Privacy policy

1. The purpose of the Data Management Policy

Mercarius Fleet Management Limited Liability Company, located at 1142 Budapest, Komáromi út 36-38 (hereinafter referred to as the Company), recognizes the content of this statement as binding for itself. The data protection policies related to the Company’s data management activities are continuously accessible at https://molmercarius.hu/privacy-policy. The Company reserves the right to modify this information at any time. Any changes will be communicated to its partners and clients in a timely manner. If you have any questions regarding our Data Management Policy, please contact our Data Protection Officer at the contact details provided in section 2.1. The Company is committed to protecting the personal data of its clients and partners and considers respecting their right to informational self-determination as highly important. The Company handles personal data confidentially and takes all necessary security, technical, and organizational measures to ensure the data’s safety.
Below, the Company outlines its data management practices.

2. The data controller's details

If you wish to contact our Company, you can do so using the following contact information:

Name: Mercarius Fleet Management Limited Liability Company
Registered office: 1142 Budapest, Komáromi út 36-38
Company registration number: 01-09-886659
Tax number: 12238673-2-44
Phone number: +36 1/460-0783
E-mail: info@molmercarius.hu

2.1. Data protection officer

Name: András Lévai
Telefonszám: +36 1 770 1000

The Company will delete all incoming contact requests, including personal data, immediately after processing and handling the inquiry. Personal data of contractual partners will be deleted one year after the termination of the contract.

3. The scope of personal data processed

3.1. Personal data provided by the vehicle user (mandatory fields)

Name of the vehicle user:
Position of the vehicle user:
Residential address:
Mailing address:
Mobile phone number:
Direct work number:
Fax number:
Email address:
Personal ID number:
Passport number:
Nationality:
Driving license number / validity:
Employer / Company name:
Employer / Company address:

3.2. Technical solutions

The Company selects and operates information technology tools for managing personal data in a way that ensures:

– accessibility for authorized persons (availability);

– integrity and authenticity of the data (data management authenticity);

– verifiability of data unaltered state (data integrity);

– protection against unauthorized access (data confidentiality).

During data processing, the Company maintains:

– confidentiality: protecting information so that only authorized persons can access it;

– integrity: safeguarding the accuracy and completeness of the information and processing methods;

– availability: ensuring that when authorized users need it, they can indeed access the required information, and that related tools are available.

3.3. Cookies used on the Company’s website

3.3.1. Purpose of cookies

– Collect information about visitors and their devices;

– remember visitors’ individual preferences, which can be used during online transactions, so they do not need to retype them;

– make the website easier to use;

– provide a high-quality user experience. To customize services, a small data package called a cookie is placed on the user’s computer and read during future visits. If the browser sends back a previously saved cookie, the service managing the cookie can link the current visit to past visits, but only regarding its own content.

3.3.2. Strictly necessary, session cookies

These cookies ensure visitors can browse the Company’s website fully and smoothly, use its functions, and access its services. Their validity lasts until the end of the browsing session. When the browser is closed, these cookies are automatically deleted from the computer or the device used for browsing.

3.3.3. Third-party cookies (analytics)

The Company also uses cookies from third parties, such as Google Analytics. By using Google Analytics for statistical purposes, the Company collects information about how visitors use the website. This data is used to improve the website development and enhance user experience. These cookies also remain on the visitor’s computer or device during their validity period, usually until deleted by the visitor, or until they expire.

3.4. Data related to online orders

The Company’s website does not provide an option for online ordering.

3.5. Data required for online administration/contact (mandatory fields)

Name:
Position:
Company name:
Email:
Phone number:

3.6. Data related to newsletter subscription

Please refer to Section 11 below.

4. Planned use and retention period of the processed data

Data management name: User Data
Usage: User authorization, contractual services
Legal basis: Contract performance
Retention period: 1 year after the contract expires

5. The purpose, method, and legal basis of data processing

5.1. General data processing principles

The Company’s data processing activities are based on legal authorization. In cases of data processing based on contractual consent, data subjects can withdraw their consent at any time during the data processing. In some cases, the handling, storage, or transmission of certain data is mandated by law. The Company’s data providers are reminded that if they do not provide their own personal data, it is their responsibility to obtain consent from the affected parties. The data processing principles are in accordance with applicable data protection laws, including notably the following:

Act CXII of 2011 on Informational Self-Determination and Freedom of Information (Infotv.);
Regulation (EU) 2016/679 of the European Parliament and of the Council (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR);
Act V of 2013 on the Civil Code (Ptk.);
Act C of 2000 on Accounting (Accountancy Act);
Act LIII of 2017 on the prevention and suppression of money laundering and terrorist financing;
Act CCXXXVII of 2013 on Credit Institutions and Financial Enterprises.

6. Locations of physical data storage

Personal data (i.e., data that can be linked to a natural person) are stored within the Company’s administrative system. Access to the data is restricted exclusively to the Company.

7. Data transfer, data processing, and the scope of data access

The following companies fall under the scope of data transfer, processing, or access:

Company supporting the administrative system

BMA Informatika Kft.
Tax number: 14944996-2-43
Company registration number: (not provided)
Address: 1012 Budapest, Pálya u. 9. 3rd floor

Company managing IT operations

Négypólus Műszaki és Kereskedelmi Kft.
Tax number: 10704217-2-41
Company registration number: 01-09-927194
Address: 1132 Budapest, Váci út 64/a

Hosting service provider

Tárhely.Eu Szolgáltató Kft.
Tax number: 14571332-2-42
Address: 1144 Budapest, Ormánság utca 4. X. emelet 241.
E-mail: support@tarhely.eu

8. Rights of data subjects and opportunities for enforcement

Data subjects may request information about the processing of their personal data, as well as request correction, deletion, withdrawal of consent (except where processing is mandatory), and exercise the rights to data portability and objection, in the manner specified at the data collection point or through the data controller’s contact details above.

8.1. Right to information

The Company undertakes appropriate measures to provide data subjects with concise, transparent, understandable, and easily accessible information about data processing, in accordance with GDPR Articles 13 and 14, and all the disclosures specified in Articles 15–22 and 34.

8.2. Right of access

Data subjects have the right to receive confirmation from the data controller as to whether their personal data is being processed. If so, they can access their personal data and receive information about the purpose of processing, categories of personal data concerned, recipients or categories of recipients with whom the data has been or will be shared (including third country recipients and international organizations), the intended retention period, rights to rectification, erasure, or restriction of processing, the right to lodge a complaint with a supervisory authority, data sources, the existence of automated decision-making (including profiling), and meaningful information about the logic involved, as well as the significance and envisaged consequences of such processing. The data controller will provide this information within one month of receiving the request.

8.3. Right to rectification

Data subjects may request the rectification of inaccurate personal data concerning them and the completion of incomplete data.

8.4. Right to erasure

Data subjects have the right to request the Company to delete their personal data without undue delay under the following circumstances:

– the data is no longer necessary for the purpose it was collected or otherwise processed;

– the data subject withdraws consent on which the processing relies, and there is no other legal basis for the processing;

– the data subject objects to the processing, and there are no overriding legitimate grounds for the processing;

– the data was unlawfully processed;

– the data must be erased to comply with a legal obligation under Union or Member State law applicable to the data controller;

– the data was collected in connection with offering information society services.

Data deletion cannot be initiated if processing is necessary for:

– exercising the right to freedom of expression and information;

– compliance with a legal obligation requiring processing under Union or Member State law;

– for reasons of public interest in the area of public health;

– archiving, scientific, historical research, or statistical purposes based on public interest;

– legal claims’ presentation, exercise, or defense.

8.5. Right to restrict processing

Data subjects may request the restriction of processing if any of the following applies:

– the accuracy of personal data is contested, and processing is restricted until accuracy can be verified;

– the processing is unlawful, and the data subject opposes erasure, requesting restriction instead;

– the data controller no longer needs the data for processing purposes, but the data is required by the data subject for legal claims, or the data subject has objected to processing;

– a pending verification that overrides the data controller’s legitimate grounds exists. During restriction, personal data may only be processed with the data subject’s consent, or for legal claims, or to protect others’ rights, or for reasons of public interest.

8.6. Data portability

Data subjects have the right to receive the personal data concerning them that they have provided to the data controller in a structured, commonly used, machine-readable format, and to transmit those data to another data controller.

8.7. Right to object

Data subjects may object at any time for reasons related to their particular situation to processing necessary for public interest or exercising official authority, including profiling based on such provisions, or for legitimate interests pursued by the data controller or a third party. If an objection is raised, the controller shall cease processing unless compelling legitimate grounds for processing override the interests, rights, and freedoms of the data subject, or the processing is for the establishment, exercise, or defense of legal claims.

8.8. Automated decision-making, including profiling

The data subject has the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal effects concerning them or significantly affect them.

8.9. Right to withdraw consent

Data subjects have the right to withdraw their consent at any time.

8.10. Right to lodge a complaint

In case of a rights violation, the data subject may file a complaint with the Company’s Data Protection Officer using the contact details provided in section 2.1.

8.11. Right to contact the data protection authority

The data subject may file a complaint with the competent Data Protection Authority in case of rights violation.

Name: National Authority for Data Protection and Freedom of Information
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/C
E-mail: bekelteto.testulet@bkik.hu

8.12. Right to file a court action

The data subject may turn to a court against the data controller if their rights are violated. The court will handle the case as a matter of urgency.

8.13. Right to file a complaint with the data protection authority

Name: National Authority for Data Protection and Freedom of Information
Headquarters: 1125 Budapest, Szilágyi Erzsébet fasor 22/C.
Mailing address: 1530 Budapest, Pf. 5.
Phone: 06 1 391 1400
Fax: 06 1 391 1410
Email: ugyfelszolgalat@naih.hu
Website: http://www.naih.hu

9. Other provisions

For data processing activities not listed in this information notice, we will inform you at the time of data collection. We notify our clients that authorities such as the court, prosecutor, investigative authorities, administrative authorities, the National Authority for Data Protection and Freedom of Information, the Hungarian National Bank, or other bodies authorized by law may contact the data controller to request information, request data disclosure or transfer, or make documents available. The Company will only disclose personal data to authorities—if the authority specifies the exact purpose and scope of data needed—the minimum and necessary amount to fulfill that purpose.

Data processing related to other functions of the website

10. Cookie information notice

10.1. What is a Cookie?

The Mercarius Flottakezelő Kft. (headquarters: 1142 Budapest, Komáromi út 36-38., hereinafter “Company”) website uses cookies (small data files) to provide personalized services.

Cookies are unique identifiers or profile information stored as sequences of characters or information files placed on the user’s device by service providers. They enable the website to record browsing habits (for example, user preferences, login assistance, personalized ads, website analytics).

The cookie data itself can only recognize the device; it cannot personally identify the user on its own. Cookies are protected by high-level encryption to prevent third-party access. The cookies used on the website do not contain viruses and will not harm your device.

We inform users that the use of cookies on our website requires prior, informed consent in accordance with Act C of 2003 on Electronic Communications (“Eht.”) and Regulation (EU) 2016/679 (GDPR), which regulates personal data processing and free data movement.

At your first visit to the website (https://mercarius.hu/), a pop-up will inform you about the use of cookies, including a link to this cookie policy.

You can give your consent by clicking “YES”. Without consent or if you revoke prior consent, our site will not place cookies on your device.

10.2. What are cookies used for?

– Collect information about visitors and their devices;

– remember individual user settings for convenience, e.g., during online transactions;

– facilitate website use;

– provide a high-quality user experience.

The website stores a small data pack called a cookie on your device to personalize services, which is read during subsequent visits. If the browser returns a previously stored cookie, the website can link the current and past visits for its own content, but only for that purpose.

Cookies can be deleted by the user from their device or blocked via browser settings (under Tools/Options/Privacy or similar). Disabling cookies may affect website functionality, but it does not prevent access.

10.3. What types of cookies do we use?

10.3.1. Strictly necessary session cookies

These cookies ensure visitors can browse the website smoothly, use its functions, and access services. They expire at the end of the browsing session, and are automatically deleted when the browser closes.

Such cookies include:

Name: PHPSESSID
Purpose: Maintains the session while the user has the website open.
Duration: Deleted once the browser session ends.
Data accessed: No personal data is stored; only activities and session data.

10.3.2. External cookies (Third-party cookies)

Our website may include cookies from external providers, such as social media sharing buttons or visitor analytics. These cookies track browsing behavior across different sites that also use the same third-party tools.

On our website, the following external providers have placed cookies as listed:

STATISTICAL COOKIES

These cookies help website owners assess how visitors use the site by collecting and reporting data anonymously, which aids in improving services.

External Provider: Google LLC (1600 Amphitheatre Parkway Mountain View, CA 94043 USA)

www.google.com/analyt

Cookie Names:

_ga
_gat
_gid

Functions, description, and purpose of data management:

These cookies collect information about how visitors use the website. All data (such as browser usage, number of new visitors) is collected anonymously and sent to Google Analytics servers to help improve the website’s services.

Cookie lifespan / validity:

2 years from creation or last update
24 hours
24 hours

Data accessible and managed by the cookie: The user’s IP address, website navigation path, time and duration of browsing, and performance data of visited pages.

MARKETING

Our website uses marketing cookies to track visitors’ online activities. The main goal is to display relevant advertisements to individual users and encourage their engagement, which makes our website more valuable to content publishers and third-party advertisers.

External Service Provider: facebook.com

Cookie Names:

fr c_user
datr
fr
sb
spin
wd
xs

Function, description, and data management purpose:

The Facebook Pixel is a small piece of code – almost invisible – that creates a direct link between your visit to our website and Facebook. When loaded, Facebook places a cookie on your device, helping it deliver more personalized advertisements to you and measure and improve ad performance.

Additional information:

More info about Facebook cookies can be found here: Facebook Cookies Policy.
Please note that once this cookie is placed, Facebook can track your browsing behavior across other websites that use Facebook pixels or social media plugins.

Cookie lifespan / validity: 3 months

Data accessible and managed by the cookie: user’s IP address, website navigation path, time and duration of browsing, and browsing behavior across visited websites.

10.3.3. Data processing, legal basis, duration, data controller, and rights of data subjects

The legal basis for the use of cookies: is the voluntary consent of the data subject, provided actively by clicking the “YES” button during the brief notification pop-up about cookie usage.

The duration of data processing related to cookies: varies depending on the cookie, as detailed in the above tables.

The data controller authorized to process data related to cookies is: [*]

Rights of data subjects: The data subject can request access to their personal data, request correction or deletion of their data, restrict processing, and withdraw their consent at any time. The Mercarius Flottakezelő Kft. responds to requests without unreasonable delay, but within one month of receipt, and must justify any refusal. Data subjects also have the right to file a complaint with the National Authority for Data Protection and Freedom of Information (address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c, phone: +36 (1) 391-1400, fax: +36 (1) 391-1410, email: ugyfelszolgalat@naih.hu, website: www.naih.hu).

10.3.4. Cookies management

You can delete cookies from your device or disable their use via your browser settings. Usually, cookie management options are found under Tools/Settings in your browser, within sections like Privacy/History or Custom Settings, often labeled as cookies, small files, or tracking.

Enabling cookies is not strictly necessary for website functionality but enhances browsing experience and performance. Disabling cookies may cause some website features not to work properly.

The information stored by cookies is not used to identify you personally, and all sample data is under our control. Cookies are used solely for the purposes described above.

If you prefer not to accept certain types of cookies, you can set your browser to block placement of unique identifiers or to alert you before cookies are sent. For detailed instructions or to refine cookie settings, consult your browser’s help guide or support pages. You can also visit the following link to manage ad preferences based on online behavioral advertising across multiple providers:

10.3.5. Help with setting cookies

Chrome: https://support.google.com/accounts/answer/61416?hl=hu

Edge: Settings -> Advanced Settings -> Cookies (“Allow cookies” / “Block all cookies” / “Block only third-party cookies”) or press F12, open Developer Tools, and navigate to Cookies.

IE11: https://support.microsoft.com/hu-hu/help/17442/windows-internet-explorer-delete-manage-cookies; https://support.microsoft.com/hu-hu/help/260971/description-of-cookies

Firefox: https://support.mozilla.org/hu/kb/sutik-engedelyezese-es-tiltasa-amit-weboldak-haszn

11. Subscription to the newsletter

Description of data processing activity:
The Company provides the opportunity for data subjects to subscribe to its newsletter service through the Website. During the subscription process, the data provided by the data subject (name, e-mail address) is processed by the Company for the purpose of sending newsletters electronically. The processing is based on the voluntary consent of the data subject. Consent may be withdrawn at any time, without justification and free of charge, in which case the Company will cease sending the newsletter.

Purpose of data processing:
The purpose of the processing is to enable the Company, through its electronic newsletters, to inform data subjects directly about its services, news, events, professional updates, and other information related to the Company’s operations.

Data subjects:
Individuals subscribing to the newsletter.

Legal basis of processing:
Consent pursuant to Article 6 (1) (a) of the GDPR, which the subscriber provides by submitting their e-mail address in the relevant section of the Website.

Scope of processed data:
The e-mail address of the data subject, their relationship with our Company, and their name, if provided during the order process.

Duration of processing:
The data will be processed until the withdrawal of consent, i.e., until the data subject unsubscribes from the newsletter.

Withdrawal of consent:
The data subject may withdraw their consent at any time by clicking the Unsubscribe button at the end of the newsletter e-mail.

Data processors:
Administrative software provider.

Company providing business management system support:
- BMA Informatika Kft.
- Tax number: 14944996-2-43
- Company registration number:
- Registered office:1012 Budapest, Pálya u. 9. 3. em.
Company providing IT operation services:
- Négypólus Műszaki és Kereskedelmi Kft.
- Tax number: 10704217-2-41
- Company registration number: 01-09-927194
- Registered office: 1132 Budapest, Váci út 64/a
Hosting service provider:
- Tárhely.Eu Szolgáltató Kft.
- Tax number: 14571332-2-42
- Registered office: 1144 Budapest, Ormánság utca 4. X. emelet 241.

REQUEST A QUOTE

TIRE CHANGEOVER

For Company car drivers

For Fleet managers

Who are we?

About us