Privacy & Legal Policy

1. Purpose of the Data Processing Notice

Szabó Tímea Anna EV (registered office: 1158 Bp., Pestújhelyi út. 43/a, hereinafter referred to as the service provider, data controller) acknowledges the mandatory content of this legal notice. It commits to ensuring that all data processing related to its activities complies with the regulations in this policy, the applicable national laws, and the expectations defined in the legal acts of the European Union.

The data protection guidelines related to the activities of Szabó Tímea Anna EV are continuously available at

The data controller reserves the right to modify this notice at any time to comply with current legal changes and changes in personnel involved in data processing. Any such changes will be duly communicated to the audience in a timely manner.

If you have any questions related to this notice, please write to us at, and our colleague will answer your query.

The data controller is committed to protecting the personal data of its customers and partners, respecting their right to informational self-determination. The data controller handles personal data confidentially and implements all necessary security, technical, and organizational measures to guarantee the security of the data.

Szabó Tímea Anna EV, as the data controller and processor, outlines its data processing practices below.

2. Data Controller Information

If you wish to contact our company regarding data processing, you can reach the data controller at the phone number +36 30 226 3261 and the email address The data controller will delete every email received, along with the personal data provided in it, within a maximum of 8 years from the date of communication.

Name: Szabó Tímea Anna EV
Registered Office: 1158 Budapest, Pestújhelyi út 43/a
Registration Number: 58623545
Name of the Court Maintaining the Company Register: Fővárosi Bíróság (Metropolitan Court) Tax Identification Number: 48316262-1-42
Phone Number: +36 30 226 3261

3. Scope of Processed Personal Data

3.1 Personal Data to be Provided During Registration

a) Newsletter Subscription: Email address - data to be provided by filling in the field is mandatory.

3.2 Technical Data

The data controller selects and operates the information technology tools used for processing personal data during service provision in a way that ensures:

  • Accessibility to those authorized (availability);

  • Credibility and authentication of data processing (data processing credibility);

  • Verifiability of its unchanged state (data integrity);

  • Protection against unauthorized access (data confidentiality).

The data controller protects the data against unauthorized access, alteration, transmission, disclosure, deletion, or destruction, as well as accidental destruction, through appropriate measures.

The data controller ensures the security of data processing through technical, organizational, and procedural measures that provide an adequate level of protection against the risks associated with data processing.

During data processing, the data controller maintains:

  • Confidentiality: protecting information so that only those authorized can access it;

  • Integrity: ensuring the accuracy and completeness of information and processing methods;

  • Availability: ensuring that when authorized users need it, they can genuinely access the desired information, and the necessary tools are available.

3.3 Cookies

3.3.1 Purpose of Cookies

  • Collect information about visitors and their devices;

  • Remember individual settings of visitors, which may be used, for example, during online transactions, eliminating the need to re-enter them;

  • Facilitate the use of the website;

  • Provide a quality user experience.

For personalized service, a small data package, known as a "cookie," is placed on the user's computer, and it is read during subsequent visits. If the browser sends back a previously saved cookie, the service provider has the opportunity to link the visitor's current visit with previous ones, but only concerning its own content.

3.3.2 Strictly Necessary, Session Cookies

The purpose of these cookies is to allow visitors to browse the websites operated by the data controller seamlessly and smoothly, use their functions, and access the available services. The validity period of such cookies lasts until the end of the session (browsing), and with the closing of the browser, this type of cookies is automatically deleted from the computer or other device used for browsing.

3.3.3 Third-Party Placed Cookies (Analytics)

The websites operated by the data controller use cookies from third parties such as Google Analytics and By using the Google Analytics statistical service, the data controller collects anonymized information about how visitors use the websites. This data is used for website development and improving the user experience; no personally identifiable data is obtained through this process. These cookies also remain on the visitor's computer or other browsing device until they expire or until the visitor deletes them.

3.4 Data Related to Online Purchases

In the case of online purchases on the Szabó Tímea Anna EV website (, the following data is mandatory to be provided by filling in the data field:

  • Billing information: name/company name, email address, city, postal code, street, and house number;

  • Shipping address information (if the same as billing information, it is not necessary to fill in again): recipient's name, city, postal code, street, and house number;

  • Personal information: last name, first name, phone number.

3.5 Data Related to Online Transactions

Complaint handling through the webshop operated by Szabó Tímea Anna EV is conducted through email correspondence. The Technical Data Processing Notice applies to any data requested in emails.

3.6 Data Related to Newsletter Subscription

The webshop operated by Szabó Tímea Anna EV allows interested parties to subscribe to newsletters to receive information about current products, promotions, and available coupons. Newsletter subscription is always voluntary, and when subscribing to the newsletter, the following data voluntarily provided by the subscriber is processed:

Email address - data to be provided by filling in the field is mandatory.

To unsubscribe from the newsletter, one can send an email to

4. The Intended Use and Retention Period of Processed Data

4.1 Data Processing Name: Newsletter Subscription Purpose of Use: Data processing (email address) necessary for identifying the recipient for sending newsletters; no data transfer or profiling takes place. Legal Basis: Voluntary data provision Retention Period: Until unsubscribed

4.2 Data Processing Name: Website Registration Purpose of Use: Data processing (email address) necessary for identifying the registrant; no data transfer or profiling takes place. Legal Basis: Voluntary data provision Retention Period: Until registration is deleted

4.3 Data Processing Name: Cookies Purpose of Use: Data processing and handling performed by the data controller; no data transfer or profiling takes place. Legal Basis: Voluntary data provision Retention Period: Deleted at the end of the session or when the user deletes them.

4.4 Data Processing Name: Online Purchase Purpose of Use: Recording the customer's data necessary for fulfilling contractual obligations. Legal Basis: Voluntary data provision, for fulfilling contractual obligations, asserting claims arising from contractual obligations, issuing invoices according to accounting laws, and delivery. Retention Period: Until the expiration of the statutory limitation period for asserting civil law claims (up to 5 years), invoice data for the period specified in the Accounting Act (8 years).

5. Purpose, Method, and Legal Basis of Data Processing

5.1 General Data Processing Principles

The data processing activities of the data controller are based on voluntary consent or legal authorization. In the case of data processing based on voluntary consent, individuals can withdraw their consent at any stage of the data processing.

In certain situations, data processing, storage, or transmission may be mandatory due to legal obligations, and our customers will be notified accordingly. It is emphasized that if someone provides the personal data of another person, the data provider is obligated to obtain the consent of the individual concerned.

The principles of data processing are in line with current data protection regulations, including, in particular, the following:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR);

  • Act V of 2013 – the Civil Code (Ptk.);

  • Act C of 2000 – the Accounting Act (Számv. tv.);

  • Act LIII of 2017 – on the prevention and combating of money laundering and terrorist financing (Pmt.);

  • Act CCXXXVII of 2013 – on credit institutions and financial enterprises (Hpt.);

  • Act CXII of 2011 – on informational self-determination and freedom of information (

6. Data Storage Locations

Personal data of individuals (meaning data that can be associated with you) may be processed by Szabó Tímea Anna EV in the following ways: firstly, technical data related to the individual's computer, browser program, internet address, and visited pages are automatically generated in the data controller's computer system in connection with maintaining the internet connection.

Data automatically recorded during system operation includes data from the individual's logging computer generated during the voting process and recorded by the data controller's system as a result of technical processes. The system automatically logs this data at login and logout without the individual's separate declaration or action. This data, except in cases required by law, cannot be associated with other personal user data. Only the data controller has access to this data.

7. Data Transmission, Data Processing, and Those who have Access to the Data

The hosting of the websites operated by the data controller is provided by Webnode AG (located at Badenerstrasse 47, 8004 Zurich, Switzerland). Employees of Webnode AG can only access and handle electronically recorded data automatically generated during the operation of the websites. They do not transmit or profile this data. The data controller ensures that the confidentiality clauses of contracts concluded with contractual partners also cover this scope!

8. Rights of the Data Subject and Remedies

Individuals have the right to request information about the processing of their personal data. They can also request correction, deletion, withdrawal, data portability, and object to the data processing as indicated at the time of data collection or through the contact information provided by the data controller.

8.1 Right to Information

Szabó Tímea Anna EV takes appropriate measures to provide individuals with all the information about the processing of personal data, as mentioned in Articles 13 and 14 of the GDPR, and all information according to Articles 15–22 and 34 in a concise, transparent, understandable, and easily accessible form, formulated clearly and understandably.

8.2 Right of Access

The data subject is entitled to receive feedback from the data controller as to whether the processing of personal data is ongoing. If such processing is ongoing, the data subject is entitled to access the processed personal data and the following information:

  • The purposes of the data processing.
  • The categories of personal data concerned.
  • The recipients or categories of recipients to whom the personal data has been or will be disclosed, including recipients in third countries or international organizations.
  • The planned duration of the storage of personal data.
  • The right to rectification, erasure, or restriction of processing and the right to object.
  • The right to lodge a complaint with the supervisory authority.
  • Information on the source of the data.
  • The existence of automated decision-making, including profiling, and meaningful information about the logic involved, as well as the significance and the envisaged consequences for the data subject.

The data controller provides this information within one month of receiving the request.

8.3 Right to Rectification

The data subject may request the correction of inaccurate personal data and the completion of incomplete data.

8.4 Right to Erasure

The data subject is entitled to request the prompt deletion of personal data concerning them if one of the following grounds applies:

  • The personal data is no longer necessary for the purposes for which it was collected.
  • The data subject withdraws consent, and there is no other legal basis for the processing.
  • The data subject objects to the processing, and there are no overriding legitimate grounds for the processing.
  • The personal data has been unlawfully processed.
  • The personal data must be erased for compliance with a legal obligation.
  • The personal data was collected in relation to the offer of information society services.

Data deletion cannot be initiated if processing is necessary:

  • For the exercise of the right to freedom of expression and information.
  • For compliance with a legal obligation, for the performance of a task carried out in the public interest or in the exercise of official authority.
  • For reasons of public interest in the area of public health.
  • For archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes.
  • For the establishment, exercise, or defense of legal claims.

8.5 Right to Restriction of Processing

Upon request, the data controller restricts processing if:

  • The data subject contests the accuracy of the personal data (for the period enabling verification of the accuracy).
  • The processing is unlawful, and the data subject opposes the erasure of the personal data, requesting the restriction of its use instead.
  • The data controller no longer needs the personal data for the purposes of the processing, but the data subject requires it for the establishment, exercise, or defense of legal claims.
  • The data subject has objected to processing pending the verification of whether the legitimate grounds of the data controller override those of the data subject.

During the restriction period, the personal data may only be processed with the data subject's consent or for legal claims or the protection of the rights of another natural or legal person or for reasons of important public interest.

8.6 Right to Data Portability

The data subject has the right to receive the personal data concerning them, which they have provided to the data controller, in a structured, commonly used, and machine-readable format. They also have the right to transmit this data to another controller without hindrance.

8.7 Right to Object

The data subject has the right to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them, including profiling, based on public interest or the exercise of official authority. The data controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject or for the establishment, exercise, or defense of legal claims.

8.8 Automated Individual Decision-Making, Including Profiling

The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them.

8.9 Right to Withdraw Consent

The data subject has the right to withdraw their consent at any time.

8.10 Right to Lodge a Complaint with a Court

If the data subject's rights are violated, they may bring an action against the data controller in court. The court shall proceed expeditiously in the matter.

8.11 Proceedings Before the Data Protection Authority

Complaints can be submitted to the National Authority for Data Protection and Freedom of Information:

  • Name: National Authority for Data Protection and Freedom of Information
  • Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.
  • Mailing address: 1530 Budapest, Pf.: 5.
  • Phone: +36 (1) 391-1400
  • Fax: +36 (1) 391-1410
  • E-mail:
  • Website: National Authority for Data Protection and Freedom of Information

9. Other Provisions

Information about data processing not listed in this statement will be provided at the time of data collection. Clients are informed that authorities such as courts, public prosecutors, law enforcement agencies, administrative authorities, the National Authority for Data Protection and Freedom of Information, the Hungarian National Bank, or other bodies may contact the data controller to provide information, disclose data, or make documents available under legal authorization. The data controller shall only release personal data to authorities if the purpose and scope of the request are clearly defined.

Budapest, 2024. january 4.