Terms of Use & Privacy policy (GDPR)

Sorry, your browser does not support the proper operation of our platform. We recommend to use the latest version of: Chrome, Firefox, Safari, Microsoft Edge, Internet Explorer

Chrome Firefox Safari Microsoft Edge Internet Explorer

This website uses cookies to ensure you get the best experience.

Terms of Use

The aim of CoAge Volunteers is to provide you with the basic understanding of volunteering in an exciting way. By participating and accepting The terms of use, you acknowledge that CoAge Volunteers manages your personal data entered into the platform: name, email – based on company regulations. This system is operated by Games for Business Kft. (G4B) as the data processor.

From the data saved on the platform, we create reports and statistics that are forwarded at request to the CoAge Volunteers team. After the project is closed, all personal data is deleted. Your personal data is not forwarded on to third parties.

By accepting Terms of use & Privacy Policy you acknowledge the game rules and the decisions of CoAge Volunteers team.

Information related to data management is regulated by the detailed Data Management Information, which you can find below.

Privacy Policy

This data management information sheet provides information on the personal data management practices of Games for Business Ltd. in accordance with EU 2016/679 no. in accordance with the provisions of the Data Protection Regulation (hereinafter referred to as "GDPR"), in relation to the "CoAge Volunteers" system operated by Games for Business Ltd. Pursuant to Article 7, Point 4 of the GDPR, Games for Business Ltd. is a data processor.

In all cases, the processing of personal data is limited to the minimum amount of data necessary to achieve the goal and is carried out in compliance with the principles contained in Article 5 of the GDPR.

1. CONTACTS OF THE DATA PROCESSOR

1.1 Name: Games for Business Ltd. (furthermore as „Data processor”)

Residence: 7623 Pécs, Móré Fülöp Str. 33.

E-mail: info@gamesforbusiness.com

Website: www.gamesforbusiness.com

2. MANAGEMENT OF THE DATA OF THE SUBJECTS

2.1 Scope of Subjects
The Data Controller manages the personal data of natural persons participating in the interactive information training (hereinafter: "Data Subjects").

2.2 The purpose of the data management, the scope of the managed data, and its legal basis
The Data Controller processes the personal data of the Data Subjects for the following purposes:

a) Use of an interactive learning interface
The Data Controller records, stores and uses the necessary personal data in order to enable participation in the interactive information training and to conduct the training.
In order to participate in the online training, the Data Subjects must register on the Data Controller's online platform, during which they provide the necessary personal data. In the event of non-delivery of data, Stakeholder participation in the interactive learning interface is not possible.

Scope of processed data:
Name, company email address (provided by the Data Subjects), activity report (provided by the Data Processor to the Data Controller).

Legal basis:
Article 6 (1) GDPR point a) (the data subject's consent, which he declares voluntarily through registration on the interactive platform).

b) Technical operation of the online training platform
In order to ensure that its service is flawless and safe from a technical point of view, the Data Controller records, stores and uses the necessary personal data, which is automatically collected during the registration and participation in training of the Data Subjects (so-called log files).
Scope of processed data:

IP address, time of registration, time of entry, device type.

Legal basis:
Article 6 (1) GDPR point f) (the Data Controller's legitimate interest in ensuring that its service and IT systems are functional and secure from a technical point of view, and that possible illegal use of the training platform and the Data Controller's IT systems or attacks against them can be filtered out).

Cookies:
In addition to the above, for the proper functioning of the platform, the Data Controller places data files called "cookies" on the Data Subject's computer. With the help of cookies, the platform remembers the Data Subject's actions and personal settings (e.g. language, font size or other unique settings related to the display of the platform) for a certain period of time, so that they do not have to be entered again each time the Data Subject visits the platform. The purpose of cookies is to ensure the highest possible level of platform operation, to provide personalized services, and to increase the user experience.

Scope of processed data:

Technically essential cookies:
• PHPSESSID
• termsOfUseAccepted
• termsOfUseRead

Functional cookies:
• currentBusinessActionID - userID
• pwaInstallDismissed
• soundState
• notNewUser
• cookiePolicy
• browserCheckHide
• openedCompetencies-userID
• visitedTrips
• slickInitialSlides-userID
• attachmentVisitedTabsCookie
• initialSlidesCookie

Analytical cookies:
• Data storage: 26 months
• Session timeout: 30 minutes
• Campaign timeout: 6 months
• Remarketing data collection and Advertising Reporting Features are turned off.
• IP Anonymization is turned on.

Legal basis:
Some of the cookies are technically absolutely necessary so that the Data Subjects can use the platform's functions smoothly and fully. The legal basis for this data management is Act CVIII of 2001 on certain issues of electronic commercial services and information society services. Act (Elkertv.) 13/A. § (3), according to which the service provider may process the personal data that is technically absolutely necessary for the provision of the service for the purpose of providing the service.

Additional cookies are used to improve the user experience (functional cookies). In this case, the legal basis for data management is Article 6 (1) of the GDPR. point f) (the Data Controller's legitimate interest in improving the user experience).

Google Analytics uses cookies on the platform for analytical purposes. The legal basis for this is the consent of the Data Subjects (GDPR Article 6 (1) point a)). Before and during the use of the platform, Data Subjects may prohibit this data management at any time. Google Analytics helps you find out about the use of the platform, e.g. how many people visit the platform. The provider of the web analytics service is Google Ireland Limited (Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland). You can find Google's privacy policy here: https://policies.google.com/privacy?hl=hu#infocollect. The information generated by the cookie about the use of the platform (including your IP address) is transmitted to the servers of Google Inc. in the United States and stored there. We use Google Analytics with the IP anonymization function (anonymizelp). By downloading the following module, you can prevent Google from recording and managing the data created by the cookie and related to the use of the platform: https://tools.google.com/dlpage/gaoptout?hl=en.

Data subjects will receive detailed information about the cookies used on the platform when opening the platform.

c) Statistics
In order to be able to check the utilization of the service, the Data Controller records, stores and uses the necessary personal data of the Data Subjects in connection with the use of the interactive interface, which is collected automatically.

Scope of processed data:
Name, e-mail, participation data (how often the given user uses which functions of the platform, how many answers the given user gave, which questions they answered).

We do not use the personal data collected in this way for profiling, i.e. to evaluate the Data Subject's personal characteristics (in particular, to analyze or predict characteristics related to workplace performance, reliability, and behavior).

Legal basis:
Article 6 (1) GDPR point f) (the legitimate interest of the Data Controller, which is linked to the evaluation and development of its service).

d) Support
If the Data Controller receives a notification or error ticket about a technical or platform-related error, it processes the necessary data in order to eliminate the error.

Scope of processed data:
User ID, password, logfile, IP address, details of the person reporting the error (e.g. name, email address).

Legal basis:
Article 6 (1) GDPR point f) (the Data Controller's legitimate interest in ensuring the quality of its service and correcting errors).

3. TRANSFER OF PERSONAL DATA

The Data Processor uses sub-data processors for the following purposes:

• Hosting service, system administration (Intellisys Kft.),

• IT Infrastructure provider (Invitech DC 14 Datacenter),

• Software Development.

The Data Processor concludes a contract with sub-data processors in accordance with Article 28 (3) of the GDPR.

The Data Processor is entitled to forward the following Data Subjects' data to its client (the Data Subjects' employer): name, e-mail, user ID, statistical data according to point (1) c) above. The legal basis for the transmission is Article 6 (1) of the GDPR. point f) (the legitimate interest of the customer (employer) in being able to check the utilization of the digital platform provided by him). The Data Subjects cannot be identified by the client, as the Data Processor provides anonymous statistical data.

In addition to the above, the Data Controller only forwards the personal data of the Data Subjects to third parties (e.g. authorities) if required by law (GDPR Article 6 (1) point c)) and has a legitimate interest in doing so (e.g. tax advisor or lawyer for, GDPR Article 6 (1) point f) or if the Data Subject expressly consents to this (GDPR Article 6 (1) point a)).

4. RETENTION PERIODS

The Data Controller stores the personal data of the Data Subjects for the time necessary to achieve the purpose of the data management. As a general rule, the Data Controller keeps the processed personal data for 90 days after the availability of the training. After that, the personal data will be anonymized, i.e. the Data Subject's name, email address and password will be deleted.

In addition, the log files are only stored if the Data Processor becomes aware of specific suspicions related to the illegal use of the platform or an attack against the platform. In this case, the log files will be deleted immediately after the conclusion of the investigation of the suspicion.

The personal data provided for the purpose of communication will be deleted immediately after the question has been answered or the requested information has been provided.

In addition, personal data will only be stored if
(i) the Data Controller has a legitimate interest in this (GDPR Article 6 (1) point f), e.g. the data is necessary to enforce a civil law claim, or to fulfill an obligation, or to conduct legal proceedings),
(ii) the Data Subject has expressly consented to further data processing (GDPR Article 6 (1) point a) or
(iii) the retention of personal data is required by law (GDPR Article 6 (1) point c)).

5. RIGHTS OF THE DATA PARTIES

The Data Controller ensures the enforcement of the following rights of the Data Subjects, in cooperation with the Data Subjects during the exercise of the rights:

Right to information: the data subject can request information about the processing of data concerning him at any time. The information request may cover the data managed by the Data Controller, their source, the purpose, legal basis, duration of the data management, the name and address of any data processors, the activities related to the data management, as well as, in the case of transmission of personal data, who received or will receive the data and for what purpose data.

Right to rectification: the Data Subject may request the correction of their data, as well as the completion of incomplete data.

Right to erasure: the data subject has the right to request the erasure of his/her personal data, and the Data Controller is obliged to erase this data if one of the conditions set forth in Article 17 of the GDPR is met.
The right to limit data processing: the Data Subject has the right to request that the Data Controller limit data processing, in accordance with Article 18 of the GDPR.

The right to data portability: the Data Subject has the right to receive the personal data concerning him/her provided to the Data Controller in a segmented, widely used, machine-readable format, and is also entitled to have this data transmitted by the Data Controller to another data controller if the data management is based on the Data Subject's consent or contract, and data management is performed in an automated manner.