Privacy policy

25.04.2024

Protecting your personal data is important to us. Therefore, we invite you to read the privacy policy carefully and contact us for any further clarifications. We will always process Personal Data in compliance with the legislation in force.

Who are we?

The website ("Site") is owned by public notary Raluca Chelaru, with headquarters in Vasile Conta street no. 4, et. 1, Sector 2, Bucharest.

What data do we collect?

Like most websites, when you visit the Site, a series of data is automatically collected that does not lead to the identification of a person, such as browser type, device type, language preference, accessed page, site the reference number, date and time of each visitor request, as well as data that can lead to the identification of an individual, such as the IP address, country and city associated with this IP address.

Depending on the interaction you have with the Site (e.g. using the contact form, subscribing to the newsletter, posting a comment, creating an account, etc.), we collect additional personal data either directly from you or automatically.

Therefore, the personal data we collect is as follows:

PurposePersonal dataLegal bases
Traffic analysis (analytics)IP address, country and city, geolocation, device type, browser type, language preferences, online behavior and preferencesOur legitimate interest
Newsletter subscription (marketing)email addressConsent
Using the contact formname, surname, telephone number, e-mail addressConsent and our legitimate interest
Publishing a commentname, surname, nickname, e-mail address, pictureConsent and our legitimate interest
Resolving a requestname, surname, telephone number, e-mail address, picture, date of birth, postal address, personal code, series and number of the identity document, marital statusFulfilling a legal obligation
Creating an accountname, surname, telephone number, e-mail address, picture, date of birth, postal address, personal code, series and number of the identity document, marital statusPerformance of a contract

Who has access to the Data?

We share your Personal Data when strictly necessary, only with the following recipients:

  • Our suppliers, for the purpose set out above or to perform an obligation on our behalf (including market analysis or customer relations and account administration, current or future provision of products or services, administration of comments and reviews, etc.);
  • Collaborators who provide services and products related to or additional to our services and products (for example, accounting firms);
  • Consultants with whom we have concluded a contract (for example, lawyers, accountants, they are obliged by law or by the contract concluded with us to keep your data confidential);
  • Natural or legal persons acting as authorized persons, in various fields (for example, payment services, archiving or document destruction services, etc.), in respect of which we will include clauses under which they are obliged to comply with the requirements of the law which protects your rights;
  • Web hosting service providers that host our site. Our website is currently hosted by Hosteurope, whose privacy policy can be accessed here;
  • IT service providers who maintain and develop our website;
  • Analytics service providers. We currently use Google Analytics, whose privacy policy can be accessed here;
  • Marketing service providers on our behalf;
  • To a third party when required or authorized by law or court order, or if such disclosure is necessary in the context of an investigation or proceeding on national territory or in another country.
  • Finally, according to the legal provisions (in particular Art. 6 paragraph (1) and point 48 of the statement of reasons of the General Data Protection Regulation), we may share your Personal Data with our affiliated companies for internal administrative purposes.

How long do we keep the Data?

We will keep your personal data for as long as is necessary for the purpose for which it was collected, but not less than we are required to do by law, if applicable. We retain contact information until a user unsubscribes or requests that we delete that information. If you choose to unsubscribe from the newsletter, we may retain certain limited information about you so that we can honor your request.

We will retain personal data from logs or records necessary for traffic analysis indefinitely.

When deletion is requested or otherwise required, we will anonymize data subjects and/or remove their information from the publicly accessible Site if data deletion is not possible or excessively onerous.

Marketing preferences

In accordance with your preferences, you may receive from us and our partners, by mail, e-mail, SMS and push notifications, promotional and commercial offers about products or services offered on the Site, which may be of interest to you according to your profile your.

You can choose at any time not to receive such marketing messages, through the unsubscribe link in the message or through the push notification parameters of your smartphone or tablet or by logging in to the customer section.

Security of personal data

We focus on the security and privacy of the Personal Data we collect and hold about you. We take all necessary steps to protect all information we have about you against destruction, loss, alteration, unauthorized disclosure or unauthorized access to personal data transmitted, stored or otherwise processed.

In order to protect the people whose data we process from unauthorized access and unauthorized modification, disclosure or destruction of the data we process, we have implemented the following technical and organizational measures to ensure the security of personal data:

  • Adoption and revision of dedicated policies and practices regarding the processing of personal data of data subjects;
  • The use of specific contractual clauses with our collaborators and partners, so as to ensure an optimal degree of confidentiality and compliance with the law regarding the processing of personal data;
  • Data limitation, in the sense of minimizing and processing the necessary, appropriate and relevant data for the purposes of the processing;
  • Ensuring the accuracy of your data, by completing, updating them, when necessary;
  • Restricting access to data, in the sense of: (i) restricting the area of people who have access to your personal data (such as our employees or collaborators) and (ii) including contractual mechanisms to ensure their liability in case does not comply with a series of confidentiality and personal data protection obligations;
  • Constant training of staff in the field of personal data processing;
  • Implementation of specific technical measures, such as double authentication;
  • Making periodic back-ups, which we keep secure for optimal periods;
  • Implementation of attack detection/prevention systems;
  • Anonymization/pseudonymization of data, when this is possible and appropriate, no longer allowing the identification of the persons to whom it refers.

Your debit or credit card details are not recorded in our databases. All bank and debit or credit card details are processed by our third party financial services provider and all transfers of this data will be SSL protected.

In the unlikely event of a security breach encountered despite our reasonable security measures, we will follow legal procedures to limit the effects and inform data subjects and the relevant supervisory authority, as appropriate.

Data Transfer outside the European Union

Currently, our Website is hosted on servers located in the territory of the European Union, in Germany, which is why the data processed by us directly are not transferred outside the European Union.

If it will be necessary for us to transfer your data to destinations outside the European Union, we will inform you about this in advance, directly (if we have your contact details), as well as by amending this privacy policy .

In any case, to the extent that we transfer your personal data to a country outside the European Union, we will take the necessary measures to protect your Personal Data, according to the legislation in force.

If you are located outside the European Union, your Personal Data will be transferred to the European Union, where it will be processed in accordance with the General Data Protection Regulation.

What rights do I have to the Data?

In accordance with the applicable legal provisions, you have the following rights:

  • Right of access: You may request access to all or parts of your Personal Data.
  • Right to rectification: You can ask us to correct your Personal Data that is inaccurate or not up to date.
  • The right to erasure: You can ask us to delete part or all of your Personal Data, in particular if the Personal Data is no longer necessary for the purpose for which it was collected or if you withdraw your consent to the processing of the Personal Data, then when the legal basis for processing is consent.
  • The right to object You can object at any time to the processing of your Personal Data for the purpose of the legitimate interests we pursue. However, we draw your attention to the fact that regardless of your request, we may continue to process your personal data if there are legitimate or compelling reasons to justify the continuation of processing, or to exercise or defend legal rights.
  • The right to restriction: You can request that your Personal Data be processed in a limited way (no processing, only storage) in the following cases: i) for the period necessary to verify the accuracy of your personal data following your dispute of their accuracy; ii) if you consider that the processing is illegal and object to the deletion of your personal data; iii) if we no longer need the Personal Data but you still need this Personal Data to establish, exercise or defend a right in court; iv) if you object to the processing of your Personal Data, for the period of time in which it is checked whether our legitimate rights prevail over those of the data subject.
  • The right to portability You may request that your Personal Data be exported to a third party, where this is technically feasible, when the processing is based on consent or when the processing is based on a contract and the processing is carried out by automated means .
  • Right to withdraw consent: When processing is based on consent, you can withdraw your consent at any time.
  • The right not to be the subject of an automated individual decision-making process: You have the right not to be the subject of a decision based solely on automated processing, including profiling, which produces legal effects concerning the data subject or similarly affects him to an extent significant, subject to certain conditions.
  • The right to be informed about the security breach: If the security breach of personal data is likely to generate a high risk for the rights and freedoms of natural persons, the operator shall inform the data subject without undue delay about this breach, in certain conditions.

Also, any person who considers that their rights under the applicable law have been violated as a result of the processing of their personal data without complying with the applicable law has: (i) either the right to file a complaint with an authority of supervision, (ii) either to resort to court.

Amendments

We reserve the right to amend this privacy policy at any time and without any prior notification obligation, changes that will apply immediately.

For this reason, we recommend that you re-read the privacy policy on each visit.

Your continued use of this Site after any change to this Privacy Policy will constitute your acceptance of such change.