Privacy Policy
Privacy Policy
1. General Principles
The Service Provider places special emphasis on the protection of personal data and processes such data in accordance with applicable Hungarian laws, in particular Act CXII of 2011 (Infotv.) and the General Data Protection Regulation (GDPR – Regulation (EU) 2016/679).
Personal data is collected solely for specified purposes and is only disclosed to third parties with the prior explicit consent of the data subject or where required by law.
The Service Provider does not sell personal data and takes all necessary technical and organizational measures to ensure the secure storage and handling of such data.
Newsletters are sent only to users who have clearly and explicitly consented in advance.
Users have the right at any time to request access to their personal data, request correction or deletion, and withdraw their consent to data processing.
By using the website, users acknowledge and may consent to the use of cookies and data collection for statistical and marketing purposes.
2. Data Controller Information
Name of Data Controller: NAUTILUS ANTIKVITÁS Kft
Registered office: 1055 Budapest, Falk Miksa utca 28.
Mailing address: 1055 Budapest, Falk Miksa utca 28.
Phone: +36 30 965 8755
Email: info@nautilusantik.com
Tax number: 25294927-2-41
Company registration number: 01 09 206754
The Service Provider reserves the right to modify this Privacy Policy at any time. Users will be informed appropriately, and the current version will always be available at:
https://www.nautilusantikmodernshop.com/adatkezelesi-tajekoztato
3. Definitions (according to GDPR)
Data subject / User: Any natural person who can be identified, directly or indirectly, by personal data.
Personal data: Any information relating to an identified or identifiable natural person, including name, identification number, or factors specific to physical, mental, economic, cultural, or social identity.
Consent: Freely given, specific, informed, and unambiguous indication of the data subject’s wishes.
Data controller: A natural or legal person who determines the purposes and means of processing personal data.
Data processor: A natural or legal person who processes personal data on behalf of the controller.
Data transfer: Making personal data accessible to a specific third party.
Disclosure: Making personal data accessible to anyone.
Data erasure: Making data permanently unrecognizable and irrecoverable.
Data breach: Any unlawful processing, accidental loss, destruction, damage, or unauthorized access to personal data.
4. Scope of Processed Data, Purpose, Duration, and Legal Basis
Username
Purpose: Identification and registration
Duration: Until consent is withdrawn
Legal basis: Consent
Password
Purpose: Secure login
Duration: Until consent is withdrawn
Legal basis: Consent
Name
Purpose: Contact and communication
Duration: Until consent is withdrawn
Legal basis: Consent
Email address
Purpose: Contact and communication
Duration: Until consent is withdrawn
Legal basis: Consent
Phone number
Purpose: Contact and communication
Duration: Until consent is withdrawn
Legal basis: Consent
Billing name and address
Purpose: Issuing invoices and fulfilling contracts
Duration: 5 years (based on civil law limitation periods and tax laws)
Legal basis: Legal obligation
Shipping name and address
Purpose: Delivery of ordered goods
Duration: Until delivery is completed
Legal basis: Performance of contract
Date of purchase/registration
Purpose: Proof of consent
Duration: Until the limitation period expires after processing ends
Legal basis: Legal obligation
IP address at time of purchase/registration
Purpose: Proof of consent and security logging
Duration: Until the limitation period expires
Legal basis: Legal obligation
Data subjects: All registered users and customers of the webshop.
Personal data is shared only with third parties necessary for fulfilling contractual obligations.
Hosting provider:
InfoNetfort Kft.
7900 Szigetvár, Szent István ltp 17. IV/25.
Phone: +36-30/530-2953
Email: kapcsolat@netfort.hu
Website: www.netfort.hu
4.1 Contact Form
Processed data includes name, email address, phone number, and any additional personal data provided by the user.
Purpose: Contact
Duration: 90 days after last interaction
Legal basis: Consent
Data subjects: Individuals contacting via phone, email, or contact form.
Personal data is not shared with third parties.
5. Newsletter and Direct Marketing
The Service Provider sends newsletters and marketing communications.
Processed data: Name, email address
Purpose: Information about news, promotions, events, and services
Duration: Until unsubscription
Legal basis: Explicit consent
Data processor: Mailchimp
Withdrawal of consent: Users may unsubscribe at any time via the link in emails.
6. Cookie Policy
6.1 General Information
The website uses cookies to ensure proper operation, improve user experience, and enable statistical and marketing data collection.
6.2 Newsletter-related data
Name and email address are used for sending newsletters until consent is withdrawn.
6.3 Cookie Settings
Users can modify or delete cookies in browser settings. Some features may not function properly without cookies.
6.4 Google Analytics
Used for tracking user behavior with anonymized IP addresses.
Opt-out: https://tools.google.com/dlpage/gaoptout
6.5 Google Ads / Remarketing
Used for remarketing and conversion tracking.
Collected data: cookies and anonymized IP addresses
Legal basis: consent
7. Rights of Data Subjects
Right to information
Right to rectification
Right to restriction
Right to erasure
Right to object
Right to data portability (XML, JSON, CSV)
Right to compensation
Right to legal remedy
Complaint authority:
Hungarian National Authority for Data Protection and Freedom of Information (NAIH)
1125 Budapest, Szilágyi Erzsébet fasor 22/C
Email: ugyfelszolgalat@naih.hu
8. Data Security
The data controller and processors ensure confidentiality, integrity, and availability of data.
Security measures include protection against unauthorized access, alteration, deletion, data loss, as well as virus protection, fire protection, and internal access control policies.
9. Legal Background
Act CXII of 2011 (Infotv.)
Act V of 2013 (Civil Code)
Act CLV of 1997 (Consumer Protection)
Act CVIII of 2001 (E-commerce)
Act C of 2003 (Electronic Communications)
GDPR (EU) 2016/679
Date: 10.12.2025