Privacy Policy

Amphenol Sincere Indrustrial Product Gyarto Kft – Privacy Policy

Effective date: 2024.04.01

Download the document in PDF format

Pursuant to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as GDPR), Amphenol Sincere Industrial Product Ltd. gives the following information.

Amphenol Sincere Industrial Product Ltd. declares, in connection with its business activities and the processing of data on the website – www.amphenol-asip.com – (hereinafter referred to as website), that it is committed to protecting the personal data of its partners and attaches the utmost importance to respect their right to self-determine their information.

Information on the data management activities of Amphenol Sincere Industrial Product Kft., the current version of the Data Management Notice (hereinafter referred to as the “Notice”) is available on the website.

1. General provisions

1.1 Name and contact details of the Data Controller

    Name of Data Controller:Amphenol Sincere Industrial Product Gyárto Kft.
    Located at / Postal address:7673 Cserkút, Batvölgyi út 3.
    Email address:info@amphenol-asip.com
    Company Registration number:02 09 084501

    1.2 Definitons terms

      Personal data:Any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
      Data process:Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
      Data controller:The natural or legal person, public authority, agency or any other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of the processing are determined by Union or Member State law, the controller or the specific criteria for the designation of the controller may also be determined by Union or Member State law.
      Data Processor:A natural or legal person, public authority, agency or any other body which processes personal data on behalf of the Controller.
      Addressee:The natural or legal person, public authority, agency or any other body with whom or to which the personal data are disclosed, whether or not a third party. Public authorities which may have access to personal data in the context of an individual investigation in accordance with Union or Member State law are not recipients; the processing of those data by those public authorities must comply with the applicable data protection rules in accordance with the purposes of the processing.
      Consent of the Data SubjectA freely given, specific, informed and unambiguous indication of the Data Subject’s wishes by which he or she signifies, by a statement or by an act expressing his or her unambiguous consent, that he or she gives his or her consent to the processing of personal data concerning him or her.
      Data protection incidentA breach of security that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
      Website:www.amphenol-asip.com

      The data processing activities of the controller are based on voluntary consent, legitimate interest, contract or legal obligation. In the case of processing based on voluntary consent, data subjects may withdraw their consent at any stage of the processing.

      In certain cases, the processing, storage or transmission of the scope of the data provided may be required by law, of which the Data Controller shall separately notify the data subjects.

      Please note that, if you do not provide your own personal data, it is your obligation and responsibility to obtain the consent of the Data Subject.

      When providing the e-mail address and data of any Data Subject (inquirer, contact initiator), he/she also assumes responsibility for the fact that only he/she will use the e-mail address and data provided by him/her to obtain services. In view of this assumption of responsibility, any liability in connection with an e-mail address and/or data provided shall be borne solely by the person who provided the e-mail address and data.

      The Controller declares that it does not carry out any automated decision-making or profiling in respect of the personal data it processes.

      The processing of personal data by the Controller is governed in particular, but not exclusively, by the following legislation:

      • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC (General Data Protection Regulation) (hereinafter: GDPR)
      • Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (hereinafter: Info tv.)

      2. Data Processing

      2.1 Processing of personal data provided during contact and enquiry

      On the website, under the menu item “Contacts”, people have the possibility to contact the Data Controller.

        The scope of the data processedName, information given in the message, phone number, postal address.
        Data SubjectAll people who contact the Data Controller
        The goal of data processingTo answer the inquiries of the interested party, to provide the possibility of contacting the Data Controller.
        Legal basisConsent of the data subject (GDPR Article 6 (1) (a) )
        DurationUntil consent is withdrawn by the Data Subject.
        AddresseeNone
        Data transmissionDoes not occur.

        The data subject may withdraw his or her consent to the processing of personal data provided in the course of the processing described in this point by sending a written statement to any of the contact details of the Data Controller indicated in the Name and contact details section. Withdrawal of consent shall not affect the lawfulness of the processing that took place before the withdrawal. The withdrawal of consent is not subject to any conditions and is free of charge.

        2.2 Processing of personal data of representatives and contacts of the Data Controller’s legal and private business partners

          The scope of the data processedName, work phone number, work email address.
          The goal of data processingTo facilitate communication and the conclusion of contracts with legal and private business partners who are in contact with the Data Controller, and to efficiently and quickly resolve questions and requests arising in connection with the performance of contracts.
          Legal basisLegitimate interest of the Controller (GDPR Article 6 (1) (f) )
          DurationThe date of termination of the employment of the Data Subject, or the end of the limitation period under the Civil Code (which is generally 5 years) after the contract has been performed.
          AddresseeNone
          Data transmissionDoes not occur.

          2.3 Contract-related data processing

            The scope of the data processedIn particular the following data will be processed; in the case of a sole trader: name, registered office, bank account number, telephone number, e-mail address, signature In the case of a sole lawyer: name, registered office, chamber identification number, tax number, e-mail address, bank account number, signature.
            The goal of data processingThe conclusion of a contract with the Data Controller.
            Legal basisProcessing is necessary for the performance of a contract or in order to take steps at the request of the data subject prior to entering into a contract (GDPR Article 6 (1) (b) )
            DurationThe data shall be stored by the Data Controller for 5 years after the order has been fulfilled for the above purposes, subject to Section 6:22 (1) of Act V of 2013 on the Civil Code (Civil Code).
            Possible consequences of not providing dataFailure to conclude a contract.
            AddresseeNone

            2.4 Data processing relating to candidates who volunteer for a job advertisement or independently of a job advertisement

            2.4.1 Data management related to recruitment

                Applicants (hereinafter referred to as “Applicants”) have the opportunity to apply and submit their CVs for the published job advertisements under the Careers menu on the Controller’s website.

                The scope of the data processedName, phone number, email address, personal information in the CV.
                The goal of data processingApplication for a job vacancy at the Data Controller, participation in a selection procedure. In order to select a suitable employee, the Data Controller requests CVs from applicants for the advertised position. The processing of data is necessary in order to select an employee with the appropriate skills and qualifications and to assess his/her suitability for the job.
                Legal basisLegitimate interest of the Data Controller pursuant to GDPR Article 6(1)(f).
                DurationTo select the right person for the job advertised by the Data Controller. In case the recruitment is unsuccessful, and the Applicant does not consent to the storage for 1 year or the Applicant does not accept the offer of the Data Controller, the Data Controller shall immediately delete the Applicant’s application file and the personal data obtained from it from all records.
                AddresseeNone
                Possible consequences of not providing dataThe Candidate cannot apply for the job advertised by the Data Controller or participate in the selection procedure.

                2.4.2 Data processing related to the storage of personal data in connection with recruitment

                  The scope of the data processedPersonal data provided by the Applicant in section 2.4.1 (such as, in particular, but not limited to: name and surname, address, date of birth, education).
                  The goal of data processingPurpose To apply for a job vacancy at the Data Controller, to participate in a selection procedure for 1 year from the date of submission of the application. In order to select a suitable employee, the Data Controller requests CVs from applicants for the advertised position. The processing will be carried out within 1 year of the submission of the application in order to fill the vacancy relevant to the Applicant.
                  Legal basisConsent of the Data Subject (GDPR Article 6(1)(a)).
                  DurationIf the recruitment is unsuccessful and the Applicant consents to the storage of his/her application file and relevant personal data for a period of 1 year, the Data Controller shall keep the Applicant’s application file and personal data obtained from it for 1 year from the date of submission of the application. Thereafter, the Applicant’s personal data shall be deleted from all records without delay.
                  AddresseeNone

                  The Applicant may withdraw his/her consent to the processing of personal data provided in the course of the processing described in this section by sending a written statement to any of the contact details of the Data Controller specified in the section Name and contact details. Withdrawal of consent shall not affect the lawfulness of the processing that took place prior to the withdrawal. The withdrawal of consent is not subject to any conditions and is free of charge.

                  2.4.3 Applications received without a job advertisement (incoming CVs)

                    The Data Controller may receive CVs for unadvertised vacancies or expired vacancies which the Applicant sends to the Data Controller in order to apply for a possible vacancy. The Data Controller draws your attention to the fact that by sending your CV to the Data Controller, you are deemed to have given your consent to the processing of your CV.

                    The scope of the data processedPersonal data provided by the Applicant in section 2.4.1 (such as, in particular, but not limited to: name and surname, address, date of birth, education).
                    The goal of data processingFilling vacant positions in the Data Controller.
                    Legal basisConsent of the Data Subject (GDPR Article 6 (1) (a)).
                    DurationThe Data Controller shall process the CVs received and the data provided by the Candidate until the Candidate’s consent is withdrawn, but no later than 1 year from the date of receipt.
                    AddresseeNone

                    The Applicant may withdraw his/her consent to the processing of personal data provided in the course of the processing described in this section by sending a written statement to any of the contact details of the Data Controller specified in the section Name and contact details. Withdrawal of consent shall not affect the lawfulness of the processing that took place prior to the withdrawal. The withdrawal of consent is not subject to any conditions and is free of charge.

                    2.5 Processing of visitors’ personal data

                      The Controller shall provide visitors, service providers and suppliers of goods arriving at the seat of the Data Controller with a guest card for entering the area closed by the electronic access control system. The card shall be surrendered by the visitor, service provider or supplier of goods upon departure.

                      The scope of the data processedFor visitors and service providers: name, name of sending employer, name of receiving employee, identity card number, movement entitlement, movement dates. In the case of goods carriers, in addition to the febt data: arrival and departure times, loading times, vehicle registration number, seal number are also recorded
                      The goal of data processingTo prevent unauthorised persons from entering the Data Controller’s premises and to allow access to those authorised to enter.
                      Legal basisLegitimate interest of the Data Controller pursuant to GDPR Article 6(1)(f).
                      DurationIn case of a visitor: 30 days. In case of suppliers, service providers: 1 year.
                      AddresseeThe Data Controller shall provide detailed information about the recipient in the event of a request sent to any of the contact details provided in point 1.

                      2.6 Processing of your personal data related to the camera

                        The processing of personal data recorded by the electronic surveillance system is necessary for the purposes of the legitimate interests pursued by the Controller, for reasons of security and for the protection of property [Article 6(1)(f) GDPR].

                        When installing the camera system, the Data Controller has considered the impact on employees, representatives of its partners and contacts and has determined that the recording does not impose a disproportionate and unnecessary restriction on the interests, fundamental rights and freedoms of the data subjects.

                        The cameras are installed for security and asset protection reasons. The cameras only record images (no sound).

                        In the event of an infringement or suspected offence, the recording will be transmitted to the competent authorities.

                        In the absence of use, the Controller will keep the recordings of the cameras for a maximum period of 30 days from the date of recording, after which they will be deleted. If the recording is used as evidence in judicial or other official proceedings, it shall be deleted after the proceedings have been finally terminated.

                        At the request of a court or other authority, the recorded image and other personal data shall be sent to the court or authority without delay.

                        The Data Controller has laid down detailed rules for the operation of the camera system in a separate document entitled “Information on the operation of the camera system”. The detailed information on the cameras is available at the Data Controller’s head office reception and at the HR in paper format.

                        2.7 Links to social media providers

                          The Data Controller has placed links to LinkedIn (“in” icon) and Facebook (“f” icon) on its website. Only when the website visitor clicks on the icon, data is transmitted to the media operators (Facebook, LinkedIn). In addition to the Data Controller, the media operators are also considered as data controllers.

                          Further information on the processing of data by media operators can be found in the following information notes:

                          LinkedIn: https://www.linkedin.com/legal/privacy-policy
                          Facebook: https://www.facebook.com/privacy/policy/?entry_point=facebook_page_footer

                          2.8 Social media platform related data management

                            The Data Controller keeps in touch with its partners and people interested in its services through the social networking pages on Facebook and LinkedIn. On the social media platforms, the data subjects can add comments and posts to the content shared by the Data Controller.

                            The scope of the data processedName, profile picture, other personal data of the person writing a post or comment on Facebook.
                            The goal of data processingAnswering the comments, posts and questions of the data subjects, creating the possibility of contacting the Data Controller.
                            Legal basisConsent of the Data Subject (GDPR Article 6 (1) (a)).
                            DurationUntil the withdrawal of the consent of the data subject (by deleting the post or comment).
                            AddresseeNone.
                            Data transmission to third countriesFacebook fan page may transfer personal information to the USA. Facebook is an independent data controller, therefore you can find information about Facebook’s data management rules and principles and the transfer to third countries at the link provided in section 2.5.

                            3. The rights of the Data Subjects

                              With regard to the processing of the sensitive data the Data Subject’s shall:

                              • be informed of the circumstances surrounding the processing;
                              • request the rectification or, in the cases specified under the GDPR, the erasure of personal data;
                              • request the restriction of processing;
                              • be informed of the recipients to whom personal data concerning him or her have been disclosed subject to rectification, erasure or restriction of processing;
                              • have access to his or her personal data;
                              • exercise his or her right to data portability (in the cases specified under the GDPR)
                              • object against processing based on legitimate interest.
                              Right to information (Articles 13-14 GDPR)The data subject has the right to be informed in an intelligible form of the material circumstances of the processing, which right is ensured by this privacy notice.
                              Right for access
                              (Article 15 GDPR)
                              He or she also has the right to be informed, in addition to the information contained in this notice, whether the Data Controller processes personal data relating to or which may be associated with the data subject, and, if so, to have access to such data, the purposes of the processing and the envisaged duration of the processing. He or she may be informed about the possible recipients, transfers and other relevant circumstances of the processing.
                              Right to rectification (Article 16 GDPR)
                              If the data subject becomes aware that his or her personal data are inaccurate, incorrect or incomplete, he or she may request the Controller to correct his or her personal data or, within the limits of the purpose of the processing, to supplement them.
                              Right to deletion (Article 17 GDPR)The Data Subject has the right to request the erasure of their personal data (unless restricted by law) in the following cases: – if the personal data are no longer necessary for the purposes for which they were collected and processed by the Controller; – if the processing was based on consent and the consent has been withdrawn by the data subject and there is no other legal basis for the processing; – if the data subject objects to the processing and, after a balancing of interests, it is established that his or her interests prevail over the interests of the Controller; – if the processing is carried out for direct marketing purposes and the data subject objects to the processing; – if the processing of his or her personal data is unlawful; – if required by law; – in the case of processing relating to the provision of information society services. The right to erasure is limited by the right to freedom of expression and information (Article 17 GDPR). Where the legal basis for processing is consent pursuant to Article 6(1)(a) GDPR, the data subject shall have the right to withdraw at any time the consent previously given to the processing. Where there is no other legal basis for the processing of personal data, the Controller shall permanently and irrevocably erase the personal data following the withdrawal of consent. The withdrawal of consent shall not affect the lawfulness of the processing carried out on the basis of the consent prior to its withdrawal.
                              Right to restriction of processing (Article 18 GDPR)The data subject may restrict the use of his or her personal data if he or she contests the accuracy, correctness or completeness of the personal data; if the processing is unlawful and the Controller would oppose the erasure of the data; if the Controller no longer needs the personal data for the purposes of processing, but the data subject requires them for the establishment, exercise or defence of legal claims; if the data subject has objected to the processing. The restriction may last until the accuracy of the personal data is verified by the Controller, if the accuracy of the personal data is clarified. In the case of an objection to processing, the restriction may be maintained until it has been established that the legitimate grounds of the controller override the interests of the data subject.
                              Right to data portability (Article 20 GDPR)In the case of personal data provided to the Data Controller on the basis of voluntary consent, the data subject has the right to their portability. Thus, he or she has the right to obtain a copy of the data in machine-readable and traditional formats and to have those data transmitted to another controller without hindrance.
                              Right to object (Article 21 GDPR)In all cases of processing where the data subject’s data are processed by the Data Controller or a third party on the basis of legitimate interests pursued by the Data Controller, the data subject shall have the right to object to such processing. In such a case, the personal data may only continue to be processed if the processing is justified by compelling legitimate grounds which override the interests, rights and freedoms of the data subject or are related to the establishment, exercise or defence of legal claims.

                              The data subject may make a request concerning the above rights in writing or by electronic means addressed to the Data Controller using any of the contact details in point 1 of this notice.

                              The Data Controller shall decide on the request without undue delay and at the latest within one month of receipt of the request and shall inform the data subject of the action taken on the request or, if no action is taken, of the reasons for the lack of action, of the possibility of lodging a complaint with the supervisory authority or of judicial remedy.

                              The time limit for action may be extended by a further two months if necessary, taking into account the complexity of the request and the number of requests. The Data Controller shall inform the applicant of the extension, stating the reasons, within one month of receipt of the request.

                              If the data subject has made the request by electronic means, the information shall be provided by electronic means, unless the data subject requests otherwise.

                              Where the data subject’s request is manifestly unfounded or excessive, the controller may charge a fee or refuse to take action.

                              If the controller does not act on the data subject’s request, it shall inform the data subject without delay and at the latest within one month of receipt of the request of the reasons for the non-action and of the right to lodge a complaint with the supervisory authority and to seek judicial remedy.

                              The Data Controller shall inform each recipient to whom or with which the personal data have been disclosed of any rectification, erasure or restriction of processing that it has carried out, unless this proves impossible or involves a disproportionate effort. Upon request, the Controller shall inform the data subject of these recipients.

                              4. Data Security Measures

                                The Data Controller shall ensure the security of data processing and shall take the necessary and appropriate technical and organisational measures to this end. It shall ensure the confidentiality (e.g. prevention of disclosure, unauthorised access), integrity (alteration, modification), availability (accessibility, retrievability) of personal data:

                                The above requirements are met as follows:

                                a) ensure, through hardware and software means, that the tools used for data management (hereinafter referred to as the “Data Management System”) cannot be accessed by unauthorised persons;

                                b) store the electronic data in a locked, password-protected IT system;

                                (c) prevent the unauthorised reading, copying, modification or removal of data media;

                                (d) process personal data only for the time necessary;

                                (e) the IT compliance level is regularly reviewed and, where necessary, improved.

                                5. Enforcement Options

                                  If the data subject considers that the Data Controller has infringed the applicable data protection requirements in the processing of his or her personal data, he or she may:

                                  • lodge a complaint with the Controller at the postal address or e-mail address specified in point 1 and below:
                                  Name of Data Controller:Amphenol Sincere Industrial Product Gyárto Kft.
                                  Located at / Postal address:7673 Cserkút, Batvölgyi út 3.
                                  Email address:info@amphenol-asip.com
                                  Company Registration number:02 09 084501
                                  • have the right to apply to the courts, which will rule on the matter out of turn, in order to protect your data. The court has jurisdiction to hear the case. Proceedings may be brought before the court of the place of residence or domicile of the person concerned. For more information and contact details of the courts, please visit https://birosag.hu/birosag-kereso.
                                  • The data subject also has the right to lodge a complaint with the competent authority
                                    (National Authority for Data Protection and Freedom of Information, 1055 Budapest, Falk Miksa utca 9-11; postal address: 1363 Budapest, PO Box 9; telephone: +36 (1) 391 1400, ügyfelszolgálat@naih.hu, website: www.naih.hu.)