Privacy policy

PRIVACY POLICY 

At SAGÍO (hereinafter Sagío or the Seller), protecting your data as a Buyer (hereinafter you or the Buyer) is of prime importance. Sagío is fully committed to protecting your personal data and ensuring it is handled with care and transparency during your visits to thesagio.com. 

SAGÍO as the Seller

Name: Sagio Fashion Kft.

Seat: 1068 Budapest, Hungary, Városligeti fasor 34-36.

Tax Number: 32469361-2-42

Trade Register Number: 01-09-425769

Represented by: Tóth Réka managing director

Email: info@thesagio.com

Website: https://www.thesagio.com/

1. PERSONAL DATA 

The personal data means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. 

The information you share with us, whether related to your identity, preferences, or location, is used exclusively to provide you with the best possible service and to tailor our offerings to your tastes. We will never sell, share, or disclose your personal data, cookies, or location information to third parties, in strict accordance with our Privacy Policy.

The processing and collecting of personal data by the Seller shall be in harmony with the directly applicable data protection laws in effect. In case of personal data processing, the Regulation (EU) 2016/679 of the European Parliament and of the Council (hereinafter GDPR), the Hungarian Act CXII of 2011 on the Right to Informational Self-determination and Freedom of Information (hereafter Freedom of Information Act), the Hungarian Act XLVIII of 2008 on the Essential Conditions and Certain Limitations of Business Advertising Activity (hereinafter Business Advertising Act), the Hungarian Act CVIII of 2001 on the ecommerce services and information society services (Ecommerce Act), furthermore the recommendations and the data protection practice of the Hungarian National Authority for Data Protection and Freedom of Information (hereinafter NAIH). 

Sagío collects the following personal data during registration, purchases on the website, and newsletter subscriptions:

1. Full name,
2. E-mail address,
3. Mailing address,
4. Phone number,
5. Country,
6. Date of birth,
7. Password, 

After the registration you can optionally add the following personal data to your user Account:

1. Shipping address (name, company, address, phone number),
2. Billing address (name, company, address, phone number).

When you interact with this website, the Seller receives and stores certain types of information. The Seller automatically receives and records information from your browser in our server log files, including your IP address, unique device identifier, browser characteristics, domain and other system settings, search queries, device characteristics, operating system type, language settings, referring URLs, actions taken on our website, pages requested, content consumed (e.g., viewed, uploaded, and shared), date and time of website visits, and other information related to other files stored on your device.

1. Data Privacy Rights 

The data controller for purchases made on this website  (hereinafter referred to as the Controller) is Shopify International Ltd. (seat: 2nd Floor, 1-2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32, Ireland, Company Number: IE00559702, trade Register Number: 01-09-425769, e-mail: info@thesagio.com) 

If you have any comments, questions, complaints, or other requests regarding the processing of your personal data, please contact the data controller directly using one of the contact details provided above or via the contact information available on the https://www.shopify.com/legal/privacy  website . On the Controller’s website,  “How you can reach us” section contains all relevant information regarding submissions. 

In the case of in-person purchases at the store located at 1052 Budapest, Petőfi Sándor u. 16, the Seller is considered the data controller. The store operates an electronic surveillance system capable of recording images (hereinafter: camera system) in order to ensure the safety of visitors’/data subjects’ property and physical well-being during business hours, the physical safety of employees during their working hours, as well as the protection of staff and their personal property, and the protection of trade secrets both during and outside of opening and working hours. The Seller publishes the camera policy on the website https://www.thesagio.com/ and displays it in the store.

The Seller treats personal data as confidential even when purchases are made in-store, and takes all necessary technical and organizational measures related to data storage and processing to ensure the security of such data.

You have certain rights in relation to the processing of your personal data (i.e., data protection rights), which are essentially determined by the legal basis for the processing. Therefore, the Controller recommends that you carefully review this privacy statement, the GDPR, and applicable laws before submitting a request. If you need assistance with applicable laws, please contact us using the contact details provided above.

(a) Withdrawal of consent (Article 7(3) of the GDPR)

You have the right to withdraw your consent to a specific data processing activity at any time. Please note that withdrawing your consent does not affect the lawfulness of data processing based on consent prior to withdrawal.

(b) Access (Article 15 of the GDPR)

You have the right to request confirmation from the Controller as to whether personal data concerning you are being processed, and where that is the case, access to the personal data and certain information determined in Article 15 of the GDPR.

(c) Rectification (Article 16 of the GDPR)

You have the right to request the Controller to rectify any inaccurate personal data concerning you without any undue delay. Considering the purpose of the processing, you have the right to have the incomplete personal data completed, including by means of providing a supplementary statement.

(d) Right to erasure (“right to be forgotten”) (Article 17 of the GDPR)

You have the right to request the erasure of your personal data if any of the circumstances set out under Article 17(1) of the GDPR apply. If the exceptions in Article 17(3) of the GDPR do not apply and/or the Controller does not have any legal ground to further process your personal data, then it will execute the request for deletion without undue delay.

(e) Restriction of processing (Article 18 of the GDPR)

You have the right to request the restriction of processing where the grounds determined in Article 18 of the GDPR apply.

(f) Data portability (Article 20 of the GDPR)

You have the right to receive your personal data provided to the Controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the Controller, if the processing is based on consent [point (a) of Article 6(1) or point (a) of Article 9(2)] or is conducted for the performance of a contract to which you are a party [point (b) of Article 6(1)] and the processing is carried out by automated means. In exercising your right to data portability, you have the right to have the personal data transmitted directly from one controller to another, where technically feasible.

(g) Objection (Article 21 of the GDPR)

If the data processing is based on the legitimate interest of the Controller: you have the right to object (on grounds relating to your situation) at any time against processing of your personal data based on legitimate interest, including also profiling. The Controller will no longer process the personal data unless it demonstrates compelling legitimate grounds for the processing, which override your interests, rights and freedoms or if the data processing is necessary for the establishment, assertion or defence of legal claims.

If the purpose of the data processing is direct marketing: you have the right at any time to object (on grounds relating to your situation) against processing of your personal data if the purpose of the data processing is direct marketing, including also profiling if it is related to direct marketing. The Controller will no longer process the personal data in case you submit such objection against processing of your personal data for direct marketing purposes.

2. 2.2. Legal possibilities for remedies

If you deem that your personal data are processed unlawfully and/or any of your data privacy rights have been violated, you are entitled to seek the following legal remedies:

1. You have the right to contact the data controller directly using the contact information provided in this section (and, in the case of a purchase made in a store, the Seller) and to raise your concerns in advance; 
2. You have the right to lodge a complaint with the national supervisory authority:

Hungarian National Authority for Data Protection and Freedom of Information (seat: 1055 Budapest, Falk Miksa utca 9-11.; postal address: 1363 Budapest, Pf.: 9.; e-mail: ugyfelszolgalat@naih.hu; telephone number: +36 (1) 391-1400; web: www.naih.hu)

1. You are entitled to file a claim with your local court having jurisdiction in the case against the Controller or – in relation to processing activities covered by the scope of activities of the processor – the processor, if you deem that your personal data is processed unlawfully and/or any of your data privacy rights have been violated. Subject to your own decision, the claim can be filed before the court of your home address or place of abode. 

1. 3. Implemented data security measures 

This section contains the general data security measures applied by the Controller.

The Controller (and the Seller) treats personal data as confidential and takes all security, technical, and organizational measures to ensure the security of the data. The Controller ensures the security of data processing by implementing technical, organizational, and organizational measures that provide a level of protection appropriate to the risks associated with data processing.

The personal data processed is subject to the data security measures provided by the Data controller (https://www.shopify.com/hu/security), which are as follows:  

• PCI (https://www.shopify.com/hu/security/pci-compliant)
• Privacy (https://help.shopify.com/hu/manual/privacy-and-security/privacy) 
• SOC (https://help.shopify.com/hu/manual/privacy-and-security/account-security/compliance-reports) 
• Tansparency Report (https://www.shopify.com/hu/security/transparency-report) 

3. Duration of data processing 

The Controller  will retain your personal data for so long as it is needed to fulfill the purposes outlined in this policy or until you withdraw your consent, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements, further for the establishment, exercise or defense of legal claims). The Controller  we have no longer or no legal basis to process your personal information, we will either delete or anonymize it, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

4. Third Parties 

Information about our users is an integral part of our business, and we may share such information with our affiliated entities and third parties (e.g. PayPal). Except as expressly described below, we neither rent nor sell your information to other people or non-affiliated companies unless we have your permission.

The Controller  shall not ensure access for a third party to personal data provided by you without your preliminary consent, except the cases, when data transfer is necessary for the performance of the contract or for enforcing of the Controller ’s legitimate interest or prescribed by law.

The Controller  will only provide these third parties with access to information that is reasonably necessary to perform their work or comply with the law. 

5. Children’s Privacy 

Our website is not directed to children under 16 and we do not knowingly collect personal information from children under 16. If we learn that we have collected personal information of a child under 16 we will take steps to delete such information from our files as soon as possible. If you are aware of anyone under 16 using the website, please contact us at info@thesagio.com. 

2. COOKIES 

The Company processes anonymous data to improve the website, to bring it to perfection. During this procedure the  Seller can incorporate cookies, which collect the visitor’s first level domain name, the date and the exact time of access. The cookie alone can’t be used to reveal the identity of the visitor. The cookie is a file, which is sent to the browser of the visitor and stored on the hard drive of visitor. Cookies don’t damage the computer of the visitor. The browser can be set to indicate when a cookie is received, so the visitor can decide to accept the so-called cookie or not. Here is a list of cookies used on this website, you can decide whether you want to disable cookies or not:

2.1. Required cookie: These cookies are necessary for the site to function properly, including capabilities like logging in and adding items to the cart.

2.2. Personalization: These cookies store details about your actions to personalize your next visit to the website.

2.3. Marketing: These cookies are used by us and our partners, including Shopify, to optimize marketing communications and show you ads on other websites. 

2.4. Analytics: These cookies help us understand how you interact with the site. We use this data to identify areas to improve.

When visiting this website, users can actively check the desired settings for the cookies the Seller will use in the future in a pop-up window. Cookies are grouped into four understandable categories, which the user can select or deselect. You can set their browser to not accept cookies, but this may limit your ability to use this website. For example, you may not be able to log into your account. This website uses various applications and services developed by third parties to improve the user experience. As a result, this third parties may place cookies that they can use to track your online activity. Please note that the Seller has no direct control over the information collected by cookies.

3. CHANGES TO OUR PRIVACY NOTICE 

The Seller reserves the right to amend this privacy policy at its discretion and at any time. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

4. NEWSLETTER SUBSCRIPTION

If you subscribe to our newsletter, we will use your email address to send you promotional content. You can unsubscribe at any time using the unsubscribe link in the email or by contacting us directly.

5. CONTACT INFORMATION 

If you have any questions regarding this policy or information the Seller holds about you, you may contact us at info@thesagio.com. For us to take the appropriate action, please describe in reasonable detail the nature of your request or inquiry.