Privacy Policy - MyHomeLibrary

Document versions

Version	Release date	Changes
2nd	July/27/2019	New Processor
1st	May/20/2018	First release

Controller

The controller of the data provided on MyHomeLibrary is: Péter Tóth, private person. Contact: MyHL.Message (@) Outlook.com.

Personal data processed by the controller, lawfulness of processing, period

The controller processes personal data for the following legal basis and period:

Personal data	Legal basis for the processing	Period
E-mail address, picture.	The data subject has given consent to the processing of his or her personal data. (GDPR Regulation, point (a) of Article 6(1))	Until the withdrawal of consent, deletion of the registration.

Processors

On behalf of the controller, personal data processing is performed by the following processors:

Processor's name	Processing activity	Personal data conserned
WinServe Cloud Services https://www.winserve.co.uk/	Application hosting and database services.	All personal data listed in the previous section.
SendGrid https://sendgrid.com/	Sending notification e-mails.	E-mail address.

Transfers

The controller does not transfer any personal data to a third party. (GDPR Regulation, Article 44)

Technical data management

Cookies

MyHomeLibrary uses cookies to ensure full functionality. Cookies are small text files which contain a unique identifier and are stored on your computer or mobile device so that the device you are using will be recognizable when you visit the web site. Cookies help you visualize the functions of MyHomeLibrary and improve your user experience.

Users involved	Purpose of data management	Personal data affected
All users / visitors.	Identify users, provide additional services.	Cookies do not contain personal data.

Google Analytics

MyHomeLibrary uses Google Analytics to get an overview of the activity of a web site user. On behalf of the controller, Google uses the collected information to evaluate how users use the web site. The resulting reports related to the activity of users help to further develop MyHomeLibrary. For more information about Google Analytics data protection and security, visit https://support.google.com/analytics/answer/6004245?hl=en

Users involved	Purpose of data management	Recorded data
All users / visitors.	Record and analyze user activity.	The IP address used, the type of browser, features of the browsing device (such as type, language), time of visit, page, feature or service used, time spent on the page.

Rights of the data subject

Data subjects may exercise of their rights directly with the MyHomeLibrary program features, or contact the controller at the above availability.

Right of access by the data subject

The data subject shall have the right to obtain from the controller information related to the processing and access to the personal data. The controller shall provide a copy of the personal data undergoing processing. (GDPR Regulation, Article 15)

Right to rectification

The data subject shall have the right to obtain from the controller the rectification of inaccurate personal data concerning him or her. The data subject shall have the right to have incomplete personal data completed. (GDPR Regulation, Article 16)

Right to erasure

The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her. Where the controller has made the personal data public, the controller shall take reasonable steps to inform controllers which are processing the personal data that the data subject has requested the erasure those personal data. (GDPR Regulation, Article 17)

Right to restriction of processing

The data subject shall have the right to obtain from the controller restriction of processing. (GDPR Regulation, Article 18)

Right to data portability

The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided. (GDPR Regulation, Article 20)

Right to object

The data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (e) or (f) of Article 6(1). (GDPR Regulation, Article 21)

Right to withdraw consent

The data subject shall have the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. (GDPR Regulation, Article 7(3))

Right to lodge a complaint with a supervisory authority

The data subject shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement if the data subject considers that the processing of personal data relating to him or her infringes the GDPR Regulation. (GDPR Regulation, Article 77)

Data security

The controller manages the data processing to ensure that the privacy of the data subject is protected. The controller protects the data using information technology solutions that best fit the state of the technology, especially against unauthorized access, alteration, transmission, disclosure, deletion or destruction, as well as inadvertent destruction and damage as well as unavailability due to a change in the technology used. However, it is important to note that although the controller takes all necessary steps to protect the user's data, no site, data transfer, computer system and wireless connection are perfectly safe.