1),

Act CVIII of 2001 on certain issues of electronic commerce services and information society services. Act (hereinafter: Elker Act) 13 / A. § (3):

The service provider may process personal data that is technically necessary for the provision of the service for the purpose of providing the service. If the other conditions are the same, the service provider must choose and in all cases operate the means used in the provision of the information society service in such a way that personal data is processed only if it is necessary for the provision of the service and other purposes specified in this Act. necessary, but in this case only to the extent and for the time necessary.

Article 6 (1) (c) in the case of an invoice in accordance with accounting legislation.

5.) Data processing

Data processor name: MiniCRM

Activities of the data processor related to data management:

Country: Hungary

Postcode: 1075

City name: Budapest

Name of public area, type of public area, house number: Madách Imre u. 13-14

Place of data processing (website or address): www.minicrm.hu

Data processing technology: online crm

Name of data processor: WIX

Activities of the data processor related to data management:

Country: Israel

Postcode:

City name: Tel Aviv-Yafo

Name of public area, type of public area, house number:

Place of data processing (website or address): www.wix.com

Data processing technology: website operation

Data Processor Name: Invoicing

Activities of the data processor related to data management:

Country: Hungary

Postcode: 7623

City name: Pécs

Name of public area, type of public area, house number: Megyeri út 59

Place of data processing (website or address):www.qx-impex.hu

Data processing technology:

Name of data processor: Unas online kft

Activities of the data processor related to data management:

Country: Hungary

Postcode: 9400

City name: Sopron

Name of public area, type of public area, house number: Kőszegi út 14

Place of data processing (website or address): www.unas.hu

Data processing technology: website operation

6.) Personal data managed by the data controller

Data on stakeholders:

Name of personal data The reason why the data controller wants to handle it

Name Data required to identify the Customer.

E-mail The official channel of communication with the Customer.

Telephone number The official channel of communication with the Customer

Billing Name Essential information required to create an invoice.

Billing Address The essential information needed to create an invoice.

Tax number / tax ID Essential information required to create an invoice.

Registration Date The start date required to calculate purchase discounts.

Purchase Date The date required to calculate purchase discounts.

it is appropriate to indicate which personal data and WHY it is essential to provide the data subject, if the form requesting the data indicates that this is the case,

Duration of data processing

Duration of data management, deadline for deleting data: Immediately by deleting the registration. Except in the case of accounting documents, as these data must be kept for 8 years pursuant to Section 169 (2) of Act C of 2000 on Accounting.

Data source: Recorded directly from the data subject.

7.) Stakeholders: Natural and legal persons registered electronically and in the store as customers.

8.) Person of potential data controllers entitled to access the data, recipients of personal data: Personal data may be processed by the data controller's sales and marketing staff, respecting the above principles.

Description of data subjects' rights in relation to data processing:

The data subject may request from the controller access to, rectification, erasure or restriction of the processing of personal data concerning him or her, and
object to the processing of such personal data, and
the data subject has the right to data portability and to withdraw his or her consent at any time.

9.) Information on data management following the completion of the interest balancing test based on Section 6 (5). The results of the test shall be communicated to the parties concerned in such a way that it can be clearly established on the basis of which legitimate interest can be considered proportionate.

restriction is that the controller processes personal data without their consent. Note: If you do not have such data management, delete this row of the table.

10.) Data transmission

The data processed during data management for this purpose can be found in the “Data Transfers” chapter of the Data Management Information.

They will be forwarded to data controllers located during data transfer number 1

Target 2 Marketing

1.)Data of the Data Controller

Contact person: Iren Vujevics

Phone number: +36 30 504-1148

Email address: office@gmail.com

Data controller tax number: 11368650-2-02

Name of data controller: QX-Impex Kft.

Country: Hungary

Postcode: 7623

Name of the settlement: Pécs

Name of public area, type of public area, house number: Megyeri út 59.

Note: in case of multiple data management, it is necessary to list the data of the other data controllers as well, to mark the data controllers numbered and separated from each other!

2.) Address or website of actual data management: 7623 Pécs, Megyeri út 59.

www.qx-impex.hu

3.) Purpose of data management: Customer register

Description of the purpose of data management: Data management required for the activity related to the continuous service of existing customers.

4.) Legal basis for data management

Title of legal basis for data processing: Consent of the data subject, Article 6 (1) (a), Infotv. Section 5 (1), paragraph

Act CVIII of 2001 on certain issues of electronic commerce services and information society services. Act (hereinafter: Elker Act) 13 / A. § (3): paragraph

Article 6 (1) (c) in the case of an invoice in accordance with accounting legislation.

5.) Data processing

Data processor name: MiniCRM

Activities of the data processor related to data management:

Country: Hungary

Postcode: 1075

City name: Budapest

Name of public area, type of public area, house number: Madách Imre 13-14

Place of data processing (website or address): www.minicrm.hu

Data processing technology:online crm

Data processor name: WIX

Activities of the data processor related to data management:

Country: Israel

Postcode:

City name: Tel Aviv-Yafo

Name of public area, type of public area, house number:

Place of data processing (website or address): wix.com

Data processing technology: website operation

6.) Personal data managed by the data controller

Stakeholder data:

Name of personal data The reason why the data controller wants to handle it

Name Data required to identify the Customer

E-mail The official channel of communication with the customer

Phone number The official channel of communication with the customer

Invoicing name Essential information required to create an invoice

Invoicing address Essential information needed to create an invoice.

Tax number / tax ID Essential information needed to create an invoice.

Date of registration The start date required to calculate purchase discounts

Date of purchase The date required to calculate purchase discounts.

it is appropriate to indicate which personal data and WHY it is essential to provide the data subject, if the form requesting the data indicates that this is the case,

Duration of data processing

Data source: Recorded directly from the data subject.

7.) Stakeholders: Subscribers to the newsletter on the website, natural and legal persons registered as customers on the website and in the store.

9.)Description of data subjects' rights in relation to data processing:

The data subject may request from the controller access to, rectification, erasure or restriction of the processing of personal data concerning him or her, and
object to the processing of such personal data, and
the data subject has the right to data portability and to withdraw his or her consent at any time.

9/1.) Information on data management based on § 6 (5) követő after completing the interest balance test ¬. The results of the test shall be communicated to the parties concerned in such a way that it can be clearly established on the basis of which legitimate interest can be considered proportionate.

restriction is that the controller processes personal data without their consent.

10.) Data transmission

The data processed during data management for this purpose are included in the Data Transfers chapter of the Data Management Information and will be transferred to the data controllers found during data transfer No. 4.

Chapter 4

Data transmissions

Transmission No 1 ¬ Transmission of Objective 1

1.1. Transport

Activity performed by the data processor: Delivery of products, transportation 2. Name and contact details of the data processor:

GLS

GLS General Logistics Systems Hungary-Logisztikai Kft.

H-2351 Alsónémedi, GLS Európa u. 2.

E-mail: info@gls-hungary.com

Customer service: +36 29 88 67 00, mobil: +36 20 890 0660

ÁSZF: https://gls-group.eu/HU/hu/altalanos-uzleti-feltetelek

Adatvédelmi tájékoztató: https://gls-group.eu/HU/hu/adatvedelmi-szabalyzat

TNT

TNT Express Hungary Kft.

1185 Budapest II. Logisztikai központ - Irodaépület, BUD Nemzetközi Repülőtér 283. ép.

E-mail: hu.tntexpress@tnt.com

Customer service: 06 80 313 131

FEDEX

FedEx Express Hungary Korlátolt Felelősségű Társaság

2220 Vecsés, Lőrinci út 59. C. ép. 5.

E-mail:

Customer service: 06 80 980 980

MAGYAR POSTA

Magyar Posta Zártkörűen Működő Részvénytársaság

1138 Budapest, Dunavirág utca 2-6.

Customer service: 06-1-767-8282

E-mail: ugyfelszolgalat@posta.hu

E-mail: uzleti.ugyfelszolgalat@posta.hu

MPL Europe Standard szolgáltatások: 06-1-767-8277

E-mail: europestandard@posta.hu

MPL (Magyar Posta Logisztika) szolgáltatások: 06-1-333-7777

E-mail: customer.service@posta.hu

ÁSZF: https://www.posta.hu/ugyfelszolgalat/aszf

The fact of data management, the scope of the managed data: Delivery name, delivery address, telephone number, e-mail address. 4. Stakeholders: All stakeholders requesting home delivery. 5. Purpose of data management: Home delivery of the ordered product. 6. Duration of data processing, deadline for deleting data: It lasts until the home delivery is completed. 7. Legal basis of the data processing: the User's consent, Article 6 (1) a), Infotv. Section 5 (1).

1.2. Hosting provider

Activity performed by the data processor: Hosting service Name and contact details of the data processor:

Wix.com LTD Head office: PO box 40190 San Francisco, CA United States. Email: support@wic.com

Fact of data management, scope of data processed: All personal data provided by the data subject. Stakeholders: All stakeholders who use the website. The purpose of data management: To make the website available and to operate it properly. Duration of data processing, deadline for deletion of data: The data processing lasts until the termination of the agreement between the data controller and the hosting provider or until the data subject's request for deletion to the hosting provider. The legal basis of the data processing: the User's consent, the Infotv. Section 5 (1), Article 6 (1) (a) and Act CVIII of 2001 on certain issues of electronic commerce services and information society services. Act 13 / A. § (3).

1.3 Accounting

Tettye Consulting Bt

Chapter 5

5.1 Purpose of cookies

collect information about visitors and their devices
remember the individual settings of the visitors, which can be used e.g. when using online transactions, so you don’t have to retype them;
facilitate the use of the website;
provide a quality user experience.

In order to provide customized service, a small data packet, the so-called places a cookie and reads it back at a later visit. If the browser returns a previously saved cookie, the cookie provider has the option to link the user's current visit to the previous ones, but only for their own content.

Webshop-specific cookies are so-called “passwords used for password-protected sessions”, “shopping cart cookies” and “security cookies”, the use of which does not require the prior consent of the parties involved.
The fact of data management, the scope of the managed data: Unique identification number, dates, times
Stakeholders: All stakeholders who visit the website.
Purpose of data management: To identify users, record the “shopping cart” and track visitors.
Duration of data processing, deadline for deleting data:
Person of potential data controllers entitled to access the data: The data controller does not process personal data using cookies.
Description of the data subjects' rights related to data management: The data subject has the possibility to delete cookies in the Tools / Settings menu of browsers, usually under the settings of the Privacy menu item.
Legal basis for data processing: The consent of the data subject is not required if the sole purpose of the use of cookies is the transmission of communications via an electronic communications network or the provision of an information society service specifically requested by the subscriber or user.

Cookie type Legal basis Purpose of data management Duration Managed data set

Session cookies 2001. CVIII. On certain issues of electronic commerce services and information society services. Act (Elkertv.) 13 / A. § (3) Ensuring the proper functioning of the website Period until the end of the relevant visitor session SESSIONID

Facilitating the use of cookies User consent to cart refill ID required 30 days cartuserid

Cookie acceptance of storage cookies User consent cookie use warning window 365 days cb-enabled

Marketing offer display control cookie User consent coupon offer page when leaving 10 days leavecoupon

Marketing offer display control cookie User consent newsletter subscription window when leaving page 10 days leavewidnow

Google-Analytics User Contribution Gather information about 2 years 24 hours _ga _gid

5.2 Absolutely necessary, session cookies

The purpose of these cookies is to enable visitors to fully and smoothly browse the website of QX-Impex Kft., To use its functions and the services available there. These types of cookies last until the end of the session (browsing), and when you close the browser, these types of cookies are automatically deleted from your computer or other device used for browsing.

5.3 Third-party cookies (analytics)

Qx-Impex Kft. Also uses Google Analytics cookies as a third party on its website. Using the Google Analytics service for statistical purposes, Qx-Impex Kft. Collects information about how visitors use its websites. Use the data to improve the website and improve the user experience. These cookies also remain on the visitor's computer or other device used for browsing, in its browser or until the visitor deletes them until they expire.

Chapter 6

Rights of the data subject

6.1 Right to information

Qx-Impex Kft. Takes appropriate measures in order to provide the data subjects with all the information related to the processing of personal data referred to in Articles 13 and 14 of the GDPR and Articles 15 to 22. and Article 34 shall be provided in a concise, transparent, comprehensible and easily accessible form, in a clear and comprehensible manner.

The data protection and data management information of QX-Impex Kft. Is available at the following link: www.qx-impex.hu/adatvedelmi-tajekoztato

In printed form: 7623 Pécs, Megyeri út 59.

6.2 The data subject's right of access

At the request of the data subject (as any specific natural person identified or identifiable on the basis of personal data) (hereinafter: data subject), the data controller shall provide information on the data processed by the data subject or processed by him or her, the legal basis, duration, name, address and activities of the data controller, the circumstances of the data protection incident, its effects and the measures taken to remedy it, and, in the case of transfers of personal data of the data subject, the legal basis and the recipient of the transfer.

In addition to obtaining information through a request to the data controller, the data subject may also obtain information on data processing concerning his or her personal data from the data protection register. The data protection register is public, anyone can see it and make a note of its contents.

The controller shall provide the information no later than one month after the submission of the request.

6.3 Right of rectification - You can request the rectification of your personal data

The controller shall, on the basis of the request concerned, examine the personal data contained in the request for rectification to ensure that they do not in fact correspond to reality. If the personal data does not correspond to reality and the personal data corresponding to reality is available to the data controller, the personal data shall be corrected by the data controller.

The controller shall flag the personal data it processes if the data subject disputes their correctness or accuracy, but the inaccuracy or inaccuracy of the disputed personal data cannot be clearly established.

6.4 Right to delete - You can request the deletion of your personal data ¬ with the exception of mandatory data processing ¬

The controller shall delete or block the personal data contained in the request on the basis of the data subject's request. When deleting data, the data controller renders the personal data unrecognizable in such a way that it is no longer possible to recover it.

The data subject shall have the right, at the request of the controller, to delete personal data concerning him or her without undue delay if any of the following reasons exist:

personal data are no longer required for the purpose for which they were collected or otherwise processed;
the data subject withdraws the consent on which the data processing is based and there is no other legal basis for the data processing;
the data subject objects to the processing and there is no overriding legitimate reason for the processing;
personal data has been processed unlawfully;
personal data must be deleted in order to fulfill a legal obligation under EU or Member State law applicable to the controller;
personal data were collected in connection

In addition to deleting data at the request of the data subject, the controller shall delete personal data if a) its processing is unlawful;

(a) incomplete or incorrect and this condition cannot be legally remedied, provided that the deletion is not precluded by law;

b) the purpose of the data processing has ceased or the term for the storage of the data specified by law has expired;

Deletion of data cannot be initiated if data management is required:

(a) for the purpose of exercising the right to freedom of expression and information;

(b) for the purpose of fulfilling an obligation under Union or Member State law governing the processing of personal data or performing a task carried out in the public interest or in the exercise of official authority vested in the controller;

(c) in the field of public health, or for archival, scientific and historical research or statistical purposes, in the public interest;

(d) or to bring, assert or defend legal claims.

The Data Controller shall delete the personal data without delay, but no later than within 30 days. The data controller shall notify the data subject of the deletion, as well as to all persons to whom the data have previously been transmitted for the purpose of data processing. The notification may be omitted if it does not harm the legitimate interests of the data subject in view of the purpose of the processing. If the controller does not comply with the data subject's request for rectification, blocking or erasure, he shall, within 30 days of receipt of the request, communicate in writing or, with the consent of the data subject, electronically the reasons for rejecting the request for rectification, blocking or erasure.

6.5 Right to restrict data processing - The data subject may request the restriction of his or her personal data kiv with the exception of mandatory data processing ¬

The controller shall block the personal data instead of deleting them if the data subject so requests or if, on the basis of the information available to him or her, it can be assumed that the deletion would harm the data subject's legitimate interests. Personal data blocked in this way may only be processed for as long as the purpose of the data processing, which precluded the deletion of personal data, exists. When blocking data, the data controller shall mark the personal data with an identification mark in order to limit its further processing for a final or specified period of time.

The data controller restricts data processing if one of the following conditions is met:

the data subject disputes the accuracy of the personal data, in which case the restriction applies to the period of time that allows the accuracy of the personal data to be verified;
the processing is unlawful and the data subject opposes the deletion of the data and instead requests that their use be restricted;
the data controller no longer needs the personal data for the purpose of data processing, but the data subject requests them in order to make, enforce or protect legal claims; obsession
the data subject has objected to the data processing; in that case, the restriction shall apply for as long as it is established whether the legitimate reasons of the controller take precedence over the legitimate reasons of the data subject.

Where processing is restricted, personal data may be processed, with the exception of storage, only with the consent of the data subject or for the purpose of bringing, enforcing or protecting legal claims or protecting the rights of another natural or legal person or in the important public interest of the Union or a Member State.

The Data Controller shall block the personal data without delay, but no later than within 30 days. The controller shall notify the data subject of the blocking, as well as to all persons to whom the data have previously been transmitted for the purpose of data processing. The notification may be omitted if it does not harm the legitimate interests of the data subject in view of the purpose of the processing. If the controller does not comply with the data subject's request for rectification, blocking or erasure, he shall, within 30 days of receipt of the request, communicate in writing or, with the consent of the data subject, electronically the reasons for rejecting the request for rectification, blocking or erasure.

6.6 Right to Carry Data

The data subject shall have the right to receive personal data concerning him or her made available to the controller in a structured, widely used machine-readable format and to transmit this data to another controller.

6.7 Automated decision making in individual cases, including profiling

In the case of a decision made by automated data processing, you may request the information of the data controller and express your position

In the event of a decision taken by automated data processing, the controller shall, at your request, inform you of the method used and its substance, and give you the opportunity to state your position.

By postal correspondence:

QX-impexKft

7623 Pécs, Megyeri út 59

by mail:

office@qx-impex.hu

by phone:

+3630 504-1148

6.8 Right to Protest - You may object to the processing of your personal data

The data subject may, in the form of a statement, object to the processing of his or her personal data in the following cases:

(a) where the processing or transfer of personal data is necessary solely for the performance of a legal obligation to which the controller is subject or in the legitimate interest of the controller, the recipient or a third party, except in the case of mandatory processing;

(b) where the use or transfer of personal data is a direct business acquisition, a public opinion poll

A statement of objection is a statement in which the data subject objects to the processing of his or her personal data or data and requests that the processing be terminated or that the processed data be deleted.

The data controller shall examine the protest as soon as possible, but not later than within 15 days from the submission of the request, make a decision on the merits thereof and inform the applicant in writing of its decision.

If the controller establishes that the data subject's objection is justified, the data processing ¬ including further data collection and transmission ov shall be terminated and the data shall be blocked and the objection and the action taken on it shall be notified to all persons to whom the data subject has previously been transmitted, and who are obliged to take action to enforce the right to protest.

The data controller may not delete the data of the data subject if the data processing has been ordered by law. However, the data may not be transferred to the data recipient if the data controller has agreed to the protest or the court has established the legitimacy of the protest.

6.9 Right of withdrawal

The data subject has the right to withdraw his or her consent at any time.

Chapter 7

Enforcement options for the data subject

7.1 First of all, make a complaint to the data controller

In the event that you, as a data subject, believe that a data controller has violated your personal rights by illegally handling your personal data or violating data security requirements, we recommend that you contact the data controller with your complaint in the first instance.

Your complaint will be received by the data controller at the following contact details:

During postal correspondence:

Name: "QX-IMPEX" kft,

Address: 7623 Pécs, Megyeri út 59

Email:office@qx-impex.hu

Phone: +36 30504-1148

The controller shall respond to complaints received in writing as soon as possible, but not later than 15 days from the submission of the request. If you do not receive a response from the controller within this deadline, or if you receive a response but do not agree, you can contact the authority dealing with the processing.

7.2 Secondly, contact the Authority

If you have already contacted the controller with your complaint about the processing of your personal data, but have not replied to it within the ¬ legally ¬ deadline, or have responded but do not agree with your response, you can lodge a complaint with the National Data Protection and Freedom of Information Authority (NAIH). ).

Contact NAIH:

Name: Nemzeti Adatvédelmi és Információszabadság Hatóság

Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22 / C.

Mailing address: 1530 Budapest, Pf .: 5.

Phone: +3613911400

Fax: +3613911410

7.3 In the last resort, contact the Court

The data subject may apply to the court against the data controller:

¬ in case of violation of your rights, and
¬ if the data subject does not agree with the decision of the controller on the basis of the request for opposition, or
¬ if the controller fails to meet the deadline of no more than 15 days from the submission of the request for protest (within 30 days from the notification of the decision or the last day of the deadline),
¬ if, in the event of a rejection of a request for rectification, erasure or blocking (after 25 days of receipt of the request), if the data subject does not accept the factual and legal grounds for rejecting the request for rectification, erasure or blocking,
¬ if the controller refuses the data controller's request for data processed by him or her or processed by him or her under his or her instructions, their source, purpose, legal basis, duration, name, address and activities related to data processing, data protection the circumstances, effects and measures taken to remedy the incident, as well as the legal basis and addressee of the transfer of the personal data of the data subject, may apply to a court.

During the lawsuit, the data controller is obliged to prove that the data processing complies with the provisions of the law. The action may also be brought before the court of the place where the person concerned resides or stays. The Authority may intervene in the proceedings in order for the person concerned to succeed.

Chapter 8

Data protection

8.1 Privacy Incident

A data protection incident is a breach of security that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to, personal data that is transmitted, stored, or otherwise handled.

In the absence of appropriate and timely action, a data protection incident may cause physical, material or non-material damage to natural persons, including loss of control or restriction of their personal data, discrimination, identity theft or misuse of identity.

The data protection incident shall be reported to the competent supervisory authority without undue delay and at the latest within 72 hours, unless it can be demonstrated in accordance with the principle of accountability that the data protection incident is not likely to jeopardize the rights and freedoms of natural persons.

The person concerned should be informed without delay if the data protection incident is likely to pose a high risk to the rights and freedoms of the natural person, in order to be able to take the necessary precautions.

8.2 General data protection regulations

The data controller has designed and executes the data management operations in such a way that the Info tv. and ensure the protection of the privacy of data subjects in the application of other data processing rules, such as:

The data controller (or the data processor entrusted by him / her) ensures the security of the data, as well as takes the technical and organizational measures and has established the procedural rules necessary to enforce the Information Act and other data and confidentiality rules.
The controller has taken appropriate measures, in particular, against unauthorized access, alteration, transmission, disclosure, deletion or destruction, as well as accidental destruction and damage, and becoming inaccessible due to changes in the technology used.
Ensures that the data stored in the records are not directly linked and assigned to the data subject by means of an appropriate technical solution to protect the data files processed electronically in the various registers.
During the automated processing of personal data, the data controller and the data processor provide additional measures

■ prevent unauthorized data entry;

■ prevent the use of automatic data-processing systems by unauthorized persons using data communication equipment;

■ the verifiability and traceability of the bodies to which personal data have been or may be transmitted using data communication equipment;

■ the verifiability and traceability of which personal data have been entered into automatic data-processing systems, when and by whom;

■ the resilience of installed systems in the event of a breakdown; and

■ that errors in automated processing are reported.

The data controller and the data processor (s) shall take into account the state of the art when defining and applying data security measures. Of the several possible data management solutions, the one that provides a higher level of protection of personal data has been chosen, except in cases where this would cause a disproportionate burden to the controller or processor.

Chapter 9

Other provisions

Information on data processing not listed in this prospectus will be provided at the time of data collection.

We inform our clients that the court, the prosecutor, the investigating authority, the infringement authority, the administrative authority, the National Data Protection and Freedom of Information Authority, the Magyar Nemzeti Bank, or other bodies are authorized to provide information, disclose data, transfer or documents they may contact the controller to make it available.

Qx-Impex Kft. will only provide personal data to the authorities, provided that the authority has indicated the exact purpose and scope of the data, to the extent and to the extent that it is essential to achieve the purpose of the request.

Chapter 10

Privacy wise

(definitions)

a.the GDPR (General Data Protection Regulation) is the new Data Protection Regulation of the European Union

data subject: any natural person identified or identifiable Ö directly or indirectly Õ on the basis of personal data;
personal data: data relating to the data subject ¬ in particular the data subject's name, identification mark and knowledge of one or more physical, physiological, mental, economic, cultural or social identities valamint and the conclusion which may be drawn from the data subject;
consent: the voluntary and firm expression of a wish by a data subject, based on appropriate information, giving his or her unambiguous consent to the processing of personal data concerning him or her ¬ in full or in part;
protest: a statement by the data subject objecting to the processing of his or her personal data and requesting the termination of the processing or the deletion of the processed data;
controller: means the natural or legal person, or any entity without legal personality, who or which defines the purpose for which the data are processed, makes and implements decisions on data processing (including the means used) or executes them with a data controller entrusted by him;
data management: any operation or set of operations on data, regardless of the procedure used, such as collecting, recording, recording, organizing, storing, altering, using, transmitting, disclosing, reconciling or linking, blocking, deleting and destroying data, and prevent further use. Data management includes the taking of a photograph, sound or image, as well as physical characteristics capable of identifying the person (eg fingerprint or palm print,

DNA sample, iris image);

data transfer: when the data is made available to a specific third party;
data erasure: making data unrecognizable in such a way that it is no longer possible to recover it;
data blocking: means making the transmission, access, disclosure, modification, alteration, destruction, erasure, interconnection or coordination and use of data permanently or for a specified period of time impossible;
data processing: the performance of technical tasks related to data management operations, regardless of the method and means used to perform the operations and the place of application;
processor means any natural or legal person, or any entity without legal personality, who carries out the processing of personal data on behalf of the controller ¬ including by operation of law;
third party means any natural or legal person, or any entity without legal personality, other than the data subject, the controller or the processor;
data protection incident: unlawful handling or processing of personal data, in particular unauthorized access, alteration, transmission, disclosure, deletion or destruction, and accidental destruction and damage;
data security: a set of organizational, technical and procedural rules against the unauthorized processing of personal data, in particular the acquisition, processing, alteration and destruction of personal data, the state of data management in which risk factors ¬ and thus threats ¬ are addressed by organizational, technical solutions and measures; reduced to a minimum;

Version number: 2.0 Date: 04/08/2020