Data protection information

Privacy policy and declaration of the operators of the website

The website is operated by Co-Branding Hungary Kft. Co-Branding Hungary Kft. hereby informs the visitors and users of the website about its data management practices, the organizational and technical measures taken to protect data and the legal remedies available to users.

1./ The controller

  • Name: Co-Branding Hungary Kft.
  • Seat: 2083 Solymár Mező utca 1.
  • Mailing address: 2040 Budaörs Kamaraerdei út 11.
  • Tax number: 25703456-2-13
  • Company registration number: 13-09-190742
  • Email:
  • The name of the location provider: Dotroll Ltd.
  • The location of the hosting provider: 1148 Budapest, Fogarasi út 3-5.
  • Hosting website:
  • Email address of the hosting provider:

Our Company uses the following data processors for the processing of data in order to provide our customers with high quality service:

  • Data Controller (1): Co-Branding Hungary Kft.
  • Title (1): 2040 Budaörs Kamaraerdei út 11.
  • Responsibilities (1): Total activity

If we change the scope of our data processors, we will reflect the changes in this notice.

Our Company is not obliged to appoint a Data Protection Officer under Article 37 of the GDPR.

2./ Scope of the data processed

Due to the technical operation of the website, the start and end times of the user's visit are automatically recorded, and in some cases, depending on the settings of the user's computer, the browser, operating system and IP address of the user and the name of the page from which the user came. The system automatically generates statistical data from this information. The operator does not link this data with other personal data, but uses it solely for the purpose of compiling statistics. A sends a cookie to visitors' computers. The cookie is necessary, among other things, to display automatic messages to users. Cookies are not used for commercial purposes by has established a two-tiered eligibility circle for the use of the website's services.

Anyone can visit the website without having to provide any personal data beyond the technically automatic processing.

To make a purchase, the user must provide their e-mail address, billing and shipping information. The will not make the e-mail address available to other visitors of the website in addition to the comment. In the case of newsletter requests, questions and other inquiries, the user's e-mail address will be used by for contact purposes only.

By providing their data, users consent to processing their personal data. The processing of the data provided for the use of the website is carried out with the voluntary consent of the user, who is aware of this information.

3./ Purpose of data processing

The recording and storage of the time of visit, IP address, browser and operating system data is a specific feature of the system's operation, their processing is technically indispensable and is carried out for statistical purposes only.

The purpose of the processing of personal data provided to is to allow the user to register with under the name of his/her choice, to request newsletters, to purchase goods, and to ensure communication between the service provider and the user in order to ensure the purchase of goods, and in case of support, the personal data will not be used for any other purpose and will be treated confidentially by These data will be used in aggregate for statistical purposes. The controller will not process personal data for purposes other than those indicated. The processing of such data is subject to the user's voluntary consent.

4./ Duration of data processing

Session IDs are automatically deleted when you close the browser. Users can delete their own cookies at any time. Cookies are automatically deleted after 30 days.

Duration of processing: six months in the case of the calculation interface and forms, six months in the case of contributions for direct marketing purposes (newsletter) until the user's consent is withdrawn, and eight years in the case of purchase data in accordance with Article 169 (2) of the Act on Accounting.

5./ What are cookies and how do we handle them?

Cookies are small data files (hereinafter "cookies") that are transferred to your computer through the use of the website by your website by being saved and stored by your internet browser. Most commonly used internet browsers (Chrome, Firefox, etc.) accept and allow the download and use of cookies by default, but it is up to you to modify your browser settings to refuse or block them, or to delete cookies already stored on your computer. For more information on the use of cookies, please refer to the "help" section of each browser.

Some cookies do not require your prior consent. Our website will provide you with brief information about these when you first visit, such as authentication cookies, multimedia player cookies, load balancing cookies, session cookies to help you customise the user interface, and user-centric security cookies.

Our Company will inform you and ask for your consent about cookies that require your consent - if the processing starts when you visit the site - at the beginning of your first visit.

We do not use or allow cookies that enable third parties to collect data without your consent.

Acceptance of cookies is not mandatory, but our Company is not responsible if our website does not function as expected without cookies.

What cookies do we use?

Name: _ga
Service provider:
Target: Registers a unique identifier that generates statistics on how the visitor uses the site.
Gateway: 2 years
Type: HTTP

Name: _ga_#
Service provider:
Target: Google Analytics sets this cookie to store and count page views.
Gateway: 2 years
Type: HTTP

Name: _gid
Service provider:
Target: Registers a unique identifier that generates statistics on how the visitor uses the site.
Gateway: 1 day
Type: HTTP

Name: _gat
Service provider:
Target: Google Analytics sets this cookie to store a unique user identifier.
Gateway: 1 day
Type: HTTP

Name: wc_cart_hash_#
Service provider:
Gateway: end of session
Type: HTML

Name: wc_fragments_#
Service provider:
Gateway: end of session
Type: HTML

6./ Who has access to the data, data processors

The personal data provided by users and the data automatically collected for technical operations may only be accessed by the staff of the data controller.

Personal data will not be transferred to third parties by the data controller, unless the user has provided his/her personal data for such a purpose. In the case of mandatory transfers of data required by law, will, before responding to each request for data from public authorities, verify for each individual data subject whether the legal basis for the transfer is indeed valid and, if necessary, seek the opinion of the Data Protection Commissioner.

An exception to this is when you pay by credit card via Simplepay, where the data required to finalise the order and pay for the product ordered is transferred to Simplepay's secure system. The data owner may, in the manner and in the cases provided for by data protection and telecommunications legislation, request the may request the deletion, modification or disclosure of the personal data held about them through electronic addresses.

The user has the right to modify the data provided at any time. If you wish to receive the newsletter, you must unsubscribe by entering your new e-mail address and then subscribe with your new e-mail address. Your e-mail address is not public and is not accessible to third parties.

Our packages are assembled and delivered by GLS and DPD.

7./ Users' rights in relation to the processing of their personal data, data erasure

The legal basis for processing the personal data referred to in point 2 is the voluntary consent of the users.

All visitors and registered users may request information about the processing of their personal data. Upon request, the data controller shall provide the data subject with written information within 25 days about the data processed by the data controller, the purpose, legal basis and duration of the processing, the name, address (registered office) and activities of the data processor in relation to the processing, as well as the persons who receive or have received the data and the purposes for which the data are received. The information may be obtained at the postal address of the controller or at the following address by sending a request to the following e-mail address.

Users may object to the processing of their personal data, including by requesting the rectification or erasure of their personal data, at the controller's mailing address or at the e-mail address. The data controller may refuse to provide information only in cases provided for by law. Where the data subject requests the rectification of his or her data, the controller shall comply with the request without delay and at the latest within 25 days and shall inform the data subject thereof in writing. The request for blocking or erasure of data shall also be complied with without undue delay and at the latest within 25 days the data subject shall not comply with the request for rectification, blocking or erasure the controller shall inform the data subject in writing within 25 days of receipt of the request the controller shall inform the data subject of the possibility of judicial remedy and of recourse to a public authority in the event of refusal of the request for rectification, blocking or erasure.

The controller will respond to the erasure request by e-mail within 3 working days of receipt of the objection at the latest. This period is 1 week between 10-25 August and 24 December and 2 January.

To unsubscribe, the user enters his/her e-mail address in an input field and presses the unsubscribe button.

8./ Enforcement options

We ask users that if anyone feels that has violated their right to privacy, they should contact us so that we can remedy the possible violation. We inform users that they may also pursue their claims before a civil court or seek the assistance of the Data Protection Commissioner. The detailed legal provisions on this and the obligations of the data controller are set out in Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information and in Article 13/A of Act CVIII of 2001 on Certain Aspects of Electronic Commerce Services and Information Society Services.

If you have any further questions about the protection of your personal data, please contact to the following e-mail address.

Legal remedies and complaints can be lodged with the National Authority for Data Protection and Information at the following contact details:

  • Name: National Authority for Data Protection and Information
  • Office: 1125 Budapest Szilágyi Erzsébet fasor 22/c.
  • Postal address: 1530 Budapest, Pf.: 5.
  • Phone: +36-1-391-1400
  • Website:

10./ Disconnection

  1. The controller reserves the right to change its privacy statement. In particular, this may be the case if the scope of services is extended or if required by law. The change in the processing shall not imply a processing of personal data for purposes other than those for which they were collected. The controller shall publish the relevant information on its website 15 days in advance.

11./ Information on data protection

The website undertakes to publish a clear, prominent and unambiguous notice informing users of the method, purpose and principles of data collection before any data of its users are collected, recorded or processed. In addition, in all cases where the collection, processing or recording of data is not required by law, the website will draw the user's attention to the voluntary nature of the data provision. In any event, the limitations set out in the principles will be respected in the collection, recording and processing of data, and the data subject will be informed of its activities by electronic mail, at his/her request. The website undertakes not to impose any sanctions on any user who refuses to provide the optional data.

The website undertakes to ensure the security of the data, to take the technical and organisational measures and to establish the procedural rules to ensure that the data collected, stored or processed are protected and to prevent their destruction, unauthorised use or unauthorised alteration. It also undertakes to require any third party to whom it may transfer or disclose the data to fulfil the same obligations.