Contact
close-to-table-favicon-new

Privacy policy

In effect since: 2025.01.01.

It is very important for me to comply with the currently applicable data protection regulations and laws. Therefore, I will discuss and present in detail my steps aimed at data protection and my processes related to data collection below.

The data is managed by closetotable, and closetotable is responsible for the processing of personal data.

Contact information:

  • Name: Sztárcsevics Gábor
  • Email address: szg1993@gmail.com

What personal data do I process and for what purpose?

Personal data refers to information that clearly enables the precise identification of an individual. On the closetotable.com website, I process the following personal data, specifying the exact legal basis for each:

Communication data

This includes any messages sent to me through the website, via email, social media, or any other form of communication. I process and retain this data to fulfill orders and provide a basis for decisions in case of potential legal claims. My legal basis for processing this data is the user's demonstrable interest in my activities, as evidenced by the messages addressed to me.

Customer data

This includes all data related to the purchase of products and services, such as the customer's name, shipping and billing address, email address, phone number, and details of the purchased products. I process this data to successfully fulfill orders and to maintain legally compliant records of purchases. The legal basis for storing this data is the performance of the contract established by the order between the customer and closetotable.com.

User data

This includes data generated during the use of the website, which enables its technical operation, ensures the security of the site, stores backups of user activities, and provides access to the most relevant content. The legal basis for processing this data is the user's clear interest in my activities, which necessitates the storage of this data to ensure the website's functionality and security.

Technical data

This includes data generated during the use of the website, such as IP address, login information, browser details, time spent on individual pages, page views and navigation paths, the number and timing of visits to pages, time zones, and device information used to access the site. The source of this data is my analytics software. I process this data to analyze user behavior on the website, maintain the secure operation of the site, and assess the effectiveness of my marketing decisions. The legal basis for processing this data is the user's clear interest in my activities, which allows me to process this data in compliance with security requirements and utilize it to enhance business operations for more effective performance.

Marketing data

This includes visitor preferences, such as what type of marketing content they are willing to receive from me. I process this data to enable participation in contests and to send advertisements related to our products/services that the user has shown interest in. The legal basis for processing this data is the user's clear interest in my activities, which allows me to process this data in compliance with security requirements and use it to enhance business performance for more effective operation. The collected data may occasionally be used for purposes such as providing targeted, relevant ads on the Facebook™ platform and other dynamic advertising spaces, and measuring the effectiveness of these ads. The legal basis for processing this data is the user's clear interest in my activities, which allows me to process this data in compliance with security requirements and utilize it to grow the business for more effective operations. In the course of my activities, I do NOT collect sensitive data such as ethnicity, religious beliefs, sexual life and orientation, political opinions, union membership, health background, or genetic or biometric information.

How do I collect data?

I can collect personal data in ways that the user directly provides to me (e.g., by placing an order or sending a message).

Additionally, certain data is automatically collected during the use of the website, for example, through so-called “cookies” and similar technologies. These will only become active after the user has given their consent.

For more information, please refer to the Cookie Policy.

I also receive certain data from external partners, such as analytics service providers like Google (non-EU partner), advertising networks like Facebook™ (non-EU partner), and payment service providers such as PayPal (non-EU partner) and Barion.

My practical steps related to data protection

Protecting users’ data and complying with applicable regulations are extremely important to me. Therefore:

  • After conducting a data protection impact assessment on the website, I create a list of the collected data, its necessity and legal basis, and its compliance with legal requirements.
  • Protecting users' data and ensuring compliance with applicable regulations are extremely important to me.
  • Therefore, I treat data protection as a top priority on my website and make significant efforts to ensure the secure collection of information gathered by the site.
  • To protect the data provided on forms and generated on the site, I use SSL certification across the entire website (Let’s Encrypt).
  • To protect the site against attacks, I use security software (IThemes Security Pro, Akismet) to defend stored data from so-called 'brute force' and viral attacks.
  • In the site's databases, purchase and user data are stored in an encrypted form (pseudonymized), ensuring that they are not readable by external parties.

In this privacy policy, I provide users with the option to request information about the processing of their personal data, as well as the ability to modify or delete their personal data through a form.

Occasionally, it is necessary to provide data to our service provider partners for business purposes (such as hosting providers, courier services, and newsletter software).

In such cases, I always ensure that the partners comply with the requirements of the GDPR regulations, and in the case of US-based partners, they participate in the EU-US Privacy Shield data protection initiative. Additionally, I sign data processing agreements with them to ensure the responsible handling of data.

Marketing communication

The continuation of marketing communication is of essential importance for the business activities. The legal basis for this data processing is the expression of interest in my services or the explicit consent of the users.

In accordance with the European Union’s Privacy and Electronic Communications Regulations (PECR), I send marketing messages to my users if they have purchased from me or have explicitly consented to receiving marketing messages.

I make it clearly possible to suspend consent and unsubscribe from these messages in all cases. Every email contains a link to unsubscribe, or a request for removal from the database can be made via the TODO email address.

Even if a user unsubscribes from marketing communication, I may still send messages, but only related to order fulfillment.

Note regarding personal data

Occasionally, it is necessary to share certain personal data with specific partners to maintain the normal course of business:
  • IT service providers and those providing troubleshooting and maintenance for computer systems.
  • Expert partners, such as lawyers, accountants, bankers, and insurers.
  • Government agencies that request reports regarding my activities.
  • Payment service providers that securely handle credit card information.
  • International data transfers.

Occasionally, I need to share users’ data with service provider partners outside the European Economic Area (EEA) in order to maintain business operations. Many countries outside the EEA do not provide the same level of data protection, which is why European laws prohibit data transfer in the absence of appropriate conditions. Whenever personal data is transferred outside the EEA, in addition to the steps discussed in point 4, I take the following measures to ensure the secure handling of data:

  • I only transfer data to countries that the European Commission considers adequate in terms of data security.
  • I only use USA-based services that are part of the EU-US Privacy Shield data security initiative.

If the above conditions are not met, I will request explicit consent from users for the data transfer. Consent can be withdrawn at any time.

Links to external sites:

  • This site occasionally contains links to external websites, or code snippets embedded in the page that ensure the functionality of external services.
  • Clicking on these links or using the embedded solutions may allow external partners to collect data about the users.

Although I make every effort to thoroughly review my partners, I do not have control over their privacy policies and am not responsible for their data handling practices.

Data retention period

I will only store users’ data for as long as required by legal, accounting, or data reporting obligations, or as necessary for the operation of the service.

When determining the retention period, I take into account the amount, nature, and sensitivity of the data, as well as the potential impact in case of a data breach.

For tax purposes, I am required to keep customers’ billing and purchase data for at least 8 years to comply with legal obligations.

Under certain circumstances, I may use the data in anonymized form for statistical purposes, in which case I will store the data indefinitely without further notice.

The rights of the visitor

As a citizen of the European Union, the General Data Protection Regulation (GDPR) grants the following rights to the users of this website:

Access to personal data

Users of the website have the right to request a copy of the personal data stored by closetotable.com. This request will generally be fulfilled free of charge and within 14 days of the request. In the case of repeated, abusive, or unjustified data requests, a reasonable fee may be charged for providing the data, and additional time may be required to fulfill the request. Furthermore, I may require proof of identity before releasing the data to prevent misuse. To request personal data, please use the contact form.

Correction of personal data

If personal data has changed or was provided incorrectly, users have the right to request the modification of the data. To modify personal data, please contact me through my contact form.

Request for deletion of personal data

Users have the right to request the deletion of all their personal data. The request will be fulfilled free of charge within 14 days of the request. After the personal data is deleted, the user account will no longer be accessible, and any purchased materials will also become unavailable, as the personal data associated with the user account is essential for accessing the service. Closetotable.com requires proof of identity before deleting personal data to prevent misuse. To request the deletion of personal data, please use the contact form.

Request to Restrict the Processing of Personal Data

Users have the right to request the restriction of their data being shared with third parties (service partners). When submitting the request, specific service partners to be restricted can be named. It is important to note that cooperation with certain service providers is essential for the operation of the website (e.g., Barion as a payment service provider), so restricting these providers will make the website's services unavailable to the user. Identity verification is required before restricting the sharing of personal data to prevent misuse. To request the restriction of personal data sharing, please use the contact form.

The official authority for data protection in Hungary is the National Authority for Data Protection and Freedom of Information (NAIH). Users can find more information about their data protection rights on the NAIH website.

National Authority for Data Protection and Freedom of Information:

  • Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.
  • Postal Address: 1530 Budapest, Pf.: 5.
  • Phone: 06 1 391 1400
  • Fax: 06 1 391 1410
  • E-mail: ugyfelszolgalat@naih.hu
  • Website: https://naih.hu/

Anonymized Data and Cookies

On the closetotable.com website, email messages, and advertisements, “cookies” and similar technologies such as tracking codes, remarketing tags, and pixels are used, which are activated after the user’s consent. These technologies help me better understand user behavior and interests, thus assisting in providing a higher-quality and more efficient service.

My goal is to make the use of closetotable.com as user-friendly and personalized as possible. If the user wants to prevent the recording of non-personal data by these technologies, this can be done in the following ways:

  • The loading of these technologies can be disabled through the cookie notice displayed on the website.
  • By disabling cookies in the browser.

You can find more information about other cookies and tracking codes used on the closetotable.com website in the Cookie Policy.

I created this blog to share the experiences and lessons I have observed and learned throughout my journey. For me, it is especially important to share my thoughts while they are fresh and inspired by the actual experiences – when I can still vividly recall what it felt like when something didn’t work, what caused the difficulty, and what advice I would have wanted to hear if someone had been teaching me. My name is Gábor Sztárcsevics, and less than two years ago, I switched to close to table play using OX long pips.
en_USEnglish
hu_HUMagyar en_USEnglish
Contact me
© 2024 CloseToTable – All rights reserved