1. General Provisions

This Privacy Statement (hereinafter referred to as the “Statement”) sets out the rules regarding the processing of personal data of visitors to the website operated by CSH Mining Ltd. (hereinafter referred to as the “Data Controller”) at [cshmining.hu] (hereinafter referred to as the “Website”).

The Data Controller is committed to complying with the relevant legislation on the processing of personal data, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council (General Data Protection Regulation, hereinafter “GDPR”), and Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information (“Infotv.”).

 

2. Data Controller Information

– Company name: CSH Mining Ltd.
– Registered office: 2111 Szada, Dombos Street 11
– Tax number: 25149164-2-13
– Phone: +36 20 424 6000
– Email: karolina.kaszta@cshmining.hu

 

3. Scope, Purpose, and Legal Basis of Processed Personal Data

a) Data Provided via Contact
– Processed data: Name, email address, phone number, message content.
– Purpose of processing: Establishing contact, handling inquiries and requests, processing quotation requests.
– Legal basis: Consent of the data subject (Article 6(1)(a) GDPR), or steps necessary for contract (Article 6(1)(b) GDPR).
– Retention period: Until purpose fulfilled or consent withdrawn, or as required by law.

b) Cookies
– Processed data: Varies by cookie type (e.g. IP address, browser, pages visited, visit time).
– Purpose: Website operation, user experience, statistical analysis, personalized ads.
– Legal basis:
– Necessary cookies: Legitimate interest (Article 6(1)(f) GDPR).
– Others: Consent (Article 6(1)(a) GDPR).
– Retention: Depends on cookie lifespan or consent withdrawal.

c) Server Logs
– Data: IP address, browser, OS type, visited pages, time of visit.
– Purpose: Technical operation, security, statistics.
– Legal basis: Legitimate interest (Article 6(1)(f) GDPR).
– Retention: Typically 30–90 days.

 

4. Data Security

The Data Controller ensures the security of personal data by implementing appropriate technical and organizational measures, particularly to protect the data from unauthorized access, alteration, transmission, disclosure, deletion, destruction, accidental loss or damage, and from becoming inaccessible due to technological changes.

 

5. Data Transfers and Data Processors

The Data Controller only transfers personal data to third parties if authorized by law or with prior consent. Data processors may be used (e.g., hosting, analytics, email services). Processors act only on the Controller’s instructions and must comply with data protection laws.

 

6. Rights of the Data Subject

According to the GDPR and Infotv., data subjects have the following rights:
– Right to information
– Right of access
– Right to rectification
– Right to erasure (“right to be forgotten”)
– Right to restriction of processing
– Right to data portability
– Right to object
– Right to withdraw consent

 

7. Remedies

If the data subject believes processing violates the law, the following remedies are available:
– Contact the Data Controller via the above details.
– File a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH):
– Address: 1055 Budapest, Falk Miksa Street 9-11
– Mailing address: 1363 Budapest, P.O. Box 9
– Phone: +36 (1) 391-1400
– Email: ugyfelszolgalat@naih.hu
– Website: www.naih.hu
– Seek judicial remedy

 

8. Modification of the Statement

The Data Controller reserves the right to modify this Privacy Statement at any time. Changes will be communicated via the Website.

 

Effective date: July 20, 2025