Data Protection

Data Protection & Privacy Policy 

LAST UPDATED OCTOBER 2025 

This Privacy Notice sets out the basis on which Outsource-IT Services Ltd. will process personal information provided to us, this information is also referred to as ‘personal data’.  

We take our obligations in respect of the privacy of personal data very seriously and we will only process personal information as detailed in this notice, unless we inform you otherwise. In order to ensure that the personal data we hold is accurate and up to date, we request that you inform us of any relevant changes to the personal information we hold about you. 

The OIT Services is a consultative staffing enterprise comprised of IT staffing and IT services companies which provide project assignments for IT specialists as well as permanent recruitment services. Established in Szolnok in 2021. Our core business activity is various IT Services whereby we are serving our ‘Clients’. 

For the purposes of this Privacy Notice, our commercial activities and services  for individuals and businesses (including education offerings and us acting as value added reseller) are jointly referred to as ‘Services’, and our actual or potential hiring customers are referred to as ‘Clients’. Our Data Protection Officer is Ildiko Zakar-Ballo and can be contacted here: iballo@oitservices.hu. 

OIT collects, uses and is responsible for certain personal information about you. When we do so we are regulated under the General Data Protection Regulation (GDPR) which applies across the European Union as well as local laws, and we are responsible as ‘controller’ of that personal information for the purposes of those laws. For the purpose of applicable data protection legislation (including but not limited to the GDPR), the company responsible for your personal data is the one you are dealing and/or contracting with. 

This Privacy Policy applies to the personal data of our website users, candidates, clients, suppliers, referals, referees and other people we may contact in order to carry out our Services. It also applies to the emergency contacts of our staff. For the avoidance of doubt, if you are a member of OIT’s staff, you should refer to OIT’s Privacy Notice for Internal Staff which has been communicated to you separately and is available on the OIT Internal SharePoint site. 

If you do not wish us to process personal data in accordance with this policy, then please do not provide it to us, Please refer to Section 4 ’Your rights‘, in respect of data that we already hold, or which we receive from third parties. 

Section 1: This section applies to individuals wishing to use or using our Services 

Depending on the contracting entity your assignment is conducted through, the business activity carried out or contract type entered into and applicable local laws and requirements, the personal data we collect or receive includes the following as applicable: 

• Name 

• Address 

• Email and other contact details 

• Date of birth 

• Gender 

• Marital status 

• Job history (including information relating to placements through us) 

• Educational history,  qualifications & skills 

• Visa and other right to work or identity information 

• Passport/identity card and photograph 

• Bank details 

• National insurance and/or tax ( for example payroll) information 

• Income related information such as your current remuneration, pensions and benefits arrangements 

• Next of kin and family details 

• Contact details of referees 

• Information contained in references and pre-employment (such as criminal record) checks from third       parties 

• Other sensitive personal information such as health records (see ‘Sensitive Personal Data’ section below) 

• Information on your interests and needs regarding future employment, both directly and inferred, for  example from jobs viewed or articles read on our website 

• Extra information that you choose to tell us or your referees or the client chooses to tell us about you, or that we find from other third party sources such as job sites 

• IP address, dates, times and frequency with which you access our services 

• Where applicable, CCTV footage if you attend our premises 

In some jurisdictions, we are restricted from processing some of the data outlined above and will consequently not process such data there. 

We may obtain your personal data from the following sources (please note that this list is not exhaustive): 

• You (e.g. a Curriculum Vitae, application or registration form filled out on the OIT website or sent/given to us directly) 

• A client 

• Other candidates 

• Online jobsites 

• Marketing databases 

• The public domain 

• Social Media such as Facebook or Twitter 

• At interview 

• Conversations on the telephone or video conferencing 

• Notes following a conversation or meeting 

• Our websites and software applications (if you would like more information about this, please see the sections below on Cookies, Google Analytics and Social Media Plugins 

Applying for jobs through a board, which then redirects you to the OIT website 

Where you are a Candidate and we have obtained your personal data from a third party such as an online job board, it is our policy to advise you of the source when we first communicate with you. 

How we will use your personal data: 

The processing of your personal information may include: 

• Collecting and storing your personal data, whether in manual or electronic files 

• Notifying you of potential roles or opportunities 

• Assessing and reviewing your suitability for job roles 

• Introducing and/or supplying you to actual or potential Clients 

• Engaging you for a role with us or with our Clients including any related administration e.g. timesheets and, where applicable, payroll 

• Signing you up to one of our education offerings 

• Carrying out customer satisfaction / client and project rating surveys 

• Collating market or sector specific information and providing the same to our Clients 

• Sending information to third parties with whom we have or intend to enter into arrangements which are related to our Services 

• Providing information to regulatory authorities or statutory bodies, and our legal or other professional advisers including insurers 

• To market our Services 

• Retaining a record of our dealings 

• Establishing quality, training and compliance with our obligations and best practice 

• For the purposes of backing up information on our computer systems 

Why we process your personal data: 

1. Entering into and performing a contract with you: 

In order to provide our Services we may enter into a contract with you and/or a third party. In order to enter into a contract we will need certain information, for example your name and address. A contract will also contain obligations on both your part and our part and we shall process your data as is necessary for the purpose of those obligations. For example, in order to process payments, bank details will be required. 

2. Compliance with legal obligations (regulatory and statutory obligations): 

We must comply with a number of statutory provisions when providing our Services, which necessitate the processing of personal data. These include (for the purposes of English law) the Conduct of Employment Agencies and Employment Businesses Regulations 2003, which amongst other things requires us to: 

• Verify your identity 

• Assess your suitability for an external job role 

• Maintain records for specific periods 

Where we engage a person to work for us (whether directly or as supplied to a Client), there are other statutory obligations that must be complied with including (where applicable) payroll, tax, social security or other tax authorities reporting requirements, and any other law or regulation. 

We are also required to comply with statutory and regulatory obligations relating to business generally, for example complying with tax, bribery, fraud/crime prevention and data protection legislation, and co-operating with regulatory authorities such as tax authorities or the data protection supervisory authorities such as Information Commissioner’s Office. 

3. Our legitimate interests (carrying on the commercial activity of our Services): 

In providing our Services, we will carry out some processing of personal data which is necessary for the purpose of our legitimate interests, which include: 

• Retaining records of our dealings and transactions and where applicable, use such records for the purposes of: 

• Establishing compliance with contractual obligations with Clients or suppliers 

• Addressing any query or dispute that may arise including establishing, exercising or defending any legal claims 

• Protecting our reputation 

• Maintaining a back-up of our system, solely for the purpose of being able to restore the system to a particular point in the event of a system failure or security breach 

• Evaluating quality and compliance including compliance with this Privacy Notice 

• Determining staff training and system requirements 

• Using your personal data to: 

• Assess suitability and contact you regarding potential opportunities and/or our Services 

• Collate market information or trends including providing analysis to potential or actual Clients 

• Source potential opportunities or roles as part of our Services 

• Obtain referrals for roles we are working on 

• Market our Services and related material, services and products, or provide industry updates where we have a soft opt-in* 

• Personalise your experience and our offering, whether via our website or otherwise 

This means that for our commercial viability and to pursue these legitimate interests, we may continue to process your personal data for as long as we consider necessary for these purposes. 

* Soft opt-in consent is a specific type of consent which applies where you have previously engaged with us (for example by submitting a CV, or registering a vacancy to be filled, or working with us on a contracting assignment), and we are marketing other recruitment-related services. Under ‘soft opt-in’ consent, we will take your consent as given unless or until you opt out. For most, this is beneficial as it allows us to suggest other services that might enhance your employability and skills. 

4. Consent to our processing of your data: 

We may process your personal data on the basis that you have consented to us doing so for a specific purpose, for example, if you apply for a specific role you may have consented to our processing of the data that has been provided for the purpose of progressing your application and considering your suitability for that role. In other cases you may have provided your written or verbal consent to the use of your data for a specific reason. 

You may withdraw your consent to our processing of your personal information for a particular purpose at any stage. However, please note that we may continue to retain, or otherwise use your personal information thereafter where we have a legitimate interest or a legal or contractual obligation to do so. Our processing in that respect will be limited to what is necessary in furtherance of those interests or obligations. Withdrawal of consent will not have any effect on the lawfulness of any processing based on consent before its withdrawal. 

For USA Residents: 

By providing a telephone number, you consent to be contacted via SMS text message. To opt out of further messaging, simply reply with “STOP”. 

What if we obtain your personal data from a third party? 

Part of our business activity involves researching information relating to individuals for the purposes of filling job roles. This may include obtaining personal data from online sources, for example, we may obtain information from social media sites such as LinkedIn and job boards, some information being publicly available but others being from sites or providers to which we subscribe. From time to time we may also receive personal information about you from hiring organisations, colleagues and former employers, or from persons for whom you have provided services or been otherwise engaged. 

Where information from third party sources is of no use to us, or where you have notified us that you do not want us to provide you with services, we shall discard it, however, we may maintain a limited record in order to avoid the duplication of process. Where we consider that information may be of use to us in pursuance of the provision of our Services, any processing will be in accordance with this Privacy Notice. You do have the right to object to processing, please see Section 4 ‘Your rights’. 

Sensitive Personal Data (SPD) 

Sensitive personal data is information which is intensely personal to you and is usually irrelevant to our consideration of your suitability for a job role. Examples of SPD include information which reveals your political, religious or philosophical beliefs, sexual orientation, race or ethnic origin, or information relating to your health. 

Regardless of the basis for your dealings with us, we request that you do not provide us with any sensitive personal data unless absolutely necessary. However, to the extent that you do provide us with any sensitive personal data, such as data which you choose to share with us in conversation, we shall only use that data for the purposes of our relationship with you or for the provision of our Services. This will be for one or more of the following reasons: 

• You have explicitly consented to the processing 

• For the purpose of our assessment of your suitability for job roles or working capacity 

• Where processing is necessary for the purpose of obligations or rights under employment, social security or social protection law 

• To maintain records of our dealings to address any later dispute, including but not limited to the establishment, exercise or defence of any legal claims 

Who we share personal data with: 

We shall not share your personal information unless we are legally entitled or required to do so. The following is a non-exhaustive list of persons with whom we may share your personal information include: 

• Individuals working for our Clients, hirers and other third parties necessary for the provision of our Services; 

• Any regulatory authority or statutory body pursuant to a request for information or any legal obligation which applies to us; 

• Parties who process data on our behalf, which may include 

• Outsourced payroll providers; 

• IT support; 

• Storage service providers including cloud; 

• Background screening providers; 

• Platforms enabling specific searches such as filtering of specifically required skill sets 

• Marketing technology platforms and suppliers; 

• Legal and professional advisers; 

• Insurers; 

Section 2: This section applies where you are an individual working for a Client or third party with whom we have dealings. 

We may collect your personal data in the course of our dealings and this may include the following: 

• Your contact information, which may include your full name, job role, contact telephone number and email 

• Your statements and opinions about candidates and/or other personnel e.g. a reference 

• Information relating to our relationship with you or the party for whom you work including records of any meetings or discussions 

• Your marketing preferences 

We may obtain your personal data from the following sources (please note that this list is not exhaustive): 

• You, including where you have provided us with your contact details or other information for the purposes of using our Services 

• Staff or other representatives of the organisation you represent 

• Candidates 

• Marketing databases or third-party market research and by analysing online and offline media (which we may do ourselves, or employ other organisations to do for us) 

• Social media 

• The public domain 

• Conversations, with you or others (such as referees or clients), on the telephone or video conferencing or in meetings 

• Notes following a conversation, with you or others, or meetings/events 

How we will use your personal data: 

We will process your personal data in the context of our dealings with the third party for whom you work and as part of our Services. Processing may include: 

• Collecting and storing your personal data, whether in manual or electronic files 

• Using the data to communicate with you 

• Sending information to third parties with whom we have or intend to enter into arrangements which are related to our Services 

• Actions necessary to further any obligation on us pursuant to a contract between ourselves and the third party you work for 

• Collating market or sector-specific information and providing the same to our clients 

• Providing information to regulatory authorities or statutory bodies and our legal or other professional advisers including insurers 

• Retaining records of our dealings with you and the organisation whom you represent 

• Establishing quality, training and compliance with our obligations and best practice 

• Carrying out customer satisfaction / client and project rating surveys 

• To market our Services 

• For the purposes of backing up information on our computer system. 

Why we process your personal data: 

1. Compliance with legal obligations (regulatory and statutory obligations) or performance of a contract 

Where we are currently working with you on a contracting assignment, or have worked with you in the past, the lawful basis for us using your data is that the processing is necessary for the performance of a contract or to comply with a legal obligation. 

We must comply with a number of statutory provisions when providing our Services, which necessitate the processing of personal data. These include (for the purposes of English law) the Conduct of Employment Agencies and Employment Businesses Regulations 2003, which amongst other things requires us to assess suitability of candidates and obtain information from Clients. 

We are also required to comply with statutory and regulatory obligations relating to business generally, including for example tax, bribery and fraud/crime prevention legislation, and co-operating with regulatory authorities or other tax authorities. 

2. Our legitimate interests (carrying on the commercial activity of our Services): 

In providing our Services, we will carry out some processing of personal data  which is necessary for the purpose of our legitimate interests, which include: 

• Using your personal data: 

• To contact you regarding our Services 

• To assess the suitability of Candidates and roles, for example, referencing or other feedback 

• To collate market information or trends including providing analysis to potential or actual Clients 

• As otherwise necessary to provide our Services and/or to meet our obligations towards either the party whom you represent, or other Clients or suppliers 

• To personalise your experience and our offering, whether via our website or otherwise 

• Retaining records of our dealings and transactions and where applicable, use such records for the purposes of: 

• Establishing compliance with contractual obligations with Clients or suppliers 

• Addressing any query or dispute that may arise including establishing, exercising or defending any legal claims 

• Managing and maintaining our business operations and internal administration 

• Delivering and improving our recruitment and related services 

• Communicating with clients, candidates, and service providers 

• Ensuring the security and integrity of our systems and data 

• Establishing, exercising, or defending legal claims 

• Conducting business development and marketing activities (excluding where consent is required) 

• Complying with applicable laws and regulatory obligations 

• Determining staff training and system requirements 

For our commercial viability and to pursue these legitimate interests, we may continue to process your personal information for as long as we consider reasonably appropriate for these purposes. 

3. Consent-Based Processing of Personal Data 

We may process your personal data when you have given us explicit consent for a specific purpose. For instance, if you provide your contact details so we can share information about our services, this constitutes consent for that use. In other cases, you may have given written or verbal consent for particular uses of your data, such as providing references. 

We do not share mobile information with third parties for marketing or promotional purposes. Additionally, text messaging originator opt-in data and consent are excluded from all other data categories and will not be disclosed to any third parties. 

You have the right to withdraw your consent at any time regarding the processing of your personal data for a specific purpose. However, please be aware that we may continue to retain or use your data where we have a legitimate interest, or a legal or contractual obligation to do so. In such cases, processing will be limited strictly to what is necessary to fulfill those obligations or interests. 

Withdrawal of consent does not affect the lawfulness of any processing carried out prior to its withdrawal. 

What if we obtain your personal data from a third party? 

Part of our business activity involves researching information for the purposes of finding and filling job roles. This may include obtaining personal data from sources including job boards, advertisements, LinkedIn or other social media,some information being publicly available but others being from sites or providers to which we subscribe. From time to time we may also receive personal data about you from hiring organisations, colleagues and former employers, or from persons for whom you have provided services or been otherwise engaged with. 

Where information from third party sources is of no use to us we shall discard it, however we may maintain a limited record in order to avoid the duplication of process. Where we consider that information may be of use to us in pursuance of the provision of our Services, any processing will be in accordance with this Privacy Notice. You do have the right to object to processing, please see Section 4 ‘Your rights’. 

Sensitive Personal Data (SPD) 

Sensitive personal data is information which is intensely personal to you and is usually irrelevant to our dealings with you in respect of our Services. Examples of SPD include information which reveals your political, religious or philosophical beliefs, sexual orientation, race or ethnic origin, or information relating to your health. 

Regardless of the basis for your dealings with us, we request that you do not provide us with any sensitive personal data unless absolutely necessary. However, to the extent that you do provide us with any sensitive personal data, such as data which you choose to share with us in conversation, we shall only use that personal data for the purposes of our relationship with you or for the provision of our Services. This will be for one or more of the following reasons: 

• You have explicitly consented to the processing 

• Where processing is necessary for the purpose of obligations or rights under employment, social security   or social protection law 

• To maintain records of our dealings to address any later dispute, including but not limited  to the establishment, exercise or defence of any legal claims 

Who we share personal data with: 

We shall not share your personal information unless we are legally entitled or required to do so. The following is thus a non-exhaustive list of persons with whom we may share your personal information: 

• Candidates and other third parties necessary for the provision of our Services 

• Any regulatory authority or statutory body pursuant to a request for information or any legal obligation which applies to us 

• Parties who process data on our behalf, which may include: 

• Outsourced payroll providers 

• IT support 

• Storage service providers including cloud providers 

• Background screening providers 

• Marketing technology platforms and suppliers legal and professional advisers 

• Insurers 

Section 3: Applicability to Personal Data 

International Data Transfers 

As part of delivering our Services, we may transfer personal data to countries or international organizations outside the European Economic Area (EEA). These transfers may involve Clients, Candidates, or third-party service providers. 

Where such transfers occur, they may be directed to jurisdictions recognized by the European Commission as providing adequate data protection. In cases where no adequacy decision exists, we implement safeguards to protect your privacy rights and provide remedies in the event of misuse. These safeguards may include: 

– Standard Contractual Clauses: Agreements incorporating the latest EU-approved clauses for data transfers to jurisdictions lacking adequate protection laws. 

– Privacy Frameworks: Transfers to organizations participating in recognized frameworks such as the EU-U.S. Privacy Shield or equivalent arrangements in other regions. 

– Contractual Necessity: Transfers required for the performance or conclusion of a contract that serves your interests. 

– Explicit Consent: Transfers made with your informed and voluntary consent. 

If you do not wish to provide us with necessary data 

If we need certain data to fulfil legal or contractual obligations or to provide our Services, we will ask you to supply it. If you refuse to provide the requested information, tell us and we will note your decision; however, we may then be unable to deliver the Service to you or the party you represent, and this may constitute a breach of the contract between us or with a third party you represent. If our business is sold, merged, liquidated, placed in receivership, or if all or part of our assets are transferred to a third party, we may transfer your information to that third party provided they agree to this Privacy Notice and process your data only in accordance with it. 

Data Security and Confidentiality 

It is our policy to ensure, in so far as is reasonably practicable, that our systems and records are secure and not accessible to unauthorised third parties in line with contemporary practice. 

Cookies 

A cookie is a small file of letters and numbers that is downloaded on to your computer when you visit a website, which enables the website to tailor its offerings to your preferences when you visit it. 

OIT uses cookies to analyse website visits. A cookie is a small file placed on your device when you visit the site; it can only store information that OIT sends and cannot read private data from your device. When you accept cookies we cannot access your personal files, but we can recognise your device. Most browsers accept cookies by default; you can manage or block session and persistent cookies through your browser settings. Disabling cookies may prevent some site features from working correctly or cause pages to display improperly. 

Google Analytics 

This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. In case of activation of the IP anonymisation, Google will truncate/anonymise the last octet of the IP address for Member States of the European Union as well as for other parties to the Agreement on the European Economic Area. Only in exceptional cases, the full IP address is sent to and shortened by Google servers in the USA. 

On behalf of the website provider, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage to the website provider. Google will not associate your IP address with any other data held by Google. 

You may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this, you may not be able to use the full functionality of this website. Furthermore, you can prevent Google’s collection and use of data (cookies and IP address) by downloading and installing the browser plug-in. 

You can refuse the use of Google Analytics by clicking on the following link. An opt-out cookie will be set on the computer, which prevents the future collection of your data when visiting this website: Disable Google Analytics 

Further information concerning the terms and conditions of use and data privacy can be found at http://www.google.com/analytics/terms/gb.html or at https://www.google.de/intl/en_uk/policies/. Please note that on our website, Google Analytics code is supplemented by “gat._anonymizeIp();” to ensure an anonymized collection of IP addresses (so called IP-masking). 

Social Media Plugins 

We currently use the following social media plug-ins: Facebook, Instagram, YouTube (Google), Twitter and LinkedIn. We apply the 2-click solution in this regard. This means that if you are visiting our site, no personal data will generally be transferred. Only when you click onto one of the plug-ins, data will be transferred to the relevant social media provider. You can recognise the provider by the markings in the black bar at the top of this site as well as in the grey bar at the bottom of the site by their Initials. 

When the plug-in is activated, the relevant provider receives the information that your browser has opened the relevant page on our website, even if you do not have an account with this provider, or if you do have an account, then even if you are not logged into your account. This information will be transferred directly to a server of the provider in the USA and stored there. 

If you are logged into your account with a social provider, that provider may link your visit to our website to your account. When you interact with the provider’s plug‑in (for example by commenting), the provider will receive and store that information on its servers and may display it on its platform where your contacts can see it. To prevent this, log out of your social account before using the plug‑in. The provider may use the data for advertising, market research and to personalise its services by building user, interest and relationship profiles, analysing your activity on our site and informing other users about your interactions. We expressly declare not to have knowledge of the content of the transferred data as well as their use by the relevant social media provider. 

Purpose and extent of the data collection and further processing and use of data by the social media provider as well as the corresponding rights and settings to protect your privacy can be found in the following data protection declarations of the relevant provider: 

• Twitter Inc., Twitter, Inc. 1355 Market St, Suite 900, San Francisco, CA 94103, USA;  http://twitter.com/privacy 

• Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php/ 

• YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA and Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://policies.google.com/privacy?hl=en-GB 

• LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; http://www.linkedin.com/legal/privacy-policy/ 

• Instagram, Inc., 181 South Park, San Francisco, California 51107; http://instagram.com/about/legal/privacy/ 

Retaining your data 

In most circumstances your data will not be retained for more than 6 years from the last point at which we provided any services or otherwise engaged with you and it is our policy to only store your personal  data for as long as is reasonably necessary for us to comply with our legal obligations and for our legitimate business interests. However, we may retain data for longer than a 6 year period where we have a legal or contractual obligation to do so, or we form the view that there is otherwise a continued basis to do so, for example where your personal information identifies specialist skill sets which may remain in demand, or we are subject to a legal obligation which applies for a longer period. 

If however, you believe that we should delete your personal data at an earlier date, please inform us in writing of your reasons.  Please see Section 4 ‘Your Rights’ below. 

Section 4:Your rights 

We take the protection of your personal data very seriously and it is important that you know your rights within that context, which include rights to: 

• Request a copy of the personal data that we hold 

• Object to our processing of your data where that processing is based upon legitimate interest and there are no compelling grounds for the continued processing of that data 

• Request that we restrict processing of your data in certain circumstances 

• Request that data is erased where the continued use of that data cannot be justified 

• Object to any decision, which significantly affects you, being taken solely by a computer or via another automated process 

• Withdraw your consent to our processing of your personal data for a particular purpose at any stage. However, please note that we may continue to retain, or otherwise use your personal information thereafter where we have a legitimate interest or a legal or contractual obligation to do so. Our processing in that respect will be limited to what is necessary in furtherance of those interests or obligations 

• Request that inaccurate or incomplete data is rectified 

• Request that data provided directly by you and processed by automated means is transferred to you or another controller; this right only being applicable where our processing of your data is based either on your consent or in performance of a contract 

• Make a complaint to the Information Commissioner’s Office Request that direct marketing by us to you is stopped. 

Please note that should you exercise your right to request that we erase data or cease any processing activity, we may retain a record of this request and the action taken in order to both evidence our compliance, and to take steps to minimise the prospect of any data being processed in the future should it be received again from a third party source. 

If you would like to exercise any of those rights, please: 

1. Email our Data Protection Officer on iballo@oitservices.hu or write to us at Czakó Elemér Street 1 GF/7. Szolnok, 5000, Hungary, and mark your correspondence to the attention of the Data Protection Officer. 

2. let us have enough information to identify you (e.g. full name and other identifying details such as the circumstances under which we had dealings with you), 

3. let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill), and 

4. let us know the information to which your request relates, including any account or reference numbers, if you have them. 

If you would like to unsubscribe from any email newsletter you can also click on the ‘unsubscribe’ button at the bottom of the email newsletter. It may take a few days for this to take place. 

For California Residents:  

If you have any questions about our Privacy Policy or have any other enquiries, including requesting a copy or deletion of your data, in addition to submitting your requests at iballo@oitservices.hu. 

Selling of data: CCPA provides Californian consumers with a right to opt-out from the selling of their data. OIT does not sell personal data to third parties, and therefore, there is no need to enable Californian consumers to opt-out from this option, as required by CCPA. 

Complaints 

If you are dissatisfied about any aspect of the way in which your data is processed you may, in the first instance refer the matter to the DPO at iballo@oitservices.hu. We hope that our Data Protection Officer can resolve any query or concern you raise about our use of your information. Please refer to our Complaints Policy on our website www.oitservices.hu/data-protection This does not affect your right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in Hungary is the The National Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság, NAIH) who may be contacted at https://www.naih.hu/about-the-authority. 

Changes to this Privacy Notice 

This privacy notice was last updated in October 2025. 

We review this Privacy Notice regularly and may update it to reflect changes in our business or in legal or commercial practice. If an update affects how we process your data, we will notify you.