Value on Board • Privacy policy

Privacy Policy

‍

This document contains requirements for the processing or processing of personal data.

We would therefore like to inform you of the principles and procedures for the processing of personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of personal data and on the free movement of such data; Regulation repealing Regulation (EC) No 46/2001 (GDPR).

The text includes the following terms: "User", "Valueonboard Pages / Surveys / Questionnaires" and "Third Party" as defined in the General Terms and Conditions.

The term "System" refers to software that enables Users to conduct questionnaires / surveys to meet the User's requirements and to perform statistical analysis based on such data.

‍

I. General Information

Identifier and contact details of the data controller: Value Based Solutions Limited Liability Company, registered office: 1075 Budapest, Károly krt. 5/a, company number: 02-09-083516 (limited liability company registered under Hungarian law)
(hereinafter referred to as Valueonboard), e-mail: support@valueonboard.com.

Data Protection Officer: Henriett Biró, henriett.biro@valueonboard.com

Transferring Personal Data to a Third Country or International Organization: Valueonboard transmits personal information to third countries, namely the United States, but only to companies that have committed themselves to complying with Privacy Shield privacy policies. These companies only act as data processors.

‍

Automated Individual Decision Making (Profiling): Valueonboard does not perform profiling or automated individual decision making.

Information on the nature of the provision of information: Where the processing of personal data is subject to a contract or legal obligation, publication is a legal requirement. If personal data are processed with the consent of the data subject, the provision of data is a contractual requirement.

Supervisory Authority:
You can also appeal to the National Authority for Data Protection and Freedom of Information:

Name: National Authority for Data Protection and Freedom of Information
Headquarters: 1024 Budapest, Szilágyi Erzsébet fasor 22 / C.
Website: www.naih.hu
Phone: +36 (1) 391-1400
E-mail: ugyfelszolgalat@naih.hu

Valueonboard acts as a personal data processor and processor. The Valueonboard Personal Data Manager position applies to the personal data of Users and natural persons visiting the Valueonboard website (Article II of these Rules). With the personal data that the User has saved to the Valueonboard servers (the User prepares a questionnaire in which the respondents upload their personal data), the Valueonboard acts as a processor or only provides the User with data storage. The User is the Administrator of these personal data (Article III of these Terms and Conditions).

‍

II. Valueonboard as a personal data manager

Valueonboard acts as the manager of the personal data of Users and natural persons visiting your website.

Why do we process personal information?
To fulfil your contract or legal obligations, Valueonboard primarily handles the following personal information:

surname first name,
email address, phone number,
company name, identification number, tax number, seat

In addition, Valueonboard processes data obtained from Users and natural persons who use the Valueonboard system or visit the Valueonboard website: cookies, log files (IP address or other online identifier).

The Company also manages personal information that originates from the User but does not apply to the User. In such a case, the User is responsible for the legality of obtaining, storing and transmitting personal data from another person as a data controller.

In the event that Valueonboard wishes to process other personal information that is listed in this article, or for other purposes, you may do so only on the basis of a valid consent for the processing of personal data. A contribution to the processing of personal data must be given in a separate document.

All payment information is managed by a third party, PayPal Inc. (which is the parent company of PayPal (Europe) S.à r.l. et Cie, S.C.A.).

How long do we process personal information?
The User's personal data will be processed for the duration of the contractual relationship and for up to 3 years after the termination of the contractual relationship. Personal data that is subject to specific legislation will be processed for the time required by them.

Do personal data come from Hon?
Personal information is obtained directly from the parties involved when the contract is concluded. We always inform stakeholders about what personal information is needed to reach an agreement.

‍

III. Valueonboard as a processor of personal data

Valueonboard provides storage space on its own servers for data used by User's Valueonboard systems. User data may also include personal data of natural persons. We act as a data processor against personal data stored by the User (personal data of the respondents). The User is the data controller of this personal data.

If the User collects personal information from the questionnaires using the questionnaires, he / she becomes the data controller of the personal data and is obliged to comply with the GDPR Privacy Policy and related legislation. Valueonboard is not responsible for any violation of the Privacy Policy by the User.

Warning for respondents

‍
Use of the Valueonboard System may be governed by the User's policies and rules if the User has one. If you provide personal information to the User, please contact the User with your personal data protection questions. We are not responsible for the privacy and security rules used by the User, which may differ from these privacy policies.

What is the purpose of processing and how do we handle the data?

‍
Valueonboard does not perform any action on the User's data, except storing it on Valueonboard's servers, not modifying it, publishing it or forwarding it to third parties (unless provided to the authorities in accordance with the law), except as otherwise provided by the User It has.
The sole purpose of the processing of personal data is to store them and make them available to the User.

What kind of personal data are we processing?

‍
Respondents only process their personal data that were saved on Valueonboard servers using the Valueonboard questionnaires, ie the data provided by respondents. These are primarily surname, first name, gender, age, workplace, address, e-mail, and other personal data that the User receives through the questionnaire.

How long do we process personal information?

‍
Valueonboard processes the personal data with the duration of the contract with the User. After the User terminates your account, all personal data associated with the account will be deleted from the system. Restoring personal data after deleting your account is not possible.

IV. Personal data users

Valueonboard does not forward personal data to additional data controllers. The processors of personal data are:

companies, or self-employed natural persons who are engaged in accounting and are responsible for carrying out accounting operations;
companies, or entrepreneurial natural persons who deal with IT solutions and are responsible for administration and development of software used by Valueonboard;
companies, or self-employed natural persons providing server services and storing data;
e-mail and CRM services companies / companies.

The processing of personal data may be processed by processors solely on the basis of a contract for the processing of personal data, ie guaranteeing the organizational and technical security of the data for the purpose of processing, while not using the data for other purposes.

Personal data may, under certain circumstances, be disclosed to law enforcement bodies (courts, police, notaries, tax authorities, etc.) or to other entities that are governed by a separate law.

V. Methods of data protection

We will use appropriate technical and organizational measures to prevent unauthorized or accidental access to the User's data. Technical measures include the use of technologies that prevent unauthorized access by third parties to the User's data. For maximum protection, user and end-user data is encrypted, primarily the passwords used for Valueonboard login, communication in the Valueonboard system, and all data stored on the server. Organizational measures include rules on the behavior of subordinates, which are part of the Valueonboard's internal policy and are therefore considered confidential for security reasons. Valueonboard ensures that if your servers are located in a third-party data center, you can provide similar technical and organizational measures.

‍

VI. Rights of the data provider

User as Data Provider:

(a) have the right to access personal data: the data subject has the right to receive information from Valueonboard that he has processed the personal data of the data subject and, if so, the right to access such personal data and the following information: (a) processing its goal; (b) the categories of personal data concerned; (c) the persons whose personal data have been provided or made available; (d) the intended duration of the storage of personal data; (e) the existence of the right to require the controller to rectify or erase personal data or to limit its processing or to object to such processing; (f) to lodge a complaint with the Supervisory Authority; (g) any available information on the source of the personal data, if not the data subject; h) the fact that automated profiling, including profiling, works in the background. The data subject may also receive a copy of the processed personal data.

(b) have the right to the rectification of personal data: The data subject has the right to correct inaccurate personal data concerning him or her, and to correct incomplete personal data.
(c) have the right to delete personal data: The data subject has the right to have his / her personal data deleted immediately, if: a) the personal data are no longer valid for the reasons for which they were collected; (b) the data subject's consent is withdrawn by the data subject and there is no further legal justification for the processing; (c) the data subject objects to the processing and there is no compelling reason for the processing; d) personal data have been processed unlawfully; (e) personal data must be deleted in order to fulfill a legal obligation under EU or Czech law; (f) personal data were collected in connection with the provision of information society services. However, the waiver shall not apply if processing is required to fulfill legal obligations, establish, enforce or protect legal claims, and in other cases specified in the GDPR.
(d) have the right to limit processing: The data subject has the right to restrict processing in the following cases: a) the data subject denies the accuracy of the personal data for as long as necessary to verify the accuracy of the personal data; (b) the processing is unlawful, but the data subject refuses to delete the personal data, but instead requires a limited use of the data; c) Valueonboard no longer requires the processing of personal data, but the data subject is still required for legal claims; (d) the data subject has objected to the processing until he / she is satisfied that our legitimate interests are beyond reasonable grounds.
(e) has the right to object to processing: The data subject has the right to object to the processing of personal data concerning him at any time. In this case, Valueonboard will not process the person's data unless you find a serious justification for their processing that goes beyond the interests, rights and freedoms of the person concerned, or the definition, exercise or protection of legal claims.
(f) have the right to transfer the data: The data subject has the right to receive from us the personal data that he / she has provided in a structured, commonly used and machine-readable format, and to pass this information on to another administrator without preventing this Valueonboard. , if: a) processing is based on consent, and b) processing is automated. When exercising the right to transfer data, the data subject has the right to transfer data directly to one system administrator if this is technically feasible.
(g) have the right to lodge a complaint with the supervisory authority: If the data subject considers that his personal data are not processed in a lawful manner, he has the right to lodge a complaint with the supervisory authority. Contact details of the Authority: National Authority for Data Protection and Freedom of Information. Headquarters: 1024 Budapest, Szilágyi Erzsébet fasor 22 / C. Website: www.naih.hu. Phone: +36 (1) 391-1400. E-mail: ugyfelszolgalat@naih.hu.
(h) have the right to rectify or delete personal data or processing restrictions: It is our duty to notify individuals whose personal data have been made available, personal data have been corrected or deleted, or processing restrictions have been imposed unless this is impossible or unreasonable requires effort. If the affected person asks, we will inform the affected person about these changes.
(i) have the right to be informed in the event of a personal data breach: If a particular breach of personal data security is likely to pose a high risk to the rights and freedoms of individuals, it is our duty to inform the data owner immediately.
(j) have the right to withdraw consent to the processing of personal data: If consent is required for the processing of any part of the personal data, the data subject may at any time withdraw their consent in writing to the processing of personal data at support@valueonboard.com.

VII. Cookie and protocol files

We use cookies to identify users at www.valueonboard.com, which are small text files and record user activities. In the cookie file, the text often consists only of numbers and letters that uniquely identify the user's computer, but do not contain specific personal information about the User.

The www.valueonboard.com website automatically identifies the user's IP address. An IP address is a number that is automatically assigned to a user's computer when connected to the Internet. Information about activities on the server is recorded in the log file, which allows further processing of the data.

Why use cookies?
Cookies and related technologies serve multiple purposes, including:

Edit: Use Valueonboard cookies to deliver personalized content, adapt to users' needs, and provide a user-friendly website.
Marketing: Valueonboard uses cookies to track your advertising campaigns and user comments, logins, and discount coupons, as well as promotions and different tournaments.
Diagnostics: Valueonboard uses cookies to diagnose and repair technical issues reported by the User or Programmer that may be associated with the ISP's IP addresses.
Analysis: Valueonboard uses cookies and other identifiers to collect data and analyze the performance of www.valueonboard.com.

Third party cookies are also available on www.valueonboard.com. This can happen because, for example, we have assigned a third party to analyze the pages. The Valueonboard uses the following providers:

Facebook, Inc. (facebook.com, facebook.net)
Google Inc. (googleapis.com, google-analytics.com, google.com, googleadservices.com, googletagmanager.com)

Cookies settings

Most browsers automatically accept cookies. However, it is possible to use settings that block or remove them. Users at www.valueonboard.com have the right to set their browsers on their computer to disable the use of cookies.

We use two types of cookies, constants and one-time cookies. They remain on the hard drive even after the browser closes. Use them at www.valueonboard.com when they go back to the website. Permanent cookies can be deleted. Single cookies are deleted by closing the browser.

Information about disabling or deleting cookies used in browsers is usually provided in the privacy policy or in the browser help.

The User Browser automatically alerts you to any information you see on the www.valueonboard.com website. When you subscribe to www.valueonboard.com or browse your web pages, servers automatically record certain information that your browser sends each time. These files (so-called "log files") may contain information such as request for a web page (request), IP address, browser type, browser language, links / exit pages and URL, platform type, number of clicks , domain names, landing pages are the number of pages viewed and the order of the pages, the time spent on each page, the date and time of the web request, and one or more cookies that uniquely identify the web browser.

VIII. The law applicable to the protection of personal data

Valueonboard declares that, in order to ensure the protection of personal data, we will consider the following laws:

European Union legislation

All legislation based on Article 16 of the Treaty on the Functioning of the European Union and Articles 7 and 8 of the fundamental rights of the European Union, namely:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46 / EC (General Regulation) protection of personal data);
Directive 2002/58 / EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector;
Commission Regulation (EU) no. 611/2013. 24 June 2013 Notification of personal data breaches of Directive 2002/58 of the European Parliament and of the Council / EC Electronic Communications Data Protection (to a limited extent);
Directive 2000/31 / EC of the European Parliament and of the Council of 8 June 2000 on certain legal aspects of information society services, in particular electronic commerce, in the internal market (to a limited extent).

Council of Europe Legislation

Council of Europe Convention No 108 of 28 January 1981 for the Protection of Individuals with regard to Automatic Processing of Personal Data.

Hungarian legislation

2011 CXII. Act on Information Self-Determination and Freedom of Information
1999 LXXVI. copyright law.

‍

IX. Final provisions

The Data Controller reserves the right to unilaterally amend this Privacy Policy.

The Data Controller publishes the current version of this Data Management Guide on its website. With the use of the service provided by the Data Controller, the Data Subject accepts the provisions of the revised Data Management Information by way of implied conduct.

Last Updated: November, 27 2020