Privacy policy
ETONDALE SRL - the operator of the website vividsenses.ro - is committed to protecting your privacy. Contact us at dataprotection@interdata.ro if you have any questions or problems regarding the use of your personal data and we will be happy to help.
By using this site and/or our services, you agree to the processing of your personal data as described in this privacy policy.
Definitions
Personal data – any information regarding an identified or identifiable natural person;
Processing – any operation or set of operations performed on personal data or sets of personal data;
Data subject – natural persons whose personal data are processed;
Child – a natural person under the age of 18;
Principles of data protection
We undertake to follow the following principles of protection and processing of personal data:
• Processing is legal, fair, transparent. Our processing activities have legal grounds. We always consider your rights before processing personal data. We will provide you with processing information upon request;
• Processing is limited in purpose. Our processing activities correspond to the purpose for which the personal data was collected;
• Processing is done with minimal data. We collect and process only the minimum amount of personal data necessary for any purpose;
• Processing is unlimited. However, we will not store personal data unless necessary;
• We will do our best to ensure the accuracy of the data;
• We will do our best to ensure data integrity and confidentiality.
The rights of data subjects
The data subject has the following rights:
1. The right to information – which means you need to know if your personal data is being processed; what data is collected, where it is obtained and why and by whom it is processed.
2. Right of access – which means you have the right to access data collected from/about you. This includes your right to request and obtain a copy of your personal data collected.
3. The right to update/rectification – which means you have the right to request the rectification or deletion of your personal data, which are inaccurate or incomplete.
4. The right to erasure – which means that in certain circumstances you can ask for your personal data to be deleted from our records.
5. The right to restrict processing – i.e. where certain conditions apply, you have the right to restrict the processing of your personal data.
6. The right to object to processing – i.e. in certain cases you have the right to object to the processing of your personal data, for example in the case of direct marketing.
7. The right to object to automated processing – meaning you have the right to object to automated processing, including profiling; and not be the subject of a decision based solely on automated processing. This right can be exercised whenever there is a result of profiling that produces legal effects that affect or significantly affect you.
8. The right to data portability – you have the right to obtain your personal data in an appropriate format or, if possible, as a direct transfer from one processor to another.
9. Right to complain – where we refuse your request under the Access Rights, we will give you a reason why we are doing so. If you are not satisfied with the way your request has been handled, please contact us.
10. The right to help from the supervisory authority – which means you have the right to help from a supervisory authority and the right to other remedies such as seeking compensation in court.
11. The right to withdraw consent – you have the right to withdraw any consent given to the processing of your personal data.
What personal data we collect
Contact forms on all website pages.
• These are: name, surname, e-mail address, telephone number.
How we use your personal data
We use your personal data to:
• managing commercial relations, we identify the needs of customers and meet them with customized solutions: website, online store, administration, promotion, etc. – in order to conclude service provision contracts;
• fulfilling an obligation in accordance with the law or the contract;
• in the company's internal reports and statistics
Based on the conclusion of a contract or the fulfillment of contractual obligations, we will process your personal data for the following purposes:
• to identify you;
• to provide you with a service or offer you a product;
• to communicate with you either for sales or billing purposes;
• in the company's internal reports and statistics.
With your consent we will process your personal data for the following purposes:
• to send you newsletters and/or offers in various marketing campaigns;
• for other purposes for which we have asked for your consent;
We process your personal data to fulfill obligations arising from the law and/or to use your personal data for the options provided by law. We save information about you as long as necessary for accounting purposes or other obligations arising from legal deadlines, but no longer than 5 years.
We process personal data until we receive a request to do so from you. We will inform you of any further processing and purposes.
Who else has access to personal data
We will not disclose your personal data to third parties or public institutions unless we are legally required to do so. We may disclose your personal data to third parties if you have given us your consent or if there are other legal reasons for doing so.
How we keep your data secure
We do our best to keep your personal data safe. We use secure protocols for communication and data transfer (such as HTTPS). We use anonymization and pseudonymization where appropriate. We monitor our systems for possible vulnerabilities and attacks.
Although we try our best, we cannot guarantee the security of information. However, we undertake to notify the competent authorities of data protection breaches. We will also notify you if there is a threat to your rights or interests. We will do everything we reasonably can to prevent security breaches and to assist the authorities if breaches occur.
Technology
INTERCRIS SRL regularly updates all software applications used to defend known attack surfaces, at all levels (tools used by colleagues, server operating systems, virtualization layer, guest operating system, application).
We apply a redundant and scalable infrastructure that has no single point of failure that would cause service to stop.
Automatic and encrypted saving of the data that is ported to another data center is carried out daily so that, in case of emergency situations, the possibility of restoring the data is ensured.
We follow adopted industry solutions such as the Open Web Application Security Project (OWASP) and the Cloud Security Alliance Cloud Controls Matrix (CCM).
Protection against access
Physical access to the infrastructure is extremely limited. In all cases proper identification is required.
Network security
Data storage servers are separated from the outside by multi-level firewalls. Only servers dedicated to load balancing have an Internet connection. The application and data storage servers work on separate internal networks, the connection between them is ensured by a firewall - on an intermediate load balancing level.
Clear data/test/integration test/dev environments run on different networks.
Stored data is protected by alarm against intrusion and phishing attack. The Services, Protocols and unused software will be removed. All our software works from minimal bases, installs only the necessary software.
The efficiency of internal procedures and rules is controlled by external security audit.
Policy towards minors
We do not intend to knowingly collect information from minors. We do not target minors as potential beneficiaries of our services.
Cookies and other technologies we use
We use cookies and/or similar technologies to analyze user behavior, administer the site, and collect information about them. This is done to personalize and improve your experience with us.
A cookie is a text file stored on your computer. Cookies store information that is used to help websites work better. Only we can access the cookies created by our site. You can control cookies at the browser level. Choosing to disable cookies may prevent the use of certain features.
We use cookies for the following purposes:
• Necessary cookies – these cookies are necessary to be able to use some important functions on our website, such as logging in. These cookies do not collect personal information;
• Functionality cookies – these cookies provide functionality that makes using our service more convenient and enables more personalized features. For example, it could remember your name and email address in contact forms so you don't have to re-enter this information the next time you send a message;
• Analytics cookies – these cookies are used to track the use and performance of our website and services.
You can remove cookies stored on your computer through your browser settings. Alternatively, you can control certain third-party cookies by using a privacy enhancement platform such as https:\\optout.aboutads.info or youronlinechoices.com. For more information about cookies, visit allaboutcookies.org.
We use Google Analytics to measure traffic on our website. Google has its own privacy policy which you can consult here. If you wish to opt out of being tracked by Google Analytics, visit the Google Analytics opt-out page.
Contact information
INTERCRIS SRL
Email: dataprotection@interdata.ro
Supervisory Authority
The National Authority for the Supervision of the Processing of Personal Data
Website: http://www.dataprotection.ro/
Email: anspdcp@dataprotection.ro
Phone: +40 21 252 5599
Last update: 02-12-2022
