Privacy Policy
Data Processing and Privacy Statement, which has been reviewed and adopted pursuant to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (April 27, 2016) (hereinafter referred to as the “GDPR”)
The website https://source-codefoundation.org/ (hereinafter referred to as the “Website”) was created, is maintained, and is operated at all times by the Source-Code Foundation (2022 Tahitótfalu, Szállások út 25, Registration No.: 19305846-1-13) (hereinafter referred to as the “Owner,” “Authorized Party,” or “Data Controller”) for informational and communication purposes, maintaining and operating it at all times in accordance with the principles of fair and transparent data processing and the mandatory principles of data processing set forth in Article 5 of the GDPR. The Data Controller declares that it respects the privacy of all individuals who provide personal data and is committed to protecting it. The Data Controller declares that it respects the right to informational self-determination and takes all necessary measures to protect visitors’ personal data during its processing. In compliance with legal requirements, it treats the personal data provided by visitors as confidential and takes all security and technical measures to protect it, guaranteeing its security. The Operator’s goal is to respect visitors’ privacy and prevent the misuse of their personal data by complying with fundamental data protection laws. The Operator requests only the minimum amount of personal data necessary for the purpose of data processing; accordingly, it does not request the provision of data classified as special categories of data for registration.
Pursuant to Article 37 of the GDPR, the Data Controller is not required to appoint a Data Protection Officer.
Please read the following statement and information carefully so that you fully understand how we process your personal data and are aware of your rights regarding data processing. Please also read the Privacy Policy!
You are entitled to visit part of the website free of charge and without having to provide any personal data about yourself.
We would like to inform our visitors that access to certain parts of the website requires registration. During registration—on a voluntary basis, without any legal obligation—you must provide information that constitutes personal data. We securely store the personal data we receive during registration and do not make it available to third parties, unless required by law or with your prior consent.
Please consider the above before registering, and if you do not wish to provide personal data, please refrain from registering.
The Owner stores a visitor’s personal data (name, email address) only if the website visitor has provided such information voluntarily. The Owner is authorized to use voluntarily provided data solely in accordance with the provisions of the GDPR and Act CXII of 2011 on the Right to Self-Determination in Information and Freedom of Information.
The Owner does not intend to collect any personal information from minors, persons with limited legal capacity, or persons lacking legal capacity without the consent of their parent, guardian (legal representative). Given that data provided by children—or other persons whose legal capacity is partially or fully restricted—may be misused by unauthorized parties on the internet, we ask parents and/or legal guardians to inform their children or the persons under their care about the responsible and secure handling of their personal data when using the internet.
Please be advised that if you have provided your personal data—primarily your name or email address—to us based on your voluntary consent, the Data Controller may contact you. The data subject may request information from the Data Controller in writing, in the manner and under the circumstances specified in data protection laws, regarding the processing of their personal data; and if data processing is underway, regarding the purpose of the processing, the categories of data processed, the recipients, the duration of storage or the method of determining the duration, and the right to file a complaint. You may also request from the Owner (contact: kapcsolat@forraskodalapitvany.hu) the deletion or modification of your recorded personal data. If such information is withheld, you may seek judicial remedy or contact the National Authority for Data Protection and Freedom of Information. In addition to the above, you also have the right to object to the processing of your personal data. If you disagree with the decision made by the data controller based on your objection, you may take the matter to court.
Please be advised that a request for correction or modification does not affect the record-keeping obligations under other laws (the Accounting Act, the VAT Act) regarding invoices arising from previous orders based on earlier data. Corrections or modifications will be made immediately, but no later than within 5 (five) business days.
The website also records your computer’s Internet Protocol (IP) address, the time and content you viewed on the website, and the link from which you navigated to the website. We store this data in a manner that cannot be linked to your identity; by analyzing these statistical data, we determine which services and content are used how often and how much time is spent there on each occasion.
IP addresses are used solely for statistical purposes, except in cases where there is reasonable suspicion that a violation of the law has been committed from a given IP address.
The Data Controller will process your personal data until you withdraw your consent. You may withdraw your consent at any time by sending an email to the Data Controller’s email address; in such cases, your data will be deleted from the Data Controller’s system without undue delay, but no later than within 5 (five) business days. In all other cases, the deletion of the provided data occurs simultaneously with the cancellation of the registration.
Withdrawal or deletion does not affect the lawfulness of data processing based on consent prior to withdrawal, and thus does not affect the Data Controller’s statutory obligation under Section 169(2) of Act C of 2000 on Accounting to retain accounting documents for 8 years, nor does it affect the Data Controller’s obligation under. You also have the right to restrict the processing of your personal data.
The Owner shall take all measures reasonably expected in the course of good-faith management to protect the personal data of website users from unauthorized access. The protection of users’ personal data is also ensured by varying levels of access rights to different databases, as a result of which only designated individuals are authorized to access specific personal data, and only to the extent necessary for the performance of their duties.
To register on this site and order services, you must review the contents of this statement. If you review and accept the terms set forth herein, you must provide your voluntary, specific, informed, and unambiguous consent to the processing of your personal data during registration and ordering. The contract cannot be fulfilled without providing the data requested on the interface.
Since, during registration or when placing an order, you expressly accept the provisions of this Data Processing and Privacy Statement and the GDPR, as well as Act CXII of 2011 on the Right to Self-Determination in Information and Freedom of Information (hereinafter referred to as the “Infotv.”), Section 5(1)(a), you voluntarily consent to the purpose-limited processing of your data; therefore, we ask that you carefully read and understand this Data Processing and Privacy Statement before registering or submitting an order.
By ordering the service and expressly accepting the data processing, you, as a natural person, acknowledge and expressly consent to the Data Controller recording all personal data you have voluntarily provided—including your name, address, and phone number—for the purpose of fulfilling the contract.
The Data Controller collects and processes personal data solely for the purpose of identifying customers; to facilitate billing; to maintain contact with visitors for the purpose of sending newsletters or other communications; and to generally exercise the rights and fulfill the obligations arising in connection therewith.
The Data Controller only requests and processes personal data from you that is essential for achieving the purpose of data processing and is suitable for achieving that purpose. Personal data may only be processed to the extent and for the duration necessary to achieve the purpose. During data processing, the accuracy, completeness, and—if necessary in view of the purpose of data processing—up-to-date nature of the data must be ensured, as well as that the data subject can only be identified for the duration necessary to achieve the purpose of data processing. However, the Data Controller does not verify the personal data provided; the person providing the data is solely responsible for its accuracy. By providing their email address, any data subject also assumes responsibility for ensuring that only they use the service via the provided email address. In light of this assumption of responsibility, all liability related to logins made using a provided email address rests solely with the person who registered the email address.
Data processed on the website: last name, first name, email address, phone number, as well as data related to voluntary and other consents.
Data processors (third-party service providers)
Stripe – processing of credit card payments for donations (name, email, amount, date and time)
MailPoet – online newsletter sending system – mailpoet.com -Owner and operator: Wysija SARL Tax ID: FR 52538230186 Company registration number: SIRET: 53823018600024 Headquarters: 6 rue Dieudé 13006, Marseille FRANCE RCS Marseille B 538 230 186. Automattic Ireland Ltd. – email addresses and subscription metadata are processed on the service provider’s infrastructure; data transfers to third countries may occur, for which Automattic applies EU Standard Contractual Clauses (SCCs). We retain the subscription/unsubscription logs to verify compliance. When subscribing to the newsletter, the following data is recorded: name, email address, subscription date, subscription IP address, time of subscription confirmation, confirmation IP address, newsletter opens, and clicks on links in newsletters.
Analytics (Optional) – Google Analytics, with consent.
They may access the data to the extent necessary to provide the services described above.
The Data Controller will not use the personal data it processes for any purposes other than those specified above.
Visitors may use the website solely at their own risk; the information found there does not replace the advice of a medical expert or professional. Given that the website service is free and intended to facilitate information gathering, the Owner shall only be liable for any injuries to life, physical integrity, or health, or for any other damage, if such damage was caused intentionally or through gross negligence.
These Terms of Use and Privacy Policy are governed by the laws of Hungary. In the event of a dispute, if the parties are unable to reach an amicable agreement, they submit to the exclusive jurisdiction of the court at the Owner’s current registered office.