en_US
en_US ro_RO

GDPR DATA PROCESSING – TERMS AND CONDITIONS

ABOUT THE TERMS AND CONDITIONS OF PROCESSING GIVEN BY GDPR

The use of the word structures “ASRC”, “we”, “our”, “ours”, “us” or ” ASOCIATIA ”REFUGIUL PENTRU ANIMALE throughout the policies, terms and conditions published on this website identifies ASOCIATIA ”REFUGIUL PENTRU ANIMALE, incorporated in Romania, having its registered office in Strada Lacramioarei nr. 2 , sat Meri , Comuna Vedea , Judetul Teleorman, Unique Registration Code: 45226068.

A. PERSONAL DATA PROCESSING

All personal data that we collect from you or that you provide to us is set based on the rules for processing your personal data processing policy (along with any ancillary documents to which it relates).

B. THE POSITION OF ASOCIATIA ”REFUGIUL PENTRU ANIMALE” IN THE PROCESSING OF PERSONAL DATA

ASOCIATIA ”REFUGIUL PENTRU ANIMALE” can be personal data processor and data controller. In the international environment, data processing is done in the background, at the organizations from which we buy products and services. These types of organizations have established Data Protection Offices, and the link to them can be established through the contact addresses displayed on their website.

We may provide direct access to information about the connection with the organizations that work with us, in order to contact the processors and controllers of personal data, if the situation requires it. Your information may be available on the websites of the entities that process your personal data, and we do not assume any responsibility for the connection between you and those companies. ASOCIATIA ”REFUGIUL PENTRU ANIMALE” is responsible only for the personal data stored on the company’s website www.asrc.ong.

C. TYPE OF INFORMATION COLLECTED.

What types of information is collected? All personal information you provide is stored and stored by completing the forms on the company’s website. This includes information provided when a problem with the operation of the website, the registration of a new account, the purchase of services or products or the request for personalized services or products are reported.

Records of incoming and outgoing correspondence, such as letters, emails, or other content, will be kept. Transactions are performed and the information provided is processed through the company’s website or through the websites of organizations or companies that process online payments. Telephone conversations may be recorded for training or service improvement purposes. Technical data is recorded, such as the operating system of the person accessing the website, the type of browser used, the outgoing and referral pages, the number of clicks, the domain name and the web pages visited and displayed in the server logs ). This type of information may be used for marketing or security purposes.

D. STORAGE AND STORAGE OF PERSONAL DATA

In accordance with the GDPR policy, the data protection policies of ASOCIATIA ”REFUGIUL PENTRU ANIMALE”, Romania, the European Union and the international environment, our company will take all necessary steps to ensure that your data is treated securely.

Personal data is retained as long as our company needs it to fulfill the purposes originally collected or to comply with the obligations imposed by law. The necessary information will be retained and used to comply with the company’s legal obligations, to resolve disputes and to enforce company rules as follows:

  1. The invoices issued are and will be kept for the minimum time specified in the law code.
  2. Log files can be deleted once every 12 weeks. However, anonymous information may be withheld for longer.

We hold back copies of the website for at least 30 days. In the case of restorations of backups containing personal data, they are restored after deletion, and our company will take the necessary steps to ensure that the information that has been forgotten is not inadvertently restored. All traces of information are removed from the system within a maximum of 180 days, unless other mandatory detentions or detentions occur in accordance with applicable law.

E. YOUR RIGHTS

If you are not the subject of a GDPR case, you have the following personal data rights:

  1. You have the right to request a copy of the personal data that we have and that is stored in our systems.
  2. You have the right to request any personal details that are incorrect or no longer available. You can verify, edit, or delete personal data from the control panel or by making a manual request.
  3. You have the right to object to the use of personal data and to request its deletion in situations where it is no longer necessary. This case is known as the “right to be forgotten.” There may also be legal reasons for the retention and retention of personal data. Please also let us know in case any incorrect personal data about you is withheld to avoid unclear situations.
  4. You have the right to request that we not use your personal data for marketing purposes. You are usually informed before the data is collected if we intend to use it for this purpose or if we intend to release it to any third party. This right can be exercised by disabling email and marketing notifications, by canceling notifications, by sending an email or support ticket to the customer service department, or by contacting the company in writing at the address listed on the contact page.

The most common and discussed personal rights under GDPR policies are: the right to be informed, the right to access personal data, the right to rectify, the right to be forgotten, the right to restrict the processing of personal data, the right to behave personal data, the right to object and to restrict automatic decision-making.

List of rights and legal provisions:

  1. Right to refuse to become a data subject : Your first right as a citizen of the European Union is to reject and refuse to become a data subject, ie to refuse to have your personal data processed. However, it is unlikely that any individual will do so by avoiding banking, telephone use, or employment. The following are just a few examples for your information.
  2. Right to be informed : If you have felt or become aware that you have become a data subject, you have the right to be informed about everything that happens to your personal data, for what purposes it is used, you can access and modify it at any time. and you can even revoke their consent to be processed by a particular organization.
  3. Right to restrict the processing of data : In accordance with the GDPR Policies and Regulations, an individual has the right to restrict the processing of personal data in certain cases. An individual may request a restriction on the processing of personal data if he believes that it is not provided correctly or is inaccurate. In this case, the subsequent processing of personal data of the individual will be restricted, until the accuracy of the information provided is verified and legally certified. Another case of restricting the processing of personal data is the objection of the processing of such data by a person or individual.
  4. Right to data portability : According to the GDPR Policies and Regulations, you have the right to data portability. In the absence of other contractual conditions (which you must be aware of before consenting to the actual processing of the data), you can move your data from one provider to another in a quick and easy way.
  5. Right to be forgotten : According to GDPR Policies and Regulations, you have the right to delete data (to be forgotten). A person has the right to request the deletion of their personal data. This right is not an absolute one, there are cases in which the data will not be deleted at the request of the data subject. If personal data is used for the fulfillment of a legal obligation, for the safety of public health, scientific research, then the right to the deletion and deletion of data may be denied to the data subject.
  6. Rights related to automated decision-making and profiling: According to the GDPR Policies and Regulations, this right protects people from certain potentially negative decisions, which could be decided without human intervention. GDPR defines profiling as any automated form of processing for the purpose of assessing certain personal aspects of the individual. For example, job performance, health, personal preferences, economic situation, location, and more. Organizations that use profiling must implement certain security measures, such as the use of correct mathematical or statistical procedures, the security of personal data, the existence of measures that allow anomalies to be corrected with minimal risk of error. Keep in mind that automated decision-making should never be applied to a child.

F. TO WHOM WE PROVIDE YOUR PERSONAL INFORMATION

When new agreements with third parties are introduced, it will be ensured that the data processing policy is updated by at least 30 days for third parties to process or process any type of data. By agreeing to these full-page terms, you agree to and agree to the processing of data by the third parties listed below.

The list of entities to which we provide your information is as follows: Google (Adwords, Analytics, Youtube, Drive, Data Studio, My Business), Facebook & Instagram, Microsoft (Bing, Office 365) Mailchimp, Hotjar.

G. GDPR INFORMATION / DATA GAPS

If there are incidents of information security under the GDPR Policies and Regulations, a full report will be prepared outlining the risks that exist and will follow, and the incidents will be reported further. Individuals at risk of being affected and those affected will be contacted, according to the GDPR, at fixed or specified times.

H. DEFINITION OF DATA PROCESSING AND PROCESSING TERMS

  1. Customer data : Information provided on behalf of the customer or end customers through existing and account-associated services.
  2. Data controller : The entity that determines the purposes of the processing and processing of personal data and what it means to process personal data.
  3. Data Processor : The entity that processes personal data on behalf of the data controller.
  4. Data Protection Laws : All protection and confidentiality regulations, as well as the rules applicable to the processing of personal data under the agreement, including the GDPR.
  5. Data subject : The individual whose personal data is in question to be transmitted.
  6. EEA: European Economic Area
  7. GDPR: EU General Data Protection Regulation 2016/679.
  8. Personal data : Any information about an identified or identifiable natural person (“data subject”) whose information is protected as personal data under the GDPR
  9. Processing : Represents the meaning provided by GDPR and the following interpretations: process, process and processed.
  10. Sub-Processor : Any third party authorized under DPA to have logical access and process Customer Data to provide parts of the Services.
  11. Services : Any product or service provided to the Customer, such as those described in the terms and conditions of ASOCIATIA ”REFUGIUL PENTRU ANIMALE”

I. DATA PROCESSING AND PROCESSING

ASOCIATIA ”REFUGIUL PENTRU ANIMALE” processes customer data in accordance with the instructions described in the sections Terms and Conditions and Privacy Policy, unless required by law to comply with such instructions.

The instructions when entering the DPA give the company ASOCIATIA ”REFUGIUL PENTRU ANIMALE” and the organizations that provide our services the right to process Customer Data in order to deliver the services described in their own terms and conditions existing to any product (with or without specific agreements). The subject of these terms is DPA and the agreement of the parties is provided by the client’s action to issue additional written instructions consistent with this Agreement. Customers are responsible for ensuring that all individuals who provide instructions are authorized to do so. We will notify Customers of any instructions that appear to violate the GDPR and will not execute instructions until the referenced request has been confirmed or modified.

  1. ASOCIATIA ”REFUGIUL PENTRU ANIMALE” is a data processor of Customer Data under GDPR
  2. The Client is a Client Data Controller under GDPR.

J. CONFIDENTIALITY OF DATA

We will treat all Customer Data as strictly confidential information. Please note that customer data may not be copied, transferred and other processing actions that do not conflict with Customer Instructions or GDPR may apply until there is a legal obligation. Our company’s employees will be subject to any confidentiality obligation that ensures that employees will treat all Customer Data under DPA / GDPR with secure and strict confidentiality and will process Customer Data in accordance with the instructions described or in accordance with GDPR regulations.

K. DATA SUB-PROCESSING

Customers of ASOCIATIA ”REFUGIUL PENTRU ANIMALE” authorize ASOCIATIA ”REFUGIUL PENTRU ANIMALE” to mix third parties or third parties (Sub-Processors) regarding the processing of data without obtaining any specific written authorizations. ASOCIATIA ”REFUGIUL PENTRU ANIMALE” will restrict the access of Sub-Processors to Consumer Data to cover the elements necessary for the provision of services. ASOCIATIA ”REFUGIUL PENTRU ANIMALE” will complete written commitments with any Sub-Processor. Such commitments provide a minimum of data protection obligations, such as those applicable under the GDPR / DPA.

Sub-Processors remain responsible for their own actions and subsequent omissions. ASOCIATIA ”REFUGIUL PENTRU ANIMALE” undertakes to inform customers of any commitment that will be made with a Sub-Processor, even at least 30 days before it processes any type of Customer Data. Informing customers will be done through the notifications described in the email, on the website or even in the user panel. It is the customer’s responsibility to verify the accuracy and timeliness of the information described in the account. Customers have the right to object to the use of Sub-Processors in accordance with the terms and conditions of our company.

L. DATA SECURITY

In accordance with GDPR, Article 22, ASOCIATIA ”REFUGIUL PENTRU ANIMALE” implements and maintains technical measures to prevent and protect Consumer Data against unlawful or accidental destruction, loss, alteration, unauthorized release or unauthorized access or access set out in the annexes to the terms and conditions. ASOCIATIA ”REFUGIUL PENTRU ANIMALE” may modify or update the security measures periodically, in order to avoid the degradation of the entire security. The company’s customers agree and accept this. Also, ASOCIATIA ”REFUGIUL PENTRU ANIMALE” and the organizations that provide services and products will perform customer checks to further secure their data in the control panel.

M. SECURITY BREAK NOTIFICATIONS

If a security breach is detected that leads to accidental or unlawful destruction, loss, alteration, unauthorized release or access to Customer Data on systems managed by ASOCIATIA ”REFUGIUL PENTRU ANIMALE”, we will notify customers without hesitation or delay. The notifications will be made through an alert sent to the email addresses of the correspondents who have active services at our company. Customers are responsible for ensuring that the information attached to their accounts is not inaccurate or periodically out of date.

ASOCIATIA ”REFUGIUL PENTRU ANIMALE” will try to prevent security breaches, in order to avoid the occurrence of such breaches that can affect the system and customers. Company customers agree that data breach notifications will not include failed attempts or activities that do not compromise customer data security, but include incorrect login attempts, pinging, port scans, DDOS (Denial of Service) attacks, and any other network attacks on Firewall or network protection.

N. DATA RIGHTS

ASOCIATIA ”REFUGIUL PENTRU ANIMALE” will receive a request from the Data Subject to exercise such rights in accordance with Customer Data and will provide it to Customers. Customers can respond to this type of request during the time specified in the GDPR. In order to assist complaints with the obligations set out in the existing articles in the GDPR and to respond to data requests that may involve the provision of controls through the control panel, ASOCIATIA ”REFUGIUL PENTRU ANIMALE” will assist customers in fulfilling any obligations related to GDPR or compliance with other terms. legal.

O. DATA TRANSFER

ASOCIATIA ”REFUGIUL PENTRU ANIMALE” retains, stores and processes data in secure data centers located in the European Economic Area – EEA. Data can be transferred and processed outside the EEA, in countries where Sub-Processors may have their own data processing operations. As a result, customers agree to transfer, store, process and process data outside the EEA. Our company will take all reasonable steps necessary to ensure that customer data is treated securely, in accordance with GDPR Policies and Regulations and in accordance with Data Protection Laws.

P. COMPLIANCE AND AUDIT RIGHTS

Upon written requests from customers we will provide all relevant information necessary to prove DPA compliance, as ASOCIATIA ”REFUGIUL PENTRU ANIMALE” agrees to maintain records of security standards. Therefore, customers approve any audit or inspection that will take place, with prior notifications of not less than 30 days, and no more than one will be performed in any 12-month period. If ASOCIATIA ”REFUGIUL PENTRU ANIMALE” rejects a customer’s request, he is entitled to reject these rules and to give up services.

Q. RETURN OR DELETE OF DATA

As previously mentioned, ASOCIATIA ”REFUGIUL PENTRU ANIMALE” retains customer data only as long as it is necessary to fulfill the purposes for which they were initially collected. Rejection of these terms and conditions in line with the terms and conditions of our company results in the deletion of all customer data unless otherwise required by law. The data in the backup systems will be securely isolated from us or the companies from which the services are purchased and will be protected from any further processing or processing by other entities.

R. LIMITATION OF LIABILITY

The total liability for each party under these terms and conditions will be subject to the limited liability set by the Terms and Conditions of ASOCIATIA ”REFUGIUL PENTRU ANIMALE”. For the avoidance of doubt, our company will not be liable for any loss or damage suffered by Customers, if they use services in violation of the terms and conditions, whether they terminate, reject, cancel or have a suspended account due to such violations or violations.

S. ANNEX 1: SUB-PROCESSORS

CompanyService
EuroPayment ServicesPay Card Online
RoTLDDomain Names
Let’s EncryptCertificate SSL/TLS
Google AnalyticsAnalytics: Control panel. Report anonymous data.