PRIVACY POLICY
1, INTRODUCTION
It is very important for us to comply with the current data protection regulations and laws, so below we discuss in detail the data protection steps of www.steamvision.eu and the Brand Brothers Llc. (hereinafter: the Service Provider), and the processes related to data collection.
The data is handled by Móré Attila ev and is responsible for the handling of personal data.
Contact information:
Full legal name: Brand Brothers Llc.
E-mail address: hello@steamvision.eu
Postal address: HU 4400 Nyíregyháza Vasvári Pál utca 85. 1/6.
Bank card payment service provider:
Name: Stripe Inc.
Website: https://stripe.com
Email: support@stripe.com
Address: Headquarters
185 Berry Street
Suite 550
San Francisco, CA 94107
2, WHAT PERSONAL DATA DO WE PROCESS AND FOR WHAT REASON?
Personal data is one that clearly allows an individual to be accurately identified.
We handle the following personal data on www.steamvision.eu , with the exact legal basis:
COMMUNICATION DATA
This includes any message that you send to us through the Website, e-mail, social media message, or any form of communication.
We process and retain this information so that we can fulfill your orders and provide a basis for making any legal claims.
Our legal basis for processing this is the user’s demonstrable interest in our activity, which is reflected in the messages addressed to us.
CUSTOMER DATA
Includes all data related to the purchase of products and services, such as customer name, shipping and billing address, email address, telephone number, product information purchased.
We process this information in order to successfully complete your orders and to have legally correct records of your purchases.
The legal basis for storing the data is the fulfillment of the contract concluded between the customer and the Service Provider.
USER DATA
Includes data generated during the use of the website that allows the technical operation of the site, to maintain the security of the site, to store backups of user activity and to always have access to the most relevant content possible.
The legal basis for the processing of data is the clear interest of the user in our activities, which requires the storage of these in order to ensure and technical operation of the site.
TECHNICAL SPECIFICATIONS
Includes information generated during the use of the site, such as IP address, login information, browser information, time of visit of each page, page views and navigation paths, number and time of visit to pages, time zones, and device information that you view. page.
The source of the data is our analytical software.
We process this data to analyze user habits on the site, to keep our site secure, and to understand the usefulness of each of our marketing decisions.
The legal basis for processing the data is the clear interest of the user in our business, which allows us to process this data in accordance with security requirements and use it to grow our business more efficiently.
MARKETING DATA
Which includes the visitor’s preferences, what marketing content they welcome from us. We process this information to allow you to participate in sweepstakes and to send advertisements related to our products / services that the user has expressed interest in.
The legal basis for processing the data is the clear interest of the user in our business, which allows us to process this data in accordance with security requirements and use it to grow our business more efficiently.
The information we collect may be used from time to time to provide targeted, relevant advertisements on the Facebook ™ platform and various dynamic advertising platforms, and to measure the effective performance of the advertisements.
The legal basis for processing the data is the clear interest of the user in our business, which allows us to process this data in accordance with security requirements and use it to grow our business more efficiently.
In the course of our activities, we do not collect sensitive data such as ethnicity, religious beliefs, sex life and orientation, political opinions and union membership, or health background, and genetic or biometric information.
BANK CARD INFORMATION:
Payment by bank card is provided by Stripe Inc.
If you use Stripe when paying:
I understand that my personal data stored by the Service Provider in the user database of www.steamvision.eu will be transferred to the data processor Stripe Inc.
3, HOW DO WE COLLECT DATA?
We may collect personal information in a way that the user provides to us directly (for example, by placing an order or sending a message).
In addition, certain information is collected automatically when you use the site, for example through so-called “cookies” and similar technologies. They will only take effect after the user has given their consent.
Please see our Cookie Statement for more information.
We receive certain data from external partners, such as analytics providers such as Google (non-EU partner), advertising networks such as Facebook™ (non-EU partner) and Tiktok (non-EU partner), and payment options insurance partners such as PayPal (non-EU partner) and Stipe Inc. (non-EU partner).
4, OUR PRACTICAL STEPS ON DATA PROTECTION
For the Service Provider, the protection of users’ data and compliance with the regulations in force are extremely important. Therefore, following a data protection impact assessment on the site, we have compiled a list of the data collected, their necessity and legal basis, and their legal compliance.
- To protect the information provided on the forms and generated on the site, we use SSL certification throughout the website (Let’s Encrypt Authority X3 certification).
- To protect the site from attack, we use premium security software (iThemes Security Pro) to protect the stored data against so-called “brute force” and virus attacks.
- Purchase and user data in the database of the site is stored in encrypted form (pseudonymised) so that it cannot be read by third parties.
- In this Privacy Statement, we provide users with forms to request information about the processing of their personal information, and to modify or delete their personal information through forms.
Sometimes it is necessary to provide data to our service partners (e.g., hosting provider, courier company, newsletter software) in order to do business.
In this case, we will always choose to comply with the GDPR Regulation and, in the case of a US-based partner, participate in the EU-US Privacy Shield Privacy Initiative and sign a data management agreement with them to ensure that the data is handled responsibly.
5, MARKETING COMMUNICATION
Continuing marketing communication is essential in the course of business. The legal basis for this data processing is to show interest in our services or the express consent of users.
In accordance with the European Union’s Privacy and Electronic Communications Regulations (PECR), we send marketing messages to our users if they have purchased from us or expressly consented to receive marketing messages.
In all cases, we allow you to suspend your consent and unsubscribe from messages. At the bottom of each e-mail you can find the link required to unsubscribe, or you can request removal from the database at the e-mail address hello@steamvision.eu.
You can also send messages when you unsubscribe from marketing communications, but only to fulfill your orders.
6, NOTE ON PERSONAL INFORMATION
It is sometimes necessary to share certain personal information with certain of our partners in order to maintain normal business:
-IT service providers and service providers for troubleshooting and maintenance of computer systems
-Expert partners such as lawyers, accountants, bankers, insurers
-Government agencies that report on our activities
-Payment service providers who securely handle credit card information
-Courier services who fulfill incoming orders to the specified shipping address
International data transfers
We sometimes need to share user data with service providers outside the European Economic Area (EEA) in order to maintain our business.
In many cases, non-EEA countries do not provide the same level of data protection, so European laws prohibit the export of data unless the appropriate conditions are met.
Whenever personal data is transferred outside the EEA, in addition to the steps discussed in point 4, the following shall be done to ensure the secure processing of the data:
-We only transfer data to countries that the European Commission deems appropriate for data security.
-We only use US-based services that are part of an EU-US Privacy Shield security initiative.
If the above is not met, users will be required to give their express consent to the data transfer. Consent may be revoked at any time.
Links to external sites
This page occasionally contains links to external pages, or snippets of code embedded in the page that make external services work.
Clicking on these links or using embedded solutions may allow external partners to collect data about users.
While we make every effort to properly review our partners, we have no control over their privacy policies and are not responsible for their privacy practices.
7, DURATION OF DATA PROCESSING
We only store user data for as long as our legal / accounting / reporting obligations make it mandatory or necessary for the operation of the service.
When deciding on the duration of storage, we consider the amount, nature and sensitivity of the data and the potential impact of the leak in the event of a privacy incident.
For tax reasons, we are required to retain customer billing and purchase information for at least 8 years in order to meet our legal obligations.
Under certain circumstances, we may use the data in an anonymized form for statistical purposes, in which case we will store the data indefinitely.
8, RIGHTS OF THE VISITOR
As a citizen of the European Union, the General Data Protection Regulation (GDPR) gives users of the site the following rights:
a, Access to personal data
Users of the site have the right to request a copy of the personal data stored by the Service Provider. The request will normally be processed free of charge within 14 days of the request.
In the event of repeated, abusive, unreasonable data requests, the Service Provider may charge a modest amount to provide the data, and additional time may be required to provide the data.
Furthermore, the Service Provider requests proof of identity before releasing the data in order to prevent misuse. To request personal information, please use the contact form at the bottom of the page! *
b, Modification of personal data
If personal data has been changed or entered incorrectly, users have the right to request that the data be changed. To change your personal information, please contact us at hello@steamvision.eu.
c, Request the deletion of personal data
Users have the right to request the deletion of all their personal data. The request will be fulfilled free of charge within 14 days of the request. After deleting personal data, the user account will not be available, so any purchased materials will become inaccessible, as the personal data associated with the user account is essential to access the service.
The Service Provider requires proof of identity before deleting personal data in order to prevent misuse. To delete personal information, please use the contact form above.
d, Request a restriction on the processing of personal data
Users have the right to restrict the disclosure of their data to third parties (service partners) upon request. When submitting the request, the service partners to be restricted can also be named.
It is important to note that cooperation with certain service providers is essential for the operation of the site (eg Barion as a payment service provider), so if they are restricted, the services on the site will be unavailable to the user.
The Service Provider requires proof of identity before restricting the transfer of personal data in order to prevent misuse. To restrict the transfer of personal data, please use the contact form above:
In Hungary, the official body dealing with data protection is the National Data Protection and Freedom of Information Authority (NAIH). Users can find out more about their privacy rights on the NAIH website.
National Authority for Data Protection and Freedom of Information,
1125 Budapest, Szilágyi Erzsébet fasor 22 / C., Correspondence address: 1530 Budapest, Pf .: 5.,
Phone: 06.1.391.1400,
Fax: 06.1.391.1410,
E-mail: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu
9, ANONYMISED DATA AND “COOKIES”
The website www.steamvision.eu uses so-called “cookies” and similar technologies in e-mail messages and advertisements, such as tracking codes, re-marketing tags, pixels, which are activated after the user’s consent.
These technologies help us better understand the behavior and interests of our users, thus helping us to operate at a higher standard and more efficiently.
Our goal is to make the use of www.steamvision.eu as user-friendly and personal as possible. If the user wishes to prohibit the recording of non-personal data by these technologies, this can be done in the following ways:
-the cookie warnings on the website can be used to disable their loading
-by disabling “cookies” in your browser
You can find more information about the additional cookies and tracking codes on www.steamvision.eu in our Cookie Statement
* In order to request personal information, please use the contact form below: