Blue Bird Group

Website: bbgroup.hu
Effective Date: May 18, 2026
Language: English / Magyar
This Privacy and Cookie Policy explains how Vecherinka Kft. and BLUE BIRD GROUP Kft. (collectively referred to as "we", "us", or "the Controllers") collect, use, store, and protect personal data of visitors and users of the website bbgroup.hu, in full compliance with the EU General Data Protection Regulation (GDPR) and applicable Hungarian law.

1. Data Controllers

Entity 1 – Operator of BBRooms
Vecherinka Kft.
1074 Budapest, Rumbach S. u. 12, A ép., fsz. 1. ajtó
Tax ID (Adószám): 28952972-2-42
Company Reg. No.: 01-09-377094
Tel.: +36 30 343 6427
E-mail: booking@bbrooms.hu

Entity 2 – Operator of Blue Bird Group
BLUE BIRD GROUP Kft.
1074 Budapest, Rumbach S. u. 12, A ép., fsz. 1. ajtó
Tax ID (Adószám): 27045334-2-42
Company Reg. No.: 01-09-346478
E-mail: info@bbgroup.hu
Website: bbgroup.hu
Both entities act as independent data controllers for their respective services. Where services overlap, they act as joint controllers and have taken appropriate measures to define their respective responsibilities.

2. Scope and Definitions

Data Controller: The legal entity that determines the purposes and means of processing personal data.

User / Data Subject: Any natural person who visits or uses the website bbgroup.hu or any associated service.

Personal Data: Any information relating to an identified or identifiable natural person, for example name, e-mail, phone number, IP address.

Processing: Any operation performed on personal data, including collection, storage, use, disclosure, or deletion.

GDPR: EU Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data.

NAIH: Nemzeti Adatvédelmi és Információszabadság Hatóság – the Hungarian Data Protection Authority (www.naih.hu).

3. Personal Data We Collect

3.1 Data Provided Voluntarily

Full name (first and last name)

E-mail address

Telephone number

Messages or comments submitted via contact forms

Booking-related details (date, service, number of participants)

3.2 Automatically Collected Technical Data

IP address

Browser type and version

Operating system

Pages visited and time spent on site

Date and time of access

Referral source (how you arrived at our site)

3.3 Cookie Data

Data collected via cookies and similar tracking technologies as described in Section 7 of this Policy.

4. Purposes and Legal Bases for Processing

Responding to enquiries and contact form submissions — Legitimate interest or consent (Art. 6(1)(a)/(f) GDPR)

Providing our services and fulfilling bookings — Performance of a contract (Art. 6(1)(b) GDPR)

Improving our website and user experience — Legitimate interest (Art. 6(1)(f) GDPR)

Website traffic analysis and statistics — Consent (Art. 6(1)(a) GDPR), only after cookie consent

Sending marketing communications — Explicit consent (Art. 6(1)(a) GDPR)

Compliance with legal obligations — Legal obligation (Art. 6(1)(c) GDPR)

5. Sharing of Personal Data

We do not sell or rent your personal data to third parties. Data may be shared only in the following limited circumstances:

Hosting and IT providers — acting as data processors under strict data processing agreements

CDN providers, for example Cloudflare — for website performance and security

Analytics services, for example Google Analytics — only with your prior consent

Advertising platforms, for example Google Ads, Meta/Facebook Pixel — only with your prior consent

Booking platform FareHarbor — for processing event and room reservations, under their own terms

Legal authorities — where required by Hungarian or EU law

Professional advisors, such as lawyers and accountants — bound by professional confidentiality

Where data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

6. Data Retention Periods

Contact and enquiry form data — Up to 2 years from last contact

Booking and contractual data — 5 years (Hungarian accounting regulations)

Technical log data (IP addresses) — Up to 6 months

Cookie and analytics data — As specified per cookie (up to 13 months)

Marketing consent records — Until consent is withdrawn

When data is no longer required, it is securely deleted or anonymised.

7. Cookies and Tracking Technologies

Cookies are small text files stored on your device when you visit our website. Under GDPR, we may only store strictly necessary cookies without consent. All other cookies require your explicit permission, which you can grant or withdraw at any time via the cookie consent banner.

Necessary: site-consent-data — Stores your cookie consent choices to prevent repeated banner display — 30 days

Necessary: wf_log_info — Webflow security cookie preventing CSRF attacks — Session

Analytics: _ga, _gid, _gat — Google Analytics: distinguishes users and tracks site interaction — 2 years / 24h / 1 min

Marketing: _fbp, _fbc — Meta (Facebook) Pixel: conversion tracking and targeted advertising — 90 days

Marketing: _gac_*, __gads — Google Ads: measuring ad performance and campaign effectiveness — 90 days

You may also manage cookie preferences via your browser settings. Note that disabling necessary cookies may affect website functionality. Our third-party partners (Google, Meta) ensure GDPR compliance through Standard Contractual Clauses (SCCs).

8. Your Rights as a Data Subject

Right of Access (Art. 15 GDPR): Request a copy of the personal data we hold about you.

Right to Rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete data.

Right to Erasure (Art. 17 GDPR): Request deletion of your personal data ("right to be forgotten").

Right to Restriction (Art. 18 GDPR): Request that we limit how we process your data.

Right to Data Portability (Art. 20 GDPR): Receive your data in a structured, machine-readable format.

Right to Object (Art. 21 GDPR): Object to processing based on legitimate interest or direct marketing.

Right to Withdraw Consent: Withdraw consent at any time where processing is consent-based.

Right to Lodge a Complaint: File a complaint with NAIH (www.naih.hu), the Hungarian Data Protection Authority.

To exercise any of your rights, please contact us at the details provided in Section 10. We will respond within 30 days of receipt of your request.

9. Data Security

We apply appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction:

HTTPS/TLS encryption for all data transmissions

Regular data backups and recovery procedures

Access controls — only authorised personnel can access personal data

Regular security assessments and software updates

No internet transmission is entirely secure. While we strive to protect your data, we cannot guarantee absolute security of any data transmitted to our website.

10. Changes to This Policy

We may update this Privacy and Cookie Policy from time to time to reflect changes in our practices or applicable law. Any changes will be posted on this page with a revised effective date. Where changes are significant, we will notify users by e-mail or via a prominent notice on our website.

11. Contact and Exercising Your Rights

For questions, requests, or complaints related to this Policy or your personal data, please contact us:

Vecherinka Kft. (BBRooms)

Address: 1074 Budapest, Rumbach S. u. 12, A ép., fsz. 1. ajtó

Tel.: +36 30 343 6427

E-mail: booking@bbrooms.hu

BLUE BIRD GROUP Kft. (BBGroup)