Last updated: 2025-08-14 18:50
Controller: URI webTECH, represented by Hajas Mihály
Registered office: 9400 Sopron, S. Horváth József u. 23.
Registration number: 42420695
Tax number: 67017917-1-28
E-mail: hello@uriweb.hu
Phone: +(36) 20 3392360
Representative: Hajas Mihály
Data protection contact:
Name: Hajas Mihály • E-mail: hello@uriweb.hu
This notice covers the processing of personal data in connection with the following services provided by URI webTECH:
Website development and related services (design, development, operation, maintenance).
Hosting / web hosting services (domain, e-mail, server and application operation).
Rental and development of business systems (SaaS) (e.g. CRM, project and invoicing systems, bespoke business applications).
Use of our own website and contact forms, as well as newsletter/marketing communications.
Roles:
– In relation to our own website and contracting, we act as the controller.
– On behalf of our clients, for data they provide (e.g. hosted customer databases), we act as a processor. In such cases we enter into a separate Data Processing Agreement (DPA).
Data: name, e-mail, phone, company details, project description, message metadata.
Purpose: preparing offers, client communication, feedback.
Legal basis: GDPR Art. 6(1)(b) (pre-contractual steps) and (f) (legitimate interest – business communication).
Retention: typically 12–24 months or until the project/case is closed.
Data: contract data, billing data, payment information (we do not store card data), access data (users), logs.
Purpose: provision/operation of the service, customer support.
Legal basis: GDPR Art. 6(1)(b) (contract), (c) (legal obligation – accounting law), and (f) (legitimate interest – system security).
Retention: contractual documents and accounting records 8 years; access/system logs typically 6–24 months (for security).
Our role: typically as a processor.
Data: personal data stored in the client’s systems (e.g. CRM customer data, user profiles, tickets).
Purpose: operation, maintenance, backups.
Legal basis: the client’s legal basis as controller; we act according to their written instructions (per DPA).
Retention: as instructed by the client; backups typically 7–30 days, environment-dependent.
Data: name, e-mail, preferences, activity statistics.
Purpose: sending news and offers.
Legal basis: consent (GDPR Art. 6(1)(a)) or legitimate interest in B2B, in line with applicable e-privacy rules.
Retention: until consent is withdrawn or an objection is raised. Unsubscribe is available in every email.
Data: device and log data, IP, page-visit data, cookies/identifiers.
Purpose: site operation, security, performance measurement, analytics, and possibly remarketing (if used).
Legal basis: consent for non-essential cookies; legitimate interest and/or contract for technically necessary ones.
Retention: according to the cookie lifetime.
Details: see the Cookie Policy.
Directly from the data subject (form, e-mail, phone).
From our clients as controllers (where we act as processor).
From public registers and services (e.g. company register checks).
IT, hosting and cloud providers (server, e-mail, hosting, backups, logging).
Payment service providers.
Accounting and legal advisors (to meet legal obligations).
Subcontracted developers / systems engineers (under NDA + data processing agreement).
Authorities and courts where required by law.
All processors are carefully selected, with written agreements and appropriate safeguards (GDPR Art. 28).
Where data is transferred outside the EEA, this is based on an adequacy decision or the EU Standard Contractual Clauses (SCCs) with additional safeguards. Details can be requested here: hello@uriweb.hu .
Quote request/contact: 12–24 months.
Contractual and billing records: 8 years (by law).
System logs: 6–24 months (security).
Newsletter: until consent withdrawal/objection.
Hosting/SaaS client data: as instructed by the client; backups typically 7–30 days.
Exact periods may vary by service; a detailed list is available on request.
We apply appropriate technical and organisational measures (access control, encryption, logging, network protection, backups, updates, least-privilege, confidentiality). Incidents are documented and, where required, reported (GDPR Arts. 33–34).
Data subjects have the right to:
Access their data and obtain a copy.
Rectify inaccurate data.
Request erasure (“right to be forgotten”) where applicable.
Request restriction of processing in certain cases.
Data portability (where based on contract or consent and processed by automated means).
Object to processing based on legitimate interests, and withdraw consent at any time (withdrawal does not affect prior lawful processing).
Please send requests to hello@uriweb.hu . Identity verification may be required.
Right to complain: data subjects may lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH) – www.naih.hu.
Certain data are necessary for contracting and performance (e.g. billing details, contact data). If these are not provided, we may be unable to deliver the service. Providing data for marketing purposes is voluntary.
We do not perform profiling or automated decision-making that produces legal effects concerning you. If this changes, we will provide separate notice.
We may update this notice from time to time. The amended version applies from the date of publication.
© URI webTECH - All rights reserved
Page generated in 0.00630 seconds.