DATA PRIVACY

PROTECTION OF PRIVACY AND PROCESSING OF PERSONAL DATA

 NOTICE TO USERS

SC ZALMOS CONSULTING S.R.L., the owner of patio.ro website, considers data privacy an essential component in business and respects the privacy of its users and customers.

SC ZALMOS CONSULTING S.R.L. processes and stores personal data in the EU and is able to demonstrate compliance at any time. This Privacy Policy complies with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the "GDPR").

Our website complies with the General Data Protection Regulation ("GDPR"), (Regulation (EU) 2016/679), which is a mandatory piece of legislation. This privacy policy is managed by the Personal Data Protection Officer / D.P.O. within ZALMOS CONSULTING S.R.L., who has overall responsibility for ensuring compliance.

ZALMOS CONSULTING S.R.L. must be considered as the data controller and it will determine the purposes and methods of processing the data entered and collected.

PRINCIPLES

The data protection policy in ZALMOS CONSULTING S.R.L. is based on the following data protection principles:

  1. The processing of personal data will be done in a lawful, fair and transparent manner;
  2. The collection of personal data will be adequate, relevant and limited to the information necessary for the purpose of the processing and the data will not be further processed in a manner incompatible with those purposes;
  3. Personal data will be accurate and, where necessary, updated;
  4. All personal data will be kept confidential and stored in a manner that ensures the necessary security;
  5. Personal data will not be shared with third parties unless it is necessary for the purpose of providing services according to the agreements;
  6. Data subjects have the right to request access to personal data, their rectification and deletion, opposition or restriction of data processing as well as the right to data portability.
PURPOSE OF PROCESSING and the types of data processed in each case.

ZALMOS CONSULTING S.R.L. processes personal data for the fulfillment of contractual obligations, in relation to you, in case you have placed the order for the products sold through patio.ro or you have made a request for the services offered by our company. The personal data that will be processed for this purpose are the following: name, e-mail address, telephone number, delivery address.

Users of the patio.ro site can interact with us by filling out contact forms. The personal data provided for this purpose are: name and e-mail.

DISCLOSURE OF PERSONAL DATA

Personal data will not be disclosed to third parties unless disclosure is necessary in order to be able to offer our services. In order to achieve the above purpose, your personal data may be disclosed to contractual partners for the purpose of providing quality services. Service providers will be allowed to obtain only the personal data necessary to deliver their services.

We will not disclose personal data to third parties for the purpose of enabling them to market their products and services to our customers. If users do not want us to disclose personal data to these companies, please contact us at salut@patio.ro.

DURATION OF PROCESSING

The data processed on a contractual basis will be kept until the legal deadlines have been met.

The processing of your personal data provided for the purposes of communication will take place until the date on which you withdraw your consent to the processing.

After the expiry of the duration of the processing indicated above, or after the withdrawal of your consent and if we no longer have legal or legitimate grounds to process your data, the data will be deleted from the database.

TECHNOLOGIES USED

The Website patio.ro uses cookies or similar technologies to ensure the best user experience and to analyze trends, administer the website, track customer usage within the website and collect demographic information about the user base as a whole.

Cookies are small text files that are placed on the customer's device to track usage and record preferences. Our cookies do not contain information that can identify individuals. We collect certain information automatically through the use of cookies and tracking technologies such as Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), referring/exit pages, pages viewed on our website (e.g. HTML pages, graphics), operating system, date/time and/or series of clicks in order to analyze the trend as a whole and administer the website.

Users of the website can control the use of cookies at the browser level, but if the user decides to disable cookies, this action will result in a limitation of certain features and functions in our website and services.

SECURITY OF DATA PROCESSING

ZALMOS CONSULTING S.R.L. takes all the necessary organizational and technical measures to protect the confidentiality and security of your personal information collected from the patio.ro website.

We will securely process data, apply and maintain appropriate technical measures to protect personal data against accidental or unlawful destruction or loss, alteration, unauthorized disclosure or access, in particular where the processing involves the transmission of data over a network as well as against any other form of unlawful processing.

Questions related to the security of personal data can be sent to the following email address: salut@patio.ro

THE GDPR PROVIDES THE FOLLOWING GENERAL RIGHTS TO INDIVIDUALS CONCERNED BY THE PROCESSING OF PERSONAL DATA:
  1. The right to be informed;
  2. Right of access
  3. Right of rectification;
  4. Right to erasure
  5. The right to restrict processing;
  6. The right to data portability;
  7. The right to object;
  8. Rights related to automated decision-making and profiling.
RIGHT TO BE INFORMED

It refers to the obligation to provide "correct processing information", usually through a privacy notice. It stresses the need for transparency in how we use personal data.
According to Article 13: "Information to be provided if personal data are collected from the data subject", Paragraph 1, it is mandatory to provide the following information:

  • identity and contact details of the controller or representative;
  • contact details of the Data Protection Officer (DPO);
  • the purposes of the processing of the personal data, as well as the legal basis for the processing (legal basis);
  • legitimate interests of a controller or as a third party – Lawfulness of processing;
  • the recipients or categories of recipients of the personal data;
  • the intention to transfer personal data to a third country and what are the guarantees that this transfer is perfectly lawful and does not harm the interests of the data subject.

In addition, at the time when the personal data has already been obtained, according to Article 13, paragraph 2, the controller must provide the data subject with a series of additional information, necessary to ensure the transparency of the processing:

  • the data retention period or the criteria used to determine this period;
  • dreptul la rectificare, ștergere, restricționare, obiecții;
  • dreptul la portabilitatea datelor;
  • dreptul de a retrage consimțământul în orice moment, dacă este cazul;
  • the right to lodge a complaint with a supervisory authority;
  • whether the request is part of a legal or contractual requirement or obligation and the possible consequences of non-provision;
  • the existence of an automated decision-making process (including profiling) and how decisions are made, their meaning and consequences.
RIGHT OF ACCESS

According to Article 15: "Right of access by the data subject", the following types of information may be requested:

  • What is the purpose of the processing of personal data?
  • what categories of personal data are concerned;
  • who are the recipients to whom the personal data has been provided;
  • what is the period for which the personal data will be stored;
  • the right to rectification, erasure, objection or restriction;
  • the right to lodge a complaint with a supervisory authority;
  • where personal data is not collected from the data subject, any available information on their origin.
RIGHT TO RECTIFICATION

According to Article 16: "Right to rectification" – "The data subject has the right to obtain from the controller, without undue delay, the rectification of inaccurate personal data concerning him/her. Taking into account the purposes for which the data were processed, the data subject shall have the right to obtain the completion of personal data that are incomplete, including by providing an additional statement.'

RIGHT TO ERASURE OF DATA

According to Article 17, paragraph 1: Right to erasure of data ("right to be forgotten"), the data subject has the right to obtain from the controller the erasure of personal data, without undue delay, and the controller has the obligation to erase the personal data, if one of the reasons exists:

  • the data are no longer necessary for the purposes for which they were collected or processed;
  • the data subject withdraws his/her consent on the basis of which the processing takes place;
  • the data subject objects to the processing pursuant to Article 21(1) of the right to object;
  • there are uncertainties about the lawfulness of the processing of personal data;
  • the data must be deleted in order to comply with a legal obligation incumbent on the controller;
  • Personal data belongs to children under the age of 16.
RIGHT TO RESTRICTION OF PROCESSING

According to Article 18: Right to restriction of processing, the data subject has the right to obtain from the controller the restriction of processing in one of the cases:

  • the accuracy of the data is contested, for a period allowing the controller to verify the accuracy of the data in question
  • the processing is unlawful and the data subject objects to the erasure of the personal data, requesting instead the restriction of their use;
  • the controller no longer needs the personal data for the purpose of processing, but the data subject requests them from us for legal action;
  • the data subject has objected to the processing (Article 21(1)) for the period during which it is verified whether the legitimate rights of the controllers prevail over those of the data subject.
RIGHT TO DATA PORTABILITY

According to Article 20, the data subject has the right to transmit personal data to another data controller. The data controller shall provide the data subject with a copy of the personal data in a structured, commonly used and machine-readable format. Furthermore, the data controller must not prevent the transmission of personal data to a new data controller.
The right to data portability applies only if:

  • the data is processed by automated means;
  • the data subject has given consent to the processing;
  • The processing is necessary to meet the conditions stipulated in a contract.
RIGHT TO OBJECT

According to Article 21, the data subject has the right to object:

  • processing personal data for direct marketing purposes;
  • processing data for profiling;
  • data processing by automated means;
  • processing for scientific or historical purposes.
RIGHTS RELATED TO AUTOMATED DECISION-MAKING AND PROFILING

According to Article 22, natural persons have the right not to be subject to a decision when it is based on automated processing and may produce a legal effect or a similar significant effect on the individual.

Exercitarea drepturilor de mai sus poate fi efectuată în orice moment, prin adresarea unei solicitări scrise, datată și semnată, sau în format electronic, către Operator, la următoarea adresă/e de contact electronic: salut@patio.ro, sau prin poșta scrisă către sediul SC ZALMOS CONSULTING SRL de pe Calea Moșilor, Nr.158, Parter, Modul P172, sector 2, București.

We will process your request and respond to you as soon as possible, depending on the complexity and number of requests made. If you would like any other necessary information regarding the above, including how to exercise your rights, please send us a written request, dated and signed, to the contact details mentioned above.

CHANGES TO THIS POLICY

This policy may be updated from time to time, for example following changes in relevant legislation. If changes are made to the material, customers will be notified by email or via the website before the changes take effect. We encourage customers to check this page periodically to be informed of the latest news regarding our privacy practices.

How can you contact us?
If you have any questions, complaints, or comments regarding this privacy policy or our personal data collection practices, please contact us on salut@Patio.ro or by phone on 0726 400 148.
patio.ro is owned by ZALMOS CONSULTING SRL
CUI: RO 36189122; J23/4520/2022

Address: Str. Balantei, nr. 46, Petresti Village, Corbeanca, Ilfov.

IBAN: RO76BTRLRONCRT0350788701, Banca Transilvania