INOTA Festival background
EN

PRIVACY POLICY

Effective Date: May 22, 2025

1.

INTRODUCTION

The Inota Festival Korlátolt Felelősségű Társaság (Registered office: 8100 Várpalota, Erőmű utca 6.; Company registration number: 19-09-525095; Tax number: 32802595-2-19; EU tax number: HU32802595) (hereinafter: "Data Controller") recognizes the contents of this privacy policy as binding upon itself during the provision of services through the www.inotafestival.hu website and other means.

The personal data of the user utilizing the Data Controller's services (hereinafter: "Data Subject") are processed by the Data Controller. The Data Controller undertakes that its data processing activities comply with current legislation and the requirements set forth in this policy.

● Amendments: The Data Controller reserves the right to unilaterally modify this Policy. It is recommended to regularly visit www.inotafestival.hu to monitor changes.

● Compliance: This Policy complies with the Fundamental Law of Hungary, the GDPR (EU 2016/679), Act CXII of 2011 (Infotv.), and the Civil Code (Act V of 2013).

1.1.

Data Controller Details

● Name: Inota Festival Korlátolt Felelősségű Társaság

● Registered Office: 8100 Várpalota, Erőmű utca 6.

● Email: info@inota.eu

● Website: www.inotafestival.hu

2.

BASIC CONCEPTS OF DATA PROTECTION

● Personal Data: Any information relating to an identified or identifiable natural person ("data subject").

● Consent: A voluntary, specific, informed, and unambiguous expression of the data subject's will.

● Data Processing: Any operation performed on personal data, such as collection, recording, storage, or erasure.

● Data Erasure: Rendering data unrecognizable in a way that restoration is no longer possible.

3.

DATA PROTECTION PRINCIPLES

Personal data must be:

● Processed lawfully, fairly, and transparently.

● Collected for specified, explicit, and legitimate purposes ("purpose limitation").

● Adequate, relevant, and limited to what is necessary ("data minimization").

● Accurate and kept up to date.

● Stored for no longer than necessary ("storage limitation").

The Data Controller does not collect personal data relating to minors.

4.

DETAILED RULES OF DATA PROCESSING

Access to data: Data is accessible to the Data Controller's employees, designated Data Processors, and certain authorities during legal proceedings.

4.1.

Photo and Video Recording

By purchasing a ticket and accepting the TOS, the Data Subject consents to the Data Controller making photo and video recordings during the event for promotional purposes.

● Legal Basis: Consent (GDPR Art. 6(1)(a)).

● Duration: Until consent is withdrawn via info@inotafestival.eu.

4.2.

Online Ticket Sales

● Processed Data: Full name and email address.

● Purpose: Identification, performance of the contract, and communication.

● Legal Basis: Performance of contract (GDPR Art. 6(1)(b)).

● Duration: Generally 5 years (Civil Code), or 8 years if required by the Accounting Act.

4.3.

Cookies

The website uses cookies for session identification, preventing data loss, and anonymous analysis via Google Analytics.

● Legal Basis: Consent, granted via a pop-up window.

● Duration: Until the visitor leaves the website.

5.

DATA PROCESSORS

Name

Address/Contact

Activity

Magyar Hosting Kft.

1132 Budapest, Victor Hugo u. 18-22.

Data storage

Cooltix Kft.

1084 Budapest, József utca 3.

Online ticket sales

6.

DATA SECURITY MEASURES

The Data Controller implements technical and organizational measures (encryption, password protection, and physical security) to protect data against unauthorized access, alteration, or erasure.

7.

DATA SUBJECT RIGHTS

Data Subjects have the following rights under the GDPR:

● Right of Access: To receive feedback on whether their data is being processed and access to that data.

● Right to Rectification: To correct inaccurate personal data.

● Right to Erasure ("Right to be Forgotten"): To have data deleted under specific conditions.

● Right to Restriction: To limit processing in certain cases.

● Right to Portability: To receive data in a machine-readable format.

● Right to Object: To object to processing based on legitimate interest or for direct marketing.

Legal Remedy: Complaints can be submitted to the National Authority for Data Protection and Freedom of Information (NAIH) (1125 Budapest, Szilágyi Erzsébet fasor 22/C) or to a court.