Ács Magdolna

Headquarters: 1084 Budapest Mátyás tér, 14
Tax number: 00000000-0-00

Please read carefully this privacy statement (the following: Prospectus), which describes our practices regarding the processing of your personal data in accordance with the General Data Protection Regulation (GDPR, ie Regulation 2016/679 of the European Parliament and of the Council). This Prospectus applies to persons (You) who use the services of the Data Controller as consumers. It describes how the Data Controller collects, uses and, in certain cases, shares your personal data with third parties, and provides information about your “data subject” rights in relation to data processing.

The Data Controller (Imprint) is committed to protecting the personal data and privacy of individuals who visit this website. This information and statement is primarily concerned with the confidentiality and protection of the personal data of customers and newsletter subscribers via the Internet, but also includes visitors to the site. We summarize how the owner may collect and use information about you and how it may be used. The data will not be passed on to unauthorized persons and will be used in the form specified in this prospectus.

In individual cases in contracts, the purpose of data management may change, which is done under the conditions set out in the given contract.

The prospectus provides you with important information about the protection of your personal data and your rights in this regard. If the user does not accept these terms, he has the right to suspend the use of the website and stop browsing without providing personal data.


1.1 Data management information

In case of any comments, questions or complaints concerning our data protection procedures, we are available at the following contacts: Magdolna Ács, 1084 Budapest Mátyás tér 14. or write to acs.magdolna@gmail.com-mail


Data controller Responsibilities
Magdolna Ács 1084 Budapest, Mátyás square 14. All activities

Depending on your choice, you are entitled to access our websites without providing your personal data, but it is essential to accept the cookie-cookie policy for browsing, and to approve the privacy information and statement in case of newsletter subscription. Personal data is all information that relates, directly or indirectly, to a natural person who can be identified by an identification number or the data associated with it. In the event that the Owner of the Site collects your personal information, the data will be collected in a transparent and confidential manner.

Your personal information is information that can be used to identify you, such as: last name, first name, nationality, telephone number, postal address, e-mail address. Your personal data will be collected voluntarily by the owner when browsing the site, indicating in each case the data that must be provided to achieve the purpose. If you do not wish to provide this information, you will not be able to access certain functions and services of the website. The collection of optional data is used to learn about user needs and to improve the website and services.

The Owner shall take all measures to ensure that the personal data processed by her is accurate and up to date.

The following personal data is processed:

Surname, first name, company name and contact name (in case of company)
Registered office address (in case of a company), residential address, postal address
E-mail address
Phone number
System information (IP address, system version, resolution, statistics about pages viewed on the website, browsing habits, behavior pattern)

Duration of data management:

For direct marketing contributions, until the user’s consent is revoked
For profile data, 4 years since last login
With regard to purchase data, the Accounting law. 8 years pursuant to Section 169 (2)

Terms of data transmisson

The Data Controller may, to the extent necessary, transfer the data it manages to persons and companies designated by it in the following areas:

Data processing
Legal representation
Bodies empowered by law to handle disputes
Receivables management

Data processors

When purchasing in a web store, the Data Controller (based on the delivery method indicated by the User) provides the User’s name, delivery address (in case of courier service, e-mail address and telephone number – to agree on the date of delivery) and the purchase price of the product to a delivery company for the purpose of delivering the product to the User.

Courier services (data processors) used by the Data Controller:

  • If you choose courier service or GLS point:

GLS General Logistics Systems Hungary Package-Logistics Ltd. (headquarter: 2351 Alsónémedi, GLS Európa road. 2., company registration number: 13-09-111755, tax-number: 12369410-2-44)

  • In case of postal delivery:

Magyar Posta Zrt. (Registered office: 1138 Budapest, Dunavirág road. 2-6., Company registration number: 01-10-042463, tax number: 10901232-2-44)

Subject to this consent, the User accepts the General Terms and Conditions of the delivery company of her choice.

Companies and persons performing data processing or data management

The owner, Magdolna Ács, handles the data management. In addition to the owner, other companies are also involved in the management and storage of the data of contractual customers.

Which companies are involved in data management?

Companies involved in data management in the course of the Owner’s activities:

It is necessary to list all service providers where personal data appears:

  • Hosting provider: MikroVPS Kft. : 9985 Felsőszölnök, Hármashatár út 33., support@mikrovps.hu, +3694200210 – https://www.mikrovps.net/en/about-us/privacy-policy
  • Google Inc. : 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, additional contacts, mail system, cloud data and file storage, online document management, and related services: Google Drive, Google Docs, Google Search Console, Google Analytics , Google AdSense, Google AdWords, YouTube, Blogger, Chrome Browser Support – Google Privacy and Privacy Policy.
  • Facebook Ireland Ltd .: Support for 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 Ireland, other products and features offered by Facebook, Instagram, Messenger and Facebook – Privacy Policy and Privacy Officer Contact.
  • Speciális esetekben a szerződés tartalmazhat további adatfeldolgozó személyeket vagy cégeket.

Data ownership rights and enforcement

If you do not want your personal data to be used to communicate commercial offers, you have the right to prohibit this without justification. You must send your request for cancellation in writing to the Data Controller, by e-mail or post, to the contact details indicated in the Imprint.

Protection of personal data of minors and persons with limited legal capacity

Magdolna Ács‘s website and the content of her publications are mostly not intended for minors under 13 years of age. We do not process or collect personal information about children under the age of 13 without verifiable parental or guardian consent. Your parents or guardians can request the release or deletion of data about the child. If the age becomes apparent to the Data Controller during the data management and data processing, then the data may be used for the purpose of obtaining parental consent.

The consent of a legal representative is required for the declaration of an incapacitated and incapacitated minor, except for those parts of the service which are intended to be en masse in everyday life and which do not require special consideration.

Management of cookies

You can read more about the handling of cookies in the Cookie Management statement.


  • Data processor: a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller
  • Data management: any operation or set of operations on personal data or data files, whether automated or non-automated, such as: collecting, recording, organizing, segmenting, storing, transforming, altering, querying, viewing, using, communicating, transmitting, distributing, otherwise making available, reconciling, linking, restricting, deleting, destroying
  • Data transfer: making personal data managed by the Data Controller available to third parties
  • Privacy Incident: A security breach that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or unauthorized access to personal information that is transmitted, stored, or otherwise handled.
  • GTC: the General Terms and Conditions published on the website, which set out the rules of sales of the Data Controller’s products and services
  • Identifiable natural person: a natural person who can be identified, directly or indirectly, by one or more factors relating to an identifier, such as: name, identification number, location data, online identifier, physical, physiological, genetic, intellectual, economic, cultural or social identity
  • Recipient: a natural or legal person, public authority, agency or any other body to whom personal data are communicated, whether or not a third party
  • Consent of the data subject: a voluntary, clear and well-informed, explicit statement of the will of the data subject to indicate his or her consent to the processing of personal data concerning him or her by means of a statement or an act unequivocally confirming the confirmation
  • Data subject: A natural person identified or identifiable on the basis of any information
  • Users: visitors to the websites operated by the Data Controller, available at http://www.gingerpalace.gallery and at other addresses specified therein
  • Third party: a natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor or persons who have been authorized to process personal data under the direct control of the controller or processor
  • Authority: National Data Protection and Freedom of Information Authority (seat: 1125 Budapest, Szilágyi Erzsébet alley 22 / c., Phone: 06-1 391-1400, fax: 06-1 391-1410, e-mail: ugyfelszolgalat@naih.hu, website : naih.hu)
  • Partner / Customer: a natural person who enters into a contract with the Data Controller on a website for the sale of a product or the provision of a service
  • Registration: recording the personal data of the website user, with which he creates a user account
  • Personal data: any information about the data subject
  • Service: product sales and other services provided by the Data Controller to its Clients, Partners and Users on the website or in any other way, detailed in the GTC
  • Website: the websites operated by the Data Controller, available to Gingerpalace and other addresses