Privacy Policy
1.
Foreword
The purpose of this Privacy Policy is to explain to you what
data we process, why we process it and what we do with it. We take your privacy
seriously and never sell lists or email addresses. Being fully aware that your
personal information belongs to you, we do our best to store it securely and
process it carefully. We do not provide information to third parties without
informing you.
2.
Other services
This Privacy Policy does not cover applications and sites of
other third parties that you may access by removing links from our site. This
is beyond our control. We encourage you to review the Privacy Policy on any
site and / or application before providing personal data.
3.
Who are we?
EUROCIERE SRL, based in
Oradea, No 37 Șoseaua Borșului, Bihor County, Unique Registration Code:
RO16376401 (hereinafter
referred to as “EUROCIERE SRL”) is responsible for
processing your personal data that we collect directly from you or from other
sources.
According to the
legislation, our company, as a potential employer of you, is a personal data
operator. In order for your data to be processed securely, we have made every
effort to take reasonable steps to protect your personal information.
4.
Who are you?
According to the
legislation, you, a potential employee of our company, are a "targeted
person", i.e. an identified or identifiable natural person. In order to be
completely transparent about data processing and to allow you to easily
exercise your rights at any time, we have implemented measures to facilitate
communication between us, the data operator and you, the data subject.
5.
Changes
We may change this Privacy Policy at any time. All updates
and changes to this Policy are valid immediately upon notification, which we
will make by posting on the site and / or notifying you by e-mail..
6.
Questions
and requests
If you have any questions or concerns regarding the
processing of your data or you wish to exercise your legal rights in relation
to the data we hold or if you have concerns about how we treat any privacy
issues, you can write to us at e-mail:info@eurociere.ro.
7.
Our Commitment
The protection of your
personal information is very important to us. Therefore, we are committed to complying
with the following principles:
Legality,
equity and transparency
– We
process your data legally and correctly. We are always transparent about the
information we use, and you are properly informed.
The
control belongs to you
– Within
the limits of the law, we offer you the possibility to examine, modify, delete
the personal data that you have shared with us and to exercise your other
rights.
Data
integrity and purpose limitation – We use the data only for the
purposes described at the time of collection or for new purposes compatible
with the original ones. In all cases, our purposes are compatible with the law.
We take reasonable steps to ensure that our personal data is accurate, complete
and up to date.
Security – We
have implemented reasonable security and encryption measures so that we can
better protect your information. However, keep in mind that no website, no
application, and no internet connection are completely secure.
8.
What kind of information we collect
about you?
You may use the Platform without disclosing personal data.
However, if you wish to benefit from our services, you will be asked to provide
your data during a registration process.
The requested data may include: full name, telephone number,
e-mail address, home address.
We may collect data through cookies or other similar
technologies, such as IP address, internet browser, ads you clicked, location,
web pages you access on our site.
9.
Why do we collect this information?
We collect your
information for specific and legitimate purposes that include, but are not
limited to, the following:
- In
order to conclude or execute an agreement between you and us;
- Account
registration;
- To
answer your questions and requests;
- For
marketing purposes, but only if we have your prior consent;
- To
provide and improve the services and products we offer;
- To
diagnose or fix technical problems;
- To
provide you with advertising and personalized content;
- To
defend us against cyber attacks;
- For
the creation and / or maintenance of accounts;
- To
comply with the law;
- To
establish or claim a right in court.
10. What
are the legal grounds for data processing?
·
You
have given your consent for the processing of personal data – Please note that you may withdraw
your consent at any time by following the unsubscribe instructions in each
e-mail or by sending a written request to the e-mail address info@eurociere.ro.
·
Processing
is required to conclude or execute an agreement between you and us – Such as the execution of an
agreement with respect to the sale or purchase of one or more services, or to
take action, at your request, before concluding an agreement.
·
Processing
is necessary in order to fulfill a legal obligation – For example, keeping accounting
documents for a period of 10 years.
11. How do we disclose your data?
·
EUROCIERE SRL may transfer the Data, by disclosing or granting
remote access rights, only through secure applications, to third parties, such
as affiliates and other business partners of EUROCIERE SRL, which act as
proxies, processing personal data for and on behalf of EUROCIERE SRL (for
example, data storage on cloud servers, legal and financial consultants,
technical service providers or shipping assistance providers), with which
EUROCIERE SRL has entered into contractual agreements required in accordance
with EU and national regulations.
·
We
may also disclose your data to business partners as a result of a joint effort
to provide a product or service..
·
We
will transfer Data to third parties only to the extent necessary to fulfill the
applicable Processing Purposes for which your data is collected and processed.
·
Personal
data collected and processed for the Purposes of Processing described in this
Privacy Policy may be stored on servers located abroad or transferred to
affiliated entities based outside the territory of the European Union. In case
of transfer of Data to third countries, EUROCIERE SRL will communicate the
intention of the transfer as well as the third countries concerned, the purpose
of the transfer and the request for consent, when such consent is required
according to the legal provisions in force..
·
EUROCIERE SRL may disclose
the Data in order to comply with legal provisions or in response to a request
from a court or other public authority.
11. How
long do we store the data?
The personal data collected by EUROCIERE SRL will be stored
for a period of 5 years from the termination of the contractual relations or
any other longer period imposed by law, regulations or applicable norms
regarding the obligations to keep accounting documents or requests of public
authorities.
Immediately after the end of the applicable storage period,
the data will be:
- deleted
or destroyed; or
- made
anonymous; or
- transferred
to an archive (unless prohibited by applicable law or regulation for the
preservation of records).
The personal data collected and used to create your Account
will be deleted immediately, if you close the account.
In order to ensure that the Data is not kept longer than
necessary, EUROCIERE SRL will periodically review the Data and, if necessary,
delete them.
12. What
security measures have we taken?
As part of the administration of the Platform, we have taken
technical and organizational measures to ensure a level of security appropriate
to the risks involved in data processing, in particular through misuse,
accidental destruction, illegal or unauthorized access, loss, alteration,
disclosure, intentional or accidental manipulation, third party access,
deletion and modification. To this end, we have developed and implemented data
security policies and other privacy practices. In addition, our security
procedures are constantly reviewed on the basis of new technological
revolutions.
For more information on our security practices, please fill
out the contact form in the Contact section of the Platform.
You will be notified of a data breach within a reasonable
time after such a breach is discovered, unless a competent public body
determines that the notification would prevent a criminal investigation or harm
national security. In this case, the notification shall be postponed according
to the instructions of such body. We will promptly answer your questions
regarding such a data breach.
13. What are your rights?
- The
right to withdraw consent
The data subject has the right to
withdraw his or her consent when the consent is used as the legal basis for the
processing (e.g. when the processing is not based on a different justification
allowed by the GDPR such as a legal or contractual obligation).
Before excluding the
data subject's data from processing, we must confirm that the request for
consent is indeed the legal basis for processing. If not, the request may be
rejected on the grounds that the processing does not require the consent of the
data subject. Otherwise, the application should be granted.
In many cases, giving
and withdrawing consent will be available electronically - online, and this
procedure will not be necessary.
When consent concerns a child (defined
by the GDPR Regulation as a person up to 16 years of age), the expression and
withdrawal of consent must be authorized by the holder of parental
responsibility over the child.
- The right to be informed about
the processing of your data
When personal data are collected from
the data subject or obtained from other sources, there is a requirement to
inform the data subject about the purpose of the use of such data and about the
rights he has over them.
- The right to access data
The data subject has the right to ask
the company what data he processes about him, to have access to those data, as
well as to the following information:
1. Purpose
of processing
2. The
categories of personal data involved
3. Recipients
or categories of recipients of the data if any, in particular third countries
or international organizations
4. Duration
of storage of personal data (or criteria used to establish this period)
5. The
data subject's rights to rectify or delete his personal data and to limit or
oppose his processing
6. The
right of the data subject to lodge a complaint with a supervisory authority
7. Information
on the source of the data, if not obtained directly from the data subject
8. Whether
the personal data will be subject to automatic processing, including profiling
and, if so, the possible consequences involved
9. Where
data are transferred to a third country or to an international organization,
information on the safeguards applicable
In
most cases, the decision-making process for such requests will be
straightforward if it is not concluded that the request is manifestly unfounded
or excessive. However, compiling information may require the help of data
owners.
- The right to rectify inaccurate
or incomplete data
If personal data are inaccurate, the
data subject has the right to request the correction and completion of
incomplete personal data on the basis of the information they provide.
If necessary, we will take steps to
validate the information provided by the data subject to ensure that it is
correct before modifying it.
- Right of erasure ("right
to be forgotten")
We offer the data subject the right to
ask us to delete personal data without delay in connection with one of the
following situations:
Ø personal
data are no longer necessary for the purposes for which they were collected or
processed;
Ø the
data subject withdraws his / her consent on the basis of which the processing
takes place and there is no other legal basis for the processing;
Ø the
data subject opposes the processing and there are no legitimate reasons to
prevail in terms of processing;
Ø personal
data have been processed illegally;
Ø personal
data must be deleted in order to comply with the law;
Ø personal
data were collected in connection with the provision of online services to
children.
We will make a decision on each case of
such requests as to whether the application can or should be rejected for one
of the following reasons:
Ø the
data are necessary for the exercise of the right to free expression and
information;
Ø the
data are necessary for the fulfillment of a legal obligation;
Ø for
reasons of public interest in the field of public health;
Ø for
archiving purposes in the public interest;
Ø for
finding, exercising or defending a right in court.
- The right to restrict
processing
The data subject may exercise his right
to restrict processing in the following situations:
Ø the
data subject disputes the accuracy of the data, for a period that allows the
operator to verify the accuracy of the data;
Ø the
processing is illegal, and the data subject opposes the deletion of personal
data, requesting instead the restriction of their use;
Ø the
operator no longer needs the personal data for the purpose of processing, but
the data subject requests them for the finding, exercise or defense of a right
in court; or
Ø the
data subject objected to the processing for the period of time in which it is
verified whether the legitimate rights of the controller prevail over those of
the data subject.
If
the data is restricted, it will remain stored, but cannot be processed without
the person's consent. As an exception, they may be processed for the
establishment, exercise or defense of a right in court or for the protection of
the rights of another natural or legal person or for reasons of important
public interest of the Union or a Member State (provided that the person
concerned is informed about this). Other organizations that process personal
data on our behalf must also be informed of the restriction.
- The right to transmit the data
we have about you to another operator
The data subject has
the right to request that personal data be provided in a "structured,
commonly used and machine-readable" format (Article 20 of the GDPR
Regulation) and to transfer that data to another party, for example a another
service provider. This applies to personal data for which the processing is
based on the consent of the data subject, on the legal basis of the contract or
where the processing is carried out by automatic means.
- The right to object to data
processing
The data subject has the right to object
to the processing which is based on the following legal justifications:
Ø To
perform a task of public interest or in the exercise of public authority of the
operator
Ø For
the purpose of the legitimate interests of the operator
Once the opposition has been made, the
organization must justify the reasons on which the processing is based and
suspend processing until the decision has been taken (rule). The organization
will no longer process personal data, unless it demonstrates that it has
legitimate and compelling reasons justifying the processing and prevailing over
the interests, rights and freedoms of the data subject or that the purpose is
to establish, exercise or defend a right in court.
If
personal data is used for direct marketing, the organization will stop
processing.
- The right not to be subject to
a decision based exclusively on automatic processing, including profiling
The data subject has the right not to be
subject to an automatic decision, including the creation of profiles if the
decision has a significant or legal effect on it. The data subject also has the
right to express his / her point of view, to request human intervention and to
challenge the decision.
There are exceptions to this right when
making the decision:
1. It
is necessary for concluding or executing an agreement;
2. It
is authorized by national or European law;
3. It
is based on the explicit consent of the data subject;
In the situations referred to in points
(1) and (2), the organization shall implement appropriate measures to protect
the rights, freedoms and legitimate interests of the data subject, at least his
right to obtain human intervention from the operator, to express his point of
view and to challenge the decision.
- The right to seek justice
The
data subject also has the right to go to court when he or she considers that
his or her rights have been violated.
- The right to file a complaint
with a Supervisory Authority
It is important to know that:
- If
you have given your consent for direct marketing, you can withdraw it at
any time by following the unsubscribe instructions in each email / sums or
other email.
- If you want to exercise your
rights, you can do so by sending a written request, signed and dated to
the e-mail address:info@eurociere.ro
- The rights listed above are not
absolute. There are exceptions, so each request received will be analyzed
so that we can decide whether it is justified or not. To the extent that
the request is substantiated, we will facilitate your exercise of your
rights. If the request is unfounded, we will reject it, but we will inform
you about the reasons for the refusal and about the rights to file a
complaint with the Supervisory Authority and to go to court.
- We will try to respond to your
request within 30 days. However, the deadline can be extended depending on
various aspects, such as the complexity of the request, the large number
of requests received or the inability to identify you in a timely manner.
- If,
although we make every effort, we are unable to identify you and you do
not provide us with additional information in order to identify you, we
are not required to comply with the request.
14. Questions,
requests and exercise of rights
If you have any questions or concerns regarding the
processing of your information or you wish to exercise your legal rights or
have any other concerns regarding privacy, you may write to us at the e-mail
address : info@eurociere.ro.