General Terms and Conditions

This Privacy Statement (hereinafter “Information”) is a privacy statement of the BIO-FUNGI Ltd. (address:H-H-2338 Áporka, Szabadságtelep 030/10., hereinafter “BIO-FUNGI”) of personal data from you collected and managed by BIO-FUNGI.

Address of Bio-Fungi Ltd: H-2338 Áporka, Szabadságtelep 030/10.

Bio-fungi Ltd is registrated by the authority of Budapest District Court of Registration

Registration number: 13-09-123337

VAT number: 10957013-2-13

If you have any questions or comments regarding this Privacy Policy, before using website or providing any information under this Privacy Policy, please contact us by email at

Update and availability of the Privacy Policy

BIO-FUNGI reserves the right to unilaterally modify this Privacy Policy with effect from the time of the modification. With this in mind, it is recommended that you visit regularly to monitor for changes. Upon request, we will send you a copy of the current Privacy Policy.

Getting to know and accepting the Privacy Policy

By providing this personal information or data, you represent that you have become aware of and expressly agree to this version of this Privacy Policy at the time the information or data is made available.

Certain specific services may also have specific privacy policies that you may be aware of before using that particular service.

Data processed and data management purposes

We may request information about you on our website ( or about certain services, and you may voluntarily give us (CV) or publish (eg. on social media sites) information during your communication with Bio-Fungi Ltd. Some of the information we collect means „personal data” according to the point 2, paragraph 3 of the Act of EU General Data Protection Regulation 2016/679 / EU (“GDPR”) as well as Act CXII of 2011 on the right to informational self-determination and on the freedom of information (hereinafter referred to as “Info Act”).

In general, the scope of the data processed, the purposes of the data processing, the legal bases, the duration of the data processing and the persons entitled to access the data

Data Manager: Bio-Fungi Ltd. (H-2338 Áporka, Szabadságtelep 030/10., VAT number: 10957013-2-13, phone: +36 24 522 600, e-mail:

Bio-Fungi basically manages the following personal information:

  • Information collected in connection with the use of the website
  • Data managed through the social network
  • Persons authorized to data process (editor, admin)

Bio-Fungi does not use data processors to perform technical tasks related to data processing operations.

The processed data, the purposes of the data processing, the duration of the data processing and the persons authorized to access the data are set out in the following table: 


Purpose of Data Management  For Website Data processing organization Type of Personal data Storage time
Contact with customers e-mail, phone  marketing e-mail, name Until request for delete
Records of clients  clients  marketing e-mail, name Until request for delete
Records of contracted partners contracted partners  marketing Name, address, e-mail, phone number For 5 years from termination of contract
Contact with customers website visitors  marketing User data Until request for delete


Information collected for statistical purposes in connection with the use of this website

By accessing the Website, users of the Website (hereinafter the “User”) agree to all terms and conditions contained in this Privacy Policy, so please read this Privacy Policy carefully (hereinafter the “Information”) before using the Website.

What kind of information do we collect in connection with the use of the Website?

The User does not provide any personal data or information on the Website, therefore the Data Manager does not collect or manage any personal data related to the User in such a way that the User could be personally identified.

Data Manager uses the services of Google Analytics in connection with the Website. Google Analytics helps you measure website traffic and other web analytics by analysing traffic for statistical purposes. The information collected is transmitted to and stored on external servers operated by Google. Google primarily uses this information for the purposes of Data Manager to track website traffic and analyse activity on the Website. Google is permitted to pass this information on to third parties, if the law permits this. Google may also transfer such data to third parties used to process the data. Google Analytics can provide detailed information on how data is handled by Google Analytics (

Bio-Fungi retains the web analytics data provided by Google Analytics, but does not perform identification or other personal data management activities.

How do we use this information?

The data collected with the technologies above mentioned cannot be used to identify the User and Bio-Fungi, as Data Manager, does not link this data to any other identifiable data.

Purpose of data management: The primary purpose of the use of such data is to enable Bio-Fungi to operate the Website properly, which requires, in particular, the tracking of visits to the Website (production of visit statistics) and the prevention of misuse of the Website. Bio-Fungi website and the information therein may be accessed by any outside visitor. During visiting the website, the website hosting provider records the visitor data in order to check the operation of the service, to prevent abuse and to ensure its proper operation. The purpose of the recording is to collect information on the use of the website, to compile statistics and analysis of attendance and internet usage. The external service providers place on the User’s computer, so-called cookies, so that they can link the current visit of the User to a previous one. The User may refuse the request for cookies at any time in a pop-up window on the Website.

Legal base of data management: according to the GDPR, paragraph 5. of Act CXII of 2011 on the right to informational self-determination and on the freedom of information.

Scope of managed data: Website visitation and other web analytics data, date, time, IP address of User’s computer, IP address of page visited, IP address of previously visited page, data related to User’s operating system.

Duration of data management: until the User’s voluntary consent is revoked, but for a maximum period of 2 years from the date of viewing the Website. The User may revoke his / her voluntary consent by accessing the Website at any time by using the contact details provided in this Privacy Policy.

In addition, Data Manager may use this statistical information to analyse usage trends and improve and develop the functionality of the Website, as well as to obtain comprehensive traffic data on the overall use of the Website.

Data Manager may use the information obtained in this way to compile and analyse statistics on the use of the Website, and to transmit to third parties statistical data (such as number of visitors, most viewed topics or contents) and aggregate then publish anonymously.

Data managed through the social network

Purpose of data management: Introducing Bio-Fungi’s activities, structure, job opportunities, company related news on

Legal base of data management: on the basis of paragraph 5 of Act CXII of 2011 on the right to informational self-determination and on the freedom of information the Affected Person by registering on and liking the site. 

Duration of data management: Data management takes place on The duration, method of data management and the options for deleting and modifying data are governed by the community site policy. (


The website may include links to other websites that we may not control, and other websites not controlled by us may provide such access to If you leave we cannot be responsible for the security of any information you provide on other sites. It is advisable to proceed with caution and study the confidentiality documents on the websites in question.


Data security

Data Manager undertakes to ensure the security of the data and to take the necessary technical and organizational measures and procedures to ensure that the data recorded, stored or processed are protected or prevented from being destroyed, unauthorized changes. Data Manager also undertake to invite any third party to whom data are transmitted or provided with the consent of the Users to comply with the requirement of data security.

Data Manager shall ensure that no unauthorized person may access, disclose, transmit, modify, delete the data processed. The Controlled Data shall be known only by Data Manager and its employees and shall not be disclosed by the Data Manager to any third party not authorized to access the data.

Data Manager will do its utmost to ensure that the data is not accidentally damaged or destroyed. The above obligation shall be imposed by Data Manager on the employees involved in the data management activity.

User acknowledges and agrees that, while providing personal information on the Website, even though the Website operator has up-to-date security measures to prevent unauthorized access or retrieval of the data, the full protection of the data on the Internet cannot be guaranteed. In case of unauthorized access or discovery of data in spite of our efforts, the Website operator shall not be liable for any such acquisition or unauthorized access or for any damage caused to the User due to such reasons. In addition, the User may also provide personal data to third parties who may use it for unlawful purposes or in an unauthorized manner.

Under no circumstances will Bio-Fungi, as a Data Manager, collect any specific data, such as data related to racial origin, national or ethnic minority status, political opinion or party affiliation, religious or other beliefs, membership of an advocacy organization, health, pathological passion, sexual life and criminal history.

Rights and legal remedy of the Affected Person in case of website visiting, applying for a job posting and other voluntary contacts

Bio-Fung, as the website operator and Data Manager, will make every effort to ensure that your personal information is handled in accordance with the law, if you feel we have not complied with it, please email us at

In general, Affected Person may request from the Data Manager in particular: (a) information of his / her personal data management, (b) rectification of his / her personal data and (c) deletion or blocking of his / her personal data, except for mandatory data processing. The Data Manager shall provide the information in writing, at the request of the User, in a clear manner, within the shortest possible time, but not more than 25 days from the submission of the request.

If the Data Manager does not comply with the request for rectification, blocking or deletion of the Affected Person within 25 days of receiving the request, communicate in writing or with the consent of the data subject the factual and legal reasons for refusing.

The legal basis of the data management is the voluntary consent of the Users, which is given by opening the website or by accessing certain parts of the registration.

a) Right to information

Users may request information on the management of their personal data. Data Manager shall provide detailed information for the Affected Person on the data processed, the purpose, legal basis, duration, name, address and data processing activities of the Data Manager, as well as who receives or received the data. Information can be requested at the postal address of the Data Manager (H-H-2338 Áporka, Szabadságtelep 030/10.) or by e-mail

You may also ask the correction or deletion of the User’s personal information at the same contact details.

The User who feels that the Data Manager has violated his / her right to the protection of his / her personal data may enforce his / her claim before a civil court or request the assistance of the National Data Protection and Freedom of Information Authority (hereinafter the Authority). Detailed provisions regarding this and the obligations of the Data Manager are contained in the Info Act.

b.) Right to rectification, erasure, blocking

If the personal data do not correspond to the reality and the correct personal information is available to the Data Manager, the personal data will be corrected by the Data Manager. Otherwise, personal data must be deleted if its processing is unlawful; the Affected Person requests as stated above; incomplete or erroneous – which cannot be legally remedied – unless cancellation is excluded by law; the purpose of data management has ceased to exist or the statutory time limit for the storage of data has expired; it has been ordered by a court or by the Authority.

Instead of deletion, the controller shall block personal data if the Affected person requests or if the information available to him / her indicates that deletion would be prejudicial to the data subject’s legitimate interests. The personal data so locked up may only be processed for as long as the purpose of the data processing, which precludes the deletion of the personal data, is fulfilled. The controller shall designate the personal data it processes if the data subject disputes its correctness or accuracy, but the inaccuracy or inaccuracy of the personal data in question cannot be clearly established.

Affected Person shall be notified about the rectification, blocking, marking and deletion and to those to whom the data have previously been transmitted for data management purposes. Notification may be dispensed with if this is not contrary to the legitimate interests of the data subject, having regard to the purpose of the processing.

In case of the improper use of the services of the Website and upon the User’s own request, the data relating to him / her shall be deleted by the Data Manager. Cancellation will take place within 8 days of receipt of the cancellation request. The controller shall inform the Authority annually of the rejected applications by 31 January of the year following the reference year. In case of a request for rectification, erasure or blocking, the controller shall inform the data subject of the possibility of a judicial remedy and of recourse to the Authority.

c.) Right to protest

Affected Person may protest to the processing of his / her personal data if the processing or transfer of the personal data is only necessary to fulfil a legal obligation to which the controller is subject or to enforce a legitimate interest of the controller, the recipient or a third party; when personal data is used or transmitted for direct marketing, market research or scientific research; and as otherwise required by law.

In the cases specified in paragraph 21 of GDPR and the Info Act, the Affected Person may object to the processing of his / her personal data. Data Manager shall investigate the protest as soon as possible after filling the application within the shortest possible time, but not more than 25 days and shall make a decision if it is well founded and shall inform the applicant in writing of its decision. 

If the Data Manager determines that the objection of the Affected Person is well founded, the data processing, including further data collection and transfer, shall be terminated and the data shall be blocked, and the person to whom he / she has previously communicated the data and who are required to take action to enforce the right of protest. If the Affected Person does not agree with the decision of the Data Manager or if the Data Manager fails to comply with the time limit, the Affected Person may go to the Court within 30 days of the communication of the decision or the last day of the time limit.

In case of the violation of his / her rights or in case of certain cases according to the paragraph 21 of Info Act, the Affected Person may apply to the Court. The court case can be launched before the court where the Affected Person is domiciled of habitually resident.

The court will deal with the case with special procedure. The Data Manager is liable for damages caused to others due to unlawful processing of data of the Affected Person or breach of data security requirements. The Data Manager shall also be liable to the Affected Person for any damage caused by the Data Processor. The Data Manager shall not be liable if it proves that the damage was caused by an unavoidable cause outside the scope of the data management. There is no need to compensate for the damage if it comes from the intentional or grossly negligent behaviour of the injured party.

In addition, at the Hungarian National Authority for Data Protection and Freedom of Information (; 1530 Budapest, Pf.: 5; phone: + 36-1-391-1400; fax: + 36-1-391-1410; e- mail: anyone can initiate an investigation alleging a violation of the management of personal data and of practice of law in relationship with the data of general interest or access to the data of public interest. 

Data protection rights and remedies are detailed in subchapters 13-17. and 30. of Info Act.

It may be advisable to send your complaint to the Data Manager before initiating any procedure.

Public communication opportunities, other issues

The public communication channels that are part of our services are used at the User’s own risk. The individual rights to the copyright of the various posts belong to that User, however, the User may not assert any proprietary rights or claims against the Data Manager, and Bio-Fungi, as the Data Manager, has the right to quote without limitation, reproduce and / or moderate and / or modify them.

Users have the opportunity to send their opinions and comments to the Data Manager, however, as a Data Manager, Bio-Fungi does not publish or delete any post that is in violation of law, violates privacy or does not comply with the Data Manager’s business policy or principles. In addition, comments may only be printed, downloaded or distributed by third parties for personal use and may only be used with the written consent of the Data Manager.

Please note that comments and public communications through public communication channels are subject to various laws.

Using the Internet comes with a variety of privacy threats. Please note that the opinions expressed on this website are personal information, from which you may infer special details, including origin or political opinion. This information will be accessible to everyone. We recommend that you use PET technology (Privacy Enhancing Technology) to protect your privacy. You can find information on many websites.


Important URLs

Hungarian National Authority for Data Protection and Freedom of Information:

National Media and Infocommunications Authority

Current legislation:


This Privacy Policy shall be regulated directly and obligatory by GDPR, as well as the Hungarian Law specially the Act CXII of 2011 on the right to informational self-determination and on the freedom of information. 

Bio-Fungi, as Data Manager, reserves the right to make unilateral changes to this Privacy Policy at any time without prior notice to you. The User must accept the change on the Website in order to continue using the Website as provided by the Website. Modifications will become effective after accepting them and with the first use of the Website.

Áporka, 10 September 2019