Jocibusz szemelyszallitas Jocibusz
Jocibusz szemelyszallitas Jocibusz szemelyszallitas

Privacy Policy

Information about the processing of your personal data

JociBusz Kft. (hereinafter: "Data Controller" or "Service Provider") considers the protection of personal data and respect for the right to informational self-determination of the data subjects to be of paramount importance. This Privacy Policy (hereinafter: "Policy") describes in detail what data processing activities we perform and the principles according to which we process your personal data.

The Data Controller treats personal data confidentially and takes all technical and organizational measures to guarantee the security of the data.

1. Data Controller Information

Data is controlled by: JociBusz Kft.

  • Owner/CEO: Jozsef Kiss
  • Headquarters: 8230 Balatonfured, Loczy Lajos 63/A, Hungary
  • Phone: +36-70-5579-770
  • E-mail: jocibusz@gmail.com
  • Tax number: 32793590-2-19
  • Website: jocibusz.hu

2. Definitions

Explanation of terms used in this Policy:

  • Personal data: any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Data processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Data controller: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
  • Data processor: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
  • Data subject: an identified or identifiable natural person whose personal data is being processed.
  • Consent of the data subject: any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  • Personal data breach: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.

3. Legal Basis for Processing

We process personal data based on one of the following legal grounds:

  • Consent of the data subject: The data subject's voluntary, specific, informed consent to data processing (e.g., quote request).
  • Performance of a contract: Processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract (e.g., providing a service, fulfilling an order).
  • Compliance with a legal obligation: Processing is necessary for compliance with a legal obligation to which the controller is subject (e.g., fulfilling accounting and tax obligations).
  • Legitimate interest: Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

4. Details of Data Processing Activities

4.1. Quote Request, Contact

You can request a quote for our services through the form on our website or by other means (phone, e-mail).

  • Purpose of data processing: Providing quotes, maintaining contact, preparing contracts
  • Scope of processed data: Name, phone number, e-mail address, subject of quote request and other information provided by the data subject
  • Legal basis for processing: Consent of the data subject (GDPR Article 6(1)(a)) and preparation of contract (GDPR Article 6(1)(b))
  • Duration of data processing: Until the completion of the quote request, or in case of successful quoting, for the duration of the contractual relationship, as well as for the period during which civil law claims can be enforced (5 years)
  • Data processors: Hosting provider, e-mail service provider

4.2. Contractual Relationship

A contractual relationship is established when our services are used.

  • Purpose of data processing: Performance of contract, maintaining contact, invoicing
  • Scope of processed data: Name, address, phone number, e-mail address, tax number (for businesses), data of the ordered service
  • Legal basis for processing: Performance of a contract (GDPR Article 6(1)(b)) and compliance with a legal obligation (GDPR Article 6(1)(c)) based on accounting regulations
  • Duration of data processing: For the duration of the contractual relationship, as well as for the period during which civil law claims can be enforced (5 years). For accounting documents, 8 years in accordance with Act C of 2000 on Accounting
  • Data processors: Invoicing software provider, accounting office, hosting provider

4.3. Cookie Usage

Our website uses cookies to improve user experience.

  • Purpose of data processing: Improving user experience, ensuring website functionality, creating statistics
  • Scope of processed data: IP address, time of visit, pages viewed, browser and operating system used, and other non-personally identifiable visitor statistics
  • Legal basis for processing: Consent of the data subject (GDPR Article 6(1)(a)) for non-essential cookies, and legitimate interest (GDPR Article 6(1)(f)) for cookies essential for operation
  • Duration of data processing: Depending on the lifespan of the specific cookie, or until the end of the visitor's session

5. Data Processors

We use the following data processors in our data processing activities:

  • Hosting provider:
  • Provider: ResellersPanel
  • Corporate Contacts (Sales): US Toll Free: +1-855-211-0932; US: +1-727-546-4678; UK: +44-20-3695-1294; AU: +61-2-8417-2372
  • E-mail (Billing): billing@resellerspanel.com
  • Customer Service: Mon–Fri 10:00–18:00 GMT/UK; 05:00–13:00 EST/USA; 20:00–04:00 AEST/AU

The data processors assist in the execution of data processing operations and process your personal data only for the purposes specified in this Policy. The data processors do not make independent decisions and are only authorized to act in accordance with the contract concluded with the Data Controller and the instructions received.

6. Data Security

The Data Controller protects personal data with appropriate technical and organizational measures based on the following principles:

  • Confidentiality: We protect information so that only those who are authorized can access it.
  • Integrity: We protect the accuracy and completeness of information and processing methods.
  • Availability: We ensure that when an authorized user needs it, they can actually access the desired information, and the related tools are available.

The technical and organizational measures applied:

  • Encrypted data transfer (SSL)
  • Password protection and access restriction
  • Firewall and virus protection
  • Regular security backups
  • Procedure for handling data protection incidents
  • Confidentiality obligations of staff

7. Rights of Data Subjects

Data subjects have the following rights regarding the processing of their personal data:

7.1. Right to Information

The data subject has the right to be informed about facts and information relating to data processing before the processing begins.

7.2. Right of Access

The data subject has the right to obtain from the Data Controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the information specified in Article 15(1) of the GDPR.

7.3. Right to Rectification

The data subject has the right to obtain from the Data Controller without undue delay the rectification of inaccurate personal data concerning him or her and to have incomplete personal data completed.

7.4. Right to Erasure (Right to be Forgotten)

The data subject has the right to obtain from the Data Controller the erasure of personal data concerning him or her without undue delay if one of the conditions specified in Article 17(1) of the GDPR applies.

7.5. Right to Restriction of Processing

The data subject has the right to obtain from the Data Controller restriction of processing if one of the conditions specified in Article 18(1) of the GDPR applies.

7.6. Right to Data Portability

The data subject has the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and has the right to transmit those data to another controller if the processing is based on consent or on a contract and is carried out by automated means.

7.7. Right to Object

The data subject has the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (e) or (f) of Article 6(1) of the GDPR, including profiling based on those provisions.

7.8. How to Exercise These Rights

The data subject can exercise the above rights by sending a request to the Data Controller's contact details (by e-mail or mail). The Data Controller will inform the data subject of the measures taken in response to the request within 1 month of receiving the request. If necessary, taking into account the complexity of the request and the number of requests, this period may be extended by a further 2 months, of which the Data Controller will inform the data subject, indicating the reasons for the delay, within 1 month of receiving the request.

8. Legal Remedies

8.1. Complaint to the Data Controller

If you feel that your rights have been violated in connection with the processing of your personal data, please first contact the Data Controller directly. We will do our best to investigate the complaint as soon as possible and resolve the situation.

8.2. Complaint to the Supervisory Authority

The data subject has the right to lodge a complaint with a supervisory authority – in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement – if the data subject considers that the processing of personal data relating to him or her infringes the GDPR.

In Hungary, the supervisory authority is:

National Authority for Data Protection and Freedom of Information (NAIH)

  • Address: 1055 Budapest, Falk Miksa utca 9-11., Hungary
  • Mailing address: 1363 Budapest, Pf.: 9., Hungary
  • Phone: +36 1 391 1400
  • Fax: +36 1 391 1410
  • E-mail: ugyfelszolgalat@naih.hu
  • Website: https://www.naih.hu

8.3. Judicial Enforcement

In case of violation of the data subject's rights, the data subject may turn to a court against the Data Controller. The case falls within the jurisdiction of the regional court (in Hungary: Budapest Kornyeki Torvenyszek). The lawsuit can also be initiated – at the choice of the data subject – before the regional court of the data subject's place of residence or stay.

9. Handling of Data Protection Incidents

A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.

The Data Controller will report the data protection incident to the National Authority for Data Protection and Freedom of Information without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons.

If the data protection incident is likely to result in a high risk to the rights and freedoms of natural persons, the Data Controller will inform the data subject of the data protection incident without undue delay. The data subject need not be informed if any of the conditions specified in Article 34(3) of the GDPR are met.

10. Amendment of the Privacy Policy

The Data Controller reserves the right to amend this Privacy Policy. The Data Controller will inform the data subjects of the amendment through its website.

The amended Privacy Policy will be published on the Data Controller's website. The amended Privacy Policy will take effect upon publication.

11. Applicable Legislation

The following legislation primarily applies to data processing:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR)
  • Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Infotv.)
  • Act V of 2013 on the Civil Code (Ptk.)
  • Act C of 2000 on Accounting (Szamv. tv.)
  • Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Information Society Services (Eker. tv.)
  • Act XLVIII of 2008 on the Basic Requirements and Certain Restrictions of Commercial Advertising Activities (Grt.)

12. Scope of the Privacy Policy

This Privacy Policy covers:

  • the use of the jocibusz.hu website operated by JociBusz Kft.,
  • quote requests and contact,
  • contractual relationships,
  • and all data processing activities about which the Data Controller informs the data subjects.

This Privacy Policy is effective as of May 8, 2025.

13. Final Provisions

The Data Controller undertakes to ensure that all data processing related to its activities complies with the requirements set out in this Policy and the applicable legislation.

The Data Controller reserves the right to change this Policy, informing the data subjects before the changes. The changes may not affect the data processing and protection obligations prescribed by law.

14. Sample Consent Statement

We use the following wording on the quote request forms to obtain consent:

"I accept the provisions of the Privacy Policy and consent to the processing of my personal data for the specified purposes. I acknowledge that I can withdraw my consent at any time, which does not affect the lawfulness of data processing carried out based on my consent before its withdrawal."

This sample text may be modified according to the specific data processing purpose and context, but in all cases it includes the fact of consent, a reference to the Privacy Policy, and the possibility of withdrawal.

15. Contact Information

For questions related to data protection, please contact us at:

JociBusz Kft.

  • Attention: Jozsef Kiss
  • Address: 8230 Balatonfured, Loczy Lajos 63/A, Hungary
  • Phone: +36-70-5579-770
  • E-mail: jocibusz@gmail.com
Request a Quote +36-70-5579-770