S.C. PINUM DOORS & WINDOWS S.R.L., hereinafter referred to as “Pinum,” is registered in the Registry of Records of Personal Data Processing.
The protection of individuals who visit our website www.pinum.ro is one of our priorities. With this premise in mind, we ensure that the personal data we have access to is processed in a manner that guarantees your confidentiality, security, and restricted access only by specifically authorized persons to process.
In accordance with the requirements of Regulation no. 679 of April 27, 2016 regarding the protection of individuals with regard to the processing of personal data and the free movement of such data, we will request the consent of the data subject for each processing.
By visiting the www.pinum.ro website, the user unequivocally accepts the terms and conditions below:
COLLECTION, USE, AND SECURITY OF DATA
Raw data regarding visits to our site will be used exclusively to improve the quality and optimize the performance of our site. Therefore, there is no obligation to register or provide personal data.
When the user provides personal data to the company, they automatically give us consent to process the data for the purpose of contact and scheduling a future appointment at one of the Pinum company offices.
WHAT PERSONAL DATA DO WE PROCESS?
On the website, we process the following personal data: name, surname, email address, IP address.
Pinum processes the following categories of data at the company’s headquarters:
The processing of personal data of patients under the age of 18 will be carried out only with the written consent of the legal guardian of the minor.
PRINCIPLES REGARDING DATA PROCESSING
Pinum undertakes to respect the principles of personal data protection (hereinafter referred to as “Principles”) provided by GDPR, to ensure that all data is processed in accordance with the Regulation:
Principle of legality – identifying a legal basis before being able to process personal data. These are often called “processing conditions”, such as consent.
Principle of fairness – for processing to be fair, the data controller provides certain information to data subjects, as far as possible. This applies if personal data has been obtained directly from data subjects or from other sources.
Principle of Transparency – GDPR includes rules on providing information on the privacy of data subjects from Articles 12, 13, and 14. These are detailed and specific, emphasizing that privacy notices should be understandable and accessible. Information must be communicated to data subjects in an intelligible form using clear and simple language.
The specific information that must be provided to data subjects includes the identity of the data controller and the DPO, as well as how and why we will use, process, disclose, protect, and retain the data in question, as well as providing details on how data subjects can exercise their rights.
PROCESSING OF THE CONTACT FORM
Pinum will use the information you provide in the appropriate contact section, available on the website, exclusively for the purpose of processing your request.
By providing any personal data through the www.pinum.ro website, you understand and agree that your data will be processed in accordance with the provisions of GDPR Regulation 679/2016.
Please note that in order to process your requests submitted in the contact section of the website, it may be necessary, under certain circumstances, to disclose your data to partners with whom Pinum collaborates and/or other third-party service providers of Pinum.
However, Pinum has adopted appropriate technical and organizational measures to ensure the security of data transfer, as well as the processing of your data by the entities mentioned above in accordance with GDPR requirements.
Pinum undertakes not to process personal data provided for any purpose other than that for which they were transmitted, except in cases where there is your express consent to use them for other purposes.
DATA STORAGE PERIOD
We will only store your personal data for the time necessary to achieve the processing purposes described above, while also respecting the current legal requirements. If the Company determines that it has a legitimate interest or a legal obligation to continue processing your personal data for other purposes, you will be duly informed in this regard.
There are cases where we have a legal obligation to keep data for a longer period (for example, for the results of some investigations, the law imposes retention periods ranging from 8 to 30 years). We specify that data retention is carried out only for legal reasons, while respecting their confidentiality and security.
DATA SUBJECT RIGHTS
In accordance with GDPR, you have a number of rights regarding the personal data Pinum processes:
1. Right of access to processed data – You have the right to access the personal data we hold. Requests that are unfounded, excessive, or repeated may not receive a response.
2. Right to rectification of data – You have the right to request that your data be rectified if it is inaccurate or outdated and/or to complete it if it is incomplete.
3. Right to erasure of data (“right to be forgotten”) – In some cases, you have the right to obtain the erasure or destruction of your Data. This is not an absolute right, as sometimes we may be required to retain your Data for medical, legal, or judicial reasons.
4. Right to restrict processing – You have the right to request the restriction of the processing of your Data. This means that the processing of your Data is limited, so we can keep the Data but not use or process it.
This right applies in specific circumstances provided by Regulation 679/2016 on the protection of personal data, namely:
Right to data portability – You have the right to move, copy, or transfer the data of interest from our database to another. This applies only to data you have provided when processing is based on your consent or a contract and is implemented by automated means.
Right to object – You may object at any time to the processing of your data when such processing is based on a legitimate interest.
Right to withdraw consent at any time – You may withdraw your consent regarding the processing of your data when such processing is based on consent. Withdrawal of consent does not affect the legality of the processing based on consent before its withdrawal.
Right to lodge a complaint with the competent supervisory authority – You have the right to lodge a complaint with the personal data protection authority, ANSPDCP (www.dataprotection.ro), to challenge the data protection practices provided by Pinum.
Right to object to the processing of your data by us when we carry out actions in the public interest or in our own legitimate interests or those of a third party – You can object at any time to the processing of your data when such processing is based on a legitimate interest.
The information we receive about you may be accessed and stored for a longer period of time when subject to a medical, legal nature, or a legal obligation, a government investigation, or investigations into possible violations of our terms or policies, or in other cases to prevent harm.
PROCESSING SECURITY
Pinum has adopted technical and organizational measures for data processing, updated in accordance with GDPR requirements, in order to protect your personal data against any unauthorized access, improper use or disclosure, unauthorized modification, destruction, or accidental loss.
All Pinum employees and collaborators, as well as any third parties acting on behalf of and on behalf of Pinum, are required to respect the confidentiality of your information and GDPR requirements.
CONTACT
If you have any questions or concerns about how we handle and use your personal data or if you wish to exercise any of your rights, please contact us by accessing the contact details of our DPO, dpo@pinum.ro.
