PRIVACY POLICY

We collect only the personal data that you voluntarily provide through our contact form:

- Name

- Email address

- Subject of your message

- Message content

We do not collect any other categories of personal data, such as your physical address, phone number, date of birth, or contractual data.

Your data is processed for the following purposes and based on these legal grounds:

- Responding to messages: To process and reply to the inquiries you send via the contact form. Legal basis: Art. 6(1)(a) GDPR – your consent, expressed by submitting the form.

- Technical operation and security: To ensure the website functions correctly and to protect it against cyber-attacks or unauthorized access. Legal basis: Art. 6(1)(f) GDPR – our legitimate interest in maintaining a secure and functional website.

We store the data from the contact form only for the period necessary to respond to your inquiry and resolve any follow-up questions. We may archive this data for a limited time (up to 3 years) solely for the purpose of providing evidence in case of potential disputes, after which it will be permanently deleted.

Your data may be accessed by our essential service providers, such as hosting and email infrastructure providers, who act as data processors. We may also disclose data to legal authorities if required by a mandatory legal obligation.

If our hosting or email infrastructure involves service providers located outside the European Union, such transfers are carried out with appropriate safeguards in place to ensure a level of protection equivalent to the GDPR.

We have implemented technical and organizational security measures to protect your personal data against loss, modification, or unauthorized access. These include server-side security protocols, restricted access to data, and TLS/HTTPS encryption for all data transmitted through the website.

Our website uses strictly necessary cookies to ensure basic technical functionality and security. These cookies are essential for the operation of the site and do not require your prior consent. We do not use any third-party analytics or marketing cookies that track your behavior across other websites. For more details, please consult our Cookie Policy.

As a data subject under the GDPR, you have the following rights:

- Right of access, rectification, and erasure ("right to be forgotten\").

- Right to restriction of processing and right to data portability.

- Right to object to processing and right to withdraw consent at any time.

- Right to lodge a complaint with a supervisory authority (ANSPDCP in Romania).

To exercise any of these rights, please contact us at: contact@blimzo.ro