Privacy Policy

1. Purpose of the Data Protection Notice
Angyalok Konyhája Kft. (registered office: 27 Attila Street, 1013 Budapest, hereinafter referred to as the "service provider," "data controller") as the data controller complies with the provisions of this policy, applicable national laws, and legal acts of the European Union regarding data processing related to its activities.
The data protection guidelines concerning Angyalok Konyhája Kft.'s data processing activities are continuously available at the bottom of the websites angyalokkonyhaja.hu and angyalmenza.hu.
Angyalok Konyhája Kft. reserves the right to modify this notice at any time. Any changes will be promptly communicated to the customers.
If you have any questions regarding this notice, please contact us at info@angyalokkonyhaja.hu, and we will respond to your inquiry.
Angyalok Konyhája Kft. is committed to protecting the personal data of its customers and partners and considers the respect for their right to informational self-determination of utmost importance. Angyalok Konyhája Kft. handles personal data confidentially and implements all necessary security, technical, and organizational measures to ensure the security of the data.
Below, Angyalok Konyhája Kft. describes its data processing practices.

2. Data Controller's Information
If you would like to contact our company, you can reach the data controller using the following contact details:
Name: Angyalok Konyhája Kft.
Registered office: 27 Attila Street, 1013 Budapest
Company registration number: 01-09-696591
Tax number: 12648151-2-41
2.1. Data Protection Officer
Name: Boglárka Dolnyikné Farkas
Phone number: +36 30 475 9363
Email address: info@angyalokkonyhaja.hu

3. Scope of Processed Personal Data
3.1. Required Personal Data
3.1.1. In the case of inquiries and callback requests on the website
Required data: name, phone number, email address, comment
Purpose of data collection: contacting and providing information to the interested parties.
3.1.2. Data related to newsletter subscriptions
Required data: name, email address.
Purpose of data collection: sending electronic newsletters containing information and updates related to healthy living, nutrition, news, and the operation of Angyalok Konyhája. Unsubscribing from the newsletter is possible at any time by using the automatic electronic unsubscribe option located at the bottom of each email or by contacting info@angyalokkonyhaja.hu.
3.1.3. Data related to gift voucher and gift card orders
Required data: name, email address, delivery address, billing address.
Purpose of data collection: sending invoices, delivery of vouchers either online or physically.
3.1.4. Data related to personalized services
Initially, the data required for personal consultation, service provision, and delivery, as agreed upon with the consultant. Subsequent communication is only necessary in case of data modifications. The details of the service are outlined in the Cooperation Agreement.
3.1.5. Data related to online orders
Required data: user name, password, name, email address, phone number, delivery address, billing address.
Purpose of data collection: ensuring timely delivery of Angyalmenza meals and regularly or periodically available products, providing relevant order information, and issuing invoices.
3.1.6. Data related to online payments
The security and management of data are ensured by the Simple Pay system.
3.2. Technical Data
Angyalok Konyhája Kft. selects and operates the information technology tools used in the provision of services to handle personal data in a way that:
• makes the data accessible to authorized individuals (availability),
• ensures the authenticity and authentication of data processing (data processing authenticity),
• verifies the integrity of data (data integrity),
• protects against unauthorized access (data confidentiality).
Angyalok Konyhája Kft. takes appropriate measures to protect data against unauthorized access, alteration, transmission, disclosure, deletion, or destruction, as well as against accidental destruction.
Angyalok Konyhája Kft. ensures the security of data processing by implementing adequate technical, organizational, and organizational measures that provide an appropriate level of protection against the risks associated with data processing.
During data processing, Angyalok Konyhája Kft. preserves:
• confidentiality, ensuring that data is not disclosed to unauthorized individuals,
• integrity, ensuring that data remains complete and unaltered,
• availability, ensuring that data is accessible and usable for authorized individuals when needed.
3.3. Cookies
3.3.1. Purpose of Cookies
• They collect information about visitors and their devices.
• They remember visitors' individual settings, which can be used, for example, when using online transactions, eliminating the need to re-enter them.
• They facilitate the use of the website.
• They provide a quality user experience.
To personalize the service, a small data package called a cookie is placed on the user's computer and is read during subsequent visits. If the browser sends back a previously saved cookie, the cookie handler provider has the ability to associate the user's current visit with previous ones, but only in terms of its own content.
3.3.2. Strictly Necessary, Session Cookies
The purpose of these cookies is to allow visitors to browse the Angyalok Konyhája website seamlessly, use its functions, and access available services. The validity of these cookies extends until the end of the browsing session, and they are automatically deleted from the computer or other device used for browsing when the browser is closed.
3.3.3. Third-Party Cookies (Analytics)
Angyalok Konyhája also uses third-party cookies from Google Analytics on its website. By using the statistical service provided by Google Analytics, Angyalok Konyhája collects information about how visitors use the website. The data is used for website development and improving the user experience. These cookies also remain on the visitor's computer or other browsing device, in their browser, until their expiration or until the visitor deletes them.

4. Purpose, Method, and Legal Basis of Data Processing
General Data Processing Principles
The data processing activities of Angyalok Konyhája Kft. are based on voluntary consent and legal authorization. In cases of data processing based on voluntary consent, individuals can withdraw their consent at any stage of the data processing.
In certain cases, the processing, storage, and transmission of certain data are mandatory under the law, and our customers will be informed separately about this.
We draw the attention of data providers to Angyalok Konyhája Kft. that if they provide personal data that does not belong to them, it is their obligation to obtain the consent of the data subject.
If the payer and the service recipient are different individuals, information regarding the recipient's data and health status will only be disclosed with their written consent or in case of a lawful representative relationship.
The data processing principles are in line with applicable data protection laws, including in particular:
• Act CXII of 2011 on Informational Self-Determination and Freedom of Information (Infotv.);
• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR);
• Act V of 2013 – Civil Code (Ptk.);
• Act C of 2000 on Accounting (Számv. tv.);
• Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist Financing (Pmt.);
• Act C"CXXXVII of 2013 on Credit Institutions and Financial Enterprises (Hpt.).

5. Physical Storage Locations of Data
Your personal data (i.e., data that can be associated with your person) may come into our possession in the following ways: firstly, in connection with maintaining an internet connection, technical data related to the computer, web browser, IP address, and visited pages that you use are automatically generated and stored in our computer system. Secondly, you may personally provide your name, contact information, or other data if you wish to establish personal contact with us during the use of the website or in the cases mentioned in point 3.
Data recorded during the operation of the system: data generated during entry and automatically recorded by the system of Angyalok Konyhája Kft., which includes information about the computer used by the individual. This automatically recorded data is logged by the system upon login and logout, without requiring any separate declaration or action from the individual. This data cannot be linked to other personal user data, except in cases required by law. Only Angyalok Konyhája Kft. has access to this data.

6. Data Transmission, Data Processing, and Recipients of Data
Our partners and subcontractors have access to the necessary information to perform their work. The confidentiality clauses in the contracts with our partners also cover the security of data processing.

Delivery company:
Company name: Ezüst Kisangyal Kft
Registered office: 1191 Budapest, Mikes utca 1.
Tax ID: 24063915-2-43
Company registration number: 01-09-988709
Represented by: Csányi Gergely

Hosting service provider and operator:
Company name: Coel Számítástechnikai kft.
Registered office: 1116 Budapest Sopron út 64.
Tax ID: 12186765243
Company registration number: 01-09-563209
Represented by: Szabó László

Website operator:
Orbán Gábor ev.
Registered office: 1027 Budapest Bem József utca 9.
Tax ID: 69878787-2-41
Registration number: 53817044
Represented by: Orbán Gábor

Accounting company:
Company name: Juss Könyvelő Kft.
Registered office: 1088 Budapest, József krt. 19,. fsz.10.
Tax ID: 10315790-2-42
Company registration number: 01-09 065 324
Represented by: Róna Gabriella

Data controller:
Company name: OTP Mobil Szolgáltató kft.
Registered office: 1143 Budapest, Hungária krt. 17-19.
Tax ID: 24386106-2-42
Company registration number: 01-09-174466
Represented by: Benyó Péter

The nature and purpose of data processing activities performed by OTP Mobil Szolgáltató kft.'s data processor are specified in the SimplePay Data Processing Information, which can be found at the following link: http://simplepay.hu/vasarlo-aff

We establish the data processing and confidentiality obligations of our employees through individually signed contracts.

7. Rights of the Data Subject and Remedies
The data subject has the right to request information about the processing of their personal data, as well as to request the correction, deletion, withdrawal, data portability, and objection to the processing of data, as indicated at the time of data collection or through the contact details provided by the data controller.
7.1. Right to Information
Angyalok Konyhája Kft. takes appropriate measures to provide the data subjects with concise, transparent, intelligible, and easily accessible information, as well as all the information referred to in Articles 13 and 14 of the GDPR, and the rights specified in Articles 15 to 22 and 34, regarding the processing of personal data.
7.2. Right of Access
The data subject has the right to obtain confirmation from the data controller as to whether or not personal data concerning them is being processed, and if so, they have the right to access the personal data and the following information: the purposes of the processing; the categories of personal data concerned; the recipients or categories of recipients to whom the personal data have been or will be disclosed; the envisaged period for which the personal data will be stored; the right to rectification, erasure, or restriction of processing and the right to object; the right to lodge a complaint with a supervisory authority; information about the source of the data; the existence of automated decision-making, including profiling, and meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject. The data controller shall provide the information within one month of receiving the request.
7.3. Right to Rectification
The data subject may request the correction of inaccurate personal data concerning them that is processed by Angyalok Konyhája Kft., as well as the completion of incomplete personal data.
7.4. Right to Erasure
The data subject has the right to request the erasure of personal data concerning them without undue delay if one of the following grounds applies:
• The personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
• The personal data is no longer necessary for the purposes for which they were collected or otherwise processed.
• The data subject withdraws their consent, which was the basis for the processing, and there is no other legal ground for the processing.
• The data subject objects to the processing, and there are no overriding legitimate grounds for the processing.
• The personal data has been unlawfully processed.
• The personal data must be erased to comply with a legal obligation imposed on the data controller by Union or Member State law.
• The personal data has been collected in relation to the offer of information society services.
The deletion of data cannot be initiated if the processing of data is necessary: for the exercise of the right to freedom of expression and information; for compliance with a legal obligation that requires the processing by the data controller, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller; for reasons of public interest in the area of public health, or for archiving, scientific, historical research, or statistical purposes in the public interest; or for the establishment, exercise, or defense of legal claims.
7.5. Right to Restriction of Processing
At the request of the data subject, Angyalok Konyhája Kft. shall restrict the processing if any of the following conditions are met:
• The data subject contests the accuracy of the personal data, in which case the restriction shall apply for a period enabling the verification of the accuracy of the personal data.
• The processing is unlawful, and the data subject opposes the erasure of the data and requests the restriction of their use instead.
• The data controller no longer needs the personal data for the purposes of the processing, but the data subject requires them for the establishment, exercise, or defense of legal claims.
• The data subject has objected to the processing, in which case the restriction shall apply for the period until it is determined whether the legitimate grounds of the data controller override those of the data subject.
If processing is restricted, except for storage, personal data may only be processed with the data subject's consent, or for the establishment, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or a Member State.
7.6. Right to Data Portability
The data subject has the right to receive the personal data concerning them, which they have provided to the data controller, in a structured, commonly used, and machine-readable format, and have the right to transmit those data to another data controller.
7.7. Right to Object
The data subject has the right to object, on grounds relating to their particular situation, at any time to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller, or for the purposes of legitimate interests pursued by the data controller or a third party, including profiling based on those provisions. In case of objection, the data controller shall no longer process the personal data unless compelling legitimate grounds for the processing override the interests, rights, and freedoms of the data subject or the processing is necessary for the establishment, exercise, or defense of legal claims.
7.8. Automated Individual Decision-Making, Including Profiling
The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them.
7.9. Right to Withdraw Consent
The data subject has the right to withdraw their consent at any time.
7.10. Right to Lodge a Complaint with a Supervisory Authority
In case of infringement of their rights, the data subject has the right to lodge a complaint with the data protection authority. The court shall proceed with the case out of turn.
7.11. Proceedings Before the Data Protection Authority
Complaints can be lodged with the National Authority for Data Protection and Freedom of Information:
Name: National Authority for Data Protection and Freedom of Information
Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.
Mailing address: 1530 Budapest, Pf.: 5.
Phone: +3613911400
Fax: +3613911410
Email: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu

8. Other Provisions
For data processing not listed in this information notice, we provide information at the time of data collection.
We inform our clients that courts, prosecutors, investigative authorities, administrative authorities, the National Authority for Data Protection and Freedom of Information, the Hungarian National Bank, and other bodies authorized by law may contact the data controller for the purpose of providing information, disclosing data, transferring data, or making documents available. The Angyalok Konyhája Kft. shall disclose personal data to authorities only to the extent necessary to fulfill the purpose of the request, provided that the authority has specified the exact purpose and scope of the data.