Privacy and Cookies Policy

PRIVACY AND COOKIES POLICY

regarding the processing of personal data
in the KONZINFO systems operated by the Ministry of Foreign Affairs and Trade

1. Name of Data Controller

Name of Data Controller: Ministry of Foreign Affairs and Trade

Registered office: H-1027 Budapest, Bem rakpart 47.

Postal address: H-1027 Budapest, Bem rakpart 47.

Phone: +36 1 458 1736

Email: konz@mfa.gov.hu

2. Contact details of Data Protection Officer

E-mail: adatvedelem@mfa.gov.hu

3. Purpose and legal basis of processing, scope of processed data

3.1.    Konzinfo Időpont/Konzinfo Booking online booking system

3.1.1. Description and purpose of processing

The purpose of the booking system is to enable users to administer their cases in a convenient and safe manner, and it stores the items of personal data provided by the user, that are absolutely necessary for identification and administration, for a maximum term of 6 months. If the user deletes the booked appointment, the processing of the user’s personal data will be discontinued.

3.1.2. Scope of the processed data

  • name
  • date of birth
  • phone number
  • e-mail address

In the case of visa-related booking:

  • passport number

3.1.3. Legal basis of processing

The processing is based on Article 6(1)(a) of the GDPR, and its legal basis is the consent of the data subject.

3.2. Konzinfo Ügysegéd/Konzinfo Start online web-based case assistant system

3.2.1. Description and purpose of processing

The purpose of the processing of the personal data provided by the data subject on the web-based case assistant portal is to enable the creation of a Konzinfo profile for the user, to identify the user, and to facilitate the completion of applications. In order to prepare the online application and for administration, the user has to log in using their profile data.

The following types of cases may be initiated via an existing user profile:

  • Registration for consular protection
  • Legalization (in Hungary)
  • Application for simplified naturalisation
  • Application for naturalisation
  • Application for restoration of citizenship
  • Application for certification of citizenship
  • Application to obtaining citizenship for persons born before 1 October 1957
  • Application to obtaining citizenship for a stateless person
  • Renunciation of Hungarian citizenship
  • Application for the authentication of document copy
  • Application for the preparation of a certified translation
  • Application for certification of correctness of a translation
  • Application for permit for the transportation of mortal remains
  • Application for Schengen visa
  • Application for residence permit
  • Application for temporary residence permit (WHS)
  • Diplomatic ID (in Hungary)

The system will automatically receive the data stored in the profile when completing the application, so the user does not have to input it again manually.

3.2.2. Scope of the processed data

Mandatory data required for creating a profile:

  • family name and given name
  • e-mail address
  • password

Optional data:

  • country of birth
  • place of birth
  • date of birth
  • phone number
  • registered domicile
  • address of residence

3.2.3. Legal basis of processing

The processing is based on Article 6(1)(a) of the GDPR, and its legal basis is the consent of the data subject.

3.3. Konzinfo Utazom mobile app

The personal data provided within the app is necessary for the creation of a user profile, which is a precondition for registering for consular protection, as well as for receiving emergency messages. In order to make the administration process more convenient, after completing and submitting the registration for consular protection in the mobile app, the user may consent to the additional personal data they provided in the app being added to their Konzinfo user profile, and to the storage of such data. If the user starts to fill in an application later, the system will automatically complete the additional data stored in the profile, meaning the user will not have to provide it again.

3.3.1. Scope of the processed data

Data required for creating the profile:

  • email address
  • password

The above data is stored in the Konzinfo Start system. The profile data can be viewed in the mobile app, but amendments and deletion are only possible via the Konzinfo Start system, which can be accessed easily by logging in with the Konzinfo profile created in the mobile app.

3.3.2. Legal basis of processing

The processing is based on Article 6(1)(a) of the GDPR, and its legal basis is the consent of the data subject.

3.4. Konzinfo portal

The central website and Junior sub-portal of the Consular Services uses cookies in order to facilitate the more convenient use of the website and identify the user’s session.

The purpose of the use of cookies is to make the use of the website quicker, balance the load on the servers, or assist in and facilitate the use of the website via automatisations. Cookies are files or pieces of information sent by the web server accessed by the visitor to the web browser of the visitor’s computer. A cookie typically contains the name of the website from which it was received; the value of the cookie, which is a unique randomly-generated number; and the cookie’s lifespan, i.e. how long it will remain on the online communications device. The cookie is stored in a file within the storage of the user’s device. The web server that sent the cookie can retrieve the contents of the file at any time from the web browser.

3.4.1. Technical cookies

Technical cookies help make the website usable by enabling certain essential functions, such as navigation on the website and access to secure areas of the website. The website cannot function appropriately without these cookies. The legal basis of the processing of technical cookies is Article 6(1)(e) of the GDPR, as well as Section 9(1)2 of Gov. Decree no. 182/2022. (V. 24.) on the scope of duties and powers of the members of the Government.

You, as a data subject, have the right to access, rectify, eras, restrict processing, and object, in connection with technical cookies.

Cookie name Domain Type Scope of processed Information Legal basis Period of retention
cookie-agreed konzinfo.mfa.gov.hu Agreement to cookies Whether the user agrees to the placement of cookies Legitimate interest 100 days
cookie-agreed-version konzinfo.mfa.gov.hu  Agreement to cookies Version number of information concerning cookies Legitimate interest 100 days
fontSize konzinfo.mfa.gov.hu Version for people with impaired eyesight Font size selected for version for people with impaired eyesight Legitimate interest 1 year
colorContrast  konzinfo.mfa.gov.hu  Version for people with impaired eyesight Colour scheme selected for version for people with impaired eyesight Legitimate interest 1 year


3.4.2. Third party cookies

The legal basis of the processing of third party cookies is Article 6(1)(a) of the GDPR, i.e. the data subject’s consent.
You, as a data subject, have the right to access, rectify, eras, restric of processing, receive, and object, in connection with third-party cookies.

Cookie name Domain Type Scope of processed Information Legal basis  Period of retention
_ga  konzinfo.mfa.gov.hu  third party
cookie

Cookies associated with Google Analytics and Google Tag Manager. 
No personal data is sent    
to Google.

The cookie policy of Google
Analytics is available    
via this link.

 Until withdrawal of consent
_gid  konzinfo.mfa.gov.hu third party
cookie		      
_gat_gtag_<google API kulcs> konzinfo.mfa.gov.hu third party
cookie		      
__utmc konzinfo.mfa.gov.hu third party
cookie		      
__utmz  konzinfo.mfa.gov.hu third party
cookie		      
__utma  konzinfo.mfa.gov.hu third party
cookie		      
  .panopto.com third party
cookie		  Cookie used by Panopto          

4. The use and processing of personal data, that was not provided to the Ministry by the data subject

The Ministry does not process personal data that was not collected from the data subject.

5. The recipients of the personal data, the categories of recipients, processing by data processor

In the case of the processing activities specified in Clauses 3.1, 3.2 and 3.3, the personal data provided by the data subject is processed in the systems developed and supported by ThinXoft Szolgáltató és Tanácsadó Korlátolt Felelősségű Társaság (registered office: H-1012 Budapest, Logodi u. 50. 3. em. 17, +36 1225 0252), who are involved in the processing activities as data processor.

6. Term of storage of the personal data
The Ministry stores the personal data provided by the data subject with regard to the purpose and legal basis of the processing thereof. The Ministry processes the personal data related to the booking of an appointment for 6 months, while the data provided for the user profile is retained for 3 years, unless the user specifies a different term. The storage of data processed by cookies is subject to the system set out in Clause 3.4.

The Ministry makes it possible for the data subject to withdraw their consent at any time, in the same manner in which the data were provided.

7. The data subject’s rights related to processing

7.1. Deadline

The Ministry will fulfil the data subject’s request to exercise their rights within one month following the receipt of the request.

Where necessary depending on the complexity of the application and the number of applications, the Ministry may extend this deadline by a further two months. The Ministry will inform the data subject of the extension of the deadline, specifying the reasons for the delay, within one month following the receipt of the request.

7.2. The data subject’s rights related to processing

7.2.1. Right to access

The data subject has the right to request information from the Ministry, via the means of contact specified in Clause 1, regarding whether their personal data is being processed. If such processing is in progress, the data subject also has the right to learn
which items of their personal data are being processed by the Ministry and

  • on what legal basis;
  • for what processing purpose;
  • for how long;
  • to whom the Ministry provided access to or forwarded their data, as well as when which data, and based on what legislation;
  • from what source their personal data was received;
  • whether the Ministry uses automated decision-making, as well as the logic thereof, including profiling.

The Ministry will provide a copy of the personal data being processed free of charge on the first occasion the data subject requests this, but may charge a reasonable fee thereafter to cover its administrative costs.

7.2.2. Right to rectification

The data subject may request, via the means of contact specified in Clause 1, that the Ministry modify any of their personal data. If the data subject can credibly demonstrate the accuracy of the rectified data, the Ministry will fulfil the request within a reasonable time – but in any case no longer than one month –, and notify the data subject thereof via the means of contact specified by the data subject.

7.2.3. Right to blocking (restriction of processing)

The data subject may request, via the means of contact specified in Clause 1, that the Ministry restrict the processing of their personal data (clearly indicating that the processing is restricted, and should be processed separately from other data).

7.2.4. Right to erasure

In connection with the processing described in the privacy policy, the data subject has the right to request that the Ministry erase their personal data without undue delay, and the data controller is obligated to erase the personal data of the data subject without undue delay, unless it has another legal basis for processing the data.

7.2.5. Right to data portability

In connection with the processing activities and having regard to the legal basis thereof, the data subject has the right to receive, via the means of contact specified in Clause 1, their personal data provided to the Ministry in a structured, commonly used and machine-readable format and has the right to transmit this data to another data controller without hindrance from the Ministry, in connection with data processing operations taking place in an automated manner.

8. Right to legal remedy

If the data subject thinks that in the course of the processing of their personal data, the Ministry violated the data protection requirements in effect, the data subject may 

  • contact the Data Protection Officer of the Ministry, or
  • turn to a court (Budapest-Capital Regional Court, H-1055 Budapest, Markó utca 27.), or
  • initiate proceedings at the data protection authority (National Authority for Data Protection and the Freedom of Information, H-1055 Budapest, Falk Miksa utca 9-11.)