+36307520150 info@lorabel.hu

Data protection. Privacy Policy.

I. Data protection. Privacy Policy.

  1. Privacy Policy
  2. Last update: 2023. 1st of June.
  3. This Data Management Notice contains how Lorabel Apartmanház (“Lorabel” or “we” or its inflected forms) uses and protects your personal data. In the course of its business activities, Lorabel Apartmanház requests, obtains and manages personal data from guests, future guests, business partners, colleagues and other persons. Our goal is to provide the appropriate service with the handling of as little personal data as possible.
  4. This Data Management Notice contains how we ensure the protection of personal data. If you have any questions about the content of the Prospectus, or if you have comments or suggestions about how we can improve the Prospectus, please contact us at the following contact details:
  5. info@lorabel.hu
  6. You can navigate in this Information Sheet by clicking on individual points in the table of contents below.
  7. 1) The legal rights of natural persons (“data subjects”) pursuant to the GDPR
  8. Pursuant to the GDPR, data subjects have the following rights:
  9. a) Transparent information
  10. b) Access to own data
  11. c) Correction of inaccurate data
  12. d) Right to erasure (forgetfulness) under certain circumstances
  13. e) Withdrawal of consent
  14. f) Requesting the restriction of data management
  15. g) Objection to data processing
  16. h) Do not be subject to an automated decision
  17. i) Data portability
  18. j) File a complaint with the “Supervisory Authority”.
  19. k) The right to an effective judicial remedy against a data controller or data processor
  20. We will respond to your request under any of these rights without undue delay but within one month, and we will do our best to resolve even complex cases within three months. We will deliver the answer to you electronically or by any other means requested by you. We do not charge a fee for the first request, but we reserve the right to charge an administrative fee for handling a request that is repeated within a year, or for a clearly unfounded or excessive request.
  21. Attention! In order to process your request, we need to verify your identity.
  22. If we believe that it is not necessary for us to act on your request, we will inform you in writing of the reason for our decision, as well as the legal remedies available to you.
  23. Apart from these rights, if you believe that Lorabel Apartmanház has acted improperly in relation to your personal data or the protection of your data, please contact us so that we can remedy the situation and improve our service to our guests. Official complaint by email, info@lorabel.hu address or by post, 1.12. “Contact Lorabel Apartmanház regarding the GDPR” at the contact details provided.
  24. 1.1 Transparent information
  25. We provide all the information required by the GDPR in a concise, transparent, understandable and easily accessible form, clearly and comprehensibly formulated. Information is provided in writing or electronically. We can also provide verbal information at your request.
  26. 1 below. we help you exercise your rights as described in point
  27. You can find our email and postal contact information in point 1.12 “Contact Lorabel Apartmanház regarding the GDPR” below. A 2. you can also find separate contact details for some specific requests in the sections on certain activities.
  28. 1.2 Access to your data
  29. You have the right to request confirmation from Lorabel Apartmanház as to whether we are processing your personal data, and if so, you may request access to the data and the following information:
  30. a) Purpose of data management
  31. b) Categories of personal data concerned
  32. c) Recipients to whom we have disclosed or will disclose personal data, with particular regard to recipients located in non-EU member states
  33. d) Duration of storage of personal data
  34. e) That you have the right to ask us to correct or delete your personal data, or to limit the processing of your personal data, or to object to this processing
  35. f) That you have the right to file a complaint with the Supervisory Authority
  36. g) If we do not collect personal data directly from you, the source of this data
  37. h) Whether automated decision-making has taken place based on the data and, if so, the logic used and understandable information about the significance of such data management and the expected consequences for you
  38. i) If we transfer your personal data to a country outside the EU, we provide you with adequate guarantees protecting your rights
  39. 1.3 Correction of inaccurate data
  40. If we store inaccurate or incomplete personal data about you, you can request that it be corrected. After receiving your request, we will correct such personal data without undue delay.
  41. 1.4 Right to deletion (forgetting).
  42. You have the right to delete your personal data and to ask us to fulfill your request without undue delay if one of the following reasons exists:
  43. a) Your personal data is no longer needed in connection with the original purposes of data management
  44. b) You have withdrawn your consent and thus we no longer have a legal basis for processing the data
  45. c) The legality of data processing is based on our legitimate interests, and you claim that there is no legitimate reason for data processing that takes precedence over your interests, rights and freedoms
  46. d) The purpose of data management is direct business acquisition, and you object to this
  47. e) We handled your data illegally
  48. f) Your data must be deleted in order to fulfill the legal obligation prescribed by EU or member state law that applies to us
  49. g) The legality of our processing of data is based on the consent given by a child’s guardian, and either i. You are the guardian of the child and the child concerned has not yet reached the age of consent, or ii. You are a child who has reached the age of consent.
  50. Attention! We cannot delete your personal data if data management is necessary for the following reasons:
  51. a) for the purpose of exercising the right to freedom of expression and information;
  52. b) fulfillment of the legal obligation requiring the processing of personal data;
  53. c) on the basis of public interest in the field of public health;
  54. d) for the purpose of archiving in the public interest, for scientific and historical research purposes or for statistical purposes, if such a request would likely make this data management impossible or seriously jeopardize it; obsession
  55. e) to present, enforce and defend legal claims.
  56. Your data will temporarily remain as a backup copy after this deletion, but with the help of IT security techniques, we ensure that these copies can only be accessed for the purpose of restoring the database in the event of data loss, and that they cannot be copied in order to reveal the data. Backups on a rotating basis [N HÓNAPON] destroyed inside.
  57. 1.5 Withdrawal of Consent
  58. If you have given your consent to our data processing, you can withdraw your consent at any time. You can do this by using the 2. send your request to the email address specified in the corresponding point of this chapter, which chapter lists the activities for which we process personal data. Alternatively, 1.11 below. you can also write to us at the address specified in
  59. Attention: withdrawing your consent does not affect the legality of the data processing we have already carried out.
  60. 1.6 Request for restriction of data management
  61. You can request that Lorabel Apartmanház limit the processing of your personal data if one of the following is true:
  62. You dispute the accuracy of the personal data
  63. The data processing carried out by us is illegal, but you oppose the deletion of the data and instead request the restriction of its use
  64. We no longer need the personal data for the original purpose, but you require them to submit, enforce or defend legal claims
  65. You object to our data processing on the basis that we named our “legitimate interests” as the legal basis, but you claim that your “interests, rights and freedoms” take precedence over them.
  66. If data management is subject to restrictions based on your objection, such personal data, except for storage, will only be processed with your consent, or:
  67. a) to present, enforce and defend legal claims
  68. b) in order to protect the rights of another person, or
  69. c) in the important public interest of the Union or a member state.
  70. can be handled.
  71. In the case of restrictions on data management, we will inform you in advance about the lifting of this restriction.
  72. Practical operational considerations may prevent us from limiting data processing exactly as required by the GDPR, but in such cases we will try to find a satisfactory solution in cooperation with you.
  73. 1.7 Objection to data processing
  74. You have the right to object to our processing of your personal data if:
  75. Our own “legitimate interests” serve as the basis for the legality of data processing, but you claim that your “interests, rights and freedoms” take precedence over them
  76. We process your data for direct business acquisition, including profiling, if it is related to direct business acquisition. (Profiling is automated decision-making in which characteristics related to the economic situation, personal preferences or location are analyzed or predicted.) In the event of such an objection, we can no longer process your personal data for the aforementioned purposes.
  77. 1.8 Do not be subject to an automated decision
  78. You have the right not to be subject to the scope of a decision based solely on automated data management that would have a legal effect on you or would similarly significantly affect you.
  79. However, this does not apply if:
  80. a) the decision is necessary in order to conclude or fulfill the existing contract between you and us, or
  81. b) the automated process is made possible by EU or member state law that establishes appropriate measures to protect your rights and freedoms as well as your legitimate interests.
  82. In case a), we must implement appropriate measures to protect your rights, freedoms and legitimate interests, including at least your right to request human intervention on our part, to express your point of view and to submit an objection to the decision.
  83. 1.9 Data Portability
  84. Pursuant to the GDPR, the data subject is entitled, under certain circumstances, to receive their personal data in a “segmented, widely used, machine-readable format”. The data subject is also entitled to have the data transmitted directly between the data controllers if this is technically feasible.
  85. If you are one of the above 1.2. request access to your personal data based on point, we will generally provide them to you in a widely used electronic format, unless you specifically request that we send you the data in written form.
  86. 1.12 Contact Lorabel Apartmanház regarding the GDPR
  87. A 2. you can also find separate contact details for some specific requests in the sections on certain activities. In other cases, in order to exercise the rights described above or in the case of a complaint addressed directly to Lorabel Apartmanház or in the case of a general inquiry related to the GDPR or data protection, the email address and correspondence address required for contact are as follows:
  88. Email: in Hungarian or English info@lorabel.hu to email address. Address: Lorabel Apartmanház 8380, Hévíz, Tavirózsa utca 12/A
  89. 2) Data Management Activities
  90. The list of data transfers and data processors within the EU is contained in a separate document, which forms an appendix to this information sheet.
  91. 2.1 Room reservation
  92. In the case of a room reservation made online, in person at the hotel or by telephone, we may request one or all of the following personal data:
  93. Full name
  94. Address
  95. Arrival day
  96. Day of departure
  97. Number of adults in one room
  98. Room type
  99. The details of the credit card or bank card that secures the reservation or is required for online payment (see: 2.10.)
  100. E-mail address
  101. Title
  102. Arrival time
  103. Comments – here you can enter any preferences you may have
  104. The data management purpose:
  105. The purpose of our data collection is to be able to identify the guest who made the reservation, to hand over the room to the right person upon check-in, and to keep a record of the payment instrument, with which we can avoid the associated financial risk if the guest ultimately does not check in to the hotel.
  106. We use your email address in the following cases,
  107. if we need to notify you of a change to your booking;
    ii. three days before your planned arrival to remind you of details such as the accommodation address and check-in time; as well as
    iii. three days after your departure to ask that you share your comments about your stay with us so that we can provide you and other guests with an even better service on future visits.
  108. We process the data on the invoice in order to fulfill the legal obligation
  109. After your departure, the data will be kept for the purpose of asserting claims and handling complaints within the civil law limitation period.
  110. Legal basis for data management:
  111. The legal basis for data management is that we need these data to fulfill a contract for room reservations. [Article 6 (1) GDPR b.)]
  112. Your name and email address after your stay 3. until the end of your stay, we process it in order to be able to send you an email after your stay, since “data processing is necessary to enforce the legitimate interests of the data controller, unless the interests or fundamental rights and freedoms of the data subject take precedence over these interests”. In this case, our legitimate interests include providing a high-quality service, and we believe that email sent after your stay does not violate your fundamental rights. [Article 6 (1) GDPR f.)]
  113. We handle the data on the invoice (name, address) based on our legal obligations. [Article 6 (1) GDPR c.)]
  114. After your departure, we will retain the data based on our legitimate interest in asserting claims and handling complaints. [Article 6 (1) GDPR f.)]
  115. If you do not provide the requested information, we will not be able to reserve an apartment suite or room for you, or contact you in the event of a problem.
  116. Transfer of data to third countries:
  117. The adequacy of any data transmission is guaranteed by the application of the General Data Protection Clauses. https://eur-lex.europa.eu/legal-content/HU/TXT/HTML/?uri=CELEX:32010D0087&from=en.
  118. Data processing time:
  119. If the data is required for issuing invoices or other tax records, we are legally obliged to keep the data for 8 years from the end of the calendar year. Therefore, if you receive the invoice in 2021. It will be issued when you check out on June 30, 2029. we have to keep it until December 31.
  120. The accommodation has a legal obligation to report all guests checking in to the local authority, and to the police all guests arriving from outside the EU. It is our legal obligation to keep the data contained in these reports for 5 years after the relevant year.
  121. After your departure, the data will be kept for the period of civil law limitation, 5 years after the relevant year.
  122. We will delete the data after the longest period of the mentioned relevant data retention periods.
  123. If the 1. If you wish to exercise any of your rights in relation to the data collected during the above, or wish to contact us for any other reason in relation to the above, please let us know info@lorabel.hu by e-mail sent to
  124. 2.2 Registration form and data recording related to registration
  125. Scope of data and legal basis for data management:
  126. Mandatory personal data (Providing these data by the Guest is a condition for using the accommodation service):
  127. Based on the provisions of the Tourism Act, in order to fulfill the legal obligation, we record and store the: family and first name of all our hotel guests; surname and first name at birth; place and time of birth; German; his mother’s birth surname and first name; identification data of your personal identification document or travel document, citizenship, visa, etc. permit number, place and time of entry. [Article 6 (1) GDPR c.)]
  128. A municipal decree may require the retention of additional data. [Article 6 (1) GDPR c.)]
  129. In order to fulfill the requested service (accommodation, wellness, etc.), we also manage (on the basis of the contract) e.g.: contact details, frequent guest program number, payment method, bank card data, room number, number of guests, [GDPR Article 6 (1) para. b.)]
  130. Based on its legitimate interest in the development of services, the Company processes your name and e-mail address for 3 days after your departure in order to ask your opinion about our services and thereby improve them. [Article 6 (1) GDPR f.)]
  131. We handle the data on the invoice (name, address) based on our legal obligations. [Article 6 (1) GDPR c.)]
  132. After your departure, we will retain the data based on our legitimate interest in asserting claims and handling complaints. [Article 6 (1) GDPR f.)]
  133. Optional statistical data:
  134. For statistical purposes, we handle the following data separately from personal data: business trip, leisure trip.
  135. Most of the data is filled in based on the reservation and upon check-in using the document reader. Please always check the correctness of the data.
  136. The purpose of data management:
  137. Provision of accommodation services, including contact and service development.
  138. The purpose of recording and storing data defined by the Tourism Act, the Accounting Act and the local government decree is to ensure legal compliance.
  139. After your departure, the data will be kept for the purpose of asserting claims and handling complaints within the civil law limitation period.
  140. Data processing time:
  141. If the data is needed for issuing invoices or other tax records, we are legally obliged to keep the data for 8 years from the end of the calendar year. Therefore, if you receive the invoice in 2022. We will issue the information when you check out on June 30, 2030. we have to keep it until December 31.
  142. Our accommodations have a legal obligation to report all guests who check in to the local government with the data specified in the local government decree, and the police must also report all guests from outside the EU. It is our legal obligation to keep the data contained in these reports for 5 years following the current year from the date of registration.
  143. After your departure, the data will be kept for the period of civil law limitation, 5 years after the relevant year.
  144. Personal data recorded based on the provisions of the Tourism Act will be stored in the designated central storage until the end of the following year.
  145. If the 1. If you wish to exercise any of your rights in connection with the data collected during the login, or if you wish to contact us for any other reason regarding the data collected during the login, please let us know by sending an e-mail to info@lorabel.hu.
  146. 2.3 Bicycle rental. Recreation.
  147. Document for renting a bicycle the following data is required for its issuance:
  148. Name
  149. Title
  150. Phone number
  151. E-mail address
  152. The purpose of data management:
  153. Provision of the bicycle rental service (including identification, contact, issuing of invoices) and complaint handling. Entering contact information is not mandatory, but it is a condition for maintaining contact.
  154. Legal basis for data management:
  155. Fulfillment of the contract for the provision of recreational, sports and health services. [Article 6 (1) GDPR b.)].
  156. The legal basis for storage for the purpose of handling complaints is our legitimate interest in handling complaints [GDPR Article 6 (1) para. f.)]
  157. The legal basis for keeping the data on the account is legal compliance [GDPR Article 6 (1) para. c.)]
  158. Data processing time:
  159. We process your personal data for the purpose of handling complaints for 1 year following the current year from the day the pass expires or from your one-time entry (trial visit).
  160. We keep the data on the invoice (name, address) for 8 years.
  161. If the 1. If you wish to exercise any of your rights in connection with the data collected in order to provide this service, or if you wish to contact us for any other reason related to this service, please let us know info@lorabel.hu by e-mail sent to
  162. 2.4 Guest questionnaire and evaluation system
  163. As part of the company’s quality assurance process, guests can give their opinion on the accommodation services of Lorabel Apartmanház via e-mail and paper-based guest questionnaires, or with the help of the evaluation system. When filling out the questionnaire, you can provide the following personal data:
  164. Name
  165. Date of visit
  166. Room number
  167. Contact (address, e-mail address, phone number, home address)
  168. Entering the data is not mandatory, it only serves to accurately investigate potential complaints and to ensure a response.
  169. The Company may also use the opinions received in this way and any related data that cannot be traced back to the given Guest and cannot be linked to the Guest’s name for statistical purposes.
  170. If you give us your opinion anonymously, we do not process personal data. If you request feedback from us, our employee will contact you at one of the contact details provided (email, address, phone number) within 30 days at the latest.
  171. The purpose of data management:
  172. Contact with the reviewer and complaint handling.
  173. Legal basis for data management:
  174. Your presumed voluntary consent. We would like to inform you that if you do not consent to the processing of the data or withdraw your consent, we will not be able to answer your question. Withdrawal of consent does not affect the lawful data processing prior to it.
  175. Data processing time:
  176. The messages and the personal data received in this way are deleted one year after the request, question or complaint has been answered. The e-mail address and username provided for the use of the evaluation system will be deleted upon your request.
  177. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.hu via e-mail sent to
  178. 2.5 Camera System
  179. Cameras are in operation in the hotels operated by the accommodation for the personal and property security of the Guests. Camera surveillance is indicated multiple times by the pictogram and warning text.
  180. You can get more information about the data management related to the camera system at the specific hotel, on site and from the staff of the accommodation. We will forward the data management information of the camera system to you upon your request. Please notify us of such a request by sending a letter to the general e-mail or postal address of the given accommodation.
  181. 2.6 Newsletter
  182. In order to send a newsletter, we process your name, e-mail, and sometimes your address. In connection with sending the newsletter, you have the option to set the topic and region you are requesting a newsletter for.
  183. The purpose of data management:
  184. Your information about current promotions and news.
  185. Legal basis for data management:
  186. Your voluntary contribution. We would like to inform you that if you do not consent to the processing of your data, we will not be able to send you a newsletter.
  187. Data processing time:
  188. We only send you our newsletter for as long as you request it. If you do not wish to receive any more newsletters, you can unsubscribe at any time using the link at the bottom of the newsletter or by sending an e-mail to info@lorabel.hu. Such withdrawal of consent does not affect the lawful data processing prior to it.
  189. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know by sending an e-mail to info@lorabel.hu.
  190. 2.7. Business (corporate) newsletter
  191. We send our latest news and promotions to our prominent corporate partners. The contact information was obtained from the person concerned, her superior, or her employer.
  192. Purpose of data management: Promoting and selling our accommodation.
  193. Legal basis for data management: Our legitimate interest in promoting and selling our hotels.
  194. Data processing time: You can object to data processing at any time. In this case, we will not send you any more newsletters of this type. Data management lasts until you object or until you are notified of the termination of your contact status.
  195. 2.8 Regular Guest Program (Lorabel Apartment House)
  196. The Hotel’s Regular Guest Program is an exclusive service provided to the guests of the hotel – natural persons – whose purpose is to provide discounts and programs for returning guests.
  197. The following personal data can be processed by the accommodation in the programs:
  198. In the case of a natural person:
  199. Name
  200. No
  201. Mailing address
  202. Address
  203. Phone number
  204. E-mail address
  205. Date of birth (People under the age of eighteen cannot participate in the programs.)
  206. For children:
  207. Data provided by the parent/legal representative registered in the Regular Guest program:
  208. The child’s name
  209. Child’s birth
  210. Parental consent to data management.
  211. Entering the child’s name and birth details allows us to send a birthday surprise to the child’s name to the parent’s/legal representative’s e-mail address.
  212. Personal data processed in the case of a legal entity:
  213. The name of the contact
  214. Your mailing address
  215. Your phone number
  216. Your email address
  217. In addition, we manage the number and password of your frequent guest card.
  218. The purpose of data management:
  219. Providing discounts to participants. Send a notification about discounts.
  220. Legal basis for data management:
  221. Your voluntary contribution. You can withdraw your consent at any time and request the deletion of your data by e-mail at info@lorabel.hu or by letter sent to the address of the accommodation, provided that this does not affect the legal data management that preceded it. Please note that without consent, you cannot be a member of the frequent guest program.
  222. Data processing time:
  223. The processing of the transferred personal data lasts as long as the person concerned participates in the given program. The Company stores the member’s personal data for the period specified in the current tax law and accounting regulations, and deletes them after the deadline.
  224. It may happen that participation in the programs requires the provision of additional personal data, in such cases the Company will inform the data subject at the same time as the data request about the purpose, method and duration of the data management.
  225. In the case of Guests who subscribe to the newsletter and consent to the promotional inquiry, the Company will provide the above data in Section 2.7 of this Information. will continue to be handled in accordance with the provisions of
  226. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  227. You can read the data management information for the newsletter addressed to Lorabel Apartmanház’s key partners in the Newsletter Data Management Information.
  228. 2.9 Lorabel Apartment House Gift Card and Accommodation Voucher
  229. When purchasing a Lorabel Apartmanház gift card or Accommodation Voucher, you provide the following personal data:
  230. In case of personal purchase:
  231. Name
  232. Billing name and address
  233. In the case of online orders via the Company’s official websites:
  234. Name
  235. E-mail address
  236. Phone number
  237. Billing name and address
  238. Delivery name and address
  239. The purpose of data management:
  240. Contact for the delivery of the gift card or accommodation voucher, invoicing.
  241. Legal basis for data management:
  242. Fulfillment of the contract concluded in order to issue the gift card or accommodation voucher. The provision of data is mandatory and a condition for providing the service.
  243. Data processing time:
  244. The personal data obtained in this way will be stored by the hotel for 8 years in accordance with current tax law and accounting regulations.
  245. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  246. 2.10 Bank card data
  247. When booking a room and paying online, please provide the following bank card details:
  248. name on the card
  249. Card number
  250. Expiration date
  251. CVC (only in case of payment)
  252. The purpose of data management:
  253. Payment or securing the reservation and withdrawing the total amount or a part of the reservation depending on the cancellation.
  254. Legal basis for data management:
  255. Fulfillment of the contract concluded for the purpose of room reservation as a service. [Article 6 (1) GDPR b.)] Entering the data is mandatory, it is a condition of the provision of the service.
  256. Data processing time:
  257. The bank card data are encrypted, their disclosure is only possible for the purpose of the transaction, and only to the person authorized to do so. After leaving the hotel, the data can no longer be disclosed, access is not possible. The data will be deleted after 8 years.
  258.  
  259. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know by sending an e-mail to info@lorabel.hu.
  260. 2.11 Social portals (e.g. Facebook, Instagram)
  261. They are also available separately on the Facebook and Instagram social portals operated by the hotel. The Facebook user “likes” the news feed published on the message board on the given page; You can sign up by clicking on the “follow” link, and you can unsubscribe by clicking on the “dislike” link located there, and you can delete unwanted news on the message board using the message board settings. The Company has access to the profile of the “followers”, but does not record or manage it in its own internal system.
  262. The purpose of data management:
  263. Sharing the contents of the websites operated by the accommodation, communicating other news and promotions, maintaining contact. With the help of the Facebook pages, you can book a room, participate in prize games and find out about the latest promotions.
  264. Legal basis for data management:
  265. Your consent, which you can withdraw at any time by unsubscribing. [Article 6 (1) GDPR a.)] The revocation does not affect the legal data processing that preceded it. In case of withdrawal, you will not receive a notification about our news feed, our news will not appear on your news feed, but you will still have access to the news feed, since our site is public.
  266. Data processing time:
  267. Data management lasts until you unsubscribe.
  268. Facebook and Instagram are independent and separate data managers. You can get information about the data management of the site from the data protection guidelines and regulations on the Facebook website at the following links:
  269. https://www.facebook.com/policies/cookies/
  270. https://www.facebook.com/about/privacy/update
  271. You can get information about Instagram’s data management at the following link:
  272. help.instagram.com
  273. In the event of a room reservation, the system automatically redirects the Guest to the website of the accommodation. The data management is in accordance with 2.1. proceeds according to the provisions of point
  274. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  275. Online bank card payment
  276. For online bank card payment, you will be automatically redirected to the following data controller’s page:
  277. https://teya.com/hu/home
  278. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason regarding the above data management, please let us know. info@lorabel.hu by e-mail sent to
  279. 2.13 Contact
  280. You can contact us at any of our contact points (e-mail, via Facebook, phone, mail, or via the forms created for this purpose (e.g. request for a quote)).
  281. The purpose of data management:
  282. Maintaining contact with the requester and answering or solving the question/request.
  283. Legal basis for data management:
  284. Since you contact us, the legal basis for data management is your consent. [Article 6 (1) GDPR a.)] You can withdraw your consent at any time, but in this case we cannot answer your request. The withdrawal does not affect the legality of the previous data management.
  285. We would like to inform you that the data fields indicated on the individual forms were created based on our experience, during which we ask for the most necessary data to answer the given request. Mandatory fields are marked with a red asterisk.
  286. Data processing time:
  287. The messages and the personal data received in this way will be deleted one year after the given request, question or complaint has been answered. However, if, due to the nature of the correspondence, it is necessary for tax or accounting reasons, or perhaps from the point of view of protecting the rights and interests of the Company or the requester, it will be archived and stored for the necessary period of time, which is examined individually in each case.
  288. Data transfer:
  289. 2.15 Complaint Handling Protocol
  290. During the handling of consumer complaints, if you do not agree with the handling of the verbal complaint or the immediate investigation of the complaint is not possible, the Company is obliged to record the complaint and its position on it without delay.
  291. The minutes contain the following information:
  292. Name and address of the consumer
  293. Place, time and method of presenting the complaint
  294. A detailed description of the consumer’s complaint, a list of documents, documents and other evidence presented by the consumer
  295. The Company’s statement on its position regarding the consumer’s complaint, if the complaint can be investigated immediately
  296. The signature of the person taking the minutes and – with the exception of verbal complaints made by phone or electronically – the consumer’s signature
  297. Place and time of taking the minutes
  298. In the case of a verbal complaint communicated by telephone or electronically, the unique identification number of the complaint
  299. The purpose of data management:
  300. Investigating the complaint and maintaining contact with the complainant.
  301. Legal basis for data management:
  302. 1997 on consumer protection. annual CLV. Act 17/A. § (7), which makes the above data management mandatory. [Article 6 (1) GDPR c.)]
  303. Data processing time:
  304. 3 years from the recording of the record.
  305. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  306. 2.16 Lorabel Apartment House Blog
  307. The property shares new articles from time to time in its online travel magazine. If you would like to be notified of new articles, you can subscribe to our mailing list by entering your name and email address.
  308. The purpose of data management:
  309. Notifying you of new articles.
  310. Legal basis for data management:
  311. Your voluntary contribution. We would like to inform you that if you do not consent to the processing of your data, we will not be able to send you a notification.
  312. Data processing time:
  313. We only send our notifications to you for as long as you request. If you do not wish to receive more such e-mails, you can unsubscribe at any time using the link at the bottom of the e-mail, or info@lorabel.huby e-mail sent to Such withdrawal of consent does not affect the lawful data processing prior to it.
  314. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  315. 2.17 Automatically recorded data, cookies and “remarketing codes”
  316. 2.17.1 Automatically recorded data
  317. When you view our website, certain data of your device (e.g. laptop, PC, telephone, tablet) are automatically recorded. Such data is the IP address, the time and date of the visit, the type of browser used, the type of operating system, and the domain name and address of the Internet service provider. The recorded data is automatically logged by the web server serving the website when you view the website without any special declaration or action from you. The system automatically generates anonymous statistical data from this data. These data cannot be combined with other personal data, except in cases made mandatory by law. We only use this information in an aggregated and processed (aggregated) form, to correct possible errors in our services, to improve their quality, and for statistical purposes.
  318. The purpose of data management:
  319. Technical development of the IT system, control of the operation of the service and preparation of statistics. In case of abuse, the data can also be used to determine the source of the abuse in cooperation with the visitors’ internet service provider and the authorities.
  320. Legal basis for data management:
  321. 2001 on certain issues of electronic commercial services and services related to the information society. year CVIII Act 13/A. § (3) is a condition for the provision of the service.
  322. The data management period: 30 days from the date of viewing the website.
  323. 2.17.2. Cookies and similar technologies
  324. What is a cookie?
  325. A cookie is a small text file that is stored on the hard drive of the computer or mobile device for the expiration time set in the cookie and is activated (reports back to the web server) on subsequent visits. The websites use cookies with the purpose of recording information related to the visit (pages visited, time spent on the pages, browsing data, exits, etc.), as well as personal settings, but these data cannot be associated with the person of the visitor. This tool helps you create a user-friendly website to enhance your visitors’ online experience.
  326. On other platforms – where cookies are not available or cannot be used – other technologies can be used, the purpose of which is similar to that of cookies: for example, this can be the advertising ID on Android mobile devices.
  327. There are two types of cookies: “session cookies” and “permanent cookies”.
  328. “Session cookies” are stored by the computer, notebook or mobile device only temporarily, until you leave the given website; these cookies help the system to remember information so that you do not have to enter or fill in that information repeatedly. The validity period of session cookies is limited to the user’s current session, their purpose is to prevent data loss (for example, when filling out a longer form). This type of cookie is automatically deleted from the visitor’s computer at the end of the session or by closing the browser.
  329. “Persistent cookies” are stored on the computer, notebook or mobile device even after leaving the website. With the help of these cookies, the website recognizes you as a returning visitor. Persistent cookies are suitable for identifying you through the server-side identifier – user association, so in all cases where user authentication is essential – e.g. online store, netbank, webmail – necessary conditions for correct operation. Persistent cookies do not carry personal data by themselves and are only suitable for identifying the user together with the order stored in the server’s database. The risk of such cookies is that they do not actually identify the user, but the browser, that is, if someone is in a public place, e.g. enters an online store in an internet cafe or library and does not exit when leaving, then another person using the same computer may gain unauthorized access to the given web store in the name of the original user.
  330. How can I enable or disable cookies?
  331. Most Internet browsers automatically accept cookies, but visitors have the option to delete or refuse them. Since every browser is different, you can set your cookie preferences individually using your browser’s toolbar. If you do not wish to allow any cookies from our website, you can change your web browser settings so that you are notified of cookies being sent, or you can simply reject all cookies. However, you can also delete the cookies stored on your computer or mobile device at any time. For more information on settings, see your browser’s Help. Please note that if you decide to disable cookies, you will have to opt out of certain website functions.
  332. What cookies do we use?
  333. 1. Tools essential for the operation of the website:
  334. Such cookies are essential for the proper functioning of the website, so in this case the legal basis for data management is the Act of 2001 on certain issues of electronic commercial services and services related to the information society. year CVIII Act 13/A. (3) of § No data is transmitted.
  335. a) Completion aid
  336. The purpose of data management: It helps you fill out the data sheets by offering in advance the filling that seems appropriate for you.
  337. Data management time: lasts for the duration of your stay on the website
  338. b) It helps in the search
  339. The purpose of data management: It helps you to find what you are looking for as quickly as possible
  340. Data management time: lasts for the duration of your stay on the website
  341. c) Spell checker
  342. Purpose of data management: Automatically corrects presumed typing errors
  343. Data management time: lasts for the duration of your stay on the website
  344. d) Identification of language setting:
  345. Purpose of data management: During your visit to the website, the system identifies you as a unique user with the help of a standard cookie in order to remember your language settings.
  346. Data management time: This setting (cookie) is stored for 29 days.
  347. e) Social network cookie (Facebook, Instagram, Google+, Youtube)
  348. Purpose of data management: This cookie enables the content of the website to be shared.
  349. Data management time: We store this cookie until the time of sharing.
  350. More about Facebook in 2. you can read in
  351. f) Multimedia player (youtube)
  352. Purpose of data management: This cookie enables you to play the videos on the website.
  353. Data management time: This cookie is stored for the duration of the playback.
  354. 2. Cookies that collect statistical data
  355. These cookies only collect statistical data, so they do not process personal data. During their operation, they monitor how you use the website, which topics you view, what you click on, how you scroll the website, which pages you visit. However, it only collects information anonymously. This way we can find out, for example, how many visitors the page has per month. These statistical data also help to adapt our site to user needs. Google Tag Manager (and Google Analytics) and Hotjar help collect such data.
  356. 3. Cookies for marketing purposes
  357. The data management purpose of such cookies is to send personalized advertisements.
  358. Legal basis for data management: In all cases, your consent, which you enter in the pop-up window on the website. You can withdraw your consent at any time, but the withdrawal does not affect the legal data processing that preceded it. In the event of withdrawal, advertisements designed for you will not appear on other platforms.
  359. a) Categorization according to the place of the visit,
  360. Data management time: 269 days
  361. b) Personalized Facebook offers
  362. Time of data management: maximum 180 days
  363. c) Monitoring clicks on the accommodation’s advertisements
  364. The data management period: 2 years
  365. If the 1. If you wish to exercise any of your rights in relation to the above, or wish to contact us for any other reason in relation to the above data management, please let us know info@lorabel.hu via e-mail sent to
  366. Shared data management:
  367. In the course of their data management, the joint data controllers act in all respects in accordance with the provisions of this information.
  368. 2.17.3. References and links
  369. Our website may also contain links that are not operated by the Company and serve only to inform visitors. The Company has no influence whatsoever on the content and security of websites operated by partner companies, so it is not responsible for them. Please review the data management information of the pages you visit before entering your data in any form on that page.
  370.  
  371. 2.18 Business relationship
  372. Like most companies, our Company maintains a business relationship with some employees of other organizations, whose name, business position and contact information we store.
  373. The purpose of data management:
  374. In all cases, such data storage is carried out with the consent of the person concerned, so that our companies can communicate for the purpose of cooperation.
  375. Legal basis for data management:
  376. The legal basis of our data management activity is the legitimate interest in the fulfillment of the contract or the relationship between companies [GDPR Article 6 (1) para. f.)].
  377. Data processing time:
  378. We check the contact information of our business contacts at least once a year and remove those that are no longer up-to-date from the system. The contact person’s data is therefore processed until the contact person changes or the relationship is terminated.
  379. Due to accounting regulations, we keep the contact information on the contracts for 8 years after the termination of the contract.
  380. We act in the same way as above when handling the personal data of members of the press.
  381. 2.19 Prices subject to registration
  382. Booking some of our extra discount prices (e.g.: Secret price, Discounted price, etc.) is subject to registration. The extra discount can also be used from most discounted offers, but cannot be combined with other coupon codes or other percentage discounts (e.g. regular guest discount, partner card discount, etc.). The promotion is valid for the apartments of the Lorabel Apartmanház.
  383. During registration, it is mandatory to enter the email address and possibly the name. By registering for the discounted price, you agree to send a newsletter to the email address provided there. Of course, you can unsubscribe from the newsletter at any time.
  384. The purpose of data management:
  385. Information about discounts and promotions.
  386. Legal basis for data management:
  387. Your voluntary contribution. You can withdraw your consent at any time, but this does not affect the lawful data processing before it. We would like to inform you that if you do not consent to the processing of your data, we will not be able to inform you about our favorable offers.
  388. Data processing time:
  389. It lasts until the consent is withdrawn.
  390. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  391. 2.20 “ChatBot” smart chat application
  392.  
  393. You can also use the ChatBot pop-up chat window to answer room reservations, typical questions and requests on our contact details, website and Facebook page, as well as during communication on Messenger. ChatBot answers your questions using artificial intelligence.
  394. The purpose of data management:
  395. Fulfilling your request or answering your question.
  396. Legal basis for data management:
  397. Your voluntary consent given by sending the question or request. You can withdraw your consent at any time, but this does not affect the legality of the data processing before it.
  398. Data processing time:
  399. ChatBot conversations are stored for 1 year, after 1 year of inactivity they are converted into statistical data (anonymously). In the case of continuous activity (repeated communication within 1 year), we store the communication events for 5 years depending on the user.
  400. Data processor:
  401. The facebook.com website.
  402. If the 1. If you wish to exercise any of your rights in relation to the data provided in this way, or wish to contact us for any other reason in connection with the above data management, please let us know info@lorabel.huvia e-mail sent to
  403. 3) Legal references (including contact details)
  404. As the data controller of the personal data it uses, Lorabel Apartmanház is obliged to publish information about its official name, contact details and other data in accordance with the GDPR. This section contains all the information required by the GDPR, as well as additional legal information.
  405. Operation:
  406. Name: Lorabel Apartment House
  407. Headquarters: 8380, Hévíz, Tavirózsa utca 12/A.
  408. Tax number: 56693683-1-40
  409. Represented by: Director Lóránt Kovács
  410. The telephone number of the legal officer responsible for data protection: +36 30 752 0150
  411. Her e-mail address: info@lorabel.hu
  412. 4) Terms and abbreviations used in this Information:
  413. Most of the definitions are based on the EU General Data Protection Regulation (GDPR). This is a legal document, so the same content cannot be returned simply and briefly. Our goal here is to provide a clear explanation that makes the text easier to understand; this sometimes precludes detailing the full legal definition. According to the policy of the accommodation, we fully comply with the requirements of the GDPR, and your rights are not impaired by the fact that the explanation provided here has been simplified.