Last Modified on: June 21, 2024
Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, hereinafter referred to as GDPR) was adopted by the European Parliament and the Council of the European Union on 27 April 2016, with its provisions becoming directly applicable from 25 May 2018. This Regulation expressly repeals Directive 95/46/EC, thus also replacing the provisions of Law No. 677/2001 (currently repealed).
The Regulation is directly applicable in all Member States, protecting the rights of all natural persons within the European Union territory. In material terms, the Regulation applies to all controllers processing personal data. The Regulation does not apply to the processing of personal data concerning legal persons, and in particular to legal entities, including the name and type of legal person and the contact details of the legal person.
Personal data are defined as any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Processing of personal data means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Considering Article 4(7) of the Regulation, which defines the concept of 'controller' as the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data, the controller processing personal data through this website is Cool Web Design Srl, located at Dej, 1 Mai Street, No. 41, Bl M1, Ap 6, registered with the Trade Registry under No. J12/610/2022, represented legally by Pop Andrei Catalin, with contact details contact@coolweb.ro, 0746062250.
WHAT PERSONAL DATA IS COLLECTED
The operator of this website collects, stores, and processes the following personal data about you: Name, contact details (such as email, phone, fax), IP.
GENERALITIES
For the processing of personal data to be lawful, GDPR provides that it must be based on a legitimate reason, such as the execution or conclusion of a contract, compliance with a legal obligation, or based on the valid consent expressed by the data subject beforehand. In the latter case, the controller is obliged to be able to demonstrate that the data subject has given consent for the respective processing. Consent expressed under Directive 95/46/EC remains valid if it meets the conditions set out in GDPR.
Consent must be given through a statement or a clear affirmative action that constitutes a freely given, specific, informed, and unambiguous indication of the data subject's agreement to the processing of personal data relating to them. Where consent of the data subject is given in the context of a declaration which also concerns other matters, the request for consent shall be presented in a manner which is clearly distinguishable from the other matters, in an intelligible and easily accessible form, using clear and plain language. For the processing of personal data to be lawful, GDPR provides that it must be based on a legitimate reason, such as the execution or conclusion of a contract, compliance with a legal obligation, or based on the valid consent expressed by the data subject beforehand. In the latter case, the controller is obliged to be able to demonstrate that the data subject has given consent for the respective processing. Consent expressed under Directive 95/46/EC remains valid if it meets the conditions set out in GDPR.
This site uses cookies. These do not harm your computer and do not contain viruses, but serve to make our web presence more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Many of the cookies used are what are known as 'session cookies', which are automatically deleted after your visit. Others remain stored on your device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.
Cookies that are necessary to enable electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored in accordance with Art. 6(1)(f) GDPR, as the website operator has a legitimate interest in the storage of cookies to ensure an optimized and error-free provision of services. Other cookies (such as those used for analyzing your browsing behavior) are also stored and processed separately in this document.
If you send us inquiries via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your questions and any follow-up questions. We do not share this information without your permission.
Therefore, we will process any data you enter into the contact form only with your consent (Art. 6(1)(a) GDPR). You can revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g., after your inquiry has been resolved). Mandatory statutory provisions - especially retention periods - remain unaffected.
Therefore, we will process any data you enter into the contact form only with your consent (Art. 6(1)(a) GDPR). You can revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
The provisions of GDPR (Art. 37(1)) do not apply, according to which the Controller and the processor shall appoint a Data Protection Officer whenever:According to the GDPR Regulation, the controller or the processor should keep records of processing activities under its responsibility for a reasonable period. Therefore, these records will include all of the following information:
Taking into account the state of the art, the costs of implementation, and the nature, scope, context, and purposes of processing as well as the risks to individuals' rights and freedoms, the controller implements appropriate technical and organizational measures to ensure that, by default, only personal data necessary for each specific purpose of the processing are processed.
According to Article 33(1) of the GDPR, in case of a personal data breach, we will notify this to the National Supervisory Authority for Personal Data Processing without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the breach is unlikely to result in a risk to the rights and freedoms of individuals.
According to Article 34 of the GDPR, in case of a personal data breach which is likely to result in a high risk to the rights and freedoms of individuals, we will inform the data subject without undue delay about such breach, unless:
In order to receive a newsletter, it is necessary to provide a valid email address, along with specific information that can identify the owner of this address. Also, your consent is required for the transmission of the newsletter, and therefore, we inform you that any other personal data will be collected and stored only based on your agreement. The data collected in this way are processed only for the purpose of transmitting the newsletter and will not be transmitted to third parties.
Therefore, we will process any data you enter into the contact form only with your consent, in accordance with the provisions of Article 6(1)(a) GDPR.
This privacy policy regarding the processing of personal data is generated in accordance with the provisions of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, as well as with other applicable national legal provisions.
We reserve the right to make any additions or modifications to this policy. We recommend consulting the Policy regularly for accurate and updated information regarding the processing of personal data.
For more details regarding this GDPR Policy and to exercise any of the rights mentioned above, a written notification can be sent to the contact details provided above.