data processing

Information on data management
a for shopping in the webshop https://p24s.eu

The https://p24s.eu you provide personal data regulated by Act CXII of 2011 on the right to self-determination, information and freedom of information. Act (hereinafter: "Infotv"), European Parliament and Council (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation 95/46/EC General Data Protection Regulation (hereinafter: "GDPR"), CVIII of 2001 on certain issues of electronic commercial services and services related to the information society. Act (hereinafter: "Eker. tv"), Act XLVIII of 2008 on the basic conditions and certain restrictions on economic advertising activity. Act (hereinafter: "GRT"), Act C of 2000 on accounting (hereinafter: "Accounting Act"), Act CXXVII of 2007 on general value-added tax. Act (hereinafter: "VAT"), as well as Act V of 2013 on the Civil Code (hereinafter: "Ptk") and CLV of 1997 on Consumer Protection. Act (hereinafter: "Regulation Act"), as well as CLIX of 2012 on Postal Services. Act ("Postatv.") In accordance with the provisions of the above-mentioned legislation, we hereby inform you about the details of the management of your personal data, as well as your related rights.

1. DATA PROCESSOR'S STAFF

P24S Group Limited Liability Company (Headquarters: 2310 Szigetszentmiklos, Jozsef Attila str. 1/B 1/4., Company Registration Number: 13-09-171803, Phone: +36704185478, Email: info@p24s.eu, Web address: https://p24s.eu , hereinafter: “Data Controller”)
The Data Controller determines the scope, purpose and duration of the data requested when shopping in the webshop, as well as other essential conditions for data management in accordance with sections 3-4. for the purposes stated in point.

2. The provision of your data is voluntary

You are not obliged to provide your personal data, but without it you cannot purchase the products and services available in the webshop.

3. SCOPE OF DATA PROCESSED, PURPOSE AND DURATION OF DATA PROCESSING

After registering and logging in, you will be able to make purchases on the Data Controller's website. You can register and log in using a user account created on the Data Controller's website.

after 5 years

The managed data	purpose of data management	duration of data management	legal basis for data management
Register on the website Basic data: required: Name, first name, email address, password provided by the user (stored encrypted), telephone number, country optional: gender, date of birth, company name Billing address(es): required: Last name, First name, Email, Country, City, First address, Postal code, Phone number optional: company Delivery address(es): required: last name, first name, email, country, city, first address, zip code, phone number optional: company	online product sales, document the purchase and payment, fulfill accounting obligations, ;">Identification of the user as a customer and maintenance of contact with him, Fulfillment of the ordered product (or service), issuing invoices, the possibility of payment processing, checking transactions with suspected abuse of online payment.	until the contract is fulfilled, ;" >Until the consent of the data subject is withdrawn, otherwise the data controller processes the data after the date of purchase to the Civil Code. 6:22 am will be deleted in accordance with § 5 years. If the data is transferred from the data controller to the account TELEVISION. is obliged to retain the data, the controller will delete the data regardless of the consent of the data subject only after 8 years have passed since the user account was terminated. The consent is info@p24s.eu E-mail can be revoked at any time by sending a message.	For online product sales, the consent of the data subject is required. TELEVISION. Art. 5 para. 1 lit. a) and GDPR Art. 6 para. 1 lit. a) as well as contract fulfillment on the basis of Art. 6 para. 1 lit. b) GDPR Documentation of purchase and payment, fulfillment of accounting obligations and fulfillment of legal obligations in invoicing and payment processing is Art. 6 Para. 1 lit. c) GDPR and accounting. TELEVISION. Section 169 Para. 2 and Sales Tax Law. Based on Section 169 Identifying the user as a customer and maintaining contact with him as well as during the execution of the ordered product (or service) the consent of the data subject is, Info. TELEVISION. Art. 5 para. 1 lit. a GDPR Article 6 para. 1 lit. a) and contract fulfillment on the basis of Art. 6 para. 1 lit. b GDPR legitimate interest in filtering out transactions suspected of misuse in online payments on the basis of Art. 6 (1) (f) GDPR
Personal data in the context of operating email and telephone customer service < /span > E-mail address, name, address (country, city, zip code, street, house number), telephone number and e-mail received by customer service, addressed to the user, or other personal data concerning the data subject and the circumstances of the case.	The info@p24s.eu</a> investigation and accurate documentation of the case received at the e-mail address or accurate documentation of the telephone conversation with the telephone customer service in order to send to the Data Controller the requests and comments related to the activities of the Data Controller. Communication by e-mail is archived so that in case of subsequent questions or disputes the information is available in its original form and the Data Controller can contact the User if necessary in relation to the matter.	until the consent of the data subject is withdrawn, otherwise the date of the request received by the Data Controller via email to Customer Service or after the telephone conversation, in accordance with the Civil Code. 6:22 am § will be deleted after 5 years. If the data is stored by the Data Controller in the account no. TELEVISION. is obliged to keep the data, the Data Controller shall delete the data, regardless of the consent of the data subject, only on the day the case is received by the Data Controller or 8 years after the telephone conversation. consent to info@p24s.eu The revocation can be made at any time by sending a message to the e-mail address.	The legal basis for handling the data processed within the framework of customer service is the consent of the data subject, Info. TELEVISION. Art. 5 Para. 1 lit. a) GDPR Art. 6 Para. 1 lit. a) and fulfillment of a contract based on the GDPR Art. 6 Para. 1 lit. b) fulfillment of a legal obligation GDPR Art. 6 Para. 1 lit. c) and fgy . TELEVISION. Based on Section 17/A.
Personal data provided when processing a complaint: a) name and address of the consumer, (b) the place, time and method of lodging the complaint, (c) a detailed description of the consumer's complaint, a list of the documents, papers and other evidence provided by the consumer, the controller's statement on its position on the consumer's complaint, provided that the complaint can be investigated without delay	The info@p24s.eu investigation and accurate documentation of the circumstances of the complaint received at the e-mail address or accurate documentation of the telephone conversation with the telephone customer service in order to provide the Data Controller with the requests and comments related to the activities of the Data Controller. The communication will be archived so that in case of subsequent questions or disputes the information is available in its original form and the Data Controller can contact the User in case of need in connection with the matter.	The data controller must keep the complaint received and a copy of the response for five years and present them to the supervisory authorities upon request If the data is required to be stored by the Data Controller to the account no. TELEVISION, the Data Controller will delete the data only 8 years after the complaint is submitted, regardless of the consent of the data subject.	The legal basis for the processing of data processed in the context of complaint handling is the consent of the data subject, Info. TELEVISION. Art. 5 Para. 1 lit. a) GDPR Art. 6 Para. 1 lit. a) and fulfillment of a contract based on the GDPR Art. 6 Para. 1 lit. b) fulfillment of a legal obligation GDPR Art. 6 Para. 1 lit. c) and fgy . TELEVISION. Based on Section 17/A.
Personal data provided as part of advertising campaigns, promotions and media appearances: The scope of personal data depends in each individual case on the conditions of participation for the respective promotion.	Implementation of advertising campaigns, promotions and media appearances.	The duration of data management depends in each individual case on the terms and conditions of participation of the respective advertising provider.	The legal basis for handling the data processed as part of the promotional campaign is set out in the data management information attached to the terms and conditions of participation in the respective campaign.
The personal data provided on the following Facebook page: Comments and messages on the Facebook page of kutyaham.hu https://https://facebook.com/kutyaham/ Page	Consumers can send comments and messages to the controller through Facebook. The controller or the data processor providing services to the controller can answer questions and comments if necessary. (Facebook is not an official forum for handling consumer complaints.)	Until the consent of the data subject is revoked, the data will be processed by the data controller after the expiry of the date of communication in accordance with the Civil Code. 6:22 a.m. The deletion takes place in accordance with §.	The consent of the data subject is, Info. FERNSEHER. § 5 para. 1 lit. a) on the basis of Art. 6 para. 1 lit. a) GDPR
The personal data provided on the https://p24s.eu site: Comments and messages on the blog page kutyaham.hu	Consumers can send comments and messages through the kutyaham.hu blog. The data controller or the data processor providing services to the data controller can answer questions and comments if necessary. (The blog is not an official forum for handling consumer complaints.)	Until the consent of the data subject is revoked, the data will be processed by the data controller after the expiry of the date of communication in accordance with the Civil Code. 6:22 a.m. The deletion takes place in accordance with §.	The consent of the data subject is, Info. FERNSEHER. § 5 para. 1 lit. a) on the basis of Art. 6 para. 1 lit. a) GDPR

 

4. PROFILE CREATION

The data controller carries out profiling on the basis of consent in order to be able to provide you with offers tailored to your needs, wishes and interests. You can send the offers by newsletter, email or display them on the website. Profiling is any form of automated processing of personal data that uses personal data to evaluate certain personal characteristics of the user (e.g. characteristics related to personal preferences, interests, health, behavior, location or movement), analyze or predict.

5. PERSONS WHO HAVE ACCESS TO PERSONAL DATA

The data may be accessed by the Data Controller's employees dealing with the marketing area, as well as additional data. We process the data processors identified in this information extract in order to carry out their tasks. For example, the Data Controller's administrator and the data processors identified in this information sheet may receive knowledge of personal data for the purposes of case management and data processing.
The data controller uses Google LLC (1600 Amphitheatre Parkway Mountain View CA 94043), which is part of the EU-US Privacy Shield (headquarters: 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) Google Analytics, Google Adwords, the web analytics service provided by Facebook Ireland Ltd. (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland). Web analytics services also use cookies that enable analysis of the use of online interfaces. On the online interfaces, the data subject allows, with his or her separate and explicit consent, that the information generated by cookies and related to the use of the online interface will be transmitted by Google Analytics and Google Adwords to Google's servers in the United States of America. Other managed cookies are stored on servers within the European Union. By giving his or her separate consent on the website, the user agrees to the collection and evaluation of his or her data in the manner and for the purposes set out above. The above-mentioned service providers use this information to evaluate and analyze the use of the online interfaces by the data subject, to compile reports on the activities performed on the online interfaces and to provide other services related to the activities performed on them and the Internet usage. For more information, see kutyaham.hu Cookie Information .

6. 
   DATA TRANSFER

6.1. In connection with the realization of online product sales as a data management goal, data related to purchases made on the Internet via the bank card acceptance network of Raiffeisen Bank Zrt. (1054 Budapest, Akadémia u. 6.), the financial processing of the The transmission is carried out for the purpose of transaction security and transaction monitoring. The scope of the transmitted data: name, first name, delivery address, billing address, telephone number, e-mail address, data on payment transactions.

6.2. When delivering products, the recipient’s name, address and order value will be forwarded to the following recipients:
Magyar Posta Zrt. (Head office: 1138 Budapest, Dunavirág utca 2-6., idopontegyeztetes@posta.hu ).

6.3. Your data will not be passed on to third parties beyond this. Data will only be passed on to a third party or recipient if we inform you in advance about the possible recipient and you have previously consented to the data being passed on or if it is otherwise required by law.

6.4 As part of this data management activity, we do not transfer any personal data to third countries or international organizations.

7. LINKS TO SOCIAL MEDIA PROVIDERS, SOCIAL MEDIA BROWSER EXTENSIONS

The data controller https://p24s.eu/ contains simple links to Facebook, YouTube and g+. In this case, data will only be transmitted to the social media operators mentioned when you click on the corresponding icon (e.g. the "f" icon on Facebook). If you click on this icon, the page of the respective social media operator opens in the form of a pop-up window. On these pages you can publish information about our products in accordance with the guidelines of the respective social media operator.

8. 
   DATA SECURITY MEASURES

The Data Controller is obliged to ensure the security of the data and also takes the technical and organizational measures and develops the procedural rules that guarantee the protection of the data collected, stored and managed and prevent their destruction, unauthorized use and unauthorized modification. In addition, the third parties to whom the data in question are communicated are obliged to comply with the data protection regulations.
The data controller ensures that unauthorized persons cannot access, disclose, transfer, modify or delete data processed.
The Data Manager will do everything possible to ensure that the data is not damaged or destroyed. The Data Controller imposes the above obligation on its employees involved in its data management activities, as well as on data processors acting on behalf of the Data Controller.
The computer systems and other data storage of the Data Controller are located on P24S GROUP LLC's own servers. . Regarding the https://p24s.eu website, SZERVER GÉP helye Kft. (ADDRESS) uses its operating activities.
To prevent unauthorized access to your data, the data controller ensures the storage of personal data as follows and prevent unauthorized access: Access to the server and computers is password protected.

9. 
   notification of the data protection incident

Data security incident: a breach of security resulting in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access of personal data transmitted, stored or otherwise processed.
If the data protection incident is likely to pose a high risk to the rights and freedoms of natural persons, the data controller shall inform the data subject promptly, clearly and comprehensibly.
The data subject does not need to be informed if one of the following conditions is met:

1. (a) the controller has implemented appropriate technical and organisational protection measures and those measures are applied to data affected by a data protection incident, in particular those measures – such as the use of encryption – that render the data unrecognisable for persons who are not authorised to access the personal data;
   (b) following the data protection incident, the controller has taken additional measures to ensure that the high risk to the rights and freedoms of the data subject is not likely to materialise in the future; providing information would require a disproportionate effort. In such cases, data subjects must be informed by means of publicly published information or a similar measure must be taken to ensure equally effective information of data subjects.
2. THE RIGHTS AND LEGAL REMEDIES OF THE DATA PARTIES

Right to information and access to processed personal data:
The data subject has the right to obtain feedback from the data controller as to whether or not his or her personal data are being processed and, where such processing is in progress, access to the personal data and to the following information:

1. a) the purposes of data processing;
   (b) categories of personal data concerned;
   (c) categories of recipient or recipients with or to whom the personal data have been or will be disclosed, in particular recipients in third countries and international organisations;
   (d) where applicable, the envisaged storage period or, if not possible, the criteria used to determine that period;
   (e) the right of the data subject to request from the controller the rectification, erasure or restriction of processing of personal data and to object to the processing of those personal data;
   (f) the right to lodge a complaint with a supervisory authority;
   (g) where the data have not been collected from the data subject, any available information about the source;
   (h) the fact of automated decision-making, including profiling, and, at least in those cases, intelligible information about the logic used and the significance of such data processing as well as the expected consequences for the data subject.

Where personal data is transferred to a third country or to an international organisation, the data subject has the right to obtain information about the transfer and the relevant safeguards.
The data controller shall provide the data subject with a copy of the personal data that is subject to processing. For additional copies requested by the data subject, the data controller may charge a reasonable fee based on the administrative costs. If the data subject has submitted the request electronically, the data controller shall provide the information in a widely used electronic format, unless the data subject requests otherwise.
The right to request a copy referred to in the previous paragraph shall not adversely affect the rights and freedoms of others.
can be exercised through.

Right to rectification:
The data controller shall, at the request of the data subject, immediately rectify inaccurate personal data concerning the data subject. Taking into account the purpose of the data processing, the data subject shall have the right to request the completion of incomplete personal data, also by means of providing a supplementary statement.

Right to erasure ("forgetting"):
The data subject has the right to request that the data controller erase the personal data concerning him or her without undue delay in the event of one of the following reasons:

1. (a) personal data are no longer necessary in relation to the purposes for which they were collected or are not processed;
   (b) the data subject withdraws his or her consent to the processing and there is no other legal basis for the processing;
   c) the data subject objects to the data processing and there is no overriding legal ground for the data processing or if the data processing is permitted in the context of direct business acquisition;
   d) the personal data were processed unlawfully;
   (e) the personal data have been processed in accordance with EU or Member State law applicable to the data controller and need to be erased to fulfill an obligation;
   (f) the collection of personal data took place in the context of the provision of information society services.

Data deletion cannot be initiated if data management is required:

1. a) for the purpose of exercising the right to freedom of expression and information; compliance with an obligation under Union or Member State law applicable to the controller which requires processing of personal data or in the public interest;
   (c) for the purposes of preventive healthcare or occupational health and safety, for assessing the worker's capacity to work, for making a medical diagnosis, for the provision of health or social care or treatment or for the management of health or social systems and services, Union or Member State law, on the basis of or in accordance with a contract concluded with a healthcare professional and the processing of those data is carried out by a professional or under the responsibility of a professional who is subject to a duty of professional secrecy laid down by Union or Member State law or by rules laid down by the competent authorities of the Member States, or by another person who is also subject to a duty of professional secrecy laid down by Union or Member State law or by rules laid down by the competent authorities of the Member States;
   (d) public health in the public interest affecting its territory, such as protection against serious diseases, health threats spreading across borders or ensuring the high quality and safety of healthcare, medicines and medical devices, and is carried out on the basis of Union or Member State law which provides for appropriate and specific measures for the safeguards concerned to protect your rights and freedoms, and in particular with regard to professional secrecy;
   (e) on the basis of public interest in the area of ​​public health and the processing of those data is carried out by a specialist or under the responsibility of a professional subject to the obligation of professional secrecy laid down by EU or Member State law or by competent authorities of a Member State, or by any other person who is also subject to EU or Member State law or by competent authorities of a Member State, subject to the obligation of confidentiality laid down in rules laid down by EU, would be likely to render that data management impossible or seriously compromise that data management; or
   g) to assert, exercise or defend legal claims.

The right to restrict data processing:
At the request of the data subject, the data controller shall restrict data processing if one of the following conditions is met:

1. (a) the data subject contests the accuracy of the personal data, in which case the restriction shall apply for a period enabling the data subject to verify the accuracy of the personal data;
   b) the data processing is unlawful and the data The data subject opposes the erasure of the data and requests the restriction of its use instead.
   (c) the data controller no longer needs the personal data for the purpose of data processing, but the data subject needs them to assert and enforce legal claims or to protect themselves; or
   (d) the data subject has objected to processing related to the data controller's processing on the grounds of public interest or legitimate interest; in this case, the restriction shall apply for a period of time pending the verification whether the legitimate grounds of the controller override those of the data subject.

To the extent that data management is subject to the restrictions mentioned above, these personal data, with the exception of storage, may only be processed with the consent of the data subject or a legal entity for the establishment, enforcement or safeguarding of claims or for the protection of the rights of other natural or legal persons or for reasons of important public interest of the Union or of a Member State.
The data controller shall inform the data subject, at whose request the data processing has been restricted on the basis of the foregoing, prior to lifting the restriction on data processing.

Right to data portability:
The data subject shall have the right to receive the personal data concerning him or her, which he or she has made available to the controller, in a segmented, widely used and machine-readable format and shall have the right to transmit those data to another data controller without hindrance from the data controller to whom the personal data were made available, where:

1. a) The data processing is based on consent or contract; and
   b) data management is automated.

In exercising the right to data portability as described above, the data subject has the right to request the direct transmission of personal data between data controllers, where technically feasible.
The exercise of the right to data portability must not infringe the right to erasure (“forgetfulness”). The aforementioned right does not apply if the data processing is in the public interest or is necessary for the performance of a task carried out in the exercise of official authority vested in the controller.
The requirement of the right to data portability must not adversely affect the rights and freedoms of others.

Right of objection:
The data subject has the right to object at any time to the processing of his or her personal data by the data controller, for reasons related to his or her own situation, when the legal basis for the data processing is a public interest or the performance of a task carried out in the exercise of official authority vested in the controller or the need to enforce the legitimate interests pursued by the controller or by a third party, including profiling based on the above provisions. In this case, the controller may no longer process the personal data unless it demonstrates that the data processing is justified by compelling legitimate grounds which override the interests, rights and freedoms of the data subject or which are related to the exercise, assertion or defense of legal claims.

Insofar as the processing of personal data is carried out for the purpose of direct business processing, the data subject has the right to object at any time to the processing of personal data concerning him or her for this purpose, including profiling, if this is related to direct business acquisition. If the data subject objects to the processing of personal data for direct business purposes, the personal data may no longer be processed for this purpose.
If the personal data is processed for scientific and historical research purposes or for statistical purposes, the data subject has the right to object to the processing of personal data concerning him or her for reasons related to his or her own situation, unless the data processing is necessary to perform a task carried out in the public interest.

Right of withdrawal:
The data subject has the right to withdraw his or her consent at any time if the data processing by the controller is based on the consent of the data subject. The withdrawal of consent does not affect the legality of the data processing carried out on the basis of the consent until the withdrawal. In the case of a request:
The controller shall inform the data subject of any action taken on a request from a stakeholder relating to the exercise of rights, as set out in this information, without undue delay and in any event within one month of receipt of the request. If necessary, this period may be extended by a further two months, taking into account the complexity of the request and the number of requests. The data subject shall be informed thereof within one month of receipt of the request. Where the data subject has submitted the request electronically, the information shall be provided electronically wherever possible, unless the data subject requests otherwise.
If the controller does not take action on the request of the data subject, it shall communicate to the data subject without undue delay and at the latest within one month of receipt of the request, the reasons for the failure to take action, as well as the fact that the data subject has the right to lodge a complaint with a supervisory authority and exercise his or her right to a judicial remedy.< /span>
The controller shall provide the requested information and information free of charge; however, where the request from the data subject is manifestly unfounded or excessive, in particular because of its repetitive nature, the controller, taking into account the administrative costs involved in providing the requested information or information or in taking the requested actions, may charge a reasonable fee or refuse to take action on the basis of the request.
The data controller shall inform all recipients of any correction, erasure or restriction of data processing, as well as to whom or to whom the personal data have been disclosed, unless doing so should prove impossible or involve disproportionate efforts. Upon request from the data subject, the controller shall inform those recipients.

11. DATA PROCESSING

The Data Controller uses the data processor specified in this information sheet to carry out its activities. The data processor does not make any independent decisions, it is only authorized to act in accordance with the contract concluded with the Data Controller and the instructions received. The Data Controller checks the work of the data processor. The data processor is authorized to use other data processors only with the prior written consent of the Data Controller.

data processors	What personal data do you have access to? How can you use the personal data provided (what activities do you perform on behalf of the data controller)?	How long can you store the data?
Next Audit Kft. (1037 Budapest, Bokor u. 9-11)	Accounting, auditing, tax assessment, bookkeeping	until the termination of the contract, until there is a legal obligation to retain documents

The data processor does not make any independent decision, he is only authorized to act in accordance with the contract concluded with the data controller and the instructions received. The data controller checks the work of the data processor. The data processor is authorized to use other data processors only with the prior written consent of the data controller.

12. PERSONAL DATA OF CHILDREN AND THIRD PARTIES

Persons under the age of 16 are not permitted to disclose any personal information about themselves unless they have obtained permission from a parent or guardian. By providing your personal information to the Data Controller, you represent and warrant that you will act in accordance with the above provisions. Your options for action with respect to the provision of information are not limited.
Should you not be legally entitled to provide personal data yourself, you are obliged to obtain the consent of the third party concerned (e.g. legal representative, guardian, other person – e.g. consumer) on whose behalf you are acting) or to indicate another legal basis for providing the data. In this context, you are obliged to check whether consent from a third party is required to provide your personal data. It may happen that the data controller does not come into personal contact with you. Therefore, you are obliged to ensure compliance with this point and the data controller shall not be liable in this context. Irrespective of this, the controller is always entitled to check whether the appropriate legal basis for processing personal data exists. For example, if you are acting on behalf of a third party – e.g. a consumer – we are entitled to obtain your consent and/or the appropriate consent to data management of the data subject for the respective case.
The data controller will do everything in its power to delete any personal data that has been made available to it without authorization. The data controller will ensure that, upon becoming aware of such personal data, it will not be disclosed to third parties or used by the data controller. If you become aware that a child or third party has made personal data available to the controller without authorization, please use the contact details provided under point 13.

13. CONTACT INFORMATION

If you have any questions or requests regarding your personal data stored in the system and data management, please send them to info@p24s.eu to the e-mail address or in writing to 2310 Szigetszentmiklós, Bajcsy-Zsilinszky u. 43/A post to our address. Please note that we can only provide information or take measures related to the management of your personal data in your interest if you provide reliable proof of your identity.

¹ Your remedies:

5. a) For questions or comments related to data management, the Data Controller can be contacted using one of the contact details provided in this information.
   b) You can initiate an investigation with the National Authority for Data Protection and Freedom of Information (address: 1530 Budapest, Pf.: 5., telephone: +36 (1) 391-1400, e-mail: ugyfelszolgalat@naih.hu , website: https://naih.hu ) by reporting that you have suffered a breach of your personal data or that there is an imminent threat of such a breach; and
   c) In the event of a violation of the rights of the data subject, you may file a lawsuit against the data controller in court. In such a case, the court acts outside the order of priority. The data controller is obliged to prove that the data management complies with the legal provisions. The decision on the lawsuit falls within the jurisdiction of the court. The lawsuit can also be filed - at the choice of the data subject - with the court at the place of residence or stay of the data subject.

¹ Personal data are used for archiving in the public interest, for scientific and historical research The processing of personal data for purposes or for statistical purposes must be carried out under appropriate safeguards to protect the rights and freedoms of the data subject. These safeguards must ensure that technical and organizational measures are taken to ensure, in particular, compliance with the principle of data retention. These measures may include pseudonymization, provided that the stated objectives can be achieved in this way. If these objectives can be achieved by further processing the data in a manner that does not or no longer allows identification of the data subjects, the objectives must be achieved in this way.