PRIVACY POLICY
Considering the General Data Protection Regulation" or "GDPR", Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/CE, published in the Official Journal of the European Union L 119 (4.5.2016) and applicable from 25 May 2018, we send you this document to detail when and why we process your data your personal information, how we use it, the conditions under which we can disclose it to others and how we store it safely.
Processing of personal data and role of the parties:
In the context of the conclusion and execution of the Contract, the Parties will process a series of personal data, respectively: the personal data of the Client's contact persons disclosed by the Client to SC ATMSF CONCEPT SRL and the personal data of the contact persons of SC ATMSF CONCEPT SRL disclosed to the Client;
What are personal data?
Any information through which a natural person becomes identifiable, such as: a name, an identification number, location data, an online identifier, one or more elements specific to his physical, physiological, genetic, psychological, economic, cultural or social etc.
What does the processing of personal data mean?
Any operation or set of operations performed on personal data or sets of personal data, with or without the use of automated means, such as: collection, registration, organization, structuring, storage, adaptation, modification, extraction, consultation , use, disclosure by transmission (including to third parties), dissemination or making available in any other way, joining/aligning or combining, blocking/restricting, deleting or destroying
What are the risks generated by improper processing that does not comply with national and European legal provisions
The risk to which Regulation (EU) 2016/679 and Law no. 677/200, with subsequent amendments and additions refers to is defined as follows:
,,The risk [..] may be the result of a processing of personal data that could generate damages of a physical, material or moral nature, especially in cases where: the processing may lead to discrimination, identity theft or fraud, loss financial, reputational compromise, loss of confidentiality of personal data protected by professional secrecy, unauthorized reversal of pseudonymization or any other significant disadvantage of an economic or social nature personal data and regarding the free movement of such data)
We process your personal data for specific purposes
We process your personal data in order to execute the contract with the legal entity or natural person, on whose behalf you act (which also includes interactions prior to signing it) and to fulfill our obligations as a contracting party.
We can also send you offers, promotions, advertising and marketing messages by e-mail, without any other obligations or payments from any party or with your consent to benefit from the organization of contests and advertising campaigns with prizes.
In addition, we process your personal data in order to satisfy legitimate interests, for example:
prevention, detection as well as analysis and management of commercial risks;
in connection with any claim, action or proceeding (including, but not limited to, drafting and reviewing documents, preparing documentation necessary to conclude a transaction, obtaining legal advice and facilitating the resolution of disputes) and/or for the protection or exercise of rights and obligations our contractual and legal;
cooperation with public authorities and institutions;
performing internal statistics, with the aim of improving the company's activity and offering the most coherent and personalized offers;
We will process the personal data during the existence of the data subject's account, and during the warranty period of the purchased products, and after the deletion of the data subject's account, the company will transform the personal data into anonymous data and will process them for internal statistical purposes, for the duration of the company's existence .
Who else can process personal data on our behalf?
The Company will make all reasonable efforts to protect your personal data in our possession or control by establishing reasonable security measures to prevent unauthorized access, collection, use, disclosure, copying, modification or disposal, as well as other similar risks.
Our company can authorize courier companies to process such data for the delivery of products, at the same time, our employees are also involved in the process of collecting and processing personal data.
Also, the company can provide personal data to other companies with which it is in partnership, but only on the basis of a confidentiality commitment from them, by which it guarantees that this data is kept safe and that the provision of this personal information do according to the legislation in force, as follows: providers of marketing services, courier, payment/banking services, telemarketing or other services, provided by companies with which we can develop joint programs for offering on the market of our Goods and Services, insurers.
Your information, respectively personal data, can also be provided to the General Prosecutor's Office, the Police, the courts and other competent state bodies, based on and within the limits of the legal provisions and as a result of express requests.
Rights and obligations of the parties:
In the processing of personal data according to the Contract, the Parties undertake to comply with all the obligations applicable to them as personal data operators according to the legislation on the protection of personal data including, but without limitation, according to the provisions of the GDPR
2.1. processes the personal data of the Client's Contact Persons for the purpose of concluding and executing the Contract, as well as for the purpose of sending communications to the Client's Contact Persons, including commercial communications from SC ATMSF CONCEPT SRL.
2.2. It complies with its obligations as an operator regarding the breach of personal data security and at the same time informs the Client of any such breach of personal data security without undue delay.
2.3. Appoint a personal data protection officer, who can be contacted by the Client, for matters related to the protection of personal data, at the following e-mail address: atmsf.design@gmail.com;
2.4. It processes the personal data of the Client's contact persons for the purpose of concluding and executing the Contract, thus ensuring that it complies with the requirements of the legislation by using an appropriate basis for data processing and ensuring adequate information of SC ATMSF CONCEPT SRL, according to this document;
2.5. As a personal data operator, he is responsible for implementing appropriate technical and organizational measures to ensure the security and confidentiality of personal data, to all clients who provide personal data as well as to the contact persons of SC ATMSF CONCEPT SRL, mentioned in the contract or other documents.
2.6. If obliged according to the applicable legislation, appoint a person responsible for the protection of personal data and communicate the contact details at which he can be contacted by SC ATMSF CONCEPT SRL for issues related to the protection of personal data;
Unless otherwise provided by law, you have the following rights:
1. The right of access, i.e. the right to obtain a confirmation from us that we are processing your personal data, as well as access to them and the provision of information about the processing method;
2. The right to rectification, which refers to the correction, without undue delay, of inaccurate personal data and/or the completion of incomplete data;
3. The right to erasure/the right to be forgotten, i.e. the right to delete your collected personal data without undue delay, if this data is no longer necessary to fulfill the purposes for which it was collected and there is no other legal basis for processing, the data was collected illegally or the data must be deleted to comply with a legal obligation;
4. The right to restrict the processing or to object, which applies if you dispute the accuracy of the personal data, the processing is illegal.
5. The right to portability, i.e. your right to receive the personal data you have provided to us for the purposes indicated herein, in a structured, commonly used and machine-readable format, as well as the right to send this data to another operator;
6. The right to file a complaint with the National Personal Data Protection Supervisory Authority (ANSPDCP) at the postal address b-dul. G-ral. Gheorghe Magheru no. 28-30, sector 1, 010336 Bucharest or to the e-mail address anspdcp@dataprotection.ro;
7. The right to information - you can request information regarding the processing activities of your personal data;
The right to object - you can object, in particular, to data processing based on our legitimate interest;
9. The right to withdraw consent - in cases where the processing is based on your consent, you can withdraw it at any time. The withdrawal of consent will only have effects for the future, the processing carried out prior to the withdrawal still remaining valid;
With the exception of the right to file a complaint with the ANSPDCP, according to the above, these rights can be exercised by sending a written request to the SC ATMSF CONCEPT SRL headquarters, Strada 9 Mai no. 2, Arad.
Confidentiality measures for the protection of personal data:
3.1. We ensure that the rights of data subjects related to the processing of personal data held by us are respected and that we provide the necessary means to enable them to exercise their rights.
3.2. Providing information to data subjects – we provide data subjects with clear and easily accessible information about the data controller and the processing of their personal data.
3.3. Providing a mechanism for amending or withdrawing consent – we provide a mechanism for data subjects to amend or withdraw their consent.
3.4. Providing a mechanism to object to processing – we provide a mechanism that allows data subjects to object to the processing of their personal data.
3.5. Sharing the exercise of principled rights with respect to personal data - we take reasonable steps to inform third parties with whom the personal data has been shared, of any modification, withdrawal or objections resulting from the exercise of data subjects' rights.
3.6. Rectification or deletion – we implement a mechanism to facilitate the exercise of data subjects' rights to access, correct and/or delete their personal data.
3.7. Providing copies of processed personal data – we may provide a copy of processed personal data, subject to the retention and deletion policy, when requested by a data controller.
3.8. Limitation of collection – we limit the collection of personal data to the minimum relevant, proportionate and necessary for the identified purposes.
3.9. Limitation of processing – we limit the processing of personal data to what is appropriate, relevant and necessary for the identified purposes.
3.10. Retention – we do not retain personal data longer than is necessary for the purpose for which the personal data was processed.
3.11. Removal - will be done safely and to avoid and prevent other risks.
Security of personal data:
The Company will make all reasonable efforts to protect your personal data in our possession or control by establishing reasonable security measures to prevent unauthorized access, collection, use, disclosure, copying, modification or disposal, as well as other similar risks.
Also, the company guarantees the security and confidentiality of the data hosted and transmitted through its computer system, declares that the databases are protected, including through electronic encryption, collaboration protocols have been concluded with the computer companies that manage our website, security specifications have been provided of data in the collaboration contracts as well as in the internal procedures and there are confidentiality provisions in the contracts of our employees.
SC ATMSF CONCEPT SRL
RO39549404
J02/1036/2018
Headquarters: Str. Emil Montia nr.27, Arad, Romania
Office: Str 9 Mai nr.2, Arad, Romania
Contact: atmsf.design@gmail.com / +40 745 627 086