Privacy Policy
1. Processing of Personal Data
To ensure users’ rights to personal data protection, we have implemented specific safeguards, in compliance with Romanian law and the requirements set by the Regulation (EU) 2017/679 – applicable across the European Union starting May 25, 2018 (“Regulation”).
Personal data is any information that can identify you, especially through an identifying element such as a name, ID number, location data, an online identifier, or one or more factors related to your physical, physiological, genetic, mental, economic, cultural, or social identity.
Our company takes all necessary measures to ensure your right to personal data protection. These terms represent the notice under Articles 13 or 14 of the Regulation, explaining why we collect your personal data, how we protect it, and your rights in connection with this data collection.
We encourage you to carefully read this document and reach out for any additional information or clarifications regarding its content.
1) General Considerations Regarding Your Personal Data
In line with Regulation (EU) 2017/679, SmartCard manages personal data provided by Users safely and solely for specified purposes. The Terms and Conditions inform Users that personal data they provide will be processed to offer optimal services over the internet, goods and services supply, advertising, marketing, and statistics.
SmartCard undertakes the following operations: collection, registration, organization, storage, adaptation, modification, retrieval, consultation, use, and, in some cases, transfer to third parties under a secure and confidential commercial contract that protects users’ rights.
Personal data collected may be used, including through automatic profiling (for users who have given explicit consent), to tailor services on the site and for marketing purposes. Automated profiling does not involve minors' data, as their personal data is not processed for this purpose.
Users may provide personal data upon creating a valid account or subscribing to a service on the site. Information requested during registration may include names, gender, birthdate, email address, phone number, profession, preferences, and behavior patterns, among others.
The User is solely responsible for all data provided during account creation. For confirmation, an email will be sent to the registered email address. This confirmation email serves to prevent fraudulent actions by users who might use others' email addresses to create fake accounts. If you receive such a message without personally registering, please email us at hello@smart-card.io to delete the account within three business days. The email will include a PDF version of this Agreement.
The User profile form contains editable fields for changing or updating the data provided during account creation.
2) Personal Data Collected, Legal Grounds, and Purpose
We collect and process your personal data as part of the online communication relationship established between the site and the user, as detailed below:
Personal data collected:
-
Name, first name, email address, phone number, geographic location, mailing address, social media profile links
-
Legal grounds: Consent, contractual necessity
-
Purposes: Provide access to content, respond to online inquiries, send communications, offers, and benefits through access to services and products.
Cookies, timestamps, and browsing history:
-
Legal grounds: Consent, legitimate interests
-
Purpose: To monitor site traffic, access history, and determine relevant content for the user.
Data Retention:
Data is stored securely for up to 10 years or until the user explicitly requests deletion. After 10 years, data is anonymized.
3) Storage, Location, and Retention Period of Your Personal Data
We retain your personal data no longer than necessary for fulfilling the purposes for which it was collected or as required by law. Depending on the situation, the retention period may vary from 1 day to 10 years. For more details on the retention location, period, or specific purposes of personal data, refer to the above table.
Special technical and organizational measures are applied to safeguard sensitive or significantly impactful data.
4) User Rights Regarding Personal Data and How to Exercise Them
To ensure high-standard data protection, users have the following rights under the law:
Right of Access:
Users may access their personal data we process, and the first copy will be provided for free.
Right to Rectification:
Users may correct inaccuracies or update incomplete data.
Right to Erasure:
Users may request data deletion, with legal limitations applying in some cases.
Right to Restrict Processing:
Users may request to limit processing, particularly if they contest the data's accuracy or if processing is no longer necessary.
Right to Object:
Users may object to data processing, especially for marketing purposes.
Right to Withdraw Consent:
For data processed based on consent, users may withdraw their consent at any time.
Right to File a Complaint:
Users may file a complaint with the National Supervisory Authority for Personal Data Processing regarding data processing by our Company.
For more details or to exercise these rights, please contact us at hello@smart-card.io, Mures, Targu Mures, 7, 540331, phone +40754200054.
2. Force Majeure
Neither party will be liable for failing to fulfill contractual obligations if such failure is due to force majeure, defined as an unforeseeable event beyond the control of the parties.
3. Applicable Law
This agreement is governed by Romanian law. Disputes between SmartCard and users will be resolved amicably or, if not possible, by the competent Romanian courts.