Privacy Policy

1. Introduction

Hoscaire Kft., as the data controller (hereinafter referred to as “Data Controller”), hereby informs you about its practices regarding the processing of personal data related to the use of the website taylorconcierge.com (hereinafter referred to as “Website”), the organizational and technical measures taken to protect personal data, and your rights and options for enforcing these rights.

This Privacy Policy and our data processing practices comply with the relevant legal regulations, including but not limited to:

• Regulation (EU) 2016/679 of the European Parliament and the Council (GDPR) on the protection of natural persons regarding the processing of personal data;
• Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Info Act);
• Act V of 2013 on the Civil Code (Ptk.);
• Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Services Related to the Information Society (Eker Act);
• Act C of 2003 on Electronic Communications (Ehtv);
• Act CLV of 1997 on Consumer Protection (Consumer Protection Act);
• Act CLXV of 2013 on Complaints and Public Interest Disclosures (Pktv.);
• Act XLVIII of 2008 on the Basic Conditions and Certain Restrictions of Commercial Advertising (Grtv.).

The Data Controller does not specifically collect personal data; however, personal data may be provided by visitors. Therefore, in accordance with the principle of due diligence, we present our principles and practices for such cases below.

Personal data is voluntarily provided by you to the Data Controller during your communication. Therefore, we ask that you ensure the accuracy, correctness, and precision of the data you provide, as you are responsible for its validity. Incorrect, inaccurate, or incomplete data may prevent you from using the Data Controller’s services.

If you provide personal data of another person, the Data Controller assumes that you have the necessary authorization to do so.

2. Definitions of Key Terms

• Personal data: Any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, particularly by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
• Data processing: Any operation or set of operations performed on personal data, whether by automated or non-automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
• Data controller: A natural or legal person, public authority, agency, or other body that determines the purposes and means of processing personal data, alone or jointly with others.
• Data processor: A natural or legal person, public authority, agency, or other body that processes personal data on behalf of the Data Controller.
• Data breach: A security breach leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data.

3. The Data Controller

The Data Controller is Hoscaire Kft. (hereinafter referred to as “Data Controller”, Company Registration Number: 01-09-432701, Tax Number: 32598395-2-41, Registered Office: 1021 Budapest, Hűvösvölgyi út 64-66., Representative: Tamás Harangozó, Managing Director, Phone: +36 30 465 9939, Email: office@taylorconcierge.com).

4. Principles of Data Processing

The processing of personal data must be lawful, fair, and transparent to the data subject.

Personal data may only be collected for specified, explicit, and legitimate purposes.

Processed data must be appropriate, relevant, and limited to what is necessary for the purposes of processing.

Processed data must be accurate and, where necessary, kept up to date. All reasonable measures must be taken to ensure that inaccurate personal data are deleted or corrected without delay.

Personal data must be stored in a form that permits identification of data subjects only as long as necessary for the purposes of processing.

Personal data must be processed in a way that ensures appropriate security using suitable technical or organizational measures, including protection against unauthorized or unlawful processing, accidental loss, destruction, or damage.

The Data Controller is not required to appoint a Data Protection Officer under Article 37 of the GDPR.

5. Scope of Data Subjects

Data subjects affected by data processing include visitors to the Website operated by the Data Controller, newsletter subscribers, individuals inquiring about the Data Controller’s services through the Website, users who like or subscribe to the Website on Facebook, and those who contact or subscribe via chatbot (Facebook Messenger, etc.).

6. Processed Data

 6.1. In the case of newsletter subscription on the Website, the Data Controller processes the following data of the subscriber: name, email address, IP address. 

6.2. In the case of inquiries about services on the Website, the Data Controller processes the following data of the interested party: name, email address.

6.3. Data processed for Website visitors: Various types of cookies may be installed on the visitor’s device during the use of the Website (see Section 11 for detailed information on cookies). Certain cookies may store the visitor’s IP address or part of it, browser type, data related to the use of the Website (visit time, visited pages, session duration, number of clicks).

7. Purpose of Data Processing

 7.1. In the case of newsletter subscription, the purpose of data processing is to provide the newsletter service, including informing about discounts, the Data Controller’s products, and services. 

7.2. In the case of inquiries sent through the Website, the purpose of data processing is to inform the data subject about the service of interest. 

7.3. The purpose of cookies used during the operation of the Website is detailed in Section 11.

8. Legal Basis for Data Processing

8.1. In the case of the newsletter service, the legal basis for data processing is the voluntary consent of the data subject (Regulation Article 6(1)(a)). The Data Controller is also entitled to process the email address and IP address based on Section 13/A of the Eker Act, as these are technically necessary for providing the service. 

8.2. In the case of data provided for inquiries sent through the Website, the legal basis for data processing is the voluntary consent of the data subject (Regulation Article 6(1)(a)). 

8.3. In the case of cookies installed on the visitor’s device through the Website, the legal basis for data processing:

• For cookies that are technically necessary for the operation of the Website and for the use of services and functions provided on the Website: Section 13/A of the Eker Act, Regulation Article 6(1)(b).
• For cookies that serve convenience or marketing functions or analyze Website usage and improve performance: the voluntary consent of the data subject (Regulation Article 6(1)(a)). 

8.4. The Data Controller may also process the data subject’s data if it is necessary to enforce its legitimate interests, except where such interests are overridden by the data subject’s interests, fundamental rights, or freedoms requiring the protection of personal data (Regulation Article 6(1)(f)). This may include cases where the Data Controller has a claim against the data subject (e.g., outstanding invoice).

9. Duration of Data Processing

9.1. Data processed during the newsletter service is retained by the Data Controller until the data subject unsubscribes from the newsletter service or requests deletion of their data. 

9.2. Data processed for inquiries sent through the Website is retained by the Data Controller until the data subject is provided with the requested information. The Data Controller deletes the data at the latest 1 year after providing the requested information unless the data subject contacts the Data Controller again. In the case of repeated contact, the Data Controller retains the personal data for up to 1 year from the last response. 

9.3. The lifespan of cookies is detailed in Section 11. Data processing related to “liking” or subscribing to the Website on Facebook continues until the data subject requests deletion (unsubscribing, revoking the “like”).

10. Access to Data (Recipients)

Authorized employees of the Data Controller, contractors with whom the Data Controller has a contractual relationship and whose access to personal data is necessary for fulfilling their tasks, as well as the executive officer and their deputy of the Data Controller, may access personal data. 

Personal data is only transferred to third parties for data processing purposes. The data processor may only process personal data as instructed by the Data Controller, may not process data for its own purposes, and must store and retain personal data according to the Data Controller’s instructions. 

10.1. The Data Controller provides the newsletter service through newsletter management software. The operator of the newsletter management software acts as a data processor and processes the personal data of subscribers (name, email, IP address) in the course of providing the service. The Data Controller currently does not offer a newsletter service to visitors. 

10.2. The Data Controller uses Google Analytics, operated by Google, Inc., to analyze Website usage, collect information, and generate statistical reports without individually identifying visitors. This service uses cookies, which are installed on the visitor’s device. The data collected by cookies regarding Website usage is stored on servers of Google LLC, the data processor (Registered office: 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, Phone: +1 650-253-0000, Email: data-protection-office@google.com). 

Google LLC is listed under the Privacy Shield Framework compliance list. 

10.3. The Data Controller’s hosting provider’s name, address, and contact details: 

IONOS is the trading name of IONOS Cloud Ltd. 

Company Registration No. 03953678, Registered in England and Wales. 

VAT No. 752539027.

Registered Office: No.2 Cathedral Walk, The Forum, Gloucester, GL1 1AU, United Kingdom 

Telephone number: +44 (0) 1452 541 285 

Email: info@ionos.co.uk

11. Cookies Used on the Website

A cookie is a string of text information that the Website transmits to a small file on the user’s computer or mobile device’s hard drive. A cookie typically contains the name of the domain from which it originated, the validity period of the cookie, and a randomly generated number (value). 

The cookies used by the Website serve various purposes. Some cookies are technically necessary for the operation of the site, as without them, the site and its basic functions would not be usable. Some cookies facilitate the use of the Website by remembering user actions and personal settings (e.g., language, font size, and other individual display settings) for a specified period, so the user does not have to enter them again each time they visit or navigate from one page to another. Certain cookies enhance Website performance by collecting and reporting statistical data on Website usage. Some cookies serve advertising purposes by facilitating the display of advertisements that are of the greatest interest to visitors. 

The Data Controller applies the following cookies on the Website:

Cookie	Domain	Description	Duration	Type
uncode_privacy[consent_types]	taylorconcierge.com	This cookie is set by Uncode WordPress theme and is used to manage privacy settings on the website.	1 year	Necessary
_ga_*	.taylorconcierge.com	Google Analytics sets this cookie to store and count page views.	1 year 1 month 4 days	Analytics
_ga	.taylorconcierge.com	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site’s analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.	1 year 1 month 4 days	Analytics
webp_lossy_supported	taylorconcierge.com		never	Other
webp_lossless_supported	taylorconcierge.com	taylorconcierge.com	never	Other
rc::a	google.com	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.	never	Necessary
wpEmojiSettingsSupports	taylorconcierge.com	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user’s browser can display emojis properly.	session	Necessary
rc::c	google.com	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.	session	Necessary

If the visitor has consented to the use of cookies on the Website, they still have the option to modify the cookie settings or delete cookies from their device. Web browsers allow users to change cookie settings or delete cookies.

For detailed information on modifying cookie settings or deleting cookies in different types of browsers, please refer to the links below:

• Google Chrome
• Firefox
• Internet Explorer
• Opera (English)

12. Security of Personal Data

The Data Controller ensures the security of the processed and stored data through appropriate technical measures (e.g., firewall) to prevent unauthorized access, modification, or alteration of the data. 

The Data Controller provides the required level of protection during data processing.

13. Rights of Data Subjects and Remedies

As a data subject, you may request access to, rectification, erasure, or restriction of processing of your personal data from the Data Controller and object to the processing of such personal data.

You have the right to receive confirmation from the Data Controller as to whether your personal data is being processed. If data processing is in progress, you have the right to be informed about the purposes of the processing, the categories of personal data involved, the recipients or categories of recipients of the data, and the planned storage period (or the criteria for determining this period).

The Data Controller will provide you with a copy of the processed personal data. For additional copies, the Data Controller may charge a reasonable fee based on administrative costs. If you submitted the request electronically, the information must be provided in a widely used electronic format unless otherwise requested.

Personal data must be deleted if:

• The personal data is no longer necessary for the purpose for which it was collected or otherwise processed;
• The data subject withdraws consent for processing, and there is no other legal basis for processing;
• The data subject objects to the processing, and there are no overriding legitimate grounds for processing, or the data subject objects based on Article 21(2) of the Regulation;
• The personal data has been unlawfully processed;
• The personal data must be deleted to comply with a legal obligation under Union or Member State law applicable to the Data Controller;
• The personal data was collected in relation to information society services offered directly to children.

You may request that the Data Controller restrict processing if:

• You contest the accuracy of the personal data, for a period enabling the Data Controller to verify its accuracy;
• The processing is unlawful, and you oppose the deletion of the data and request the restriction of its use instead;
• The Data Controller no longer needs the personal data for processing purposes, but you require it for the establishment, exercise, or defense of legal claims;
• You object to processing; in this case, the restriction applies until it is determined whether the Data Controller’s legitimate grounds override yours.

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and have the right to transmit that data to another data controller.

You have the right to object at any time, for reasons related to your situation, to the processing of personal data based on:

• The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
• The processing is necessary for the legitimate interests of the Data Controller or a third party.

In such cases, the Data Controller may no longer process the personal data unless it demonstrates compelling legitimate grounds that override your interests, rights, and freedoms or for the establishment, exercise, or defense of legal claims.

If personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such purposes, including profiling related to direct marketing.

If a data breach is likely to result in a high risk to your rights and freedoms, the Data Controller will inform you of the data breach without undue delay.

For the above matters, you may submit a request to the Data Controller. The Data Controller will provide information on actions taken without undue delay and at the latest within one month of receiving the request.

If necessary, considering the complexity of the request and the number of requests, this period may be extended by an additional two months. The Data Controller will inform you of the extension within one month of receiving the request, along with the reasons for the delay. If you submitted the request electronically, the response will be provided electronically unless otherwise requested.

If the Data Controller does not take action on your request, you will be informed within one month of receiving the request of the reasons for not taking action. You may then lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH) and seek legal remedies.

If you believe your personal data has been unlawfully processed, you may file a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH):

• Postal Address: 1530 Budapest, Pf. 5.
• Phone: +36 (1) 391-1400
• Email: ugyfelszolgalat@naih.hu
• Website: http://naih.hu

If your rights have been violated, you may bring legal action against the Data Controller before a court. The competent court is the tribunal with jurisdiction over your place of residence or habitual residence.

Even those who lack legal capacity in court proceedings may participate. The NAIH may intervene in legal proceedings to support the data subject’s claim.

If you have any complaints or issues regarding the processing of your personal data, please contact the Data Controller before initiating any legal action.

14. Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

15. Where your data is sent

Visitor comments may be checked through an automated spam detection service.