Privacy Policy
Effective Date: April 1, 2026
1. Introduction and Data Controller Details
This Privacy Policy explains how Mészáros Tamás Gábor ("Controller", "we") collects, processes, and protects personal data under the General Data Protection Regulation (EU) 2016/679 ("GDPR") and the Hungarian Act CXII of 2011 on Informational Self-Determination.
- Controller Name: Mészáros Tamás Gábor
- Address: 2053, Herceghalom Kiserdő út 6
- Email Address:stormstudio00@gmail.com
2. Categories of Data, Purposes, and Legal Bases
| Data Processing Activity | Categories of Personal Data | Purpose | Legal Basis (GDPR) | Retention Period |
|---|---|---|---|---|
| "Coming-Soon" Newsletter | Email address | Direct marketing, notifying about app launch | Art. 6(1)(a) Explicit Consent | Until consent is withdrawn (unsubscribe) |
| App Registration & Login | Email address, Username, OR Phone number. (Passwords are securely handled by Firebase, not us) | Account creation, user authentication via OTP or password | Art. 6(1)(b) Performance of a Contract | Until account deletion |
| App Usage (Wishlists) | Saved items, links, list names, preferences | Providing core app functionalities | Art. 6(1)(b) Performance of a Contract | Until account deletion |
| System Logs | IP address, device OS version | System security, debugging | Art. 6(1)(f) Legitimate Interest | Max 30–90 days |
3. Data Processors
To provide the Service, we use third-party Data Processors:
- Google Ireland Limited (Google Firebase): Acts as our primary processor for backend infrastructure, database hosting, and user authentication.
- Newsletter Provider: Processes email addresses for the coming-soon page subscription.
4. Data Security
We implement appropriate technical and organizational measures (Art. 32 GDPR) to protect your data. This includes relying on Google Firebase's industry-standard encryption. We never possess or store raw user passwords.
5. Your Rights as a Data Subject
Under the GDPR, you have the right to:
- Access your data (Art. 15)
- Rectify inaccurate data (Art. 16)
- Request erasure / "Right to be forgotten" (Art. 17)
- Restrict processing (Art. 18)
- Request Data Portability (Art. 20)
- Withdraw Consent for newsletters at any time (Art. 7)
To exercise your rights, contact us at: stormstudio00@gmail.com
6. Right to Lodge a Complaint
If you believe our processing infringes the GDPR, you have the right to lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH):
- Address: 1055 Budapest, Falk Miksa utca 9-11., Hungary
- Email:ugyfelszolgalat@naih.hu
- Website:www.naih.hu