Skip to main content
Campus Codeworks

Campus Codeworks

We are building a digital future in higher education!

Privacy policy

v13-2025-04-28

Campus Codeworks cPLc. General Data Processing Policy

Campus Codeworks cPLc. (registered office: 1117 Budapest, Hauszmann Alajos utca 3/b., Cg.: 01-10-140314; hereinafter referred to as "the company"), as the data controller, informs you as the data subject about the purpose of the processing of your personal data, the legal basis and duration of the processing, the scope of the processed data, the persons entitled to access the data, your rights in relation to the processing and your legal remedies.

Please read this document carefully in order to understand how we process your personal data and to know your rights in relation to data processing.The Company declares that it will fully comply with the provisions of the applicable data protection legislation when processing personal data.

The Company shall implement appropriate measures to ensure a level of data security appropriate to the level of risk, taking into account the possibilities offered by IT technology, the costs of implementation, the nature, scope, context and purposes of the processing and the varying degrees of risk to the rights and freedoms of natural persons.

Our data management practices are based on Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information and the General Data Protection Regulation of the European Union (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Regulation (EC) No 95/46/EC, hereinafter referred to as "GDPR").

INTERPRETATIVE PROVISIONS

Data Subject: any specified natural person who is identified or can be identified, directly or indirectly, on the basis of one or more factors relating to personal data.

Personal data: any information relating to the data subject, such as a name, number, location data, online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person.

Consent: a freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she signifies his or her unambiguous agreement to the processing of personal data relating to him or her.

Objection: a statement by the data subject objecting to the processing of his or her personal data by the controller or a third party on the basis of a legitimate interest and requesting the cessation of the processing or the erasure of the processed data.

Data controller: a natural or legal person or unincorporated body which, alone or jointly with others, determines the purposes and means of the processing of data, takes and executes decisions regarding the processing (including the means used) or has them executed by a processor on its behalf.

Data processing: any operation or set of operations which is performed upon data, whatever the procedure used, in particular any collection, recording, recording, organisation, structuring, storage, alteration, transformation, use, retrieval, disclosure, alignment or combination, blocking, erasure or destruction, access to and prevention of further use of the data, photographing, audio or video recording, or any other physical means of identification of a person (e.g. fingerprints, palm prints, DNA samples, iris scans).

Transmission: making data available to a specified third party. 

Disclosure: making the data available to anyone.

Erasure: rendering data unrecognisable in such a way that it is no longer possible to recover it.Data marking: the marking of data with an identification mark to distinguish it.

Data blocking: the marking of data with an identifier in order to limit their further processing permanently or for a limited period of time.

Data destruction: the total physical destruction of a data medium containing data.

Data processing: the performance of technical tasks related to data processing operations, irrespective of the method and means used to perform the operations and the place of application, provided that the technical task is performed on the data.

Data processor: a natural or legal person or an unincorporated body which, under a contract with a controller, including a contract entered into pursuant to a legal provision, processes data, processes personal data on behalf of the controller.

Data file: the set of data processed in a register.

Data breach: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed, or to the processing of personal data in violation of the law, including the processing of personal data in violation of the law.

Third party: a natural or legal person or an organisation without legal personality who is or who is not the same as the data subject, the controller or the processor, or the persons who, under the direct control of the controller or processor, have been authorised to process personal data.

EEA State: a member state of the European Union and another state party to the Agreement on the European Economic Area, and the state includes the members of the European Union and an international treaty concluded by a state that is not a party to the Agreement on the European Economic Area, which has the same legal status as a state party to the Agreement on the European Economic Area.

Third country: any state that is not an EEA State.