Information about data processing of Alrite

We kindly ask you to read carefully this information about data processing, in which our company informs the users of “Alrite” application about processing and protecting data, and about the right of the data’s subject.

If you are under the age of 18, please read this privacy statement with your legal representative and make your consent only with the consent of your legal representative.

In case of any questions, comment please contact us on the contact information below.

Company data:
Company name: Régens Zrt.
Seat: 1117 Budapest, Prielle Kornélia utca 19/D
Phone number: +36 1 205 3090
Website: www.regens.com
E-mail: info@regens.com

Contact details for data management matters:
E-mail: info@regens.com
Phone number: +36 1 205 3090

Let us introduce ourselves: whom you process your personal data?

The Régens Informatikai Zártkörűen Működő Részvénytársaság is a Hungarian resident business company providing as core activity information technology services for more decades.

Whose data are subject of data processing and why?

Our data procession regulation and information governs the procession of natural person’s data, i.e. governs all data processions in which our company acquires data, that may be connected to natural persons, may identify natural persons.
There are several ways our company may acquire personal data through the use of the Alrite app.

  1. During registration in the application, we may acquire names, addresses and contact information.
  2. When uploading and storing materials into the application, the material itself (audio material or its text version created during the use of the application) may contain personal data. These materials are compiled by the uploader, and Régens Zrt. has no influence over their content. 
  3. If you give us a recommendation in connection with the application, we may process your name, your email address, your employer or your position.
  4. If you subscribe to our newsletter, we will process your name and your email address.

In all cases, we will obtain the data we process from you, as you will provide the data to us.

Which regulations govern the data procession?

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data
Law Nr CXII from the Year 2011 about the information self-governing right and the freedom of information 
Opinions of the Comission’s Working Group Nr 29, of the European Data Protection Board and of the National Data Protection Office.

Which principles are regarded by us during data procession?

Our company processes data according to the regulations of the GDPR regarding the following principles:

  • lawfulness: the company has in the regulation determined legal basis for data procession, the data procession is reasoned
  • fairness: the data procession occurs according to the legal regulations regarding the interests of the data’s subject, we do not process your data in a way that misleads you, or misrepresents its purpose
  • transparency: the data procession may be followed in every steps of the process
  • limited purpose: the data will be processed only according to the goal determined in advance about which the data subject has been informed 
  • data minimalization: data will be collected in quantity and so long till it is necessary to the legal basis and for which method and duration we have provided you with prior information
  • accuracy: we strive to ensure that the stored information corresponds to reality. For this purpose, the right of correction, restriction and deletion will be ensured. With regard to the uploaded and transcribed materials, transcription works with an accuracy of approximately 90%, which largely depends on the quality of the sound recording (i.e. from the type of microphone used). Our company will not make any changes to the transcribed material, which will be recorded as transcribed by the application and edited by the user.
  • storage limitation: we store the data only for the time necessary for the purpose
  • integrity and confidentiality: we ensure access to data only to persons whose access is necessary for fulfilling the services or for the determined goal. 

Why are my data processed?

You have contacted our company electronically and are using the Alrite speech recognition system application. This creates a contract between you and our company for the use of the application. The terms of the contract are set out in the terms of use, the general terms and conditions or a separate individual contract concluded with you.  Therefore, the legal basis for data processing is Article 6 (1) b) of the GDPR. 

If you subscribe to our newsletter or give us a recommendation, we will process your data based on your consent. Therefore, under Article 6 (1) a) of the GDPR, the legal basis for data processing is your consent.

How and for what purpose do we process your data?

Our company shall handle all personal data and other information provided by you only in relation to the purpose for which you provide said data or to communicate with you in order to meet your needs. The purpose of data processing is the use of the application, the improvement of the application after use, or, based on your consent, sending information materials to you.

Our company stores the data electronically, on a server equipped with appropriate security measures. No data is stored in printed format.

Since the server used for storage is the property of Régens Zrt., others cannot access the data on the server. Secure storage and transfer to the server of the data is further improved by the fact that the Alrite application website is protected by the Hypertext Transfer Protocol Secure (HTTPS) protocol, which ensures data integrity and confidentiality between the user's computer and the website. Data sent using HTTPS is protected by the Transport Layer Security (TLS), protocol, which provides three key layers of protection: Encryption – the protocol encrypts the transmitted data, securing it from unauthorized access. Data Integrity – the data cannot be modified or infected during transmission without the system detecting it. Authentication – the protocol confirms if users are communicating with the correct website. Also, it provides protection against man-in-the-middle attacks.

Our company will only transmit data if required by law.

Audio files and related text files uploaded within the trial version (Starter) and lower packages (Prime for business use or Lite for private use) will be stored in the application database for 7 days. In the case of Plus packages, intended for private use, and Premium or Professional packages, intended for business use, these files are stored until the end of the subscription period, unless the subscriber (user) decides to delete any or all of the files. Once deleted, the files will be eliminated, will no longer be available and cannot be restored either in the Alrite system or in the application database. 

Files uploaded by users into the system or dictated will be automatically deleted at the end of the 3rd day from the end of the trial or subscription period, unless the subscription is renewed by that date. Personal data provided during registration will be automatically deleted at the end of the 5th year from the end of the trial or subscription period. Electronic data will be deleted in such a way that it cannot be restored.

Audio materials uploaded by the subscriber or recorded with a microphone in the Alrite application, together with the related text files, can only be accessed by the subscriber or, in the case of business use, by users who log into the subscriber’s system with a password. 
The subscriber has the exclusive right to view, download and use the audio and text files for any other purpose. These files cannot be viewed by anyone else, not even the current (admin) administrator, the developers of the Alrite software or the data scientists involved in the development of artificial intelligence. Also, these files will not be used by developers for improving the deep learning-based voice and word processing algorithms of the Alrite system or to develop Alrite for functional purposes. To avoid this, other procedures and publicly accessible data files are available.

What shall I know about cookies, other loggings?

The Régens Zrt. uses cookies on its webpage to enlighten the use of webpage and the communication. On the webpage of the company Google Analytics is used, which regulation may be find: https://policies.google.com/privacy?hl=hu

Furthermore, during the use of our applications your browser may send us automatic information when you open or use a web address such data as:  IP address, opened webpage, activity logging. We may get information about the used hardware as type, operation system, its settings or individual identities. This information depends on your settings, so we suggest to study the user’s menu, user’s guide regarding information-technology, -security before using the hardware.

The Régens Zrt. informs you about cookies also on its homepage and ask for your consent. We do not collect, store data accessed from cookies. Profiling, automated decision making is not done from data obtained in one way or another.

We do not use the above information to identify individual preferences.

What should I know when I sign up for a newsletter service? 

Régens Zrt. will send out newsletters, which are usually circulars about its services and products, only when the data subjects have consented to this by checking the dedicated box via email or online. The data subjects will be informed about how to unsubscribe at the bottom of newsletters. If the data subjects decide to unsubscribe, our company deletes their data stored for the purpose of sending the newsletter and will not continue processing it in the future.

What kind of data processing occurs when I give a recommendation to the company?

We appreciate your sharing your positive experience in the form of a recommendation and allowing us to make your recommendation public. To demonstrate that the recommendation is authentic, we will publish it together with your name or the name of your company and your position, provided that you gave us your consent by e-mail or by checking the dedicated box online. The recommendation will only be posted on the platforms indicated by you. Your recommendation will be processed until you withdraw your consent. Please inform us by email (gdpr@regens.hu) if you withdraw your consent to the publication of your recommendation. In this case, your recommendation will be deleted within 3 business days.

What kind of rights do I have regarding my data procession? 

Right for information

You have right to get understandable information for what reason, which data, how and for how long will be processed by our company. To give you the information we need to identify you, because of it we may give you the information only personally in previously agreed office time or you may request it in writing. In case of written request, you need two witnesses on the request, in case of request submitted in email, we give the information only for the email address processed by us. If you may not send the request from the email address processed by us, please send it us per post authorized by two witnesses. We fulfil the request free of charge within 15 days from the arriving.

Disposition with the data: right to rectificate, protest, limitation and erasure, data portability

For the request of data’s subject, the Régens Zrt. rectificate or supplement the inaccurate personal data without delay. 

The data’s subject may protest any time against the procession of his data on basis of public interest, execution of public service, legal interest. The data controller may process the data further only if he proves that the procession is reasoned by righteous reasons with forcing effect, which have priority against the interests, rights and freedoms of the data’s subject, or they are in connection with submitting, validation or protection of legal claims. If the data’s subject protests against the procession on basis of direct business purposes, the personal data may not be processed further on this legal title.

On the request of the data’s subject the data controller limitates the procession, if the accuracy of the data is disputed, the procession is unlawful, but the data’s subject does not ask for the erasure only for limitation, the data controller does not have legal basis for the data, but the data’s subject requests the procession to validate some of his rights during the time of the examination in which the lawfulness of the data procession will be examined. About the lifting of the limitation the data’s subject must be informed.

On the request of the data’s subject, in case of the revoke of his consent, for his protesting the data controller erases without delay the personal data regarding the data’s subject, except for other legal basis the procession is necessary, or public interest reasons the procession, or it is necessary for submitting, validating, protecting legal claims. Data must be erased also in case they have been processed unlawful or their erasure is obligatory according to law. 
The Régens Zrt. informs about the rectification, limitation, erasure of the data the data’s subject, except the information is impossible or needs special force.

Legal remedy

The data’s subject is entitled to submit a complain to the authority appointed for this task:
For the National Data Protection and Freedom of Information Authority (www.naih.hu, ugyfelszolgalat@naih.hu, +3613911400, 1125 Budapest, Szilágyi Erzsébet fasor 22/c).

Against the decision or silence of the authority the data’s subject may appeal to court.  

The data’s subject is entitled to go to court in case of unlawful procession of his personal data.

May unauthorized third person access to my personal data?

We speak about personal data breach in case your data is accessed by third unauthorized person, or there is a danger of accession.  

There has been no privacy incident at our company since its inception. It is a possible, albeit unlikely, risk that an incident may occur at the cloud service provider or that our colleague's username and password get stolen.

In order to prevent this, Régens Zrt.

  • will allow access to personal data only to those whose work strictly requires it, and access to data is protected with a username and password;
  • will constantly monitor its servers and IT security system, will require that the company providing IT services implements adequate security measures, will adjusts its equipment accordingly and will carefully choose a trusted cloud service provider; and
  • will inform its employees about the necessary data protection measures and will educate them on how to properly protect their username and password.

Date: Budapest, 2019.10.22.

Updated: Budapest, 2020.09.07.

Régens Informatikai Zrt.