C4WEB STUDIO SRL (Kompozit) takes the confidentiality of personal data seriously. Please contact us if you have any questions or comments on this privacy policy.
This privacy policy sets out the ways Kompozit processes personal data and only relates to personal data collected by Kompozit via the Kompozit apps and websites. This privacy policy does not apply to personal data provided to Kompozit by any other means or via any other website. Any personal data collected by Kompozit is used in accordance with effective data protection legislation.
The data controller of Kompozit apps and websites is:
C4WEB STUDIO SRL
300667 Timisoara (Romania), Cl. Torontalului 25/A sc. A ap. 6
Company no.: J35/2534/2013
VAT no.: RO32329797
Personal data:
The data controller is responsible for compliance with the above, and must also be able to prove this compliance ("accountability").
The data controller declares that its data management is carried out in accordance with the basic principles contained in this point.
Personal information provided to Kompozit via the apps and websites will be used for the purposes outlined at the time of collection. In addition, personal information may be used for statistical analysis.
Personal data will be collected and processed by Kompozit for the following purposes:
Within the period of data management, the data subjects are entitled to the following rights:
Right to be informed
At any time, the data subject is entitled to request information about his/her personal data managed by Kompozit.
Right to erasure
The data subject has the right to request that Kompozit delete the personal data relating to him without undue delay, and Kompozit is obliged to delete the personal data relating to the data subject without undue delay.
Right to rectification of data
The data subject can indicate that the processed data is inaccurate and can request that what be displayed instead.
The right to restrict data processing
The person concerned can request the restriction of the processing of his personal data. If data management is subject to restrictions, such personal data may only be processed with the consent of the data subject, with the exception of storage, to submit, enforce or defend legal claims, or to protect the rights of another natural or legal person, or in the important public interest of the Union or a member state.
Right to data portability
The data subject can request to receive the data processed about him in a segmented, widely used, machine-readable format (e.g.: .doc, .pdf, etc.) in order to provide it to a different data controller.
Right to protest
The data subject has the right, if he/she has not given his consent to the processing of the data, to object to the processing of his personal data for a specific reason at any time.
If, at any time, you have a request listed above, you may simply email your request to [email protected].
Verification, updating or amendment of personal data takes place within 30 days of receipt of the request.
1. Data related to registration
| Scope | Purpose | Legal Basis | Duration |
|---|---|---|---|
| The customer's name, email address, telephone number, and the details of the business belonging to the customer | Creating the registration required to use the Kompozit application, creating your own and company profile, maintaining contact | Voluntary consent of the customer | Until the request for data deletion or the general 5-year statute of limitations |
2. Partner-related data
If you invite your partners to the Kompozit application, you only act in accordance with the law if you have the express permission and authorisation of the person concerned to provide data. Kompozit is not responsible for any consequences arising from the lack of consent and authorisation mentioned above, so please make sure that you have these consents and authorisations before the invitation and, if necessary, prove their existence.
| Scope | Purpose | Legal Basis | Duration |
|---|---|---|---|
| Name, email address, telephone number of the partner's contact person, as well as the details of the business company belonging to the contact person | Use of the Composite application, contact | Enforcement of the legitimate interests of the parties | Until the request for data deletion or the general 5-year statute of limitations |
3. Data related to employees and subcontractors
If you invite your employees and subcontractors to the Kompozit application, you only act in accordance with the law if you have the express permission and authorisation of the person concerned to provide data. Kompozit is not responsible for any consequences arising from the lack of consent and authorisation mentioned above, so please make sure that you have these consents and authorisations before the invitation and, if necessary, prove their existence.
| Scope | Purpose | Legal Basis | Duration |
|---|---|---|---|
| The name, email address, and telephone number of the employee's or subcontractor's contact person, as well as the details of the business company belonging to the contact person | Use of the Composite application, contact | Enforcement of the legitimate interests of the parties | Until the request for data deletion or the general 5-year statute of limitations |
4. Newsletter signup
The data subject has the opportunity to subscribe to Kompozit's newsletter on the Kompozit website or through the registration interface of the application.
| Scope | Purpose | Legal Basis | Duration |
|---|---|---|---|
| Subscriber's name, email address | Through the newsletter, the subscriber can be informed about current promotions, offers, and relevant content related to the use of the Composite application | Voluntary consent of the subscriber | Until the request for data deletion, newsletter unsubscribe, or the general 5-year statute of limitations |
5. Kompozit marketing campaigns
Kompozit periodically organises campaigns on various online platforms (website, campaign page, social media) for customer acquisition and marketing purposes. Through the online interfaces created for this purpose, the data subject has the opportunity to provide the following data and express their interest in Kompozit's service.
| Scope | Purpose | Legal Basis | Duration |
|---|---|---|---|
| Subscriber's name, email address | For the purpose of contacting and concluding a contract between the subscriber and Kompozit | Voluntary consent of the subscriber | Until the request for data deletion, newsletter unsubscribe, or the general 5-year statute of limitations |
6. Cookies
A cookie is a small text file that is stored on the data subject's computer or mobile device for the expiration period set in the cookie and is reactivated on subsequent visits. Its purpose is to record information related to the visit and personal settings, but this data cannot be linked to the person of the visitor. It helps in creating a user-friendly website and in order to enhance the online experience of the person concerned. If the data subject does not agree to Kompozit's use of cookies when the data subject browses the website, the website may not function fully.
| Scope | Purpose | Legal Basis | Duration |
|---|---|---|---|
| Kompozit stores all analysis information without the name or other personal data relating to the person concerned | Storing the personal settings of the person concerned, improving the user experience | Voluntary consent of the subscriber | The data subject can delete the cookies stored on his computer or mobile phone at any time through the settings of his browser |
Individual groups of personal data can be accessed by the following data processors as necessary - in accordance with the relevant data management principles.
| Data processor | Contact details | Activity |
|---|---|---|
| MIF Contab Solutions SRL | Intrarea Doinei nr. 5 bloc 6 sc. B ap. 17 300087 Timisoara, Romania |
Accounting |
| I-TOM Solutions SRL | Popa Soare nr. 69 parter cam. 2 023982 Bucharest, Romania |
Invoicing |
| Akamai Technologies International AG | Grafenauweg 8 6300 Zug, Switzerland |
IT Infrastructure Services |
| Hetzner Online GmbH | Industriestr. 25 91710 Gunzenhausen, Germany |
IT Infrastructure Services |
| Mailgun Technologies Inc. | 112 E. Pecan St. #1135 78205 San Antonio, Texas, USA |
IT Infrastructure Services |
| Sendinblue SAS | 106 boulevard Haussmann 75008 Paris, France |
Newsletter service |
| Stripe Payments Europe Ltd. | The One Building 1 Grand Canal Street Lower Dublin, Ireland |
Online payment gateway |
1. Google Analytics integration
We collect technical data about visits to the website and the use of the service using Google Analytics. The data collected by Analytics (e.g. device type, browser type, language settings, referring website address, IP address of the browser device and other geographical data) are stored anonymously, independently of personal data, and are used for statistical analysis in order to optimize the usability and marketing of the system.
2. Facebook integration
Our websites may also contain embedded plug-ins of the social media network facebook.com. The plug-in transmits to the service provider which of our websites you have opened. If you are logged into your Facebook user account while browsing our website, the service provider can compare the information you are interested in (i.e. the information you have accessed) with your user account. When using the functions of the plug-ins (for example, clicking on the "Like" button, or commenting), the browser also transmits this information directly to the service provider for safekeeping.
You can find more information about the collection and use of data by Facebook, as well as your rights and available options in connection with the above data management, in the data protection information of the service provider: http://www.facebook.com/policy.php
If you wish to prevent Facebook from linking your visit to our website with your user account with these service providers, you must log out of the given user account before opening our pages.
3. Visitor behaviour analysis tools
With the help of visitor behaviour analysis tools (e.g. Hotjar, Smartlook), clicks on the user interface of the website and the application can be analyzed anonymously, without storing the data recorded by them. The purpose of this is to improve the user interface, to make the use of the system easier and more understandable. Retention period: anonymous data collected by visitor behaviour analysis tools are kept for a maximum of 1 year.
As a general rule, the data managed by Kompozit is not forwarded to third parties. Data may only be forwarded if the data subject has expressly and in advance consented to it if it is required by law, or if it is requested by an authority under the force of law.
This privacy policy applies solely to the personal data collected by Kompozit and does not apply to third-party services users may access from our websites and apps.
Kompozit is not responsible for the privacy policies of third-party services. Kompozit advises users to read the privacy policies of other services before registering any personal data.
Kompozit stores the above-mentioned personal data on the servers of the company's IT infrastructure service providers.
During the operation of the IT systems, the necessary authorisation management, internal organisation and technical solutions ensure that your data does not come into the possession of unauthorised persons and that unauthorised persons cannot delete, save or modify the data. The data manager also enforces the data protection and data security requirements against the data processors.
Personal data can be accessed by those persons acting in the interests of the data controller - especially agents, and employees - who need it for the performance of their activities and who are aware of and familiar with the obligations related to the management of the data.
The data controller pays particular attention to ensuring that all its agents and employees are familiar with its own internal data protection protocol and that personal data is handled in accordance with its provisions.
The data controller undertakes to ensure the security of the data with the most up-to-date and appropriate equipment and security rules, in particular, to ensure that no unauthorised person has access to the data and that the data is not unlawfully disclosed, deleted or destroyed. It does everything in its power to ensure that the data is not accidentally damaged or destroyed. The data manager also imposes the above commitment on its employees participating in data management activities.
Under no circumstances does the data controller collect special data, i.e. data related to racial origin, belonging to a national and ethnic minority, political opinion or party affiliation, religious or other worldview beliefs, interest-representative organisation membership, health status, they refer to pathological passion, sexual life and criminal history.
Kompozit will notify all members of any changes it makes to its privacy policy. If Kompozit decides to change its privacy policy, it will post such changes on this page so that you are always aware of how Kompozit uses your personal data.
If you would like to contact us directly about our privacy policy, please email us at [email protected].
