Get in touch

ABUSE NOTIFICATION
SUPPORT

As a member of the OTP Group, HelloPay Zrt. operates an internal abuse reporting system (Reporting System) subject to the Act on Reporting (Act XXV of 2023).

The purpose of the Whistleblowing system is to provide Whistleblowers with the opportunity to report violations of the law or breaches of the OTP Group's Code of Ethics and the Whistleblowing Act. The Whistleblowing system allows for the reporting of information on illegal or suspected illegal acts or omissions or other abuses.

Can be notified

  • by email addressed to the Compliance Officer (HelloPay Zrt. - 1037 Budapest, Montevideo u. 10.)
  • by e-mail a bejelentes@hellopay.hu by e-mail to
  • in person during working hours (by appointment) at the Compliance Officer

Please note that the channels provided for receiving complaints or ethics notifications are not the same as HelloPay Zrt.'s customer service, if you wish to make a comment or complaint about a product/service, you can do so via the contact form on the HelloPay Zrt. website or by contacting the info@hellopay.hu e-mail address, or in person at the headquarters of HelloPay Zrt. (1037 Budapest, Montevideo u.10.) on working days from 10:00 to 18:00.

The rules of conduct that protect the interests of HelloPay Zrt. can be found in the OTP Group Code of Ethics and the OTP Group Partner Code of Ethics, which are available below:


Information related to the management of notifications:

 

Detailed rules on notifications:

  • HelloPay Zrt Ethical Abuse Reporting System Policy

 

DATA MANAGEMENT INFORMATION

about the ethics/breach of law of HelloPay Zrt.

 

The processing of personal data is subject to the EU Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: GDPR or General Data Protection Regulation), the EU Regulation on the right to information self-determination and freedom of information of 2011. CXII of 2023 (hereinafter referred to as the "Information Act") and Act XXV of 2023 on Complaints, Notifications of Public Interest and the Rules for Reporting Abuse (hereinafter referred to as the "Notifications Act").

HelloPay Zrt. operates a whistleblowing system for reporting possible violations of the values set out in the Code of Ethics and the violations referred to in the Whistleblowing Act.

HelloPay Zrt. (headquarters: 1037 Budapest, Montevideo u. 10., hereinafter referred to as HelloPay or the Company) shall ensure the lawfulness and purpose limitation of the processing of personal data processed by it. The purpose of this notice is to provide individuals (hereinafter collectively referred to as "Data Subjects") who make a report and are affected by the report with full information on the processing of their personal data in the course of the abuse reporting procedure set out in the Ethics, Infringement Reporting System Administrative Instructions.

The Company reserves the right to amend this Prospectus and will notify you of any such amendment by publishing the amended Prospectus on its website.


  • NAME AND CONTACT DETAILS OF THE CONTROLLER

Name of data controller: HelloPay Zrt. 1037 Budapest, Montevideo u. 10.
E-mail address: bejelentes@hellopay.hu

Website: www.hellopay.hu


  • THE CHARACTERISTICS OF THE PROCESSING UNDER THIS PRIVACY NOTICE ARE SUMMARISED IN THE FOLLOWING TABLE

 

The Company may also collect the Data Subject's personal data from the following sources, in addition to the data provided by the Data Subject, in particular the Data Subject and in particular the Data Subject's Data Subject:

  1. from public registers containing data relating to the Data Subject or, where a right or legitimate interest is demonstrated, from registers accessible to any person;
  2. from the registration systems available to the Bank containing the data necessary for the investigation of the relevant Notification.

Specific data in the ethics, breach notification system1 will not be treated.

 

PURPOSE OF PROCESSING

LEGAL BASIS FOR PROCESSING

DATA SUBJECTS AND DATA PROCESSED

DATA

DURATION OF STORAGE

The Company processes the Data Subject's personal data for the purposes of operating the Ethics, Breach Notification System and, in this context, for the purposes of receiving and investigating reports of actual or suspected ethical misconduct and breaches and taking the necessary measures.

The legal basis for processing is Article 6(1)(c) of the GDPR according to fulfil a legal obligation to which the controller is subject, and 

Section 18(1) of the Notifications Act.

The Company processes the following main categories of personal data of the notifier and the individuals concerned by the notification:

  1. the data provided by the notifier in the Notification, in particular:
    • data necessary for identification,
    • the data necessary for contacting,
    • other facts and circumstances provided in the Notification which are relevant to the investigation of the Notification and which relate to or may relate to the Notifier, the person concerned by the Notification;
  2. a photograph or image; and
  3. by the notifier at the call centre in the case of an oral report

by the Company recorded sound.

A Bank with the abuse notification, and the upon notification the data relating to the investigation carried out and the measures taken shall be kept for five years from the date of the last investigative act or measure and shall be deleted thereafter.

 

  1. DETAILS OF THE DATA PROTECTION OFFICER Data Protection Officer name: Bea Csabai
  2. Postal address: HelloPay Zrt. 1037 Budapest, Montevideo u. 10.

Your email address: dpo@hellopay.hu


  • THE SOURCE OF THE PERSONAL DATA

The Company may also collect the Data Subject's personal data from the following sources, in addition to the data provided by the Data Subject, in particular the notifier:

  1. from public registers containing data relating to the Data Subject or, where a right or legitimate interest is demonstrated, from registers accessible to any person;
  2. from the record-keeping systems available to the Company containing the data necessary to investigate the relevant Notification.

 

Specific data in the ethics, breach notification system will not be treated.


  • THE RECIPIENTS OF THE PERSONAL DATA

The recipient is a natural or legal person, public authority, agency or any other body to whom or with which the personal data are disclosed, whether or not a third party.

The Company may, on a case-by-case basis, transfer personal data necessary for the investigation of a notification under the Whistleblower Protection Act, if a whistleblower protection lawyer is involved in the investigation of the notification.

OTP Bank Plc shall transmit the notifications concerning its first line managers, senior managers and senior executives and the personal data concerning the Data Subject provided in the notification to the company belonging to the OTP Group established in the European Union and in third countries for the purpose of investigating the notification. The legal basis for the transfer of data is the legitimate interest of the Bank or of this company belonging to the OTP Group in the protection of its ethical business operations and ethical values. A list of these domestic companies belonging to the OTP Group is available here: https://www.otpbank.hu/portal/hu/Rolunk/OTPCsoport.

A transfer to another country may take place if the Company is required to do so by law or if the Company has a legitimate interest in doing so as a result of the balancing of interests test. If the recipient of the transfer is a third country, one of the safeguards in Chapter V of the GDPR must be applied. The transfer of data processed under the internal whistleblowing system under the Whistleblowing Act to a third country or an international organisation may only take place if the recipient of the transfer has given a legal undertaking to comply with the rules on whistleblowing set out in this Act and subject to the provisions on the protection of personal data.


  • ADATABILITY

Our company's computer systems and other data storage locations are located at the headquarters and on servers leased by the data processor. Our Company selects and operates the IT tools used to process personal data in the course of providing the service in such a way that the data processed:

  • accessible to authorised persons (availability);
  • authenticity and verification (authenticity of processing);
  • can be verified to be unchanged (data integrity);
  • be protected against unauthorised access (data confidentiality).

We take particular care to ensure data security and to put in place the technical and organisational measures and procedural rules necessary to enforce the guarantees under the General Data Protection Regulation. In particular, we take appropriate measures to protect the data against unauthorised access, alteration, disclosure, disclosure, erasure or destruction, accidental destruction or accidental damage, and against inaccessibility resulting from changes in the technology used.

Our company and our partners' IT systems and networks are protected against computer fraud, computer viruses, computer intrusions and denial of service attacks. The operator ensures security through both server-level and application-level protection procedures. Daily data backup is provided. In order to avoid data breaches, our company takes all possible measures to ensure that a data breach is not

in the event of an incident, we will take immediate action to minimise the risks and repair the damage, in accordance with our incident management policy.


  • THE RIGHTS OF THE DATA SUBJECT WITH REGARD TO DATA PROCESSING

The person concerned - the Based on the Privacy Notice - may request the controller to access, rectify, restrict or delete personal data concerning him or her, withdraw consent or object to the processing of his or her data.

The data subject may lodge a complaint with the controller at dpo@hellopay.hu in the event of a breach of the rights set out in the Privacy Notice.

The Company will comply with the data subject's request to exercise his or her rights in accordance with the Privacy Notice without undue delay, but no later than one month from the date of receipt of the request. Where necessary, taking into account the complexity of the request and the number of requests received, this time limit may be extended by a further two months. The Company shall inform the person concerned of the extension of the time limit, stating the reasons for the delay, within one month of receipt of the request.

If the data subject has made the request by electronic means, the reply shall also be provided by electronic means, where possible, unless the data subject requests it in another form expressly indicated in the request.

  • RIGHT OF ACCESS

The data subject shall have the right to obtain from the Company, through the contact details provided in this notice, information as to whether or not his or her personal data are being processed and, if such processing is taking place, the right to be informed that the Company:

  • what personal data, on what legal basis, for what purposes and for how long it is processed;
  • to whom, when, under what law, to which personal data, to whom you have given access or to whom you have transferred your personal data; from what source your personal data originate;
  • whether it uses automated decision-making and, if so, whether it has the right to know the logic behind it, including profiling.

The Company shall provide a copy of the personal data subject to processing free of charge upon the data subject's request for the first time, and thereafter, in accordance with its Privacy Notice, if the data subject's request is manifestly unfounded or excessive, in particular because of its repetitive nature, it may charge a reasonable fee based on administrative costs or refuse to act on the request.

In order to meet data security requirements and to protect the rights of the data subject, the Company is obliged to verify the identity of the data subject and the person who wishes to exercise his or her right of access, and to this end, the provision of information, access to data and the issue of copies of data are subject to the identification of the data subject.

  • RIGHT TO RECTIFICATION

The data subject may request in writing, via the contact details provided in this notice, that the Company amend or correct any of his or her personal data, provided that he or she can credibly demonstrate the accuracy of the corrected data. If the request is sent to the Company by electronic means, the Company will also send a reply by electronic means. If you request a reply by any other means, please indicate this in the request.

  • THE RIGHT TO RESTRICTION (BLOCKING) OF PROCESSING

The data subject may request, through the contact details provided in this notice, that the Company restricts the processing of his or her personal data (by clearly indicating the restriction of processing and ensuring that it is kept separate from other data), if:

  • disputes the accuracy of your personal data (in which case the Company will limit the processing for the period of time it takes to verify the accuracy of the personal data);
  • considers the processing to be unlawful, but the data subject opposes the erasure of the data and instead requests the restriction of their use;
  • the controller no longer needs the personal data for the purposes of processing, but the data subject requires them for the establishment, exercise or defence of legal claims; or
  • the data subject has objected to the processing (in which case the restriction applies for the period until it is established whether the legitimate grounds of the controller override those of the data subject).

  • DATA PORTABILITY

You have the right to receive personal data concerning you and provided by you to the Company in a structured, commonly used, machine-readable format and the right to transmit such data to another controller without hindrance to the Controller, if:

  • the processing is based on consent or a contract; and
  • the processing is carried out by automated means.

  • THE RIGHT TO ERASURE ("RIGHT TO BE FORGOTTEN")

The data subject may request the erasure of his or her personal data in writing to the Company using the contact details provided in this notice.

The Company is obliged to delete personal data concerning you without undue delay if, among others, one of the following grounds applies:

  • the personal data are no longer necessary for the purposes for which they were collected or otherwise processed
  • You withdraw your consent and there is no other legal basis for the processing;
  • the legal basis for the processing is a legitimate interest, public interest or public authority and there is no overriding legitimate ground for the processing; or
  • if the processing of personal data is carried out for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such purposes;
  • the personal data have been unlawfully processed.


  • RIGHT TO A REMEDY

If the data subject considers that the Company has violated the applicable data protection rules in the processing of his or her personal data, he or she may lodge a complaint with the National Authority for Data Protection and Freedom of Information (address: 1055 Budapest, Falk Miksa utca 9-11; postal address: 1363 Budapest, PO Box 9; telephone: +36-1-391-1400; e-mail: ugyfelszolgalat@naih.hu). The data subject also has the right to lodge a complaint with another supervisory authority, in particular the supervisory authority established in the EU Member State of his or her habitual residence.

The controller can also be sued in court for breach of the rules on the processing of personal data. The data subject may bring the action before the Metropolitan Court or the court of his or her place of residence. The contact details of the courts in Hungary can be found at the following link: http://birosag.hu/torvenyszekek. If the person concerned has his or her habitual residence in another Member State of the European Union, the action may be brought before the competent court in the Member State of habitual residence.

Factsheet HelloPay Zrt. ethics/misconduct reporting system

 

HelloPay Zrt. (hereinafter referred to as HelloPay or the Company) operates a Reporting System pursuant to Act XXV of 2023 on Complaints, Public Interest Reports and Rules for Reporting Abuse (hereinafter referred to as the Reporting Act).


  • What you can report on

Anyone can report information about an unlawful or suspected unlawful act or omission or other misconduct, or a possible violation of the values set out in the OTP Group Code of Ethics, to the Reporting System, even anonymously.

  • Reporting channels

    1. in writing by letter addressed to your Compliance Officer (HelloPay zrt. - 1037 Budapest, Montvideo u. 10.)

 

  1. in writing by e-mail to bejelentes@hellopay.hu by e-mail to

 

  1. in person during working hours (by prior arrangement) with the Compliance Officer

 

HelloPay Zrt. will record the notification made through the above channels in a permanent and retrievable form after being informed, in accordance with the regulations on the protection of personal data. If the notifier makes the notification in person, HelloPay Zrt. will record it in writing and - with the possibility of verification, correction and acceptance by signature - will provide the notifier with a duplicate copy.


  • Data protection

Within the framework of the Notification System:

 

  1. to the Notifier,

 

  1. the person whose conduct or omission gave rise to the notification, and

 

  1. to the person who has substantial information on the subject matter of the notification

may have,

 

personal data that are essential for the investigation of the Report may be processed solely for the purposes of investigating the Report and remedying or stopping the conduct that is the subject of the Report.

 

Any personal data processed within the framework of the Notification System that goes beyond the above shall be deleted without delay.

The personal data of the notifier may only be disclosed to the body competent to conduct the procedure initiated on the basis of the notification, if this body is entitled to process the data by law or if the notifier has consented to the disclosure of the data. The personal data of the notifier shall not be disclosed without his/her consent.

 

If it has become apparent that the Whistleblower has, in bad faith, provided false data or information and

 

  • where there are indications that a criminal offence or irregularity has been committed, the personal data must be disclosed to the authority or person responsible for the proceedings; or

 

  • there are reasonable grounds for believing that he or she has caused unlawful damage or other legal harm to another person, his or her personal data must be disclosed at the request of the authority or person entitled to initiate or conduct the proceedings.

 

For information on the rights and remedies relating to data processing, please consult the In the Privacy Notice for detailed information.


  • Investigation of the notification

From the date of receipt of a written Notification in the Notification System, the Bank shall. send you confirmation of the notification within seven days to the notifier, as well as general information on the procedural and data management rules under the Notification Act. The Company shall, within the shortest period of time permitted by the circumstances, but not later than the date of receipt of the Notification, provide the information contained in the Notification to the investigate within thirty days. The thirty-day time limit may be extended in particularly justified cases, subject to simultaneous notification to the notifier. In this case, the notifier shall be informed of the expected date of the investigation and the reasons for the extension. The time limit for the examination of the notification shall not exceed three months in the case of an extension.

 

The investigation of a Notification may be waived in the following cases:

 

  1. a Notification is a repeated notification by the same applicant with the same content as the previous notification;

 

  1. the whistleblower made the report after six months from the date on which he became aware of the act or omission complained of;

 

  1. the Notification is made by an unidentified (unavailable) Notifier and the Notification is incomplete to the extent that no result can be expected from its examination;

 

  1. the harm to the public interest or to an overriding private interest would not be proportionate to the restriction of the rights of the natural or legal person concerned by the Notification resulting from the investigation of the Notification;

 

  1. the notification is still so incomplete after the receipt of the deficiency report that no result can be expected from its examination;

 

  1. the Notifier has withdrawn the Notification

 

During the investigation of the Notification, the Company will keep in contact with the Notifier, in the framework of which it may invite the Notifier to supplement or clarify the Notification, to clarify the facts and to provide additional information.

 

The Company shall inform the notifying party in writing of the investigation or non-investigation of the notification and the reasons for the non-investigation or the result of the investigation of the notification. Written information may be waived if the Bank has informed the notifier orally, who has taken note of the information.

 

If the person concerned (the notifier or the person concerned by the notification) does not agree with the outcome of the investigation (first instance procedure) of the notification, the tWithin 15 days of receipt of the information, you can contact the Ethics Committee in writing through the Reporting channels.

 

For issues not covered in this policy, please refer to the HelloPay Zrt Ethical Abuse Reporting System Policy.


  • Protection of whistleblowers:

For information on the rules on the protection of whistleblowers, see Information on the protection of whistleblowers

has.




  • HelloPay Zrt.

    Code of Conduct for the operation of the ethics/misconduct reporting system


    • Introduction

    Document title: The HelloPay Zrt. ethics/breach of law reporting system

    Scope: These Rules shall enter into force on 15.04.2024. 

    Review: Mandatory review before 15.04.2025 

    Responsible for review: change management/compliance officer


    CREATED BY:

    		   

    Name

    Position

    Date

    Signature (if printing)

    Bea Csabai

    Change Management Officer

    2024.04.19

    		 

    CONTROLLED:

    		   

    Name

    Position

    Date

    Signature (if printing)

    Dr. Orsolya Füredi

    OTP Mobil Kft. Compliance officer

    		  

    TRACKING CHANGE

    Version

    Date

    Exhibitor

    Change / Comment

        
     

    FINE:

    		   

    Name

    Position

    Date

    Signature (if printing)

    Norbert Varga

    CEO

    2024.04.19.

    		 

    The document is only valid if signed and printed!

    The contents of this document may be copied in whole or in part for any purpose only with the prior written permission of HelloPay Zrt.

    All rights reserved.

    1. Introduction 2
    2. Introductory provisions 4

    III. General provisions 5

    III.1.Scope of the regulation 5

    III.2.Principles 5

    III.3.Interpretative provisions 7

    1. Detailed provisions 10

    IV.1.Reporting channels 10

    IV.2.A Information to the notifier 12

    IV.3.Not to examine the notification 13

    IV.4.Referral of a non-ethical complaint for action 14

    IV.5.Initiation of the procedure 15

    IV.6.Ensuring the confidentiality of the procedure 15

    IV.7.Exclusion from ethics investigation: 16

    IV.8.Conduct of the proceedings at first instance 16

    IV.8.1.Initiation of the investigation 16

    IV.8.2. Informing the notifier of the outcome of the preliminary examination of the notification 17

    IV.8.3. Making up for shortfalls 17

    IV.8.4. Information to the person concerned by the Notification 17

    IV.8.5. Deadline: 18

    IV.8.6. Test tools 18

    IV.8.7. Extension of the study 19

    IV.8.8. Inspection report 20

    IV.8.9. Closure of the first instance investigation: 20

    IV.9. Second instance procedure 21

    IV.10. Register of Notifications 22

    IV.11. Investigation of Reports concerning Compliance Officers 22

    IV.12. Investigation of Reports concerning the Company 22

    IV.13. Notifications 23

    IV.14. Procedure in the event of an Ethics Complaint 23

    1. FINAL PROVISIONS 23
    2. APPENDICES 24

    INTRODUCTORY provisions


    Pursuant to Act XXV of 2023 on Complaints, Whistleblowing and the Rules for Reporting Abuse (hereinafter: the Reporting Act), the employer specified therein must operate an internal abuse reporting system. Recommendation No. 12/2022 (VIII.11.) of the Magyar Nemzeti Bank on the establishment and operation of internal lines of defence and on the management and control functions of financial organisations also requires financial organisations to operate procedures to ensure that concerns and problems raised by employees are brought to the attention of the management and supervisory bodies.

    Anyone can report a possible violation of the values set out in the Code of Ethics of HelloPay Zrt. (hereinafter "HelloPay" or the "Company"), even anonymously. 

    The purpose of this Instruction of the Chief Executive Officer (hereinafter referred to as the "Rules" or "Rules" or "Instruction") is to set out the rules for the operation of a whistleblowing system that is both compliant with the requirements of the law and capable of reporting possible violations of the values set out in the Code of Ethics (hereinafter collectively referred to as "Reports"), as well as the rules governing the procedure for the Report and the responsibilities and powers of the departments and persons involved in the investigation of the Report. 

    The Instructions are a document to be implemented at group level, and the transposition of changes is mandatory for those involved in their implementation, provided that their importance justifies it and the relevant national legislation does not contain any provision contrary to this regulation.

    1. On 24 July 2011, the Whistleblowing Act entered into force, fulfilling Hungary's obligation to implement Directive 2019/1937/EU on the protection of persons who report breaches of EU law. 

    • General provisions

    • Scope of the regulation

    The personal scope of this Instruction extends to the employees, agents and representatives of HelloPay Zrt. To register, or otherwise involved in the procedure.

    The scope of the Instruction covers the procedure to be followed in the case of reports of wrongdoing (including reports to the internal whistleblowing system under the Whistleblowing Act) and ethics complaints (hereinafter "Whistleblowing Procedure" or "Procedure").

    • Principles

    Regulatory documents referred to in the Instructions:

    1. Notifications received by HelloPay Zrt. 
    2. Entry into force of the Code of Ethics (hereinafter: Code of Ethics)
    3. HelloPay zrt. Privacy Policy 

    The legislation referred to in the Instruction:

    1. Act V of 2013 on the Civil Code (hereinafter: Civil Code)
    2. Act XXV of 2023 on Complaints and Notifications of Public Interest and on the Rules for the Notification of Abuses (hereinafter: the Act on Notifications)
    3. Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (hereinafter: Infotv.)
    4. Act I of 2012 on the Labour Code (hereinafter: Labour Code Act I of 2012)
    5. Regulation (EU) No 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: General Data Protection Regulation)
    6. Directive 2019/1937/EU of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report infringements of EU law
    7. Recommendation No. 12/2022 (VIII.11.) of the Magyar Nemzeti Bank on the establishment and operation of internal lines of defence, the management and control functions of financial institutions

     Principles for the management of Notifications:

    1. The principle of a fair trial: All participants in whistleblowing procedures must act independently, fairly, impartially and in accordance with the Code of Ethics. In accordance with the requirement of due process, the person making a complaint is guaranteed the opportunity to express his or her views on the complaint, including through legal representation, and to provide evidence in support of those views.
    2. Cooperation: In the course of the procedure, the participants shall communicate with each other and with others in a manner consistent with the style expected in formal professional relations, and shall act in good faith, fairly and cooperatively. In the conduct of investigations, all staff and other persons involved in the proceedings shall cooperate in order to obtain information and assist the proceedings.
    3. Confidentiality: All information and documents prepared or provided in the course of the procedure are confidential in order to protect the personal data, reputation and business information of the data subjects. All participants in matters covered by a notification must treat as confidential all information relating to the content of the notification and to the notifying party and to any person whose conduct or omission gave rise to the notification or who may have material information about the matters contained in the notification. 
    4. Anonymity: The Notifier may also make his/her Notification anonymously. In the procedure The identity of the notifier shall not be disclosed beyond the staff members who are competent and authorised to receive or follow up notifications, without the express consent of the notifier. This shall also apply to any other information from which the identity of the notifier can be deduced, directly or indirectly. The personal data of the Reporting Person who reveals his or her identity and of the person concerned by the Reporting shall not be disclosed to any person other than those authorised to do so. Pending the conclusion of the investigation or the initiation of formal charges as a result of the investigation, the persons investigating the report may, in addition to informing the person concerned, share information about the content of the report and the person concerned with other departments or staff of the employer to the extent strictly necessary for the conduct of the investigation.
    5. Free proof: The Investigators involved in the procedure are free to choose the method of proof and to assess the available evidence according to their own free judgment. 
    6. Protecting the whistleblower: The whistleblower is protected against discrimination and unfair treatment for making a whistleblowing complaint. A whistleblower cannot be held liable for lawfully making a notification if the whistleblower had reasonable grounds to believe that the notification was necessary to disclose the circumstances to which the notification relates. The safeguards to protect the notifier are set out in Chapter IV / Appendix [5].
    7. Prohibition of bad faith reporting: Reporting in bad faith also constitutes a violation of the Company's ethical principles and may have legal consequences.
    8. Avoiding parallel proceedings: The proceedings described in this Instruction may not be initiated until the conclusion of any pending official or judicial proceedings on the same or related matters, and any pending proceedings shall be suspended until the official or judicial proceedings have been finally terminated. 
    • Interpretative provisions

    Employee: a person employed by or having an employment relationship with the Company.

    Identifiable natural person: a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person.

    Notification: a report of a breach of the Code of Ethics and any report of a breach (including a report of an unlawful or suspected unlawful act or omission or other abuse under the Whistleblowing Act (hereinafter "a report")) 

    Notification system: a system for receiving, receiving, recording, managing and monitoring notifications, with an independent and autonomous channel and procedure. 

    Whistleblowing lawyer: Under the Whistleblowing Act, a whistleblower protection lawyer or other external organisation can be contracted to operate and investigate the internal whistleblowing system.

    Log in to: person making the notification, in particular 

    • the employed person, the employed person whose employment relationship with the employer has been terminated, the person seeking to enter into an employment relationship with the employer in respect of whom the procedure for the establishment of such a relationship has been started, and 
    • the self-employed person, the sole proprietor, the sole proprietorship, if it has a contractual relationship with the employer,
    • a person with an ownership interest in the employer and a member of the employer's administrative, management or supervisory body (including a non-executive member)
    • a contractor, subcontractor, supplier or person under the supervision and control of a contractor, subcontractor, supplier or person under the supervision and control of a trustee who has started the procedure for establishing a contractual relationship with the employer, or who is or has been in a contractual relationship with the employer
    • trainees and volunteers working for the employer
    • a person who wishes to enter into a contractual relationship with the employer and in respect of whom the procedure for the establishment of such a relationship or contractual relationship has been started, and
    • the person whose contractual relationship with the employer has ended. 

    Person concerned by the notification: who has been the subject of a notification or who, in the course of the investigation of the notification, becomes concerned by the notified conduct.

    compliance officer: HelloPay Zrt.'s regulatory compliance officer

    Notification concerning a Compliance Officer: a notification involving a Compliance officer.

    Ethics notice: Report of a breach of the Code of Ethics.

    Ethical misconduct: a breach of the values set out in the Code of Ethics, conduct or omission contrary to the values set out in the Code of Ethics, which constitutes a breach of the rules of the Code of Ethics.

    Employment relationship: any legal relationship in which the employee performs an activity for and under the direction of the employer for remuneration or self-employment.

    Employment: who employs a natural person under an employment relationship.

    Employed by: a natural person who performs an activity for and under the direction of an employer in the context of an employment relationship for consideration or who performs an activity for his/her own account. 

    Infringement: any legal obligation or requirement and any actual or potential breach of the requirements of prudential legislation.

    Infringement report: the notification of a violation by an employee, officer or employee of HelloPay Zrt. or the Notifier. 

    Delegated to: for the purposes of compliance with the Code of Ethics, a principal means a representative, intermediary, consultant, agent, subcontractor and supplier, or any other company or natural person having a civil law relationship with the Company.

    Employment relationship: employment relationship, membership of a cooperative with an employment obligation, contract of agency and commission, relationship as a member of a management or supervisory board of a company and self-employment

    Personal data: any information relating to an identified or identifiable natural person (data subject).

    Customer complaint: A complaint is a request for redress for a violation of an individual right or interest, which is not subject to any other procedure, in particular judicial or administrative. 

    Executive officer: decisions relating to the management of the legal person which do not fall within the competence of the members or the founders may be taken by one or more managers or by a body of managers. In HelloPay Zrt, the CEO and his deputies are considered to be.

    Person in a managerial position: the Chief Executive Officer and his/her deputies, and the directors, managers of the Company with powers of directors.

    Examiner: the Company's Compliance Officer or an impartial staff member designated by them to record and/or investigate the Reports. Where appropriate, an employee from another area of the Company may be designated as an Investigator. 

    • Detailed provisions

    In accordance with the following provisions of the Instructions, HelloPay Zrt.

    1. develop and operate an independent and autonomous channel and procedures for reporting violations within the Company;
    2. has a procedure for receiving and following up reports of infringements.
    • Reporting channels

    Notifications may be oral or written.

    An oral announcement can be made:

    1. in person, during working hours (by appointment) at the Compliance Officer;

    The oral Notification must be recorded in a durable and retrievable form or in writing, after having been informed in accordance with the provisions on the protection of personal data, and must be provided to the Notifier in duplicate, with the possibility to verify, correct or accept it by signature. 

    A full and accurate record must be kept when the oral report is put in writing. 

    A written notification may be sent to:

    1. by letter addressed to the Compliance Officer (HelloPay Zrt. 1037, Budapest, Montevideo u. 10.)
    2. by e-mail to bejelentes@hellopay.hu to the following e-mail address.

    If the Notifier does not wish to make a Notification through one of the designated official channels, he/she must be informed of the possible ways to make a Notification.

    A customer report not received through the designated formal reporting channels, if it is deemed to be a full or partial notification under the Instructions, will be forwarded by the person authorised to make a decision on the complaint handling (the customer report handler) to the Compliance Officer for bejelentes@hellopay.hu to the following e-mail address.

    Whether or not all or part of a notification not received through the designated official notification channels constitutes a Notification under the Instructions is at the discretion of the Investigator.

    The Notification or the part of the Client Notification that is a Notification under these Instructions shall be recorded by the Examiner and the provisions applicable to the Notification under these Instructions shall apply to the Client Notification (or the part thereof).

    At the same time, the department from which the request was received will be informed of the decision.

    The Customer Service Department will respond to the complaint handling part of the customer's complaint within the 30-day deadline for notifications.

    In the case of a partial reclassification of the Notification, the Customer Service or the department from which the request was received will inform the Notifier that the part of the customer notification that qualifies as a Notification will be investigated by HelloPay Zrt. in the framework of an ethical, infringement notification procedure.

    If the customer report has been reclassified in its entirety, the Customer Service or the department from which the request was received will only inform the Reporting Party that the report will be investigated by HelloPay Zrt. in the framework of an ethical, infringement notification procedure.

    • Information to the notifier

    At the time of an Oral Notification, the attention of the notifier should be drawn to. 

    1. the Notice on data management in the context of the operation of the Ethics/ Whistleblowing system ([Appendix 4]);
    2. that you must declare that the circumstances of which you are aware are, or have reasonable grounds to believe are, true;
    3. the consequences of reporting in bad faith;
    4. the procedural rules governing the investigation of the Notification; 
    5. that your identity, if you provide the information necessary to establish it, will be treated confidentially at all stages of the investigation; 
    6. a legal person The notifier must provide its registered office and the name of its legal representative when making the notification; and
    7. if you wish to make a complaint about a product/service, the means of making a complaint.

    In the case of an oral Notification, if the notifier provides written contact details, the information notice for a written Notification will be sent to the notifier. 

    If the Report is a Report involving a Compliance Officer, the Investigator will immediately notify the Director of Operations of this fact and will forward the Report to the Director of Operations without recording the Report. In this case, the Director of Operations or his delegate shall ensure that the Report is recorded.

    The (anonymous) notifier shall be informed, where possible, that if the information provided by him/her is not sufficient/sufficient to investigate his/her notification or if the information indispensable for the initiation or effective conduct of the investigation cannot otherwise be obtained for any reason, the investigation may be closed without result. When recording the report, the Investigator of the report will ask the reporter to provide contact details, on condition of anonymity, in order to request further information and to inform the investigation closure.

    In the case of a written Notification, the Notifier will receive the information referred to in paragraph 45 in writing within 7 days of receipt of the Notification, if an address (postal or e-mail) is available. The sending of the information shall constitute confirmation that the notification has been made.

    • Not to examine the notification

    The report must include a description of the alleged ethical misconduct or violation, the evidence relating to the matter of which you are aware or have reasonable grounds to believe.

    The examination of a notification may be waived if

    1. a repeated Notification by the same Notifier with the same content as the previous Notification;
    2.  the whistleblower made the report after six months from the date on which he became aware of the act or omission complained of;
    3. the Notification is made by an unidentified (unavailable) Notifier and the Notification is incomplete to the extent that no result can be expected from its examination; 
    4.  the harm to the public interest or to an overriding private interest would not be proportionate to the restriction of the rights of the natural or legal person concerned by the notification resulting from the investigation of the notification; 
    5. the notification is still so incomplete after the receipt of the deficiency report that no result can be expected from its examination;
    6. the Notifier has withdrawn the Notification. 

    The Compliance Officer decides not to make a report and immediately informs the Reporting Party of the decision, stating the reasons. An investigation may be conducted despite a withdrawal if it is justified by the interests of the Company or by overriding private interests.

    • Non-ethical Referral of a complaint for action

    Provided that it does not jeopardise the statutory protection of the notifier and the fair and impartial investigation of the notification, and the notification 

    1. breach of an employment obligation, the Compliance Officer shall refer all or part of the Report to the Chief Operating Officer for investigation;  
    2. other specific contractual behaviour or constitutes a customer complaint, the Compliance Officer will pass the necessary information to the department managing the contract that is in breach of its provisions or to Customer Services for further action/investigation; 
    3. a specific breach of obligations laid down by law or internal rules (e.g. competition law, health and safety, environmental protection, security of assets, non-ethical customer complaints, etc.), the Compliance Officer will forward the necessary information to the professional body responsible for the supervision of the area concerned for investigation; 
    4. there are reasonable grounds to suspect that a criminal offence has been committed, the Compliance Officer will pass the necessary information to the Chief Operating Officer for investigation, further action and the initiation of official proceedings.

    The person/department conducting the investigation must inform the Compliance Officer of the outcome of its action within 15 days. This time limit may be extended once for a further 15 days at the request of the investigating entity. The Compliance Officer may decide on this basis to open a further ethics investigation, to take a decision on the merits or to close the case.

    The Compliance Officer will inform the notifying party of the other preliminary examination of the notification, other than the ethics procedure, and monitor the further progress of the procedure. In the event that the complaint is not investigated under the ethics procedure, he/she shall request the other department to conduct the investigation. If the investigation is to be conducted entirely by another department, the whistleblower shall be informed of this fact without delay. The Compliance Officer shall be informed of the outcome of the investigation by the department requested to conduct the investigation. The Compliance Officer shall inform the notifier of the decision taken.  

    Twice a year, the Compliance Officer informs the CEO of all Notifications, including those that have been forwarded to another department for action or for which no action has been taken.

    • Opening of the procedure

    The Compliance Officer decides on the basis of a preliminary examination of the notification: 

    1. to transfer the report (or part of it) to another department for investigation, 
    2. the opening of the investigation and the appointment of the Investigators to conduct the investigation,
    3. if the subject matter of the investigation of the Notification falls within the competence of another department, refer the Notification to the competent body.

    The Compliance Officer or the person designated to conduct the investigation will conduct an evidentiary hearing to obtain the facts and evidence on which the decision on the complaint is based.

     Any evidence that can help clarify the facts may be used in the proceedings, except evidence obtained by breaking the law. The designated Investigator shall be free to choose the means of proof and to assess the available evidence according to his or her own judgement.

    • Ensuring the confidentiality of the procedure

    The following persons are entitled to see the notification and the decision closing the investigation:

    1. the Investigator appointed for the ethics case;
    2. the notifier (notifier);
    3. the person suspected of having committed an infringement or ethical breach (the person subject to the report);
    4.  employees involved in the investigation of the ethics case who contribute information or professional support (including the manager exercising authority over the person subject to the report and his/her HR partner, to the extent strictly necessary for their cooperation. 

    The identity of the non-anonymous Reporting Party is not known to anyone other than the investigators of the Report.

    The Whistleblower and the person subject to the Whistleblowing may have indirect access to the documents (including the Whistleblowing) and information used in the discovery process of the investigation, subject to the Company's legitimate business and banking confidentiality safeguards, as provided by the Compliance Officer.

    The obligation of confidentiality of the report does not affect the right of the person concerned to consult his/her manager exercising the authority of his/her employer, his/her legal representative to the extent necessary for their cooperation, or to inform the witness designated by him/her of the fact of the investigation. Any person interviewed as a witness or involved as a respondent in the investigation of a complaint shall keep confidential what is said during the interview and all facts coming to their knowledge and shall not share them with any other department or staff member of the employer. Failure to do so shall constitute a violation of the Company's Code of Ethics. 

    • Exclusion from ethics investigation:

    You cannot investigate or take part in decision-making:

    1. the Declarant
    2.  the person concerned by the Notification
    3.  the person whose hearing is necessary in the proceedings
    4.  who, for other reasons, cannot be expected to give an unbiased opinion on the case. 
    • Conduct of the proceedings at first instance
    • Initiation of the investigation

    The Compliance Officer decides whether to open an investigation, to refer it to the competent department or not to report it.

    The Compliance Officer shall appoint the Investigators responsible for the investigation of the Notification, if necessary, and shall arrange for the appointment of a replacement Investigator if the Investigators are unable to attend.

    • Informing the notifier of the outcome of the preliminary examination of the notification

    The decision to open an investigation, not to pursue a Notification or to refer the investigation to another specialised area is taken by the Compliance Officer, upon receipt of the Notification, by the Notifier. within seven days in writing to the contact details provided by the notifier. In exceptional cases, if the notifier has not provided written contact details, the information may be provided by telephone or orally.

    • Missing

    If the Examiner deems it necessary, he will return the Notification to the initiator of the procedure, indicating the deficiencies, with a short deadline of 8 days at the most, for the purpose of rectifying them. If the notifying party does not reply to the request to rectify the deficiencies, the investigator will close the procedure without conducting an investigation.

    • Information to the person concerned by the Notification

    The Investigator shall, at the start of the investigation, inform the person subject to the notification in detail of.

    1. about the Notification (subject to applicable law, see: data protection, confidential information);
    2. your rights regarding the protection of your personal data; and
    3. on the rules for processing your data ([Appendix 04]).

    In exceptional and justified cases, the person concerned by the notification may be informed later than the start of the investigation, 

    1. if immediate information would be likely to make impossible or seriously jeopardise or frustrate the investigation of the notification; or
    2. if you are found to be affected after the investigation has started;

    which conditions are examined and decided by the Compliance Officer. 

    If, after the investigation has been initiated, the Investigator becomes aware of data/information which suggests that a third person may be involved in the Report, the investigation may be conducted against that person as provided for in paragraphs (80) to (82).

    The person concerned by the Notification may be waived if the Compliance Officer decides not to investigate the Notification.

    • Deadline:

    Thirty (30) days from the date of receipt of the Notification are available for the investigation of the facts contained in the Notification, which deadline may be waived only in particularly justified cases, with simultaneous notification to the Notifier. 

    The Compliance Officer shall inform the notifier in writing of the extension of the investigation, the reasons for the extension and the expected date of completion of the investigation, at the same time as the decision on the extension. 

    The duration of the investigation should not exceed three months. 

    • Test tools

    In particular, the following investigative tools may be used:

    1. hear the persons concerned by the notification, other interested parties in person, by telephone or by video conference,
    2. obtaining available documents and other data and information relating to the case from the relevant departments, external partners and the notifying party,
    3. viewing locations, camera footage or objects relevant to the case,
    4. the involvement of an expert in particularly justified cases,
    5. monitoring information and data stored in IT systems.

     In all cases, the hearing will be conducted by at least two Examiners. 

    • Consultation

    A record or note of the hearing is made, which the interviewee can view, comment on, ask for corrections to and approve in writing.

    For interviews conducted by telephone or videoconference, the rules for personal interviews shall apply mutatis mutandis.

    At the hearing, the person concerned by the report or other interested interviewees (witnesses, experts) will be informed by the Investigator about the processing of their personal data (name, position, conclusions drawn from what they have said about the case) and their rights regarding the protection of their personal data, as well as the procedure.

    The legal representative of the person concerned may be present at the hearing of the person concerned by the request.

    • Data requests and other enquiries

    The report shall be investigated by the Investigator or, at the request of the Investigator, by another manager/body exercising direct managerial authority in the field of competence in the given case, or the Investigator may request the opinion or position of any other competent manager/body exercising employer authority in the course of the investigation. 

    The body or person requested in the procedure to provide documents or information must send the requested documents and information to the investigator within 5 days of the request. The requested body or person may, where justified, request a single extension of the time limit by a further 5 days. 

    • Extension of the study

    If, after the investigation has been initiated, the Investigator becomes aware of data/information that suggests that a third person may be involved in the conduct complained of, the investigation may be conducted against the additional person complained of.

    • Investigation report

    In the investigation report, the investigator describes the investigative tools used, the facts established, the detailed reasoning, the proposal to close the investigation and the recommendations for action proposed. 

    The investigation file contains the documents used, relevant correspondence on the case and any other evidence obtained.

    If the investigation fails to collect sufficient and/or adequate information to allow a meaningful investigation of the facts contained in the Notification and to conduct the investigation, the Investigator shall propose in the investigation report to terminate the investigation.

    • Closure of the first instance investigation:

    On the basis of the investigation report, the Compliance Officer will decide whether to close the first instance procedure:

    1. concludes that the conduct under investigation is likely to constitute an infringement and/or kviolates a provision of the EU Code of Conduct;
    2. finds that the conduct under investigation is not contrary to any legal provision and/or the Code of Conduct kprovisions of the Code of Conduct;
    3. no violation of the law and/or the OTP Group's Code of Ethics can be established due to lack of evidence.

    On the basis of the investigation report, the Compliance Officer may recommend action to the employer, business area manager or supporting departments to take appropriate employer action to remedy the violation/ethical breach, to take appropriate employer action, or to take action to avoid, prevent and mitigate the risks of violations or breaches of the Code of Conduct. 

    In the case of a proposal involving labour law consequences, the Compliance Officer may consult in advance with the labour law area, the manager exercising the employer's authority and the area's line manager. 

    Where required by law, the Compliance Officer will initiate proceedings with the competent authority if the conditions set out therein are met. If a criminal complaint appears justified, it should be made in consultation with the Chief Executive Officer and the Chief Operating Officer, as the body responsible for liaising with the authorities in criminal matters. 


    III.8.10. Informing the notifier and the person concerned of the closure of the procedure

    The Compliance Officer shall inform the Reporting Party and the person concerned in writing of the investigation of the Report and the outcome of the investigation, the reasons for the investigation, the measures taken or planned. 

    • Procedure at second instance

    If the person concerned (the Notifier or the person concerned by the Notification) disagrees with the outcome of the investigation (first instance procedure) of the Notification, he or she may, within 15 days of receiving the information, contact the CEO in writing through the Notification channels. The Executive Director will appoint the investigator of the second instance investigation, endeavouring to ensure the independence and objectivity of the investigation. If there is no suitable person or organisation within the organisation, he/she will employ a whistleblower protection lawyer. 

    The person/organisation designated to conduct the second instance investigation will review the evidence from the first instance investigation and the investigation report. During the review, the investigator of the second-instance investigation shall

    1. request written or oral information from any of the Company's managers;
    2. may ask any employee of the Company any question, request written or oral information from any manager of the Company.

    The investigator of the second instance investigation based on the results of the review:

    1. concludes that the conduct under investigation is likely to constitute a breach of law and/or of a provision of the OTP Group Code of Conduct;
    2. finds that the conduct under investigation does not contravene any legal requirement and/or the provisions of the OTP Group Code of Conduct;
    3. no violation of the law and/or the OTP Group Code of Ethics can be established due to lack of evidence.

    The rules and time limits of the first instance proceedings apply in the second instance proceedings. 

    • The Register of Notifications 

    The Compliance Officer will keep a record of the Notifications with the following content:

    1. Date of notification
    2. Notification registration number
    3. Short description of the notification (without personal data)
    4. Name of the notifier (without personal details, e.g. employee, supplier/business partner, customer, other, unknown/anonymous)
    5. Referral of a notification
    6. Notification status (closed / pending)
    7. Decision
    8. action, consequence.
    • Investigation of Reports concerning Compliance Officers

    If a Compliance Officer Report is received by the Company (concerning the activities of the Board of Directors or any of its members/employees), the Compliance Officer's duties as set out in this Procedure will be performed by the Chief Operating Officer and/or his/her designees. 

    The person designated by the Director of Operations to conduct the investigation shall send his/her investigation report to the Executive Director immediately after the investigation has been conducted.

    • Examination of Notifications concerning the Company 

    If the Report concerns the Company or any of its market conduct, the Compliance Directorate of OTP Bank will conduct the investigation and make a decision.

    • Examination of group-level notifications

    The Head of the Compliance Directorate appoints the Investigator to investigate any report received through the reporting channel of OTP Bank Plc concerning the activities of a foreign or domestic subsidiary bank or subsidiary of the OTP Group or the conduct of an employee of an OTP Group company. 

    • The general rules apply to the conduct of the investigation, with the decision to close the procedure and, if necessary, the decision to propose measures being taken by the Head of the Compliance Directorate. 
    • Notifications

    The Compliance Officer notifies the Chief Executive Officer and the Chief Operating Officer on an ex-officio basis

    1. with the Company's officers and senior executives;
    2. the activities of the Compliance Officer

    on the notification received in connection with.

    • Procedure in the event of an Ethics Question

    If the Ethics Hotline receives a question on the interpretation of the Code of Ethics or other compliance rules, the Compliance Officer will record it and respond within 15 days. The Compliance Officer will examine the question, consult with experts if necessary, or, where appropriate, involve the Chief Operating Officer in answering the question.

    • FINAL PROVISIONS

    This regulatory document enters into force on the day of publication

    Present regulator document no later than one month after the date of entry into force éshould be reviewed within.

    The person responsible is authorised to amend the Appendix to the Instructions.

    • APPENDICES
    1. s. Annex 1: Information in case of oral notification
    2. s. Annex 1: Information in case of a written declaration
    3. s. Annex: Information to be provided to the notifying party
    4. s. Appendix 1: Information Notice on Data Management 
    5. s. Appendix 1: Information on the protection of whistleblowers


The Protection of Whistleblowers and Legal Assistance Act information on aid - in the event of a notification of an infringement


  • Protection of whistleblowers

 

Act XXV of 2023 - on complaints, notifications of public interest and rules on reporting abuse (the Whistleblowing Act) prohibits retaliation against the whistleblower for making a whistleblowing report.

 

The whistleblower is protected against discrimination or unfair treatment for making a whistleblowing complaint. A whistleblower cannot be held liable for lawfully making a report if the whistleblower had reasonable grounds to believe that the report was necessary to disclose the circumstances to which it relates.

 

Sections 41-44 of the Act contain the following safeguards to protect the whistleblower.

 

Any action under the Whistleblowing Act that is detrimental to the Whistleblower,

  1. / which is due to the lawful making of the notification and
  2. / which is carried out in the context of the employment relationship or employment relationship is unlawful, even if it would otherwise be lawful.

 

An adverse action is an act or omission that is detrimental to the Reporting Party, in particular:

  1. / suspension, collective redundancy, dismissal or equivalent
  2. / measures,
  3. / refusal to demote or promote,
  4. / transfer of duties, change of place of work, transfer of the
  5. / pay cuts, changes to working hours,
  6. / refusal to train,
  7. / negative performance appraisal or job reference,
  8. / the application of any adverse legal consequence under the law applicable to the employment relationship, in particular disciplinary measures, reprimands, financial sanctions,
  9. / coercion, intimidation, harassment or ostracism,
  10. / discrimination, unfavourable or unfair treatment,
  11. / failure to convert a fixed-term employment relationship into an employment relationship of indefinite duration, if the employee had a legitimate expectation that his/her employment relationship would be converted into an employment relationship of indefinite duration,
  12. / failure to renew or early termination of a fixed-term employment contract,
  13. / damage, which includes damage to a person's reputation or financial loss, including loss of business opportunity and loss of income,
  14. / a measure as a result of which it can reasonably be concluded that the person concerned will in the future have an employment relationship with

in the sector in which he/she is employed, o./ the requirement of a medical fitness test,

p./ early termination or cancellation of a contract for goods or services, and

q./ withdrawal of the authorisation.

 

Any adverse action (listed above) taken against an entity owned by or having an employment or other contractual relationship with the Notifier, which is taken because the Notification was lawfully made, is unlawful even if it would otherwise be lawful.

 

The protection under this Chapter shall not apply to the notifier if.

  1. / By reporting, you are in breach of the rules on the protection of classified information,
  2. / fails to comply with its legal obligations of confidentiality in relation to medical confidentiality and legal professional privilege in making the report,
  3. / in making the report, the church person and the member of the religious association, as a professional performing religious rites, does not comply with the obligation of confidentiality that is imposed on him/her by his/her profession,
  4. / in making a report, you are in breach of the rules on the protection of confidential information protected by law in connection with the judgement,
  5. / Breaches the rules on data management under the rules of criminal procedure by reporting it, or
  6. / as a member of the law enforcement agencies, the Military National Security Service or the National Tax and Customs Administration, you are in breach of the rules governing the activities of these agencies, as laid down by law.

 

If the Disclosure is lawfully made, the Discloser shall not be deemed to have breached any restriction on disclosure of business, economic or other confidential information under the Disclosure Act or any other legal restriction on disclosure of information, and shall not be liable in respect of such Disclosure if the Discloser had reasonable grounds to believe that the Disclosure was necessary to disclose the circumstances to which it relates.

 

Where a Notification has been lawfully made, the Notifier shall not be liable for obtaining or accessing the information contained in the Notification, unless the Notifier has committed a criminal offence by obtaining or accessing the information.

 

The notifier shall not be held liable for lawfully making a notification if the notifier had reasonable grounds to believe that the notification was necessary to disclose the circumstances to which the notification relates.

 

The notifier may invoke the provisions of the previous three paragraphs in all official or judicial proceedings, while proving the legality of the notification.

It is lawful to make a notification if.

  1. the whistleblower has made the report through one of the whistleblowing schemes under this Chapter, in accordance with the rules set out in this Act,
  2. the Notifier obtained the information reported concerning the circumstances to which the notification relates in the context of his or her work-related activities, and
  3. the notifier had reasonable grounds to believe that the information reported concerning the circumstances to which the notification relates was true at the time of the notification.

A notification shall be deemed to have been lawfully made if the notifier makes its notification public and, in addition to the conditions set out in points (b) and (c) of the previous paragraph, one of the following conditions is met:

  1. the Declarant

  1. aa) first the internal abuse reporting system, then

used the separate abuse reporting system set up by each public body, or

  1. ab) directly used the separate abuse reporting system set up by each public body,

and the operator of the abuse reporting system or the body responsible for the procedure has not taken the measures provided for in this Act within the time limit,

  1. the notifier has reasonable grounds for believing that the circumstances of which the notification relates present a clear risk of harm to the public interest, in particular where there is a risk of irreparable harm, or

  2. the Whistleblower had reasonable grounds to believe that, when using the separate abuse reporting system set up by each public body, there was a clear possibility that, due to the particular characteristics of the circumstances of the case to which the whistleblowing relates, there was a clear possibility that

  1. ca) adverse action is taken against the Notifier, or

  2. cb) the merits of the allegations contained in the Notification are not dealt with.

 

The preceding paragraph shall not apply to a person providing information pursuant to Article 6 of Act CIV of 2010 on Freedom of the Press and Fundamental Rules on Media Content.

A Notification is considered to have been lawfully made if the Notifier makes the Notification at the European Union institutions, bodies, offices or agencies with competence and responsibility, and the Notifier obtained the notified information about the circumstances covered by the Notification in the context of his/her work-related activities, and the Notifier had reasonable grounds to believe that the notified information about the circumstances covered by the Notification was true at the time of the Notification.

 

The protection is only available to the notifier if.

  1. the notified information relating to the circumstances covered by the notification falls within the scope of the legal acts of the European Union listed in Annex 1 or Annex 2 or legal provisions implementing or ensuring compliance with those acts, or
  2. the notifier has reasonable grounds to suspect the existence of a circumstance under point (a).

The defence is not available to the notifier if.

  1. By reporting it, you are breaking the rules on the protection of classified information,
  2. fails to comply with its legal obligations of confidentiality regarding medical confidentiality and legal professional privilege when making a report,
  3. in making the report, the church person or the member of the religious association, as a member of a religious community performing religious rites by profession, does not comply with the obligation of confidentiality imposed on him/her by his/her profession,
  4. in making a complaint, you are in breach of the rules on the protection of confidential information protected by law in connection with the judgement,
  5. by reporting a breach of the rules on data management under the rules of criminal procedure, or
  6. as a member of the law enforcement agencies, the Military National Security Service or the National Tax and Customs Administration, by reporting a breach of the rules governing the activities of these agencies, as laid down by law.

 

The rules on the protection of the whistleblower apply to a whistleblower who makes a lawful report without revealing his or her identity, in particular without providing his or her name and personal data necessary for identification, and who, following his or her subsequent identification, is subject to adverse action or prosecution.

The protection applicable to a whistleblower is granted to a person who

  1. assists a lawful Reporting Party in making a Report,
  2. any person related to the lawful notifier who has made the notification, in particular a co-worker or family member of the notifier, who may be subject to adverse action.


  • Information under the Legal Aid Act:

 

The State shall provide the Notifier with the assistance provided for in Act LXXX of 2003 on Legal Aid under the conditions set out therein.

 

Extra-legal aid

 

The State shall provide the right to use legal assistance under this Act to the assisted person out of court. The legal adviser shall provide the party with legal advice or prepare a pleading or other document and, on the basis of a power of attorney, inspect the documents in the case (hereinafter together referred to as "legal service"), the fees and expenses of which, to the extent provided by law (hereinafter together referred to as "legal service fee"), shall be paid or advanced by the State to the legal adviser on behalf of the party.

 

If a party's income and assets entitle him or her to have the State pay for legal services instead, there is no cost to the party for using the legal services.

 

If a party becomes entitled, on the basis of his or her income and assets, to an advance payment of the legal service fee by the State instead of the State, the advance payment must be made within the time limit laid down in the decision authorising the aid to the

to reimburse the State. The maximum period for reimbursement is one year, within which payment in instalments may be authorised.

 

Support in civil and administrative proceedings

 

In the framework of legal aid, the State shall provide and advance or bear the costs of legal representation for the plaintiff, the defendant, the intervener (summoned), the interested party, the applicant and the defendant in civil proceedings and, with the exception of enforcement proceedings, in non-litigious proceedings as defined by law, as well as in administrative proceedings, other administrative court proceedings and non-administrative non-litigious proceedings (hereinafter together referred to as "proceedings").

 

Aid in criminal proceedings

 

The State provides the following assistance in the form of legal aid in criminal proceedings:

  1. the advance payment by the State of the fees and expenses of a legal aid lawyer (hereinafter referred to as 'legal aid lawyer's fees') to the victim, the private prosecutor, the private surrogate, the private party, the person with an interest in the property and any other person interested, and the statutory

case wearing,

  1. the advance payment and payment by the State of the fees and costs of the public defender of rights.
Facebook-f Linkedin

Solutions

Hellopay

GTC
Privacy Policy

Partner link

Contact

Customer service:

Click here!

Complaints handling:

Click here!

Our address:

1037 Budapest, Montevideo u 10.

© 2024 Hellopay / All rights reserved

How can we help?

Image1

Festivals and
events

Image1

Trade
(retail)

Image1

Catering and entertainment

Image1

Services industry