1. General Terms and Conditions

If you are looking for rules regarding the use of the Apps developed by us and available on the Atlassian marketplace, you may find them at the following page:

• In the first part of our terms and conditions, you can find the general provisions on the use of each META-INF App and the general terms of providing product support during the term of their is, which apply to all deployments (server, DC and cloud), as well as our commitments and warranties, the provisions on the right to use granted by us, and the procedures for any disputes, the governing law and the designation of the competent court. It is important to note that the terms and conditions governing the use of our Apps are subject to continuous review and may be subject to change, but in such case, we will inform you of any changes and amendments in a timely manner, in accordance with our commitment undertaken in Clause 19.8 of the Terms and Conditions. The changes and amendments are never retroactive.

• Annex no. 1. to our general terms and conditions contains the special provisions for cloud deployment that are differing from the general provisions.

• Annex no. 2. to our general terms and conditions contains the special provisions for server and DC deployments that are differing from the general provisions.

2. GTC on providing product support

If you are already using one of our Apps, you may be entitled to product support under our related terms and conditions. You can find the general terms and conditions of eligibility for product support in section 3.1 of our general terms and conditions for product support services

where you can also find the information about how and when we fulfil our obligations during product support.

• After the introductory sections of our terms and conditions for the product support service (Chapters 1 and 2), Chapter 3 contains information regarding which apps we provide our service for, while Chapter 4 tells you exactly what our product support service includes and what services we cannot provide to you within the framework of the service. It also contains a detailed description of our obligations to you and yours to us (Chapter 5), and our commitment setting out the detailed limits of our liability (Chapter 6) and our confidentiality undertaking (Chapter 7).

• The final clauses of the terms and conditions include our general contractual provisions, such as the general provisions on data protection and privacy in Chapter 8 and the rules on termination of the GTC in Chapter 9. Please note that we have the right to unilaterally change and amend the terms of this document at any time, that is never retroactive in effect and about which we will inform you in due time before they enter into force.

• Chapter 10 contains the contact details, while Chapter 11 contains the provisions on governing law, jurisdiction and other provisions of general nature.

3. DPA - Data Processing Addendum

If you use one of the META-INF Apps developed by us, under applicable laws, in particular the GDPR we are considered to be partly a data controller and partly a data processor in relation to the personal data you provide to us. For the data in relation to which we shall be considered as data controller, the detailed rules are set out in our Privacy Policy:

Where we are considered as data processor in relation to data provided by you and for which the data controller is the legal entity who has authorised each user to use the META-INF App, you may find the rules on our obligations and commitments in the following document:

• After the general definitions contained in the first part of our DPA, it sets out the purpose of the DPA and the general provisions on data processing. In Chapters 4, 5 and 10, you will find the rights (instruction, access, inspection) that you have as a data controller in relation to our company as the data processor. Based on these rights as a data controller, you have the right to review our processing activities, and you may also have certain limited rights of instruction, which you can exercise in writing. Chapter 6 sets out the detailed rules on what obligations our Company as a data processor has towards you as a data controller and what rights we have in relation to the processing.

• We undertake not to transfer, duplicate or disclose your personal data for any other purpose than the fulfillment of our obligation and to not transfer or disclose them to any third party or public authority without your prior written consent. Chapter7 of the DPA sets out our confidentiality commitments, while Chapter 8 explains the technical and organisational measures we have taken to protect the security of your data.

• In Chapter 11 you can find our commitment that we will only use sub-processors with your prior written consent and with whom we have entered into a contract containing at least the same obligations as those we have entered and also that with our existing sub-processors we have such agreement as the data processing agreement we use in the relationship with you. Chapter 12 of the sub-processor agreement sets out how the data will be deleted in the event of termination of the contract and the time limit for deletion, while Chapters 13 and 14 contain the final provisions, in particular, governing law and jurisdiction

4. Privacy Policy

We process several data in the course of providing our services, therefore the aim of the Privacy Policy is to explain the purposes for which we process data, the data we process in relation to each purpose, the legal ground for each purpose, and the term for which we process the data. The document also contains a detailed description of the rights of each data controller in relation to the data we process, and where and to what forum you can address your questions or complaints.

• Chapters 1-3 of our Privacy Policy provide you with general definitions and a description of the cases in which we process data, The cases in which data is processed and the purposes of the processing and its duration are explained in Chapter 4 of our Privacy Policy.

• Chapter 4 of our Privacy Policy contains a detailed description of what data we process, for what purposes and for how long we process them.

• The legal ground for our processing of data is divided into two distinct categories. In the first case, we process the data of individual data subjects for some reason (performance of a contract, our legitimate interest, compliance with our legal obligations), the processing of which is not based on the data subject’s consent. The other case is where we process individual data solely on the basis of the data subject's consent.

• We process your data on the basis of consent if you subscribe to our newsletter in any way (Section IV.1.3) or apply for one of our vacant positions (Section IV.1.5). We will also process your data on the basis of your consent if you submit an application for granting support to a non-profit organisation (Section IV.1.7). Last but not least, we may also send you any communication on the basis of your consent only if you request educational or marketing materials from us (Section IV.1.9.), or if you attend (Sections IV.3.3.1., IV.3.3.3.) to one of our events or give a presentation there as a speaker (Section IV.3.3.2.).

• In cases not covered by the above paragraph, where we may process your data, it is partly justified by the legitimate interest of our Company or because without processing certain data for a shorter period of time, we would not be able to fulfil our obligations under the contract.

• To ensure our legitimate interest, we process your IP address when you browse our website (Section IV.1.1) or use the login interface of one of our cloud applications. On the same legal ground we also process the fact and date of reading our e-mail messages or if you have requested an offer from us (Section IV.1.2) or if you have subscribed to our newsletter at our events (Section IV.1.3.1). We process your data ont he grounds of our legitimate interests if you have downloaded our products (Section IV.1.3.2.) and as a result we send you useful information about our products, or if we have to sned you an invoice (Sections IV.1.4.1. and IV.1.4.2.). To protect our legitimate interests, we process your data in the event that we successfully complete the application process for our open positions (Section IV.1.5.). Finally, if a contractual relationship has been established between us, we will also process your data for the purposes of maintaining the contractual relationship based on our legitimate interests (Section IV.1.6.).

• Data processing where the legal ground is the performance of a contract, happens following a request for offer (Section IV.1.2.), in the course of our customer service activities (Section IV.I.8.), when sending of educational material (Section IV.1.9.), in connection with license sales (Section IV.2.2.). Contractual processing is also carried out when we carry out consultancy or other support activities not related to the programmes developped by us (Section IV.3.1.). We process data for and on the basis of the performance of a contract between our company and an individual user also when you attend one of our events (Section IV.3.3.1.).

• Finally, a specific form of our data processing is when we are legally obliged to do so. This currently arises in connection with our contractual partners when we have to issue an invoice to you as an individual (Section IV.1.4.2.). The scope of the data processed in such cases and the duration of our processing are set out in Section IV.1.4.

• Following the detailed purposes of the processing, Chapter 5 of our Privacy Policy explains what cookies are and why and for what purposes we use them, as well as a description of the cookie settings of each browser.

• Chapter 6 explains how you can withdraw your consent in cases when processing of data is based on your consent.

• In Chapter 7, you can find information on how and where we store the personal data you provide to us and the security measures we take to protect your data.

• Chapter 8 of our Privacy Policy explains in detail what rights you have in relation to the personal data we process and how you can exercise those rights against us.

• In relation to certain data, your data may be transferred to our contracted partners for processing, a list of these partners is set out in Chapter 9 of our Privacy Policy.

• Chapter 10 of the Privacy Notice describes which social networking plug-ins we use and where to find the privacy policies of these third-party service providers.

• In Chapter 11, we provide information about cases when it is our legal obligations to disclose data.

• Chapters 12 to 16 contain general provisions, including what your responsibilities are in relation to the data you provide (Chapter 12), how we handle data breaches (Chapter 13), and, in Chapter 14 it is detailed, why we do not have a Data Protection Officer. In Chapter 15, you will find information on how we can amend our privacy policy and, finally, Chapter 16 describes who you can contact if you have a general question or which authority is competent to investigate a data breach or where you can report the misuse of your personal data.

5. Imprint

In our Imprint you will find useful information about our website available at https://www.meta-inf.hu/en/imprint/. This information includes information that our Company is who operates the website and who provides us the hosting servers needed to operate the website.

6. Cookie Policy

The purpose of our Cookie Policy is to explain what cookies we use on our website and on the access pages of our cloud-based applications and what purposes are they used and for how long. On this page you will also find information about which cookies are set by which service providers.

7. GDPR Compliance Assessment

Under this link are the results of our voluntary internal supervisions we make on a quarterly basis, regarding that only authorised persons have access to the data we process in the course of our data processing activities and whether any unauthorised access has occurred during the period, resulting in a data breach within that term.