Please note that we have the ability to periodically update and modify this Personal Data Protection Policy ("Policy") without the need to obtain prior consent or undergo an individual or special notification procedure for the changes made. In the event of any such modifications, we will display the updated version of the Personal Data Protection Policy on the website, and it remains your responsibility to review the content of this Policy whenever you access the website to ensure you are aware of the latest version.
I. Regulatory Framework
Personal data will be collected and processed by Cantemir Software Dev SRL only to the extent permitted by European Regulation no. 679/2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, as well as any other applicable legislation in Romania.
Terms within the meaning of European Regulation no. 679/2016:
Personal data - any information relating to an identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more specific factors of his or her physical, physiological, psychological, economic, cultural or social identity.
Processing of personal data - any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, storage, adaptation, alteration, retrieval, consultation, use, disclosure to third parties by transmission, dissemination or otherwise making available, alignment or combination, blocking, erasure or destruction.
II. Data Controller Status
Cantemir Software Dev SRL holds the status of Data Controller for personal data, a Romanian company headquartered in Bucharest, str. Banul Udrea, no. 5-7, Sector 3, registered with the National Trade Registry Office under no. J40/10154/2017, Unique Registration Code: RO37821927, email: firstname.lastname@example.org, phone no.: +40 (0) 213-100-095.
III. Processed Data
The personal data we process are:
- First name,
- Last name,
- Email address,
- Phone number,
- Bank account information,
- IP address.
The address and bank account information are processed for billing and payment purposes only for individuals who choose to subscribe to our services.
When you visit intrainterim.ro, we automatically collect certain information about your device, such as browser information, IP address, time zone, and some cookies installed on the device.
We use Google Analytics and Facebook pixel to help us understand how our customers use the website – you can read more about how Google uses your personal information here: https://www.google.com/intl/en/policies/privacy/. You can also opt out of Google Analytics here: https://tools.google.com/dlpage/gaoptout. You can read more about Facebook pixel here: www.facebook.com.
We do not collect or process sensitive data as defined by European Regulation no. 679/2016. Additionally, we do not intend to collect or process data of minors. Please do not create an account on our website and do not provide any information if you are under 18 years old.
IV. Purpose of Data Collection
The purpose of data collection includes: registering user accounts on visualize.ro, informing users/customers (Buyers) about the status of their visualize.ro account, conducting contractual relationships between users/customers and Cantemir Software Dev SRL, including subscribing, validating, processing, and billing requested services, ensuring payment of relevant service amounts, informing users/customers about order status and progress, evaluating products and services, providing responses to placed complaints, commercial activities, promoting products and services, marketing, advertising, media, administrative, development, market research, statistics, tracking and monitoring of sales and consumer behavior.
Cantemir Software Dev SRL may notify users/customers about current offers through the weekly newsletter and may send congratulations, gift coupons, or other special messages if you have given your consent by checking the corresponding boxes.
V. Legal Basis for Processing
The Data Controller has the right to process personal data for the following purposes:
- Because data processing is necessary to create an account, operate the visualize.ro website, and provide access to the services offered on visualize.ro (conclusion of a distance selling contract), perform payment for service costs, and provide responses to placed complaints, if applicable,
- Because you have provided explicit consent in this regard by checking the appropriate boxes (if applicable).
If data processing is not necessary for the conclusion and execution of our legal relationships, we will not process personal data for any of the above purposes unless you have given your consent by checking the corresponding boxes.
VI. Storage and Processing Duration of Personal Data
We process and store personal data for the duration necessary to fulfill the purposes for which the data was collected and in any case for the period required by applicable legal regulations.
We aim to periodically review and update (as a principle, every 12 months) our database so as not to store data that is no longer necessary for the purposes for which it was collected.
VII. Sharing Data with Other Parties
Cantemir Software Dev SRL may provide your personal data to other companies with whom we have partnership relationships, but only under a confidentiality commitment from them, ensuring that this data is kept secure and that the provision of this personal information is in accordance with applicable law, such as courier service providers, banking services, etc., other companies with which we may develop joint marketing programs for our products and services.
Your personal information may also be provided to the Prosecutor's Office, the Police, the Judicial Courts, and other competent state authorities, in accordance with the provisions of the law and based on explicit requests.
Your personal data may be transferred outside the country to countries within the European Union ("EU") or the European Economic Area ("EEA"). Therefore, we inform you that any transfer made by the Controller to an EU or EEA member state will comply with the legal provisions of the General Data Protection Regulation no. 2016/679 adopted by the European Parliament ("GDPR").
Personal data mentioned in this notice are not transferred to countries that do not provide adequate protection with regard to the processing of personal data.
VIII. Data Security Measures
This site adopts all necessary security measures to protect the personal information of our users. When you enter personal data on our site, the information will be protected both offline and online. All personal data will be processed through secure pages that use SSL encryption, indicated by a padlock symbol at the bottom of the Microsoft Internet Explorer browser window.
We provide training courses for our employees on the importance of protecting personal data and make every effort to ensure that our partners also implement appropriate measures for processing personal data that may be shared with them within our contractual relationships.
IX. Your Rights Regarding the Personal Data You Provide
Based on a written, dated, and signed request sent to Cantemir Software Dev SRL, located in Bucharest, str. Banul Udrea, no. 5-7, Sector 3 (or by email at email@example.com), you can exercise the following rights free of charge:
- The right to information - you can request information and details about the activities of processing personal data. We are available at the address: Bucharest, str. Banul Udrea, no. 5-7, Sector 3, at the email address firstname.lastname@example.org, or at the phone number +40 (0) 213-100-095 (standard rate number).
We are attentive to ensuring your right to receive clear, transparent, easily understandable, and accessible information regarding how we process your data, including details of the rights you hold in this regard, as presented in this document.
The right to rectification - if you find that your personal data that we process is incorrect, incomplete, or inaccurate, you can rectify or complete it by simply requesting rectification sent to the email address email@example.com.
The right to erasure ("right to be forgotten") - in cases where data processing was not legal or in other cases provided by law, you can delete them yourself or obtain their deletion by sending a request to the email address firstname.lastname@example.org. Data will be deleted within a maximum of 30 days from the date of the request, and collected data will be removed from backup files within 30 days from the date of deletion. Data deletion may occur in any of the following situations:
a) we no longer need personal data for any of the purposes for which we previously processed them; b) you withdraw the consent on which we previously processed them and there is no other legal basis on which we can base future processing; c) you object to the processing when we process data for direct marketing purposes (including profiling for direct marketing), d) you object to data processing based on our legitimate interest, and we cannot demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms; e) personal data are processed unlawfully; f) personal data must be deleted to comply with our legal obligations.
We may reject the request for data deletion if:
(a) we need to comply with legal obligations to retain data; (b) if the data is necessary for us to establish, exercise, or defend our rights in court.
The right to restrict processing - you can request the restriction of processing in cases where:
a) you contest the accuracy of data for a period that allows us to verify the correctness of the data; b) processing is unlawful, but you object to the erasure of personal data and instead request restriction; c) if the Controller no longer needs personal data for processing purposes, but you request them for the establishment, exercise, or defense of a right in court or before arbitration bodies; d) if you object to the processing while we verify whether our legitimate interests override your rights.
The right to object - you can object, in particular, to processing based on our legitimate interest.
The right to data portability - you can receive, under certain conditions, the personal data you have provided to us; this data will be transmitted to you in JSON format by email within 30 days of your request, or you can request that the data be transmitted to another Controller.
The right to lodge a complaint - you can file a complaint about the way personal data is processed with the National Authority for the Supervision of Personal Data Processing (ANSPDCP).
Contact details and information regarding ANSPDCP can be found on the website http://www.dataprotection.ro/.
- The right to withdraw consent - in cases where processing is based on your consent, you can withdraw it at any time.
The withdrawal of consent will only have effects for the future; processing carried out before the withdrawal remains valid.
- The right not to be subject to automated decisions or additional profiling related to automated decisions: you can request and obtain human intervention regarding such processing or express your own point of view regarding this type of processing.