Privacy policy

Contents:

1. General dispositions
2. Details about our company
3. Processed data. Purpose, duration and basis of processing 
4. Sensitive data processed. Purpose, duration and basis of processing
5. Mechanisms and use of automated decision-making systems
6. Disclosure and Additional Use of Your Data
7. How we collect data
8. Information security
9. Transfer of your data outside the European Economic Area
10. Your rights to personal data
11. Privacy of minors
12. Principles of politics
13. amendments

1. availableÞii general

1.1 The confidentiality of personal data is one of the main concerns within the company ELM ELECTROMONTAJ CLUJ SA (hereinafter "the Company"). As such, we want to ensure the highest standards of confidentiality, integrity and transparency regarding the personal data we process in our activity.

1.2 Since in carrying out the activity it is necessary to process a series of personal data with predilection in relation to the specifics of our object of activity, we want to offer assurances that the processing will take place in compliance with the principles transparency and security of personal data. This privacy policy is intended to help you understand what data we collect, why we collect it and what we do with it.

1.3 Our data protection policy and practices focus on the appropriate and lawful processing, exchange and storage of personal information while ensuring confidentiality, integrity and availability.

1.4 All users have free access to the website www.elm.ro subject to compliance with this privacy policy. Our website complies with the General Data Protection Regulation - GDPR (Regulation (EU) 2016/679).

2. Details about our company

2.1 ELM ELECTROMONTAJ CLUJ SA (hereinafter the "Company") is a Romanian company, established according to Romanian law, with its registered office in the municipality of Cluj-Napoca, Traian Vuia str., no. 240-242, Cluj county, registered at the Office of the Trade Registry next to the Cluj Court under no. J12/3821/1991, having CIF RO201594 (hereinafter referred to as "Elm Electromontaj Cluj" or "Company").

2.2 The company acts as the operator of the personal data collected through the website www.elm.ro (the "Site").

2.3 The operator has the obligation to administer safely and only for the specified purposes, the personal data that the users www.elm.ro provides them.

3. Processed data. Purpose, duration ANDand the basis of the processing

*3.1.2 for more information about cookies please see our cookie policy.

3.9 Criteria for establishing retention periods

The data will be stored for the minimum period necessary to fulfill the purpose, taking into account the following:

• the purpose and use of your information both now and in the future (for example, if it is necessary for us to continue to store that information to continue to fulfill our obligations under a contract with you or to contact you in the future);
• if we have a legal obligation to continue processing your information (such as any record-keeping obligations imposed by law or relevant regulations);
• if we have any grounds to continue processing the information (such as your consent);
• the levels of risk, cost and liability involved in continuing to hold the information.

3.10 If we receive informationÞii about you from greANDEALA

If we receive information about you in error from a third party and/or we do not have a lawful basis for processing that information, we will delete your information.

4. Sensitive data processed. Purpose, duration ANDand the basis of the processing

Website www.elm.ro does not collect sensitive data.

5. mechanisms ANDand the use of automatic decision-making systems

5.1 We use automated decision-making mechanisms on our website. We do not consider this to have any legal effect on you or affect you in a similar way.

5.2 You have the right to object to our use of automated decision-making and profiling mechanisms described in this section. You can do this by opting out of cookies and similar technologies in accordance with the method described in the relevant section of this privacy policy. If you do not want us to process your real IP address (usually the IP address assigned by your Internet Service Provider) when you visit our website, you can use a virtual private network (VPN) or a free service.

5.3 You can learn more about the use of cookies and similar technologies (including the legal basis for their use) and how to opt out of them in the cookie policy available on the Site.

6. disclosure ANDand further use of your data

This section sets out the circumstances in which we will disclose your data to third parties and any additional purposes for which we use your data.

6.1 Disclosure of Your Data to Service Providers

6.1.1 disclosure ANDand informed useÞto you for legal reasons

1. Indication of possible criminal acts or threatsÞcountries to the safe addressÞpublic them to a competent authority.

If we suspect that criminal or potential criminal behavior has occurred, we will, in certain circumstances, need to contact an appropriate authority, such as the police. This could be the case, for example, if we suspect fraud or cybercrime, or if we receive threats or malicious communications against us or third parties.

Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation), respectively to prevent crime or suspected criminal activity (such as fraud).

1. In connection with a legal or potential litigation or proceedingÞlegal issue

We may need to use your information if we are involved in a dispute with you or a third party, for example, either to resolve the dispute or as part of mediation, arbitration or a court order or similar process.

Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).

Legitimate interest: resolution of disputes or potential disputes.

III. For continuous compliance with laws and regulations ANDand other requirementsÞit's legal

We will use and process your information to comply with legal obligations to which we are subject. For example, we may be required to disclose your information pursuant to a court order or subpoena, if we receive one.

Legal basis for processing: compliance with a legal obligation (Article 6(1)(c) of the General Data Protection Regulation).

Legal obligation: the legal obligations to disclose information, established in our charge by domestic or international normative acts (for example in the form of an international agreement that Romania has signed).

Legal basis for processing: legitimate interest (Article 6 paragraph (1) letter (f) of the General Data Protection Regulation).

Legitimate interest: if the legal obligations are part of the laws of another country and have not been integrated into the legal framework of Romania, we have a legitimate interest to comply with these obligations.

7. How we collect data

7.1 We collect your personal data in the following manner direct from you, for example, when you send us an email, apply for a job or sign up for the newsletter.

7.2  We collect your personal data and how automatic. When you use our services on the Company website, we collect information through cookies and by logging your activity. For more information on the use of cookies, please see the cookie policy.

8. Security informsÞDISCLOSURES

8.1 We take appropriate technical and organizational measures to secure your information and protect it against unauthorized or unlawful use and accidental loss or destruction, including:

• sharing and providing access to your data to the minimum extent necessary, subject to confidentiality restrictions where applicable and anonymously whenever possible;
• using secure servers to store information;
• verifying the identity of any person requesting access to information before granting them access to information;
• using the Secure Sockets Layer (SSL) standard to encrypt any information you submit to us through any forms on our website;
• we only transfer your data via a closed system or encrypted data transfers.

8.2 Sending information to us by email

Transmission of information over the Internet is not entirely secure, and if you send us information over the Internet (by email or any other means), you do so entirely at your own risk.

We cannot be liable for any expense, loss of profit, damage to reputation, damages, liabilities or any other form of loss or damage suffered by you as a result of your decision to submit information to us by such means.

9. Transfer of your data outside SpaÞthe European Economic Union (hereinafter "EEA")

9.1 Your data will not be transferred to countries outside the EEA.

10. Your rights to personal data

10.1 The person responsible for the protection of personal data

We have designated a personal data protection officer whom you can contact in connection with any matter related to the processing of your data, as well as to exercise your rights under applicable legal provisions, in particular if you have questions or concerns about how in which we process your personal data. The email address at which you can contact the Data Protection Officer is: dataprotection@energobit.com

10.2 Subject to certain restrictions, you have the following rights in relation to your data which you can exercise by sending a written request or email to dataprotection@energobit.com

• request access to your information and information about the use and processing of your information;
• request correction or deletion of your data;
• request the limitation of the use of your data;
• receive the information you have provided to us in a structured format and the right to transfer that information to another data controller (including a third-party data controller);
• to object to the processing of your data for certain purposes (for more information, see the section below entitled “Your right to object to the processing of data for certain purposes”); 
• withdraw your consent to the use of your data at any time where we rely on your consent to use or process that information. Please note that if you withdraw your consent, this will not affect the lawfulness of the use and processing of your data based on your consent before the time you withdraw your consent.

10.3 You can also submit a complaint related to the processing of your data to the National Authority for the Processing and Supervision of Personal Data (B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, postal code 010336, Bucharest, Romania, www .dataprotection.ro, anspdcp@dataprotection.ro).

10.4 Identity verificationÞii yours if you requestÞand access to informationÞyour

If you request access to your information, we are required by law to use all reasonable steps to verify your identity before doing so.

These measures are designed to protect your information and reduce the risk of identity fraud, identity theft, or general unauthorized access to your information.

10.5 How do we verify your identity?

10.5.1 Where we have appropriate information about you in our database, we will attempt to verify your identity using that information.

10.5.2 If it is not possible for us to identify you based on this information, or if we do not have sufficient information about you, we may request copies or certificates of documents in order to verify your identity before we can provide you with access to your data .

10.5.3 We will be able to confirm the exact information we need to verify your identity in the particular circumstances given, if and when you make such a request.

10.6 Your right to object toÞdata processing for certain purposes 

You have the following rights regarding your data which you can exercise by sending an email to dataprotection@energobit.com:

• object to us using or processing your information to carry out a task in the public interest or in our legitimate interest, including analyzing or predicting your behavior based on your information; 
• object to the use or processing of your data for direct marketing purposes (including any profile we engage in connection with such direct marketing) by clicking on the unsubscribe link or by sending an email/sms containing only the word "UNSUBSCRIBE” in response to any marketing communication we send.

10.7 For more information on how you can object to the use of data collected through cookies and similar technologies, see our cookie policy.

11. confidentialityÞthe ality of minors

11.1 We process data of persons under the age of 16, only with the consent of the legal representative, for the optimal performance of the services contracted by the legal representatives of minors.

11.2 We may receive information about persons under the age of 16 through the fraud or deception of a third party. If we are notified of this, as soon as we verify the information, when required by law, we will immediately obtain the consent of the legal representative to use this information or, if we cannot obtain such consent, we will delete the information from our servers. If you would like to notify us of receiving information about persons under the age of 16, please do so by sending an email to dataprotection@energobit.com.  

12. The principles on which our data protection policy is based:

1. a) The processing of personal data will be done in a legal, fair and transparent manner;
2. b) The collection of personal data will only be done for specified, explicit and legitimate purposes and the data will not be further processed in a manner incompatible with those purposes;
3. c) The collection of personal data will be adequate, relevant and limited to the information necessary for the purpose of processing;
4. d) Personal data will be accurate and, where necessary, updated;
5. e) All necessary steps will be taken to ensure that incorrect data is deleted or corrected without delay;
6. f) Personal data will be kept in a form that allows the identification of the person concerned and for a period no longer than that in which the personal data is processed;
7. g) All personal data will be kept confidential and stored in a manner that ensures the necessary security;
8. h) Personal data will not be distributed to third parties unless necessary for the purpose of providing services according to the agreements;
9. i) The persons concerned have the right to request access to personal data, their rectification and deletion, opposition or restriction of data processing as well as the right of data portability.

13. Changes to our privacy policyÞality

13.1 We update and change our privacy policy periodically.

13.2 Minor changes to our privacy policy

If we make minor changes to our Privacy Policy, we will update the Privacy Policy with a new effective date stated at the beginning of it. The processing of your information will be governed by the practices set forth in the new version of the Privacy Policy as of its effective date.

13.3 Major changes to our privacy policy or the purposes for which we process your information.

If we make major changes to our privacy policy or plan to use your data for a new purpose or for a purpose different from the purposes for which we originally collected it, we will notify you by email (if possible) or by posting an advertisement on our website.

We will provide you with information about the change in question and the purpose and any other relevant information before we use your information for the new purpose.

Whenever necessary, we will obtain your prior consent before using your information for a purpose other than the purposes for which we originally collected it.