MF

Mészáros Ferenc

Full-stack Developer from Hungary

Privacy Policy

Effective Date: April 10, 2026
Last Updated: April 10, 2026

This website (https://ferencmeszaros.hu) is operated by Mészáros Ferenc ("I", "me", "my"). This policy explains what personal data may be processed when you use this site, why it is processed, and what rights you have under applicable data protection laws including the GDPR.

1) Data Controller

  • Controller: Mészáros Ferenc
  • Contact email: info@ferencmeszaros.hu
  • Website: https://ferencmeszaros.hu

2) What Data Is Processed

A) Contact form data

When you send a message through the contact form, the following data is processed:

  • Name
  • Email address
  • Message content
  • Cloudflare Turnstile token (anti-spam verification token)

This data is transmitted to my mailbox through an SMTP mail service. The website itself does not maintain a dedicated contact-form database.

B) Technical and security data

To protect the contact form from abuse, Cloudflare Turnstile is used when you explicitly enable non-essential features through the cookie banner. Depending on Cloudflare's operation, technical data such as IP address, browser/device metadata, and security signals may be processed.

C) Site operation data

The site uses standard web requests required to deliver pages. Depending on infrastructure providers, server/network logs may include technical metadata (for example IP address, user agent, timestamp, requested URL) for reliability and security.

D) Blog content delivery

Blog content is stored as local MDX files in this website project and delivered directly by the same application runtime. No external blog CMS is used for serving posts.

E) Fonts and static assets

The site uses the Inter font via next/font/google. Browser requests necessary to deliver these resources may involve Google infrastructure.

3) Purposes and Legal Bases (GDPR Art. 6)

Personal data is processed for these purposes:

  • Responding to your message (contact form): GDPR Art. 6(1)(b) (pre-contractual communication) and/or Art. 6(1)(f) (legitimate interest in communication).
  • Spam and abuse prevention (Turnstile): GDPR Art. 6(1)(a) (consent), because this feature is blocked until consent is accepted on this site.
  • Website security, reliability, troubleshooting: GDPR Art. 6(1)(f) (legitimate interest).
  • Publishing and serving blog content: GDPR Art. 6(1)(f) (legitimate interest in content delivery).

Where processing is based on consent, you can withdraw consent at any time via the cookie preferences control and browser settings. Withdrawal does not affect processing before withdrawal.

4) Cookies and Consent

This site uses a consent banner with explicit Accept and Reject options.

  • If you accept, non-essential third-party functionality is enabled.
  • If you reject, non-essential third-party functionality remains disabled.

Current categories:

  • Strictly necessary / core functionality: basic first-party site rendering and navigation.
  • Non-essential third-party features (consent-based): Cloudflare Turnstile widget/script used for contact form anti-spam protection.

The consent decision is stored locally in your browser so the site can remember your preference.

You can reopen cookie preferences from the site footer ("Cookie Preferences") and change your choice.

5) Recipients and Processors

Depending on your interaction, data may be processed by:

  • Cloudflare Turnstile (bot protection and challenge verification).
  • SMTP/mail provider used to deliver contact form messages to my mailbox.
  • Google infrastructure for font delivery via next/font/google.
  • Hosting/infrastructure providers that may handle technical logs and delivery.

Each third party acts under its own privacy/security obligations and may process data in accordance with its own terms.

6) International Transfers

Some providers may process data outside your country or the EEA. Where relevant, transfers are made using appropriate safeguards required by applicable law (for example contractual safeguards), as provided by the respective provider.

7) Data Retention

  • Contact emails: retained as long as needed to handle your request and related follow-up, then archived or deleted based on operational need.
  • Technical/security logs: retained for a limited period necessary for security, stability, and abuse prevention.
  • Consent preference in browser: retained until you change/delete it or clear site data.

Exact retention periods can vary depending on legal obligations, security needs, and provider-level retention settings.

8) Your Rights (GDPR)

If GDPR applies, you may have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase data (right to be forgotten)
  • Restrict processing
  • Object to processing based on legitimate interests
  • Data portability (where applicable)
  • Withdraw consent at any time (where processing relies on consent)
  • Lodge a complaint with your local supervisory authority

To exercise rights, contact: info@ferencmeszaros.hu

9) Children's Privacy

This website is not intended for children under 16, and I do not knowingly collect personal data from children.

10) Changes to This Policy

I may update this policy from time to time to reflect legal, technical, or operational changes. The "Last Updated" date at the top indicates the current version.

11) Contact

For any privacy-related request or question:

  • info@ferencmeszaros.hu

© 2026 Mészáros Ferenc. All rights reserved.