MOMIJI-JUKU Bt. (hereinafter referred to as the “Data Controller”) is committed to protecting the personal data of its users, students, clients and partners. Respecting the right to informational self-determination is of particular importance to us. The Data Controller treats personal data confidentially and takes all necessary technical, organizational and security measures to guarantee the safety of such data.

The Data Controller acknowledges the contents of this legal notice as binding upon itself. All data processing related to its activities complies with the provisions of this policy as well as with the applicable national legislation and legal acts of the European Union.

The Data Controller’s privacy principles related to data processing are continuously available at www.jlpt.org.hu.

The Data Controller reserves the right to modify this notice at any time. Any changes will naturally be communicated to the public in due time.

If you have any questions regarding this notice, please contact us and our colleague will respond to your inquiry.

Below we present the data processing practices of the Data Controller.

• data processing: the performance of technical tasks related to data management operations, regardless of the method or tools used and regardless of where the processing takes place, provided the technical task is performed on the data;
• data processor: a natural or legal person or an organization without legal personality who processes data on behalf of the data controller on the basis of a contract concluded with the controller;
• data management: any operation performed on data, including collection, recording, storage, organization, modification, use, transmission, disclosure, deletion or destruction of data;
• data controller: the natural or legal person or organization that determines the purpose and means of the processing of personal data;
• data destruction: the complete physical destruction of paper-based data carriers containing personal data;
• data transfer: making data accessible to a specified third party;
• disclosure: making data accessible to anyone;
• data deletion: rendering data unrecognizable so that it can no longer be restored;
• data restriction: marking data with the aim of limiting its processing either permanently or for a specified period;
• data subject (you or the user): any identified or identifiable natural person whose personal data is processed;
• third party: any natural or legal person who is not the data subject, the data controller or the data processor;
• consent: the freely given and explicit indication of the data subject’s wishes by which they signify agreement to the processing of personal data relating to them;
• personal data: any information relating to an identified or identifiable natural person;
• objection: a statement by the data subject objecting to the processing of their personal data.

• Name: MOMIJI-JUKU Bt.
• Registered office: 1067 Budapest, Podmaniczky utca 29., 1st floor, door 5
• Company registration number: 01-06-778344
• Registering authority: Metropolitan Court as Court of Registration
• Tax number: 22521064-8042-212-01
• Phone: +36 20 313 9200
• E-mail: info@jlpt.org.hu
• Hosting provider: Kismester Bt.

The Data Controller accepts complaints, comments and requests regarding personal data processing exclusively at the above e-mail address.

The Data Controller processes personal data primarily based on voluntary consent. In certain cases, the processing, storage or transfer of certain data may be required by law, about which we will inform our users separately.

Applicable Legislation

• Regulation (EU) 2016/679 of the European Parliament and of the Council (General Data Protection Regulation – GDPR)
• Act V of 2013 on the Hungarian Civil Code
• Act LXXVII of 2013 on Adult Education
• Act CXII of 2011 on Informational Self-Determination and Freedom of Information
• Act XLVIII of 2008 on the Basic Requirements and Certain Restrictions of Commercial Advertising Activities
• Act CVIII of 2001 on Electronic Commerce Services

3.1 Website Visitor Data

• Website: www.jlpt.org.hu
• Purpose of processing: recording visitor data to ensure the proper functioning of the service and prevent misuse.
• Legal basis: consent of the data subject and Section 13/A (3) of Act CVIII of 2001.
• Data processed: date and time of visit, visited pages, operating system and browser type, IP address.
• Duration of storage: 1 year from the date of visit.

3.2 User Database – Online Registration

To use the online registration service, users must provide personal data.

• Purpose: registration of applicants for the JLPT exam and communication with applicants.
• Legal basis: consent of the data subject.
• Data processed: surname, given name, date of birth, address, email address, phone number, language level, language learning experience, photograph.
• Storage duration: 1 year from the date of registration.

3.3 Technical Data

The Data Controller selects and operates IT tools used in providing the service in such a way that processed data:

• is accessible to authorized persons;
• remains authentic and verifiable;
• maintains data integrity;
• is protected against unauthorized access.

3.4 Cookies

In order to provide personalized services, the website may place small data packages called cookies on the user’s device.

Cookies help:

• collect information about visitors and their devices;
• store user preferences;
• improve website usability;
• provide a better user experience.

Personal data is primarily accessible only to the Data Controller and its internal staff.

An exception applies to exam-related data which may be transferred to authorized representatives of the Japan Foundation for the purpose of administering the JLPT examination.

The Data Controller does not publish personal data and uses it only for the purposes described in this policy.

According to the GDPR, the Data Controller is not required to appoint a Data Protection Officer.

Data subjects may request information about the processing of their personal data and may request correction or deletion of such data, except where processing is required by law.

5.1 Right to Information

The Data Controller shall provide all information related to personal data processing in a concise, transparent and easily accessible format in accordance with Articles 13–14 of the GDPR.

5.2 Right of Access

The data subject has the right to obtain confirmation as to whether personal data concerning them is being processed and to access that data.

5.3 Right to Rectification

The data subject may request correction of inaccurate personal data and completion of incomplete data.

5.4 Right to Erasure

The data subject may request deletion of personal data without undue delay where the legal conditions are met.

5.5 Right to Restriction of Processing

The data subject may request restriction of processing under the conditions specified in the GDPR.

5.6 Right to Data Portability

The data subject has the right to receive personal data in a structured, commonly used and machine-readable format.

5.7 Right to Object

The data subject may object at any time to the processing of personal data based on legitimate interests.

5.8 Automated Decision Making

The data subject has the right not to be subject to decisions based solely on automated processing.

5.9 Right to Withdraw Consent

The data subject may withdraw consent at any time.

5.10 Right to Legal Remedy

If the data subject believes that their rights have been violated, they may initiate legal proceedings.

5.11 Data Protection Authority

Information about data processing not listed in this notice will be provided at the time the data is collected.

Authorities such as courts, prosecutors, investigative authorities, administrative authorities and the Hungarian National Bank may request data from the Data Controller in accordance with applicable laws.

The Data Controller will provide personal data only to the extent necessary to fulfill the purpose of such requests.