Who are we?
We are a SAAS type services company for developing e-commerce solutions, with over 10 years of experience. We are constantly concerned with compliance with the provisions applicable to the protection of personal data, so that the personal data that customers, potential customers or visitors to the SHOPOTEQUE website ("data subjects") provide are processed in full compliance with the provisions applicable personal data protection legislation.
What are personal data and the Data Protection Regulation?
"Personal data"means any information relating to an identified or identifiable natural person ("data subject"), which can be identified, directly or indirectly, in particular by reference to an identifier (eg a name, an identification number, location data, an online identifier) or to one or more specific elements (specific to his physical, physiological, genetic, psychological, economic, cultural or social identity).
The processing of their personal data should, regardless of the natural persons' nationality or place of residence, respect their fundamental rights and freedoms, in particular the right to the protection of personal data.
Starting from May 25, 2018, the European Regulation 2016/679 on the protection of natural persons regarding the processing of personal data and the free movement of such data ("Regulation") becomes applicable, which aims to contribute to the creation of a space of freedom, security and justice. We, the SHOPOTEQUE team, want to contribute to creating this climate of trust and inform you about how we protect personal data and how we apply the provisions of the Regulation.
What kind of personal data do we process and to whom do they belong?
The personal data we process is identification, demographic, transactional, financial and location data.
As an Operator, we process identification information of potential candidates, which we obtain from the CV or from the recruitment form available on the website, and of our employees, which we obtain upon hiring (more details in the internal policy). ; As an Authorized Representative, we process personal data of employees, associates and representatives of our clients, in accordance with the instructions received from them, data that we obtain during the contractual relationship, for the execution of the contracts concluded with our clients.
What does the processing of personal data mean at SHOPOTEQUE, what is the legal basis and for what purposes are they processed?
Data processing means the operations we perform on personal data (e.g. recording, organizing, structuring, storing, adapting or modifying, extracting, consulting, using and disclosing by transmission, dissemination or otherwise making available) on the basis of a of the following legal grounds:
- execution of contracts concluded with us;
- compliance with legal obligations;
- our legitimate interest or
- the consent of the persons who express their option in this regard.
Personal data will be used for the following purposes:
- To manage the data of potential candidates in the recruitment process;
- To manage employee data when initiating, implementing and processing employment contracts;
- To initiate, implement and process business contracts with customers;
- To carry out activities aimed at informing customers and interested third parties about the products and services offered by SHOPOTEQUE or its partners, as the case may be;
- To initiate, implement and execute agreements with SHOPOTEQUE's service providers;
- To carry out relations with other third parties;
- To send you information related to our services and newsletters;
- To invite you to SHOPOTEQUE events or activations.
What are cookies?
These tools collect general information that your browser sends to our site, such as the browser type and address of the site you visited before accessing our site.
They will also collect information about:
- Your Internet Protocol (IP) Address - This is a number automatically assigned to your computer or device every time you connect to the Internet. It is a unique address assigned by your Internet service provider on a TCP/IP network. The IP address allows web servers to locate and identify your device.
We use the term cookie to refer to all technologies that store and access information from the device you use to access our Services, such as your computer, tablet or mobile phone. Also known as browsing cookies or tracking cookies, cookies are small, often encrypted text files located in browser directories.
They are used to help users navigate websites efficiently and perform certain functions. Due to their primary role of improving/facilitating the use or processes of the website.
To whom do we transfer personal data?
We want to make sure that we offer you the most competitive services possible and, at the same time, that we fulfill our contractual and legal obligations. Thus, we will transmit personal data to public authorities, notary offices, external consultants, lawyers, translators, financial-banking institutions, authorized persons to whom we have outsourced the provision of certain services and to other categories of recipients, from Romania or outside the European Union or the Economic Space European.
In relation to the transfer of your personal data outside the European Union or the European Economic Area, we will ensure that organizations in these countries benefit from an adequacy decision or have issued adequate protection guarantees personal data.
How long do we process and keep personal data?
Personal data are processed throughout our contractual relationship (period necessary to fulfill the purposes of the processing) and, after its completion, for the period imposed by the applicable legal provisions in the field, including, but not limited to, the provisions on archiving.
How do we protect personal data?
Both as Operator and as proxy, SHOPOTEQUE implements appropriate technical and organizational measures to ensure an appropriate level of security. We use encrypted means of processing (secure communication such as VPN, Webaccess control or device control), we ensure the back-up of the data stored in our systems, we periodically test and evaluate the effectiveness of the measures that guarantee the security of the processing.
How do we protect the personal data of minors?
Our services are not aimed at minors and therefore we do not knowingly process information, including personal data of minors or other natural persons who are not legally able to benefit from SHOPOTEQUE services. If we become aware that we have collected personal data from a person under the age of 18, we will promptly delete it, unless such processing is required by law.
Please contact us if you believe that we have erroneously or unintentionally collected personal data from a person under the age of 18.
What security measures do we take to protect your personal data?
SHOPOTEQUE wants to take all necessary measures to protect your information against unauthorized access, loss, destruction or unwanted modification. Even though SHOPOTEQUE implements and continuously updates administrative, technical and physical security measures to ensure the protection of your information, SHOPOTEQUE cannot at all times guarantee the security of the transmission or storage of your information over the Internet. Security measures include firewalls, password encryption and information access authorization controls.
What are the data subject's rights and how can they be exercised?
In accordance with the applicable legal provisions, you have the right to information, the right to access data, the right to intervene on data, as well as the right to object to the processing of your personal data. You also have the right to delete data ("right to be forgotten"), the right to rectification, the right to restrict processing, the right to data portability, the right not to be subject to an automated individual decision, as well as the right to file a complaint with the supervisory authority and go to court.
You can exercise these rights at any time by sending a signed and dated request to our Data Protection Officer, whom you can contact regarding any aspect related to the protection of personal data: at our headquarters in Str. Ion Slătineanu, no. 32, Sector 1, Bucharest, Romania or by e-mail at firstname.lastname@example.org.