![](data:image/svg+xml,<svg display="block" role="presentation" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><path d="M 24 0 L 0 15.962 L 0 24 L 8.386 24 L 20.799 4.834 L 16.11 24 L 24 24 Z" fill="rgb(255, 255, 255)" height="24px" id="MJRBr78qD" width="24px"/></svg>)
1. Data controller
The data controller is Aurum Commerce Korlátolt Felelősségű Társaság (Aurum Commerce Kft.).
Registered office: 2161 Csomád, Templom utca 8., Hungary
Company registration number: 13-09-245559
Hungarian tax number: 32995242-2-13
Email for privacy requests: info@aurumcommerce.org
Telephone: +36 21 212 2018
Website: https://aurumcommerce.org
Aurum Commerce Kft. has not appointed a Data Protection Officer. Privacy requests may be sent to the email address above.
2. Scope of this Policy
This Privacy Policy explains how Aurum Commerce Kft. processes personal data in connection with its website, business inquiries, quotations, B2B wholesale trading, import/export transactions, logistics coordination, customs documentation support and related business communication.
3. Personal data we may process
Depending on your interaction with us, we may process the following categories of personal data:
name, job title, company name and business contact details;
email address, telephone number and correspondence content;
information submitted through contact forms, requests for quotation and business inquiries;
business transaction data, including order, delivery, invoice, customs, logistics and supplier/customer documentation;
data required for compliance checks, sanctions screening or transaction risk assessment, where applicable;
technical data such as IP address, browser type, device information, access time, security logs and cookie identifiers.
4. Purposes, legal bases and retention
Purpose | Typical data | Legal basis under GDPR | Retention |
|---|---|---|---|
Responding to inquiries and preparing quotations | Name, company, contact details, message, requested goods or services | Article 6(1)(b) pre-contractual steps; Article 6(1)(f) legitimate interest in B2B communication | Usually up to 24 months after the last communication, unless a contract is concluded or longer retention is needed for legal claims |
Customer, supplier and business partner management | Representative details, company contacts, communication history, commercial terms | Article 6(1)(b) contract performance; Article 6(1)(f) legitimate interest in business administration | During the business relationship and generally up to 5 years afterwards for limitation and claim-management purposes |
Order processing, logistics, customs and delivery coordination | Contact details, shipping information, transaction documents, customs and logistics documents | Article 6(1)(b) contract performance; Article 6(1)(c) legal obligation where applicable; Article 6(1)(f) legitimate interest in transaction completion | For the duration necessary to complete the transaction and then as required for accounting, tax, customs or legal-claim purposes |
Accounting, invoicing and tax compliance | Invoice data, billing information, contracts and accounting records | Article 6(1)(c) legal obligation | Generally 8 years for accounting records under Hungarian accounting retention rules |
Compliance, sanctions, fraud-prevention and transaction risk checks | Company and representative data, transaction context, screening results where relevant | Article 6(1)(c) legal obligation where applicable; Article 6(1)(f) legitimate interest in lawful and secure trade | As long as necessary for the relevant check, business relationship, audit trail or legal obligation |
Website operation, IT security and abuse prevention | IP address, logs, device/browser data, security events | Article 6(1)(f) legitimate interest in secure website operation | Usually 30 days to 12 months, unless longer retention is required to investigate abuse, security incidents or legal claims |
Analytics, non-essential cookies and marketing communication | Cookie identifiers, analytics data, email address and preferences | Article 6(1)(a) consent | Until consent is withdrawn or the relevant cookie expires; marketing contact data is kept until unsubscribe or withdrawal |
5. Legitimate interests
Where Aurum Commerce Kft. relies on legitimate interests, those interests may include maintaining B2B communication, preparing quotations, managing supplier and customer relationships, protecting the website and IT systems, preventing fraud or misuse, enforcing legal claims, and conducting lawful international trade. We consider the nature of the data, the business context and the rights and expectations of the individuals concerned.
6. Recipients and processors
Personal data may be shared with the following categories of recipients where necessary:
IT, website hosting, email and cloud service providers;
accountants, tax advisers, auditors, banks and payment service providers;
suppliers, manufacturers, customers and business partners involved in the relevant transaction;
freight forwarders, carriers, warehouse providers, customs brokers and logistics partners;
legal advisers, consultants, insurers and debt-collection or dispute-resolution providers;
public authorities, courts, customs, tax or law-enforcement bodies where required by law.
Processors acting on behalf of Aurum Commerce Kft. process personal data only under appropriate contractual arrangements.
7. International data transfers
Because Aurum Commerce Kft. operates in international trade, personal data may be transferred to business partners, suppliers, carriers, customs brokers or other recipients outside the European Economic Area when necessary for an inquiry, quotation, order, shipment, customs process or contract performance.
Where required by the GDPR, Aurum Commerce Kft. uses appropriate safeguards, such as an adequacy decision, standard contractual clauses, or another permitted transfer mechanism under GDPR Chapter V. In some cases, a transfer may be necessary for the performance of a contract or for pre-contractual steps requested by the data subject.
8. Cookies
The website may use cookies and similar technologies. Strictly necessary cookies may be used to operate the website and maintain security. Analytics, marketing or other non-essential cookies are used only with consent where consent is required by law.
Users can manage cookie preferences through the cookie banner or browser settings. Withdrawing cookie consent does not affect the lawfulness of processing based on consent before withdrawal.
9. Data security
Aurum Commerce Kft. applies reasonable technical and organisational measures to protect personal data against unauthorised access, loss, alteration, disclosure or destruction. Measures may include access controls, secure communication practices, backups, device protection and service-provider controls.
10. Your rights
Under the GDPR, you may request access to your personal data, rectification, erasure, restriction of processing, data portability, and objection to processing based on legitimate interests. Where processing is based on consent, you may withdraw consent at any time.
Requests may be sent to info@aurumcommerce.org. Aurum Commerce Kft. will respond within one month unless an extension is permitted by law due to the complexity or number of requests.
11. Complaint to supervisory authority
You may lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information:
Name: Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH)
Address: H-1055 Budapest, Falk Miksa utca 9-11., Hungary
Postal address: 1363 Budapest, Pf. 9., Hungary
Email: ugyfelszolgalat@naih.hu
Phone: +36 1 391 1400
Website: https://www.naih.hu
12.Updates
Aurum Commerce Kft. may update this Privacy Policy from time to time. The current version is published on this website.