This current Data Processing Information summarizes all information that is worth knowing about using and protecting our personal data on the basis of the EU General Data Protection Regulation (GDPR) concerning the Graduation Ceremony of the Faculty of Science and Informatics, University of Szeged.

1. Who can you turn to?

The University of Szeged qualifies as a data processor for the data processing of the Graduation Ceremony, but the concrete data processing is implemented through its organizational unit below.

Faculty of Science and Informatics, University of Szeged

Webpage: http://www.sci.u-szeged.hu

Our contact person:

Name: Dr. Edit Velek Dr. Pintérné

Her correspondence address: 6720 Szeged, Aradi vértanúk tere 1.

Her Phone: +36 (62) 546-744

Her e-mail address: ttikdh@sci.u-szeged.hu

The professional contact person for this current data processing is the data protection referent.

Name and availability of the data protection officer of the University of Szeged is detailed in the current Privacy Policy document point 11.1.

Please do not hesitate to contact us via one of the available options above if you have any questions regarding data processing.

2. What are the main legal rules?

2.1. The main legal sources governing this data processing are as follows:

We inform you that your personal details are handled

· in compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC

· and Act CXII of 2011 on the Right of Informational Self-Determination and Freedom of Information

· and the Act CCIV of 2011 on the National Higher Education

2.2. The main regulatory frameworks governing this current data processing

They are outlined in point 3.

3. Does the University of Szeged have a Data Protection Code?

Yes, it does. The Data Protection Code of the University of Szeged can be accessed here: http://www.u-szeged.hu/szabalyzatok

4. What data processing are we implementing?

Concerning the organization of the Graduation Ceremony the following data is processed.

4.2. Image and sound recording (video)

We inform you that image and sound recordings (video) of a legitimate interest during the Graduation Ceremony will be made, generally in the form of mass recordings, footage related to public appearances furthermore individualized recordings may also be made.

We would also like to draw your attention to the fact that the event is open to the press."

Data Processing Related to Crowd Recordings and Public Appearances

Photo, audio, and video recordings are made in the form of crowd footage and in connection with public appearances, based on public interest.

According to Section 2:48 § Subsection (2) of Act 5 of 2013 on the Civil Code, the consent of the data subject shall not be required for recording his/her image or voice and for the use of such a recording if the recording was made of a crowd (mass recording) or of an appearance in public life. However, previous information should be given in these cases, so we fulfill the preliminary notification obligation to inform data subjects through this Data Processing Information and through information provided at the event stating, „We would like to inform you that image and sound recording (video) will be taken during this event.”

As the University of Szeged is dedicated to the protection and safety of all kinds of personal data, and the respect of privacy, we inform you that we use these recording (mass recording or appearance in public life) to promote the event and for marketing purposes through the online and offline channels of the University of Szeged.

Please be informed that you have the right to object to recordings made in the form of crowd footage or related to public appearances:

• prior to the event, through our designated professional contact person, or
• on-site, by notifying our event organizers present at the venue,

in order to enable us to take effective measures to ensure that you do not appear in the recordings.

Data processing related to individualized (unique) recordings

For the creation and use of individualized recordings, we always request consent from the data subject pursuant to Section 2:48 (1) of Act V of 2013 on the Civil Code (hereinafter: Civil Code). During the voluntary consent process, the data provided via the electronic registration platform serves as the basis for identification.

Voluntary consent can be withdrawn at any time. Please note that withdrawal of consent does not affect the lawfulness of data processing carried out prior to the withdrawal. For deletion requests, we ask you to provide the same identification data as when granting consent.

Recorded data will be retained for up to 30 days from receipt of the withdrawal request in order to process the deletion.

5. Who can get to know your personal data?

The data processing unit as specified in point 1 of this Data Processing Information can get to know your personal data and those to whom it is transmitted or is forwarded.

5.1. Data transmission within the organization

.It is not carried out.

5.2. Do We Use a Data Processor?

We do not use a data processor.

5.3. Data Transfers Outside the Organization

We do not transfer data to any recipients, either domestic or international.

6. Do we collect personal data about you from other resources?

No, we don’t. We receive your personal information from you, we do not collect any data from other resources.

7. Is there automated decision-making during data processing?

No, there isn’t.

8. What are the consequences of failing to provide data for you in cases where the legal basis is legal obligation fulfillment or contractual necessity?

Please be informed that the legal basis for our current data processing activities is neither the fulfillment of a legal obligation [Article 6(1)(c) of the GDPR], nor a contractual necessity [Article 6(1)(b) of the GDPR].

Generally, we hereby state that no legal disadvantage will be incurred by you as a result of withholding the provision of data summarized in our Privacy Notice. However, please note that without providing the data, we will not be able to offer the associated services to you.

Detailed information about our data processing activities can be found in Section 4 of this Privacy Notice.

9. What legitimate interest exists in our data processing?

The data processing activities currently described are not based on legitimate interest as a legal basis [Article 6(1)(f) of the GDPR]; our data processing is carried out on other legal grounds.

10. What are your rights?

You have the following rights below concerning the data processing:

1. right to be informed – you have the right to ask for information on the processing of your personal data. Your right to be informed is provided by this current Data Processing Information.

2. right of access– you have the right to ask for information or copies concerning your personal data that we process

3. right to rectification – should you find inaccuracies in your personal data processed by us, you have the right to ask for rectification.

4. right to object – you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data based on public interest. In such a case, the data controller shall no longer process the personal data for the contested purpose unless they demonstrate compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the data subject, or for the establishment, exercise, or defence of legal claims.

5. right to withdraw your voluntary consent or the right to erasure - the voluntary consent can be withdrawn at any time. We inform you that the withdrawal of your consent does not refer to the legality of the data management before the withdrawal.

6. right to erasure – if the data processing is based on your consent or another legal basis does not apply, or following an objection to processing based on legitimate interest or public interest where no overriding lawful grounds exist for further processing, you have the right to request the deletion of your personal data.

7. right to restrict processing – you have the right to ask for the restriction of the processing of your personal data, for example after you find inaccuracies in your personal data, you can ask for restriction of processing while the data processor is checking the accuracy of the data.

8. right to data portability – In the case of our automated data processing based on your voluntary consent or contract, if you require access to your personal data, we will provide it to you. Upon your request, we will also directly transmit the data to another designated data controller.

9. right to legal remedy – every data subject has the right to legal remedy in case of an infringement.

11. What remedies can you make?

11.1. You can turn to the data protection officer (DPO) of the University of Szeged:

Dr. Dóra Lajkó

Address: University of Szeged, Rector’s Office, Office for Data Protection

H-6720 Szeged, Dugonics square 13. 3. floor, Room 303.

Phone: +36 (62) 342-376, +36 (62) 544-000/2376

Email: dpo@szte.hu

11.2. You can lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information:

Hungarian National Authority for Data Protection and Freedom of Information

Address: 1055 Budapest, Falk Miksa utca 9-11.

Correspondence address: 1363 Budapest, Pf.9.

Phone: +36 (1) 391-1400

E-mail: ugyfelszolgalat@naih.hu

11.3. You can turn to Court

Depending on the nature of the unlawful data processing you are experiencing, you may institute legal action, even against the Authority. You can find out about the possibilities, methods and forums for starting a lawsuit at the following website: https://birosag.hu/birosagi-szervezetek

12. Does the University of Szeged have a DPO?

Yes, it does. The contact details of the data protection officer (DPO) of the University of Szeged can be found in point 11.1. The DPO acts as a contact point between you and the University of Szeged.