Privacy Policy
Protecting your personal data is of utmost importance to us.
Last Updated: November 15, 2023
1. Introduction and General Information
MyForge Labs (hereinafter: "we", "us", or "Company") is committed to protecting your personal data and complying with applicable data protection laws. This privacy policy provides information on how we collect, use, store, and protect your personal data when using our website, as well as your rights concerning your data.
By using our websites (www.myforgelabs.com and its subdomains), you accept the practices described in this privacy policy. If you do not agree with this privacy policy, please do not use our website and services.
Data Controller Details
Name: MyForge Labs Kft.
Registered Seat: 1134 Budapest, Dévai utca 11., Hungary
Company Registration Number: 01-09-123456
Tax Number: 12345678-2-41
Email: info@myforgelabs.com
Phone: +36 30 848 4733
Applicable Legislation
Our data protection practices are governed by the following legislation:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data (GDPR)
- Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information (Infotv.)
- Act CVIII of 2001 on Certain Issues of Electronic Commerce Services
- Act XLVIII of 2008 on the Basic Requirements and Certain Restrictions of Commercial Advertising Activities
2. What Data We Collect and Why
Our Company may collect different types of data about you, depending on how you interact with us or use our services.
Data Collected Directly from You
When you contact us, register for our services, or fill out a form on our website (e.g., for requesting a quote, subscribing to a newsletter, or contacting us), we may collect the following types of personal data:
- Name and contact details (email address, phone number, postal address)
- Company details (company name, position, industry)
- Payment details (billing address, tax number)
- Content of messages, questions, or feedback you send
- Your preferences regarding marketing communications
Data Collected Automatically
When you visit our website, we automatically collect certain information from your computer or mobile device. This data helps us improve our services and your user experience:
- IP address and geographic location
- Browser type and version
- Operating system
- Date, time, and duration of the visit
- Pages viewed and interactions
- Source of the referral link to our website
Legal Basis for Data Collection
We process your personal data based on the following legal grounds:
- Performance of a contract: When you contract for our services, data processing is necessary to fulfill the contract.
- Legitimate interest: We process certain data based on our legitimate interests, such as operating our websites, developing our services, and marketing activities.
- Consent: Sending marketing communications is based on your explicit consent.
- Compliance with a legal obligation: In some cases, we need to process data to comply with our legal obligations (e.g., retaining billing data).
3. Use of Data
We use the data collected from you for the following purposes:
- Providing Services: Delivering requested services, fulfilling quote requests, providing customer support.
- Communication: Responding to your questions, informing you about changes or updates related to our services.
- Fulfilling Contractual Obligations: Processing your orders, delivering services, invoicing.
- Website Improvement: Analyzing the use of our website and services to improve them.
- Marketing: Sending customized offers and information about our services, if you have consented.
- Legal Compliance: Complying with relevant legal and regulatory requirements.
- Security: Preventing fraud, maintaining IT security, preventing data loss.
Data Retention Period
We retain your personal data only for as long as necessary to achieve the purposes mentioned above, or as required by law:
- Contract-related data: during the contract term and for 5 years thereafter (civil law limitation period).
- Billing data: for 8 years according to accounting legislation.
- Marketing data: until consent is withdrawn, but no longer than 2 years.
- Technical data (cookies): depending on the relevant cookie type, typically from 1 day to 2 years.
After the retention period expires, we securely delete or anonymize the data from our systems.
4. Sharing Data with Third Parties
We do not sell or rent your personal data to third parties. However, in certain cases, we may share your data with third parties belonging to the following categories:
Service Providers and Data Processors
We cooperate with certain service providers and data processors who assist us in providing our services:
- Cloud providers and hosting services (e.g., Google Cloud, Amazon Web Services)
- Email and communication service providers (e.g., Gmail, Mailchimp)
- Payment service providers (e.g., PayPal, Stripe, SimplePay)
- Customer service and project management tools (e.g., Asana, Jira, Zendesk)
- Analytics service providers (e.g., Google Analytics)
We enter into appropriate data processing agreements with all our service providers, obliging them to adhere to our data protection practices and handle your data securely.
Legal Compliance and Obligations
We may also share your data if:
- Required by law or a court order
- Necessary to protect our rights or property
- Necessary to prevent or investigate fraud, abuse, or security incidents
- Necessary to protect the vital interests of you or other individuals
Business Transfers
In the event of a business merger, acquisition, or sale of our assets, your personal data may be transferred to the new owner. In such cases, we will take all reasonable steps to ensure the new owner also complies with the provisions of this privacy policy.
International Data Transfers
Some of our service providers operate outside the European Economic Area (EEA). If we transfer your data to such countries, we apply appropriate safeguards to protect the data, such as:
- Data transfers to countries approved by the European Commission's adequacy decisions
- Use of EU Standard Contractual Clauses
- Certification mechanisms and codes of conduct
5. Data Security
We are committed to protecting your personal data and take appropriate technical and organizational measures to ensure data security.
Technical Measures
To protect data, we implement the following security measures:
- SSL/TLS encryption on our website and during data transmission
- Use of firewalls and intrusion detection systems
- Data encryption at rest
- Regular security backups
- Regular software updates and application of security patches
- Access control to personal data (principle of least privilege)
Organizational Measures
In addition to our technical solutions, we apply the following organizational measures:
- Regular data protection training for our employees
- Employee data protection and confidentiality obligations
- Development of data protection processes and procedures
- Regular internal data protection audits
- Development and adherence to an incident response protocol
Handling Data Breaches
In the event of a data breach (e.g., unauthorized access, data leak, data loss), we take the following steps:
- Immediate investigation of the incident
- Assessment and mitigation of the incident's impact
- Notification of the incident to the supervisory authority (NAIH - Hungarian National Authority for Data Protection and Freedom of Information) within 72 hours if it poses a risk to the rights of natural persons
- Direct notification of affected individuals if the incident poses a high risk to their rights and freedoms
- Documentation of the incident and implementation of necessary measures to prevent future incidents
Although we are committed to protecting your data, it's important to know that data transmission over the internet can never be 100% secure. Therefore, we encourage you to take precautions to protect your personal data (e.g., using strong passwords, secure internet connections).
6. Use of Cookies
Our website uses cookies and similar technologies to improve user experience, analyze website traffic, and provide personalized services.
What is a Cookie?
Cookies are small data files stored by your browser on your computer or mobile device. Cookies themselves cannot identify the user but contain a unique identifier that allows us to recognize browsing activity.
What Types of Cookies Do We Use?
We use the following types of cookies on our website:
- Strictly Necessary Cookies: These are essential for the website to function and cannot be switched off. They are usually only set in response to actions made by you, such as setting language preferences, logging in, or filling forms.
- Performance and Analytics Cookies: These allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us know which pages are the most and least popular and see how visitors move around the site.
- Functional Cookies: These enable the website to remember choices you make (such as your username, language, or region) and provide enhanced, more personal features.
- Targeting Cookies: These cookies may be set through our site by advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites.
Third-Party Cookies We Use
We use several third-party services that may set cookies on our website:
- Google Analytics (website analytics)
- Google Ads (advertising)
- Facebook Pixel (advertising, conversion tracking)
- Google Tag Manager (tag management)
- LinkedIn Insight Tag (advertising, conversion tracking)
Managing Cookies
Most browsers allow you to manage cookies. You can manage cookie settings in the following ways:
- Through our website's cookie settings panel, which appears on your first visit
- By changing your browser settings (usually found in the "Settings" or "Tools" menu)
- On third-party websites, such as www.youronlinechoices.eu
Please note that disabling cookies may affect the functionality of certain features of our website.
Cookie Storage Duration
Cookies are stored on your device for different periods, depending on the type of cookie:
- Session cookies: until the end of the browsing session
- Persistent cookies: ranging from a few minutes to several years
You can access our detailed cookie policy at this link.
7. User Rights Regarding Data
Under applicable data protection laws (especially GDPR), you have various rights regarding your personal data:
- Right of access: You have the right to request information about whether we process your personal data and, if so, access to that data.
- Right to rectification: You have the right to request the correction of inaccurate personal data and the completion of incomplete data.
- Right to erasure ('right to be forgotten'): Under certain circumstances, you have the right to request the deletion of your personal data (e.g., if the data is no longer necessary for the purpose for which it was collected).
- Right to restriction of processing: Under certain circumstances, you have the right to request that we restrict the processing of your personal data (e.g., if you contest the accuracy of the data).
- Right to data portability: You have the right to receive the personal data we process about you in a structured, machine-readable format and to transmit this data to another controller.
- Right to object: You have the right to object to the processing of your personal data if it is based on legitimate interest or public authority, including profiling.
- Rights related to automated decision-making and profiling: You have the right not to be subject to a decision based solely on automated processing that significantly affects you.
- Right to withdraw consent: If our data processing is based on your consent, you have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Exercising Your Rights
To exercise your rights, please contact us at info@myforgelabs.com or via the contact methods listed below. We will respond to your request within 30 days; in exceptional cases, this period may be extended by an additional 60 days, of which we will inform you.
Right to Lodge a Complaint
If you feel that our data processing does not comply with legal requirements, you can lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH):
National Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság - NAIH)
Postal address: 1363 Budapest, Pf.: 9.
Address: 1055 Budapest, Falk Miksa utca 9-11.
Phone: +36 (1) 391-1400
Email: ugyfelszolgalat@naih.hu
Website: https://naih.hu/
You are also entitled to turn to the courts if your rights are violated. The case falls within the competence of the regional court, which may also be the court of your residence or place of stay, at your choice.
8. Changes to the Privacy Policy
We may update our privacy policy from time to time to reflect changes in legal requirements, our practices, or the introduction of new services. The current privacy policy will always be available on our website.
In case of significant changes, we will post a notice on our website and, where appropriate, inform affected individuals via email. We recommend that you regularly review our privacy policy to stay informed about how we handle your data.
Last updated date of the privacy policy: November 15, 2023.
Previous Versions
Previous versions of the privacy policy are available upon request. If you would like to view previous versions, please write to us at info@myforgelabs.com.
HU