Your GDPR Rights

1. Your Rights

• Right of access — obtain a copy of the personal data we hold about you.
• Right to rectification — correct inaccurate or incomplete data.
• Right to erasure — request deletion of your data ("right to be forgotten").
• Right to restriction — limit how we process your data in certain cases.
• Right to data portability — receive your data in a structured, machine-readable format.
• Right to object — object to processing based on legitimate interests or for direct marketing.
• Rights regarding automated decisions — we do not make decisions producing legal effects solely by automated means.

2. Controller vs. Processor

For data a business (Tenant) collects about its own guests, that Tenant is the controller — direct guest requests to the relevant business. For platform accounts and platform data, we are the controller and you can contact us directly.

3. How to Exercise Your Rights

Send your request to [email protected] with enough detail to identify your records. We may need to verify your identity. We respond within 30 days; complex requests may be extended with notice.

4. Complaints

You have the right to lodge a complaint with a data protection supervisory authority. In the UK this is the Information Commissioner’s Office (ICO); in the EU it is your national authority. In Hungary this is the Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH).