Information on the mandatory recording of personal data
Under the terms of operative legislation, from 1st September 2021, certain personal data required by law shall be recorded for guests using accommodation services in Hungary in property management software with the aid of a document reader and be transmitted to a storage space, the Closed Guest Information Database (VIZA in Hungarian).
In order to protect the rights, security and property of the data subject and others, and to verify compliance with the residence provisions applicable to the residence of third-country nationals and persons with a right of free movement and of residence, the accommodation service provider shall record the following data for the guest in the property management software when they check in:
- first name and family name;
- first name and family name at birth;
- place of birth;
- date of birth;
- sex of guest;
- citizenship;
- mother’s fi rst name and family name at birth;
- identifi cation data on personal identifi cation document or travel document;
- for third-country nationals*, number of visa or residence permit, and date and place of entry into Hungary
*third-country national: a person described in Act II of 2007 on the admission and right of residence of third-country nationals.
For the purpose of recording the data, guests over the age of 14 using the accommodation service shall present their identifi cation documents to the accommodation service provider. Data not listed on the document need not be recorded. If the document is not presented, accommodation service providers shall refuse to provide the accommodation service. As authorised by legislation, accommodation service providers are entitled to ask for the personal identifi cation documents of guests over the age of 14 and guests must comply with this request.
For guests younger than 14, the accommodation provider may record the above data on the basis of data provided by the guest’s representative (e.g. parent, guardian).
The accommodation service provider shall process the guest data by the last day of the fi rst year following that in which they acquired them, for the purpose stipulated by law. The police may perform searches of the data stored with asymmetric encryption in the storage space defi ned by law, i.e. the VIZA system, for the purpose of law enforcement, crime prevention, maintaining public order, public safety, secure border crossing, and for the protection of the rights, safety and property of the data subject and others, as well as for executing warrant procedures.
- Act CLVI of 2016 on state functions pertaining to the development of tourism regions;
- AGov. Decree 235 of 15 October 2019 on implementation of the act on the responsibilities of the state regarding development of tourism regions;
- Aov. Decree 414 of 23 December 2015 on the rules for issuing identity cards and on the uniform recording of likenesses and signatures.
