Confidentiality Policy

  1. Introduction
    Starting with 25 May 2018, Regulation No. 679/2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (hereinafter referred to as “GDPR”) is applicable in all Member States of the European Union. In this regard, we adopted this Confidentiality Policy in order to align with the provisions of the new regulation.
  2. Who are we?

The data controller is Digital Atelier Interactiv SRL, based in Bucharest, Street Dr. Carol Davila, No. 74, Floor 1, apartment 2, District 5, registered with the Trade Register under No. J40/5877/16.05.2014, Sole Registration Code RO33175653, bank account: RO02INGB0000999904340655 opened at ING Bucharest.

To exercise your rights under Regulation No. 679/2016, you can address us with a written, dated and signed request at the following e-mail address: catalin@digitalatelier.ro and alexandru@digitalatelier.ro

The website, available at https://digitalatelierinteractiv.ro/, is owned by Digital Atelier Interactiv SRL.

  1. How do we collect personal data?

Directly: We obtain personal data directly from you, by filling out the online contact forms, when you call us by phone or e-mail us.

Indirectly: We can obtain personal data from the following sources:

  1. What categories of personal data do we collect?

We process the necessary data to respond to your requests:

  1. What are the legal grounds for data processing?

We can base our processing operations involving personal data on the following legal grounds:

  1. Why do we need personal data?

We process personal data in a transparent way for the following purposes:

  1. Do we share personal data with third parties?

We communicate personal data to third parties in order to improve the quality of services we provide. These third parties also have similar obligations to Digital Atelier Interactiv SRL with respect to the protection of personal data, being either data controllers or processors who process the data on our behalf or on behalf of the data controller.

We constantly make sure that our partners present sufficient guarantees for the implementation and application of appropriate technical and organizational measures, so that the processing of your personal data fulfils all legal requirements.

The above-mentioned personal data may be made available or transmitted to third parties in the following situations: (i) public authorities, auditors or institutions competent to carry out inspections and controls on the Company’s activity and assets, requesting the Company to provide information, by virtue of its legal obligations; (ii) to comply with a legal requirement or to protect the rights and assets of our Company or other entities or persons, such as courts of law; (iii) third-party acquirers, to the extent that the Company’s activity would be transferred (wholly or partially) and the data of the data subject would be part of the assets that are the subject of such a transaction.

We can share personal data with are the following entities:

  1. Do we transfer personal data outside of the European Economic Area?

We usually do not transfer personal data outside of the European Economic Area. However, some data may be forwarded in the U.S., for example through cookies placed by Google.

  1. Data processing for children under the age of 16

All personal data processing activities presented in this Policy refer only to people who are at least 16 years of age. The use of systems and processing results is forbidden for children who have not reached this age without the consent of their parents/legal representatives. If, despite our reasonable prevention efforts, such processing still takes place, we will terminate it once we become aware that the users have not reached the age mentioned above.

  1. Refusal of processing and its consequences

If you do not provide us with the personal data mentioned in the contact form, you will not be able to submit your request to us.

If you do not express your agreement to receive direct marketing communications, we will not be able to inform you about our offers or our partner’s offers.

  1. What are the rights of the data subjects?

As a data subject, you have the following rights:

The above rights may be exercised at any time. In order to exercise these rights, we encourage you to make a written request, dated and signed, or electronically to the following address: catalin@digitalatelier.ro and alexandru@digitalatelier.ro.

12 . Security of personal data

We have adopted technical security policies and procedures to protect personal data against loss, unauthorized use, destruction or alteration. We ensure that access to personal data is limited and authorized only to persons legally entitled to use it. These persons have the obligation to ensure the confidentiality of the data.

Also, if you want to withdraw your consent regarding the direct marketing messages, you can use the "unsubscribe" option that is included in each marketing communication.

  1. How long will we keep personal data?

We will store the personal data necessary to provide the services according to the object of activity, to keep in touch with the data subjects and to comply with our legal obligations. We will only store your personal data for the period of time it takes to achieve the above-mentioned processing purposes, while complying with the legal requirements in force. If Digital Atelier Interactiv SRL establishes that it has a legitimate interest or a legal obligation to further process your personal data for other purposes, you will be duly informed accordingly.

We consider that the above processing activities will require the storage of personal data over the following periods:

 

 

 

Purpose

Duration

1.

Browsing the website and using cookies

6 months 

2.

The answer to your questions, requests or complaints

1 year

3.

Newsletter

Until unsubscribing

4.

Other Direct Marketing Messages

Until withdrawal of consent

 

Once the processing period indicated above expires and Digital Atelier Interactiv SRL no longer has any legal or legitimate reason to process your personal data, it will be erased in accordance with the controller’s procedures, which may involve archiving, anonymizing or destroying it.

  1. Revision of this Confidentiality Policy

We will revise this Policy and, in doing so, we will post the revised document.