P
Parking Budapest - Midtown
Contact us

Privacy Policy

Last updated: 17 June 2026

This Privacy Policy explains how Parking Budapest - Midtown ("we", "us") processes personal data of users of the website parkingbudapest.com and of the parking facility at Holló utca 12–14, 1075 Budapest, Hungary. We process personal data in accordance with Regulation (EU) 2016/679 ("GDPR") and Hungarian Act CXII of 2011 on Informational Self-Determination and Freedom of Information.

1. Controller

The controller of your personal data is the operator of Parking Budapest - Midtown. For any privacy-related question or request, please contact us by e-mail through the address shown on the website.

2. What data we collect

  • Reservation data: name, e-mail address, phone number, vehicle licence plate, arrival/departure dates and times, reservation type and reservation number.
  • Payment data: we do not store full card details. Payment is processed by our payment service provider, which receives the data necessary to process the transaction and returns to us a transaction reference and status only.
  • Communications: the content of e-mails or messages you send us.
  • Technical data: IP address, browser type, device information, pages visited and basic analytics events, collected through strictly necessary and (where consent is given) analytics cookies.

3. Purposes and legal bases

  • Performing the parking contract (Art. 6(1)(b) GDPR): handling your reservation, allocating a space, sending confirmation and instructions, dealing with on-site access and customer support.
  • Complying with legal obligations (Art. 6(1)(c) GDPR): issuing invoices and keeping accounting records as required by Hungarian tax and accounting law.
  • Our legitimate interests (Art. 6(1)(f) GDPR): securing the website, preventing fraud and abuse, defending legal claims, and basic usage analytics.
  • Consent (Art. 6(1)(a) GDPR): non-essential cookies and any optional marketing communications. You may withdraw consent at any time without affecting the lawfulness of prior processing.

4. Retention

  • Reservation data is retained for the duration of the contract and for up to 5 years thereafter, in line with the general limitation period under the Hungarian Civil Code.
  • Invoicing data is retained for 8 years as required by Act C of 2000 on Accounting.
  • Support correspondence is retained for up to 2 years.
  • Cookie-based data is retained as set out in the cookie notice / browser settings.

5. Recipients & processors

We share personal data only with processors and recipients that are necessary for the Service:

  • Hosting and backend infrastructure providers (EU/EEA, or third countries under EU Standard Contractual Clauses).
  • E-mail delivery provider for transactional e-mails.
  • Payment service provider for processing payments.
  • Accountant and, where required, tax authorities.
  • Legal advisors and authorities where required by law.

Where data is transferred outside the EEA, we rely on adequacy decisions or appropriate safeguards such as Standard Contractual Clauses adopted by the European Commission.

6. Your rights under the GDPR

You have the right to:

  • access your personal data and obtain a copy of it;
  • request rectification of inaccurate or incomplete data;
  • request erasure ("right to be forgotten") where one of the GDPR grounds applies;
  • request restriction of processing;
  • data portability for data you provided to us under a contract or consent;
  • object to processing based on our legitimate interests;
  • withdraw consent at any time, where processing is based on consent.

To exercise these rights, please contact us by e-mail. We will respond within one month in accordance with Art. 12(3) GDPR.

7. Right to lodge a complaint

If you consider that our processing infringes the GDPR, you may lodge a complaint with the Hungarian Data Protection Authority:

Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH)
1055 Budapest, Falk Miksa utca 9–11.
Website: naih.hu

You may also lodge a complaint with the supervisory authority in your EU country of residence or place of the alleged infringement.

8. Cookies

The website uses strictly necessary cookies for session, security and basic functionality. Any analytics or marketing cookies are loaded only with your prior consent, which you can give or withdraw at any time via your browser settings or any in-site cookie controls.

9. Security

We apply appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or destruction, including TLS encryption in transit, access controls and regular backups.

10. Automated decision-making

We do not carry out automated decision-making, including profiling, that produces legal or similarly significant effects on you.

11. Changes to this policy

We may update this Privacy Policy from time to time. The current version is always available on this page with the "Last updated" date shown above.