top of page

Privacy Policy


Name of Data Controller: Enaks Market Intelligence kft (henceforth: Data Controller)

Address of Data Controller: Budapest, Hungary. H-1117, Váli Street. 4., 2.

Contact details of Data Controller:



Legal basis for data processing: the data subject's voluntary and explicit consent.

The data subjects concerned by data processing are: applicants for traineeships, trainees, job seekers, employees, persons seeking professional cooperation with the Data Controller, e.g.: prospective subcontractors.

Consent to data processing: by uploading your CV, you expressly consent to the processing of your personal data by the Data Controller in the manner and for the purposes described in this Privacy Policy document.

Purposes of the data processing:

  • job seeking

  • establishing contact

  • facilitating the establishment and maintenance of employment

  • requesting a quotation from a subcontractor


Method of processing: manual processing

Data processed: name, surname, first name, address, e-mail address, telephone number, social media profiles, educational qualifications, educational and work experience, everything you voluntarily provide in your CV and social media profiles about yourself, in particular special categories of personal data.

The data processors with whom your data may be shared: - headhunter involved in the selection process, HR consultant

Duration of processing: the data are processed for an indefinite period of time or until the data subject's consent is withdrawn, in accordance with the principle of purpose limitation. The data contained in the CV will be deleted after 3 years due to their obsolescence unless consent is withdrawn prior.

The Data Controller informs the data subject that the recruitment process also includes that the Data Controller may view his or her publicly available social media profile and may enter data from there into its own database.

The Data Controller hereby undertakes to ensure the security of the data, to take technical and organisational measures and to establish procedural rules to ensure that the data recorded, stored or processed are protected and to prevent their destruction, unauthorised use or unauthorised alteration. The Data Controller also undertakes to require all third parties to whom it transfers or with whom it discloses data, on the basis of the consent of the Data Subjects, to comply with the requirement of data security.

The Data Controller shall ensure that the processed data cannot be accessed, published, transmitted, altered or deleted by unauthorised persons. The processed data may only be accessed by the Data Controller, its employees and the data processor(s) it may employ, and shall not be disclosed by the Data Controller to third parties who are not entitled to access the data.

The Data Controller shall make every reasonable effort to ensure that the data are not accidentally damaged or destroyed. The Data Controller shall impose the above commitment on its employees involved in the processing activities.

In connection with the processing, the data subject may request the following from the Data Controller, by means of an explicit request sent to him or her by e-mail or post.

i. to be informed about the processing of his/her personal data,

ii. rectification of his/her personal data; and

iii. deletion of his or her personal data, iv. the blocking (restriction) of his or her personal data.

In addition to the above, data subjects also have the following additional rights: - The right to information on the processing and the right to access the processed data (right of data access, Article 15 of GDPR).

  • The right to receive personal data concerning you in an aggregated, commonly used, machine-readable format and to request the transfer of these data to another controller (right to data portability, Article 20 of GDPR),

  • The right to object to processing in order to stop processing (right to object, Article 21 of GDPR),

  • The right to withdraw your consent at any time in order to stop processing based on your consent. Withdrawal of consent does not affect the lawfulness of the processing carried out prior to the withdrawal (right to withdraw consent, Article 7 of GDPR).

  • The right to lodge a complaint with a supervisory authority if you consider that the processing infringes the provisions of the General Data Protection Regulation (right to lodge a complaint with a supervisory authority, Article 77 of GDPR).


Hungarian National Authority for Data Protection and Freedom of Information (NAIH)

Address: Szilágyi Erzsébet fasor 22/C, H-1125 Budapest, Hungary

Tel. +36 1 3911 400


This Privacy Policy document is regulated by Hungarian law and by the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council (27 April 2016) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive (EC) No 95/46/EC.

bottom of page