This Privacy Policy is applicable as of 11.12.2019.
content
- Summary
- Details about our company
- What information we collect when you visit our website
- What information we collect when you contact us
- How we collect information about you from third parties
- Disclosure and additional uses of your data
- Duration of your data storage
- Securing your information
- Transfer of your data outside the European Economic Area
- Your rights to personal data
- Your right to object to data processing for certain purposes
- Sensitive personal data
- Changes to our privacy policy
- Confidentiality of minors
Summary
This section summarizes how we obtain, store and use your data. This summary is intended to provide a general overview of the privacy policy only. This section is not a complete description and it is necessary to read the additional chapters present in this document for completions.
- How we collect or obtain information about you:
- When you provide the respective data (e.g. by contacting us)
- What information we collect: name and email address
- How we use your data: for business and administrative purposes (in particular to contact you and to process the orders you place on our site), in order to fulfill our contractual obligations to analyze your use of our site.
- Disclosure of user data to third parties: We do not disclose your details to third parties other than in respect of any contractual obligation towards you.
- Are user data sold to third parties? (in other cases besides selling or buying the business / company): No
- How long your information is stored: no more than necessary, depending on our legal obligations (e.g. to maintain accounting records), or any other legal basis for the use of information (e.g. consent, contractual obligations, legitimate interests). Information about specific periods of user data storage is in the Duration section of your data storage.
- How your data is secured: by using technical and organizational solutions such as: storing information on secure servers, encrypting data transfers to and from our servers using SSL / TLS technology, allowing access to your personal data only when it is required, email encryption and end-point encryption.
- Use of cookies: we use cookies on our website. For details, read the Cookies Policy.
- Transferring your personal data outside the European Economic Area: we will transfer your personal data outside the European Economic Area only if we are obliged to do so by law.
- Use of automatic decision making and profiling processes: we do not use automatic decision making or profiling processes.
- Your rights in relation to your personal data
- You have the right to access your data and receive information about its use
- You have the right to request the correction and / or completion of the information
- You have the right to request the deletion of data
- You have the right to restrict the use of data
- You have the right to receive the data in a portable format
- You have the right to object to the processing of your data.
- You have the right to withdraw your consent for the processing of your data.
- You have the right to call a supervisory authority
- Sensitive personal information: we do not intend to collect what is commonly referred to as “sensitive personal data”. Please do not send sensitive personal information about yourself. For more information, see the main section entitled “Sensitive personal information”.
Our details
The data operator regarding our site is: HEKTAR SEEDS SRL, from Romania.
You can contact the data operator by writing to the e-mail address: protectiedatehektar.ro
If you have any questions about this privacy policy, please contact your data carrier.
What information do we collect when you visit our website?
We collect and use information from website visitors in accordance with this section and with the section entitled Disclosure and further use of your data.
Web server log information
Use information from the logs of the website server for IT security purposes
We do not collect and store server logs.
The information we collect when you contact us
We collect and use information from the persons who contact us in accordance with this section and the section entitled Disclosure and further uses of your information.
When you send a message to the email address displayed on our site, we collect your email address and any other information you provide in that email (such as your name, and the information contained in it any signature block in the email).
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest: To answer the questions and messages we receive and to keep the correspondence record.
Legal basis for processing: it is necessary to perform a contract or to start the contracting process at your request (Article 6 (1) (b) of the General Data Protection Regulation).
Reason for contracting: If your message is about the provision of goods or services or taking action at your request before providing you with our goods and services (for example, providing information about such goods and services); we will process your information to do so).
Contact form
When you contact us using the contact form, we collect your email address. We also collect any other information you provide to us when you complete the contact form.
If you do not provide the required information required by the contact form, you will not be able to submit the contact form and we will not receive your request.
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest: to answer the questions and messages we receive and to keep track of correspondence.
Legal basis for processing: it is necessary to perform a contract or to start the contracting process at your request (Article 6 (1) (b) of the General Data Protection Regulation).
Reason for contracting: If your message is about the provision of goods or services or taking action at your request before providing you with our goods and services (for example, providing information about such goods and services); we will process your information to do so).
Phone
When you contact us by telephone, we collect your telephone number and any information you provide to us during the conversation with us.
We do not record phone calls.
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation)
Legitimate interest: to answer the questions and messages we receive and to keep the correspondence record.
Legal basis for processing: it is necessary to perform a contract or to start the contracting process at your request (Article 6 (1) (b) of the General Data Protection Regulation).
Reason for contracting: If your message is about the provision of goods or services or taking action at your request before providing you with our goods and services (for example, providing information about such goods and services); we will process your information to do so).
Transferring and storing your information
Information about your call, such as your phone number and the date and time of your call, is processed by our Orange Romania telephone service provider. Its privacy policy is available here: https://www.orange.ro/gdpr/
Post
If you contact us by mail, we will collect all the information you provide to us in any postal communications you send us.
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation)
Legitimate interest: to answer the questions and messages we receive and to keep the correspondence record.
Legal basis for processing: it is necessary to perform a contract or to start the contracting process at your request (Article 6 (1) (b) of the General Data Protection Regulation).
Reason for contracting: If your message is about the provision of goods or services or taking action at your request before providing you with our goods and services (for example, providing information about such goods and services); we will process your information to do so).
Information collected or obtained from third parties
This section sets out how we obtain or collect information about you through third parties.
Information received from third parties
In general, we do not receive information about you from third parties.
If we receive information about you by mistake
If we mistakenly receive information about you from a third party and / or have no legal basis for processing such information, we will delete your information.
Disclosure and further use of your data
This section sets out the circumstances under which we will disclose your data to third parties and any additional purposes for which we use your data.
Disclosure of your information to service providers
We use a number of third parties to provide us with services that are necessary to run our business or to help us run our business and that process your information for us on our behalf. These are:
- Telephone service providers, including Orange Romania. Their privacy policy is available here: https://www.orange.ro/gdpr/
Our service providers are located in Romania.
Your information will be shared with these service providers, where necessary to provide you with the service you have requested, whether this request is to access our site or order goods and services from us.
The legal basis for processing: legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest based on: if we share your information with these third parties in a different context than if it is necessary to perform a contract (or following your request to do so), we will share it with you information with such third parties to enable us to effectively conduct and manage our business.
Legal basis for processing: it is necessary to perform a contract or take action at your request to conclude a contract (Article 6 (1) (b) of the General Data Protection Regulation).
The reason why it is necessary to make a contract: it is possible to share information with our service providers in order to allow us to fulfill the obligations arising from that contract or to take the measures you have requested before entering into a contract with you.
Disclosure and use of your information for legal reasons
Indication of possible criminal acts or threats to public safety to a competent authority
If we assume that criminal or potential behavior has occurred, we will, in certain circumstances, need to contact a competent authority, such as the police. This could be the case, for example, if we suspect that a fraud or cybercrime has been committed or if we receive malicious threats or communications from us or from third parties.
In general, we will only have to process your information for this purpose, if you have been involved or affected by such an incident in one way or another.
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest: prevention of crime or suspected criminal activity (such as fraud).
In connection with the potential application or application of our legal rights
We will use your information in connection with the implementation or potential application of our legal rights, including, for example, sharing information with debt collection agencies, if you do not pay the amounts due when you are contractually obligated to do so. . Our legal rights may be contractual (if we have a contract with you) or non-contractual (such as the legal rights we have under copyright or criminal law).
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest: to impose our legal rights and to take measures to ensure our legal rights.
In connection with a legal or potential legal dispute or procedure
We may need to use your information if we are involved in a dispute with you or a third party, for example, either to resolve the dispute, or as part of mediation, arbitration or a court order or similar process.
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest: dispute resolution and possible litigation.
For continuous compliance with laws, regulations and other legal requirements
We will use and process your information to comply with the legal obligations we are subject to. For example, we may need to disclose your information based on a court order or subpoena, if we receive one.
The legal basis for processing: compliance with a legal obligation (Article 6 (1) (c) of the General Data Protection Regulation).
Legal obligation: the legal obligations to disclose information that are part of Romania’s laws or whether they have been integrated into Romania’s legal framework (for example in the form of an international agreement that Romania has signed).
The legal basis for processing: our legitimate interests (Article 6 (1) (f) of the General Data Protection Regulation).
Legitimate interest: if the legal obligations are part of the laws of another country and have not been integrated into the legal framework of Romania, we have a legitimate interest in meeting these obligations.
Duration of your data storage
This section determines how long we keep our data collected. We have set specific storage periods where possible. If this was not possible, we set the criteria we use to determine the retention period.
Retention periods
Server logs: We do not keep server log information.
Information regarding the placed tenders: when placing a tender, we keep this information for 5 years from the end of the financial year in which you placed the order, in accordance with our legal obligation to keep records for tax purposes.
Correspondence: When you make a request or contact us for any reason, either by email or through our contact form or telephone, we will keep your information for as long as we need to respond to resolve your request and for the following 12 months), after which we will delete your information
Criteria for establishing retention periods
In any other circumstances, we will only keep your information for as long as necessary, taking into account the following:
- the purpose (s) and use of your information both in the present and in the future (for example, if it is necessary to continue storing that information in order to continue to fulfill our obligations under a contract with you or to contact you in the future)
- if we have a legal obligation to continue processing your information (such as any obligations to keep records required by law or relevant regulations);
- if we have any legal basis to continue processing the information (such as your consent);
- the levels of risk, cost and responsibility involved in continuing to hold information;
- how difficult it is to make sure that the information can be current and accurate; and
- any relevant circumstances (such as the nature and status of our relationship with you).
Securing your information
We take appropriate technical and organizational measures to secure your information and to protect it against unauthorized or illegal use and accidental loss or destruction, including:
- sharing and providing access to your data to the minimum extent necessary, subject to confidentiality restrictions, where appropriate and anonymously, whenever possible;
- use of secure servers for storing information;
- verification of the identity of any person requesting access to information before granting them access to information;
- use the Secure Sockets Layer (SSL) standard to encrypt [any information you send to us through any forms on our website)
- we transfer your data only through a closed system or through encrypted data transfers;
Transmission of information to us by email
The transmission of information on the Internet is not entirely secure and if you send us information via the Internet (via email, through our site or by any other means), you do so entirely at your own risk.
We cannot be held responsible for any expenses, loss of profits, reputational damage, damages, debts or any other form of loss or damage suffered by you as a result of your decision to transmit information to us by such means.
Transfer of your data outside the European Economic Area
Your information is stored in the European Economic Area but also in the United States.
Apart from complying with any legal obligations to which we are subject (for example, complying with a court decision), we do not intend to transfer your information outside the EEA or to an international organization. In the unlikely event that we are required to transfer your information outside the EEA (or to an international organization) for such purpose, we will provide adequate safeguards and safeguards.
Your rights to personal data
Subject to certain restrictions on certain rights, you have the following rights in relation to your data which you may exercise by sending an email to protectiedateagrosel.ro
- request access to your information and information regarding the use and processing of your information;
- request the correction or deletion of your data;
- request to limit the use of your data;
- receive the information you have provided to us in a structured, commonly used format that can be read by a device (for example, a CSV file) and the right to transfer that information to another data controller (including to a third-party data controller);
- object to the processing of your data for certain purposes (for more information, see the section below entitled “Your right to object to data processing for certain purposes”); and
- withdraw your consent to the use of your data at any time we rely on your consent to use or process this information. Please note that withdrawing your consent will not affect the legality of the use and processing of your data based on your consent prior to the time you withdraw your consent.
In accordance with Article 77 of the General Data Protection Regulation, you also have the right to lodge a complaint with a supervisory authority, in particular in the Member State of residence, the workplace or an alleged breach of the general data protection Regulation.
To this end, in Romania, the supervisory authority is: www.dataprotection.ro
Verifying your identity if you request access to your information
If you request access to your information, we are required by law to use all reasonable measures to verify your identity before doing so.
These measures are designed to protect your information and reduce the risk of identity theft, identity theft or general unauthorized access to your information.
How we verify your identity
If we have appropriate information about you in the file, we will try to verify your identity using this information.
If we are unable to identify you based on this information or if we do not have sufficient information about you, we may require copies or certificates of documents to verify your identity before we can give you access to your data.
We will be able to confirm the exact information we need to verify your identity in your specific circumstances if and when you make such a request.
Your right to object to data processing for certain purposes
You have the following rights regarding your data that you can exercise by sending an email to: protectiedateagrosel.ro
- object to the use or processing of information by us to carry out a task in the public interest or in our legitimate interest, including “profiling” (analyzing or predicting your behavior based on your information); and
- object to the use or processing of your data for direct marketing purposes.
Sensitive personal data
“Sensitive personal data” is information about an individual that discloses racial or ethnic origin, political views, religious or philosophical beliefs or membership of a union, genetic information, biometric information for the sole purpose of identifying an individual, health information or information regarding the sexual life or sexual orientation of a natural person.
We do not knowingly or intentionally collect sensitive personal information from individuals and you should not send sensitive personal information to us.
However, if you mistakenly or intentionally provide us with sensitive personal information, you will be deemed to have explicitly consented to us processing sensitive personal information in accordance with Article 9 (2) (a) of the General Regulation on data protection. We will use and process your personally identifiable information for the purpose of deleting it.
Changes to our privacy policy
We regularly update and modify our privacy policy.
Minor changes to our privacy policy
If we make minor changes to our privacy policy, we will update the Privacy Policy with a new effective date mentioned at the beginning of it. The processing of your information will be governed by the practices established in the new version of the Privacy Policy as of its effective date.
Major changes to our privacy policy or the purposes for which we process your information
If we make major changes to our privacy policy or intend to use your data for a new purpose or for a purpose other than the purposes we originally collected, we will notify you by email (if possible) or by posting an ad on our website.
We will provide you with information on the change in question and on the purpose and any other relevant information before using our information for the new purpose.
Whenever necessary, we will obtain your prior consent before using your information for a purpose other than the purposes for which we originally collected it.
Confidentiality of minors
We do not contact intentionally or collect information from persons under the age of 18. The website is not intended to request information of any kind from persons under the age of 18 years.
We may receive information regarding persons who have not attained the age of 18 years by fraud or deception of a third party. If we are notified of this, as soon as we verify the information, when required by law, we will immediately obtain the appropriate parental consent to use this information or, if we cannot obtain parental consent, we will delete the information from our servers. If you would like to notify us of receiving information about persons under the age of 18, please do so by sending an email to protectiedatehektar.ro