Privacy policy

Dear Visitor! 

The data protection and data processing policy of OFF-BIENNÁLE EGYESÜLET (1111 Budapest, Bercsényi u. 15.)  hereinafter: Association) is published below in the form of the following privacy policy notice:

The Association’s website is accessible to anyone without providing personal data (registration). During your visit of our website, our system records certain data that are used exclusively for statistical purposes and for the optimisation of our website’s appearance, as well as for the enhancement of the system’s security. The data collected contains no personal data. The Association uses so-called “cookies” to collect profile and status data (e.g. IP address, browser type, date and time of visit). Cookies are pieces of data temporarily saved from the browser onto your hard drive when visiting the website, in order to allow easier access to the website and faster searches for specific content at later times. You can delete the cookies from your computer any time, and you can also set your browser to block the use of cookies. The website is operated and maintained by The Webstation Group (1082 Budapest, Nap u. 32.)

The Association operates a newsletter in order to ensure that those interested stay continuously informed about its latest news. This requires registration on our website providing personal data (full name, email address), which are handled as per the preliminary written consent of the newsletter’s recipient. The Association’s newsletters are distributed through the "Mailchimp" international newsletter automation platform, from abroad, therefore in addition to registration, you are required to specifically consent to the forwarding of your personal data to a cross-border third party data processing platform. The Mailchimp platform is operated by The Rocket Science Group, LLC (675 Ponce de Leon Avenue, Suite 5000, Atlanta, GA 30308 USA). Data processing conforming to European Union regulations is ensured by the foreign operator on the basis of the provisions of the "EU-U.S. Privacy Shield Framework" data exchange agreement. You can unsubscribe from the newsletter any time by clicking on the “unsubscribe” link in the newsletter’s footer. This automatically deletes your data stored in the system, but if you write an email to with your specific request to have your data deleted, the Association deletes your data immediately, but not later than within 15 days

Beyond data processing based on the subject’s consent, the Association processes and forwards personal data only in cases when it is obliged by law to do so. The Association only forwards the personal data provided at its disposal to third parties – with the exception of data managers/data processors contractually entitled by the Association to do so – with the preliminary and explicit written consent of the subject.

The Association ensures the lawful processing of personal data by employing appropriate technical devices, organisational measures and internal regulations. The Association exercises special caution in the course of processing and protecting personal data. The Association only processes accurate and if necessary, up-to-date data, and only for the duration required to fulfil the purpose of data processing. In case the purpose of data processing has ceased, the Association deletes the personal data of the subject immediately, but not later than 15 days.

The subject is entitled to request the correction, modification and deletion of all or part of their personal data and is also entitled to revoke their consent to processing their personal data, without justification, in writing. The Association immediately, but not later than within 15 days of receipt of the request, takes the necessary steps to correct, modify, or delete the personal data of the subject, processed by the Association.

If the subject believes that the processing of their data is exercised by the Association in an unauthorised manner, they can object to the processing of their data. This objection is immediately, but not later than within 15 days of receipt of the request, inspected by the Association  and the objecting subject is informed of the inspection’s result in writing – meanwhile the procession of the subject’s data is suspended. If the Association fails to meet the deadline, or fails to comply with the request, the subject is entitled to turn to the Budapest Capital Regional Court or to the competent Regional Court of their permanent or temporary place of residence for legal remedy.

In case of personal data breach, or in case of immediate danger of breach, the subject or any third party may request investigation by submitting a report to the Hungarian National Authority for Data Protection and Freedom of Information (NAIH).

The Association accepts questions, remarks, suggestions regarding the data it processes at the email address and the postal address 1111 Budapest, Bercsényi u. 15.

This notice is based on the following regulations: