Shopping Cart
GDPR
according to Regulation (EU) 2016/679
1. The website https://hipi.ro/en/ ensures the protection of the fundamental rights and freedoms of individuals, especially the right to the protection of personal data, in accordance with the European Regulation known as GDPR.
2. "Personal data" means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more specific factors specific to his physical, physiological, genetic, mental, economic, cultural or social identity.
3. The website https://hipi.ro/en/ has access to the following user data, once they give their consent by checking the corresponding box of express consent: name, surname, email, phone, physical address, and company data in the case of legal entities with which we collaborate.
4. This personal data collected by the website is stored securely and is not processed for any purpose other than that expressly provided by the website (quoting, delivery, invoicing, and contracting), as well as for statistical or marketing purposes.
5. If the user wishes to enter into a contract with the company, then the provision of personal data by the user is done in order to fulfill the contract exactly, and they are processed for this purpose by the company, as well as for statistical/marketing purposes.
6. The legal basis for processing the data is to create opportunities for quoting and entering into contracts in the company's field of activity, in the online environment.
7. The company is not authorized to transmit personal data provided at point 3 to third parties except for the purpose mentioned in point 4.
8. The company receives personal data such as name, surname, email, phone number and collaborates with Google Analytics, Google AdWords, MailChimp and Facebook Ads, for delivering advertising announcements for marketing purposes.
9. Personal data is processed lawfully, fairly, and transparently towards the user/client. They are summarized to be adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
10. Personal data is kept in a form that allows the identification of users for a period that does not exceed the period necessary to fulfill the purposes for which the data is processed, and for an unlimited period only for statistical/marketing purposes.
11. The user has the right to withdraw their consent at any time. Withdrawal of consent does not affect the legality of the processing carried out based on the consent before its withdrawal.
12. The company provides the user/client with information about the actions taken on the data following a request, without unjustified delays and in any case within one month of receiving the request. This period may be extended by two months when necessary, taking into account the complexity and number of requests.
13. The user/client has the right to request, regarding personal data, access to them, rectification or erasure of them, restriction of processing or the right to object to processing, as well as the right to data portability, in accordance with GDPR. (Right to data portability > The user/client has the right to receive the personal data concerning them and which they have provided to the controller in a structured, commonly used and machine-readable format and has the right to transmit this data to another controller without hindrance from the controller to whom the personal data have been provided).
14. We inform you about the existence of an automated decision-making process including profiling (Facebook Ads, Google Analytics, and Google Adwords), consisting of creating avatars (people with common interests are put together) in order to deliver advertisements to a targeted group of people (relevant information about the logic used and the importance and expected consequences of such processing for the data subject).
15. The user/client has the right to obtain from the company confirmation as to whether or not personal data concerning them are being processed and, where that is the case, access to that data, as well as other related processing information, upon request.
16. At any time, the user/client has the right to object, on grounds relating to their particular situation, to the processing of personal data concerning them, including profiling.
17. Where personal data processing is for direct marketing purposes, the data subject has the right to object at any time to processing of personal data concerning them for such marketing, including profiling to the extent that it is related to such direct marketing.
18. The cookie policy is defined and detailed on a separate page and can be viewed by accessing the link "Cookie Policy"
19. Regarding the processing of personal data of individuals, in case of improper/illegal data processing, there is the possibility to file a complaint with the Supervisory Authority A.N.S.P.D.C.P. and to take legal action.
20. Data Protection Officer: data@hipi.ro