1) Who we are (Data Controller)

• Controller: TomorrowLab Kft.
• Contact: tomorrowlabbp@gmail.com

2) What data we collect and why

a) Site visits (browsing)

When you browse our site, our hosting platform (Webflow) may automatically process technical data such as IP address, device and browser information, pages viewed, and timestamps. We use this for security, fraud prevention, performance and to ensure the site functions correctly (our legitimate interests, Art. 6(1)(f) GDPR). Webflow hosts data in the United States and participates in the EU–U.S. Data Privacy Framework and/or uses Standard Contractual Clauses for transfers. Webflow+2Webflow+2

b) Scheduling a call (Calendly)

If you click Book a Call, you are taken to Calendly, where you can provide details like name, email, company, and preferred time. We process this to schedule and conduct the meeting and to follow up (performance of a contract / steps at your request, Art. 6(1)(b) GDPR; and our legitimate interests in sales operations, Art. 6(1)(f) GDPR). Calendly transfers data to the U.S. with safeguards (DPF/SCCs). Calendly.com+2Calendly.com+2help.calendly.com

c) Communications

If you contact us by email or after a Calendly booking, we process the data you provide to respond and maintain business records (Art. 6(1)(b) and/or Art. 6(1)(f) GDPR).

d) Marketing (optional)

If you opt-in to receive updates (e.g., newsletter, case studies), we process your contact details on the basis of consent (Art. 6(1)(a) GDPR). You can withdraw consent at any time.

3) Cookies and similar technologies

• Essential/functional cookies may be set by Webflow to run the site securely and reliably. We currently do not use advertising cookies on our pages. If we add analytics or marketing cookies in the future, we will request your consent via a banner and update this Policy. Webflow

Note: When you visit Calendly (on calendly.com), Calendly’s own cookies/policies apply. Calendly.com

4) Our processors (service providers)

We share personal data with trusted providers who act on our instructions:

• Webflow, Inc. – website hosting and platform. International transfers rely on the EU–U.S. Data Privacy Framework and/or SCCs. Webflow+1
• Calendly, LLC – meeting scheduling. International transfers rely on the EU–U.S. Data Privacy Framework and SCCs under Calendly’s DPA. Calendly.com+1

5) International transfers

Where data is transferred outside the EEA/UK (e.g., to the U.S. by Webflow/Calendly), we rely on recognized safeguards such as the EU–U.S. Data Privacy Framework and/or the EU Standard Contractual Clauses (and the UK Addendum where applicable). Webflow+1Calendly.com+1

6) How long we keep data

• Scheduling records & follow-up correspondence: typically up to 24 months after our last interaction, unless you ask us to delete sooner or we need to keep records for legal reasons.
• Security and server logs: typically up to 90 days unless needed longer for incident investigation.
• Marketing contacts: until you unsubscribe or withdraw consent.

Actual retention may vary depending on legal obligations or the need to establish, exercise, or defend legal claims.

7) Your rights (EEA/UK)

You can request to access, rectify, erase, or port your data and to restrict or object to certain processing. Where we rely on consent, you may withdraw it at any time (this does not affect processing prior to withdrawal). To exercise rights, contact us at tomorrowlabbp@gmail.com

You also have the right to lodge a complaint with your local supervisory authority. Examples:

• Hungary: Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH) — H-1125 Budapest, Szilágyi Erzsébet fasor 22/c; www.naih.hu.

8) Children

Our services are aimed at business users and are not directed to children. We do not knowingly collect personal data from children under the age required by local law (e.g., 16 under GDPR).

9) Security

We take appropriate technical and organizational measures to protect personal data (e.g., TLS encryption in transit, access controls, and reputable hosting). Some safeguards are provided by our processors (e.g., Webflow platform security). Webflow

10) Do we sell data?

No. We do not sell personal data.

11) Changes to this Policy

We may update this Policy from time to time. We will post the updated version with a revised “Last updated” date. If changes are material, we will provide additional notice where required.

12) Contact

For privacy questions or to exercise your rights, contact:
TomorrowLab Kft.
Email: tomorrowlabbp@gmail.com
Address: Kossuth Lajos street 26., 2151 Fót, Hungary