The Privacy Policy informs you about the information we collect from you when you use our website. In collecting this information, we act as the data controller and, by law, we are required to provide you with information about us, the purpose and manner in which we use your data, and the rights you have over your personal data.
Our data protection policy and practices focus on the proper and lawful processing, exchange, and storage of personal information, while ensuring confidentiality, integrity, and availability.
By reading this privacy policy, you will learn about your rights and all the information related to the processing of personal data.
The Privacy Policy is based on the following data protection principles:
– Personal data will be processed in a lawful, fair, and transparent manner;
– Personal data will be collected only for specified, legitimate, and explicit purposes and will not be processed further in a way incompatible with those purposes;
– The collection of personal data will be adequate, relevant, and limited to what is necessary for the purposes of processing;
– Personal data will be accurate and, where necessary, updated;
– All necessary measures will be taken to ensure that incorrect data is erased or rectified without delay;
– Personal data will be stored in a form that permits identification of the data subject and for no longer than necessary for the purposes for which the data are processed;
– All personal data will be kept confidential and stored in a manner that ensures the required security;
– Personal data will not be disclosed to third parties unless necessary for providing our services;
– Data subjects have the right to request access to their personal data, to rectify or delete it, to object or restrict the processing of their data, as well as the right to data portability.
Personal Data:
Personal data means any information that can be linked to an identified or identifiable individual (the data subject). Personal data includes all types of direct or indirect information (i.e., used in connection with other data) related to the data subject, such as name, birthdate, addresses, email addresses, phone numbers, etc.
- Who are we?
– Organization name: ELF CONSULTING SRL
– Registration number in the Trade Register: J12/1080/2007
– Unique Identification Code: RO21279804
– Headquarters address: Prof. Ciortea Street no. 3/40, Cluj-Napoca, Cluj County, Romania
– Email: office@elfwise.ro
– Phone: 0769638834
We are not required to appoint a data protection officer, so any questions regarding the use of your personal data should be directed to the contact information above.
- How do we use your information?
2.1. When you use our website
When you use our website to search for our services and view the information we provide, a number of cookies are used by us (first-party cookies) and third parties (third-party cookies) to allow the website to function, to collect useful information about visitors, and to provide you with the best experience when using our website.
2.2. What are cookies?
Cookies are small text files placed on the user’s device to track usage and record preferences. Our cookies do not contain information that identifies individuals. We collect certain information automatically through the use of cookies and tracking technologies such as Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), page referrals/outputs, pages viewed on our site, operating system, date/time, and/or clickstream data to analyze trends in aggregate and to manage the site. Website users can control the use of cookies in their browser settings, but if the user decides to disable cookies, this action will limit certain features and functionalities of our website and services.
Some of the cookies we use are strictly necessary for the website to function, and we do not require your consent to place them on your device. These cookies are listed below.
However, for cookies that are useful but not strictly necessary, we will always ask for your consent before placing them.
For more information about the use of cookies, please refer to our Cookie Policy.
2.3. When you submit a request through our website
When you submit a request or message through our website, we ask for your name, email address, and phone number as personal data.
We use this information to respond to your request. We may send you an email several times after you make a request, to ensure that we have responded to your request and to improve the user experience.
Your request is stored and processed for 3 years for safety reasons. The collected personal data is not disclosed to other parties.
We do not use the information you provide through the contact form to make automated decisions that could affect you.
We keep emails from requests for three years, after which they are securely archived and retained for five years before being deleted. No CRM records are made via the website. CRM stands for Customer Relationship Management.
2.4. Subscribing to our newsletter
When you request to subscribe to our newsletter, we ask for your email address.
You will also check a box agreeing to commercial communication regarding the types of data processed, storage duration, and your rights as outlined in this privacy policy.
We use this information to send you the latest news, projects, and other relevant information.
By subscribing to the newsletter, your data will be stored and processed until you withdraw your consent. You can withdraw your consent at any time by submitting a request via email or by clicking the unsubscribe box at the end of each newsletter we send you. The collected personal data will not be disclosed to other parties.
Your rights as a data subject
You can ask us what information we have about you and request corrections if any of it is inaccurate. If we have asked for your consent to process personal data, you can withdraw this consent at any time.
If we process your personal data to fulfill a contract or based on your consent, you may request us to provide you with a copy of the information in a readable format so that you can transfer it to another provider.
If we process your personal data based on consent or legitimate interest, you can request the deletion of your data.
You have the right to request that we stop using your information for a period of time if you believe that we are not doing so legally.
In certain circumstances, you can also request that we not make decisions that affect you using automated processing or profiling.
All rights listed above can be summarized as follows: the right to access personal data, to rectify or delete it, to restrict processing or object to processing, as well as the right to data portability. Data portability allows you to request us to transfer all the data we hold to another person you explicitly designate.
To send a request regarding your personal data via email, mail, or phone, please use the contact information provided above in the “Who are we?” section of this policy. We will respond to your requests within 30 days of the request date.
Right to file a complaint
If you have a complaint regarding our use of your information, we would prefer that you contact us first, so that we can resolve the issue amicably. However, you can also contact the National Supervisory Authority for Personal Data Processing for Information through their website at [http://www.dataprotection.ro/](http://www.dataprotection.ro/) or write to them at:
B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Postal Code 010336, Bucharest, Romania
Transfer of personal data to a third country
We do not intend to transfer personal data to a third country or outside the EU or to an international organization. If this occurs, you will be notified to obtain your consent or to indicate the appropriate guarantees that ensure the same standard of protection of personal data processing.
Disclosure of personal data
Personal data will not be disclosed to third parties unless necessary for us to provide our services. Occasionally, we enter into contracts with other companies and business partners that work on our behalf, such as technical companies for processing and delivering the systems and technologies that develop our products and services. In these cases, we will disclose the necessary information. Service providers will only be allowed to access the personal data necessary for delivering their services. We will not disclose personal data to third parties for the purpose of allowing them to market their products and services to our clients. If users do not want us to disclose personal data to these companies, they are encouraged to contact us at the email address provided above.
In certain situations, we may need to disclose personal data in response to requests from regulatory authorities to fulfill legal requirements. We will also disclose personal information if required by law, such as in response to a subpoena or other legal processes, when we believe in good faith that disclosure is necessary to protect our rights, the safety of our clients or others, to investigate fraud, or to respond to a request from public authorities.
Security of processing
We will process data securely and will implement and maintain appropriate technical measures to protect personal data against accidental or unlawful destruction, loss, alteration, disclosure, or unauthorized access, especially when the processing involves the transmission of data over a network, as well as against any other form of unlawful processing. Questions related to personal data security can be sent to the email address office@elfwise.ro.
Specifically, data on this site is securely collected via HTTPS over TLS v1.3, stored in Mailchimp, Google Drive, Dropbox, and processed manually from the storage environment.
Marketing emails can only be sent with your express consent. This specific form of consent must be freely given, informed, and specific. These requests are fulfilled when you opt to receive marketing emails (you approve it).
You will always have the right to object, upon request and at no cost, to the processing of personal data for direct marketing purposes without needing to provide specific justifications.
Marketing emails contain information that we believe is of interest to you, as well as the latest news related to our services.
Updates to this Privacy Policy
We regularly review and, if necessary, periodically update this privacy policy when changes occur as a result of service provision. If we want to use your personal data in a way not previously identified, we will contact you to provide information about this and, if necessary, to request your consent.
Our data protection policy and practices focus on the proper and lawful processing, exchange, and storage of personal information while ensuring confidentiality, integrity, and availability.
Our website complies with the General Data Protection Regulation (“GDPR”) (Regulation (EU) 2016/679).
Thank you for your interest in the website www.elfwise.ro.
For any additional questions regarding how personal data is processed, please contact us via email at office@elfwise.ro or by phone at 0769.638.834.