PRIVACY POLICY

Effective Date: 2025.05.27. Last Modified: 2025.05.27.

1. DATA CONTROLLER'S INFORMATION

• Service Provider Name: Formula/400 Informatikai Kft.
• Registered Office: 1056 Budapest, Váci utca 81.
• Tax Number: 12332722-2-41
• Company Registration Number: 01 09 668634
• E-mail Address: info@formula400.hu
• Phone Number: (+36-1) 472-2160
• Website: formula400.hu

2. PURPOSE OF THE PRIVACY POLICY

This privacy policy aims to comply with EU Regulation 2016/679 (GDPR) and Act CXII of 2011 (Infotv.). We inform our users about our data processing activities, the legal basis, purpose, duration of data processing, and the rights of data subjects.

3. INTRODUCTION TO OUR SERVICE

On the MechaBee.hu website, we provide AI-based assistant services in free and paid subscription forms. Through our service, users can engage in conversations with AI assistants on various topics.

4. SCOPE OF PERSONAL DATA PROCESSED

4.1 Registration Data

• Scope of Data: email address, chosen username, password (in encrypted form)
• Legal Basis: GDPR Article 6(1)(a) (consent)
• Purpose: creation and management of user account
• Retention Period: until deletion of user account

4.2 Subscription and Billing Data (for paid services)

• Scope of Data: name, billing address, payment information (last 4 digits of credit card number)
• Legal Basis: GDPR Article 6(1)(b) (contract performance)
• Purpose: subscription management, billing
• Retention Period: 8 years according to accounting regulations

4.3 Conversation Data

• Scope of Data: content of conversations with AI assistants
• Legal Basis: GDPR Article 6(1)(b) (contract performance)
• Purpose: provision of service, retention of conversation history
• Retention Period: for the duration of the user account
• Important: Conversation data is processed solely for the purpose of providing the service and is not used for other purposes

4.4 Technical Data

• Scope of Data: IP address, browser type, operating system, visit timestamps
• Legal Basis: GDPR Article 6(1)(f) (legitimate interest)
• Purpose: operation of service, debugging, security
• Retention Period: 12 months

5. PRINCIPLES OF DATA PROCESSING

• Data Minimization: We only process data necessary for providing the service
• Purpose Limitation: Data is used exclusively for the specified purposes
• Accuracy: We ensure the accuracy and up-to-dateness of data
• Storage Limitation: Data is retained only for the necessary period
• Security: Data is protected with appropriate technical and organizational measures

6. DATA SECURITY

6.1 Technical Security Measures

• SSL/TLS encryption during data transmission
• Encrypted data storage
• Regular security backups
• Access control and authorization management

6.2 Organizational Measures

• Only authorized persons have access to personal data
• Our employees undertake confidentiality obligations
• Regular security training

7. DATA TRANSFER

7.1 Transfer to Third Parties

Personal data is transferred to third parties only in the following cases:

• To fulfill legal obligations
• With the user's express consent
• To payment service providers (payment data only)

7.2 Transfer Abroad

Transfers outside the EU/EEA are only carried out with adequate safeguards, in accordance with GDPR requirements.

8. RIGHTS OF THE DATA SUBJECT

8.1 Right of Access

You are entitled to request information about your personal data processed by us.

8.2 Right to Rectification

You are entitled to request the rectification of inaccurate personal data.

8.3 Right to Erasure ("Right to be Forgotten")

You are entitled to request the erasure of your personal data under certain conditions.

8.4 Right to Restriction of Processing

You are entitled to request the restriction of processing in certain cases.

8.5 Right to Data Portability

You are entitled to request your personal data in a structured, machine-readable format.

8.6 Right to Object

You are entitled to object to the processing of your personal data based on legitimate interests.

8.7 Right to Withdraw Consent

If processing is based on consent, you are entitled to withdraw it at any time.

9. ENFORCEMENT OF RIGHTS

You can submit requests regarding the exercise of your rights at the following contacts:

• Email: info@formula400.hu
• By post: 1056 Budapest, Váci utca 81.

We will respond to your request within 30 days.

10. REMEDIES

If you believe that our data processing violates your rights, you can contact:

• The National Authority for Data Protection and Freedom of Information (NAIH)
• Address: 1055 Budapest, Falk Miksa utca 9-11.
• Email: ugyfelszolgalat@naih.hu
• Phone: +36 (1) 391-1400

You are also entitled to turn to the courts.

11. COOKIE MANAGEMENT

11.1 Essential Cookies

Cookies necessary for the operation of the website (e.g., storage of login data).

11.2 Functional Cookies

Cookies to improve user experience (e.g., language settings).

11.3 Analytical Cookies

Cookies used to create website visit statistics (anonymous data only).

12. CONTACT

For questions related to data protection, please contact us:

• Email: info@mechabee.com

13. MODIFICATION OF THE POLICY

We reserve the right to modify this privacy policy. We will inform users of changes in advance through our website.

14. FINAL PROVISIONS

This privacy policy enters into force on 2025.05.27. The previous privacy policy loses its validity simultaneously.

---