Data confidentiality

PERSONAL DATA PROTECTION POLICY – PDP

The protection of your personal data is important to us, therefore, we pay special attention to protecting the privacy of natural persons who have provided us with their personal data, of visitors who access this site, as well as of those whose personal data has been provided to us by a third party, or to which we have access from another source, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection natural persons regarding the processing of personal data and the free movement of such data (hereinafter referred to as “GDPR”).

Please pay special attention to reading the following Policy (hereinafter referred to as “PDP”) to understand how your information (“personal data”) will be treated.

The PDP explains the practices of CENTRUL RIVERGATE SRL and RIVERGATE FIRE SRL (hereinafter referred to as “RIVERGATE” or “OUR ORGANIZATION”), regarding the application of GDPR provisions, as well as the rights you have related to the manner your information is processed by OUR ORGANIZATION .

The processing of personal data by RIVERGATE will always be carried out in accordance with the provisions of the GDPR, as well as with the regulations on the protection of personal data, specific to each country in which RIVERGATE operates.

Through the PDP, OUR ORGANIZATION wishes to inform the data subjects on the nature of the personal data we collect and process, as well as on the purposes of the processing. In addition, data subjects are also informed, via PDP, on their rights.

DATA CONTROLLER

This website, RIVERGATE.RO belongs to RIVERGATE, with registered address in Splaiul Unirii 64, 4th District, 040036 Bucharest with VAT codes RO14309635 \xc8\x99i, respectively RO36648314.

DEFINITIONS

PERSONAL DATA

“Personal data” means any information that can identify you directly (for example, your name) or indirectly (for example, through anonymised data, such as a unique identification number). This means that personal data includes your email address, home address, mobile phone, username, profile pictures, personal preferences and shopping habits, user-generated content, financial information and financial situation. It could also include unique numeric identifiers, such as your computer’s IP address or your mobile device’s MAC address, as well as cookies.

PERSONAL DATA PROCESSING?

“Processing” means any operation or set of operations performed on personal data or sets of personal data, with or without the use of automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, extraction, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, deletion or destruction.

WHAT PERSONAL DATA DO WE PROCESS?

Your personal data that can be processed, without being limited to, are the following: name, surname, physical address, e-mail address, city, county.

PERSONAL DATA CONTROLLER

The personal data controller (hereinafter referred to as the “controller”) is RIVERGATE.

DATA PROCESSING PRINCIPLES

OUR ORGANIZATION undertakes to comply with the personal data protection principles (hereinafter referred to as the “Principles”) provided by the GDPR, to ensure that the data is:

  1. Processed fairly, legally and transparently;
  2. Collected for specified, explicit and legitimate purposes;
  3. Adequate, relevant and limited in relation to the purposes for which it is processed;
  4. Correct and up-to-date;
  5. Stored in a form that does not allow the identification of the data subjects for longer than necessary in relation to the purpose of the processing;
  6. Processed in accordance with the rights of the data subject, in a way that ensures adequate security of the processing, so that the data is intact, confidential and available.

BASIS AND PURPOSES OF PERSONAL DATA PROCESSING

  1. For the purpose of concluding and executing contracts – According to art. 6 para. 1 letter b) of the GDPR, specific personal data may be processed. In order to be able to offer you our products and services, we need to process your personal data.
  2. In order to fulfil certain legal obligations – According to art. 6 para. 1 letter c) of the GDPR, personal data may be processed for the purpose of fulfilling legal obligations. We request a range of personal data, including, in certain situations, your personal identification number, in order to fulfil our obligations imposed by the tax authorities in relation to invoicing and reporting to the tax authorities.
  3. In order to fulfil the duties established by law 335/2007 as subsequently supplemented – According to art. 6 para. 1 letter a) of the GDPR, personal data may be processed if the data subject has given his/her consent for the processing of his/her personal data for one or more specific purposes. Thus, in certain situations, your personal data will be used for purposes such as: carrying out the commercial/contractual activity and, to the extent you have agreed, for the purpose of marketing, promotion, advertisement, publicity, etc., in order to keep you up to date with OUR ORGANIZATION’s products, services and initiatives.

PROCESSING THE CONTACT FORM

OUR ORGANIZATION will use the information you provide in the appropriate contact section on the website solely for the purpose of processing your request.

By providing any personal data through the website www.RIVERGATE.RO, you understand and agree that your data will be processed in accordance with the provisions of PDP of RIVERGATE.

Please note that in order to be able to process your requests submitted in the contact section of the website, it is possible that, under certain circumstances, we have to disclose your data to the partners with whom RIVERGATE collaborates and/or to other third party service providers of OUR ORGANIZATION.

However, RIVERGATE has adopted appropriate technical and organizational measures to ensure the security of data transfer, as well as the processing in accordance with GDPR requirements of your data by the aforementioned entities.

RIVERGATE undertakes not to process the personal data provided for a purpose other than that for which it was transmitted, except in situations where there is your express consent to use it for other purposes as well.

It is also possible for RIVERGATE to have access to other personal data when you establish a connection with RIVERGATE, by processing the data communicated following telephone conversations, e-mail conversations, coming at our headquarters in order to obtain information etc.

By contacting RIVERGATE in any manner specified above or by any other method involving an indirect or direct communication between you and OUR ORGANIZATION, you understand and agree that your data will be processed in accordance with the provisions of PDP of RIVERGATE.

DISCLOSURE OF PERSONAL DATA TO THIRD PARTIES

Personal data processed by OUR ORGANIZATION may be disclosed and/or transferred to third parties only in the situation where there is your express consent to do so, except for situations where there is a legal/contractual obligation for OUR ORGANIZATION to proceed in this manner.

Please keep in mind that in certain circumstances we may be required to disclose your personal data to partners with whom RIVERGATE collaborates and/or other third party service providers of RIVERGATE.

DATA PROCESSING BY THIRD PARTIES, OTHER WEBSITES AND SPONSORS

The website www.RIVERGATE.RO may contain, at some point, access links to other websites whose data processing policies may be different from those of RIVERGATE.

Please consider and consult the personal data protection policies of the other websites, RIVERGATE assuming no responsibility for the information submitted or collected by these third parties.

AUTOMATIC DATA PROCESSING. COOKIES

The website www.RIVERGATE.RO uses cookie identifiers. In this regard, please consult our Cookie Policy, available on the website, while you can exercise your right to disable Cookies, as specified below.

DATA STORAGE PERIOD

RIVERGATE may keep the processed data for different periods of time, deemed reasonable, in accordance with the purposes indicated above. We keep your data only for the period necessary to achieve the purpose for which we hold the data, to meet your needs or to fulfil our obligations required by law.

To know how long your data can be kept, we use the following criteria:

  1. When you use our services we keep your personal data for the period of our contractual relationship;
  2. If you participate in a promotional offer, we keep your personal data for the period of the promotional offer;
  3. If you contact us with a question, we keep your personal data for as long as necessary to process your questions, but no longer than 5 years after the last correspondence sent;
  4. If you create an account, we keep your personal data until you request the data deletion or after a period of inactivity (without active interaction with us). In this regard, we note that the data processed for this purpose will be deleted 5 years after the last interaction with the account user (such as, for example, logging into your account);
  5. Where you have provided your consent for marketing, we keep your personal data until you unsubscribe or ask us to delete the data, or after a period of inactivity (without active interaction with our brands) defined in accordance with local regulations and guidelines. In this regard, we mention that the data stored in our databases for the purpose of direct marketing communications is deleted from the records of these databases 5 years after the last interaction with you;
  6. If cookies are stored on your computer, we keep them for as long as necessary for them to achieve their purposes (for example, during a session for shopping basket cookies or user ID cookies session) and for a period defined in accordance with local regulations and guidelines. In this regard, we note that the data processed by the cookie modules used to provide online behavioural advertising, to customize our services for you and to allow the distribution of our content on social media websites (sharing buttons intended to display the website), will be kept for a maximum period of 1 year from their collection, based on your consent.

THE RIGHTS OF DATA SUBJECTS

In accordance with the GDPR, you have a number of rights regarding the personal data processed by RIVERGATE:

  1. The right to access the data processing– You have the right to access the personal data we hold. The first provision of information will be free of charge. If you require further copies of information already provided, we may charge a reasonable fee taking into account the administrative costs of providing the information. Manifestly unfounded, excessive or repeated requests may not receive a response.
  2. The right to data rectification – You have the right to request that your Data be rectified if it is inaccurate or out of date and/or complete if it is incomplete. If you have an account, it may be easier to correct your own data via the “My Account” function.
  3. The right to erasure (“right to be forgotten”) – In some cases, you have the right to have your Data erased or destroyed. This is not an absolute right as we may sometimes be forced to keep your Data for legal reasons.
  4. The right to restriction of processing – You have the right to request the restriction of your Data processing. This means that the processing of your Data is limited so that we may keep the Data but not use or process it. This right applies in specific circumstances provided for by the General Data Protection Regulation, namely:
  5. – the accuracy of the Data is challenged by the data subject (i.e. you), for a period that allows the controller (i.e. RIVERGATE) to verify the correctness of the Data;

– the processing is illegal and the data subject (i.e. you) opposes the deletion of the Data and requests the restriction of its use;

– the controller (for example, OUR ORGANIZATION) no longer needs the Data for processing, but it is requested by the data subject (i.e. you) to establish, exercise or defend legal claims;

– the data subject (i.e. you) has objected to processing based on legitimate grounds by the controller (in this case RIVERGATE) based on the verification that the legitimate grounds of the controller (RIVERGATE) outweigh those of the data subject (i.e. you).

  1. The right to data portability– You have the right to move, copy or transfer the data you are interested in from our database to another. This only applies to data that you have provided, when the processing is based on your consent or on a contract and is implemented by automated means.
  2. The right to object – You can object at any time to the processing of your data when such processing is based on a legitimate interest.
  3. The right to withdraw consent at any time– You may withdraw your consent to the processing of your data when such processing is based on consent. Withdrawal of consent does not affect the legality of processing based on consent prior to its withdrawal.
  4. The right to file a complaint with the competent supervisory authority – You have the right to file a complaint with the data protection authority of your country of residence or domicile to challenge the data protection practices offered by OUR ORGANIZATION.
  5. The right to object to the processing of your data for direct marketing purposes– You can unsubscribe or opt out of our direct marketing communication at any time. It is easier to do this by clicking on the “unsubscribe” link in any email or communication we send you.
  6. The right to object to our processing of your data when we carry out actions in the public interest or in our own or a third party’s legitimate interests – You can object at any time to the processing of your data when such processing is based on a legitimate interest.
  7. The right to disable cookies – you have the right to disable cookies. Internet browser settings are usually set by default to accept cookies, but you can easily adjust them by changing your browser settings. Many cookies are used to enhance the usability or functionality of websites/applications; therefore, disabling cookies may prevent you from using certain parts of our websites or applications, as detailed in the relevant Cookie table. If you wish to restrict or block all cookies set by our websites/applications (which may prevent you from using certain parts of the website) or any other websites/applications, you can do so through your browser settings. The Help function in your browser will tell you how. For more information, see the following links: http://www.aboutcookies.org/;

You can exercise any of these rights in relation to the personal data that RIVERGATE processes by making a simple application to RIVERGATE DPO. In such a situation we may very well ask for proof of your identity.

LEGAL REQUESTS

We access, retain and provide your information to regulatory authorities, law enforcement or other entities:

  1. In response to a legal request, when we believe in good faith that the law requires us to do so. We may also respond to requests of a legal nature when we believe, in good faith, that the response required by the laws of that jurisdiction affects users in that jurisdiction and is compliant with the internationally recognized standards.
  2. When we believe, in good faith, that it is necessary to: detect, prevent and respond to acts of fraud, unauthorized use of any material belonging to us, breaches of our terms or policies, or other harmful or illegal activities, to protect us (including our rights, property or materials), you and others, including in the context of investigations or inquiries by regulatory authorities or to prevent imminent death or personal injury. For example, if relevant, we provide information to and receive information from third parties about the reliability of your account to prevent fraud, abuse and other harmful activity within and beyond our materials.

The information we receive about you may be accessed and stored for a longer period of time when it is subject to a legal request or obligation, a government inquiry, or investigations into possible breaches of our terms or policies, or in other cases to prevent damages.

RELATIONS WITH OTHER CONTROLLERS

Depending on the context, we may find ourselves in the situation of the absolute need to provide information at a higher level, both globally and internally or externally, to our partners and those to whom we transfer data in compliance with the GDPR, by virtue of ensuring the provision of the most professional services possible. Information controlled by RIVERGATE may be transferred, transmitted or stored and processed in the EU or in countries other than your country of residence for the purposes described in this policy. These data transfers are necessary to be able to provide services at the highest level, as well as to continue to provide you with our materials at the best professional level. We use standard contractual clauses approved by the European Commission and rely on country-specific adequacy decisions issued by the European Commission, as appropriate, with respect to transfers of data from the EEA to the United States and to other countries.

SECURITY OF PROCESSING

RIVERGATE has adopted technical and organizational data processing measures, updated in accordance with GDPR requirements, with the aim of protecting your personal data against any actions of unauthorized access, misuse or disclosure, unauthorized alteration, destruction or accidental loss. All employees and collaborators of RIVERGATE, as well as any third parties acting in the name of and on behalf of RIVERGATE, are required to comply with the confidentiality of your information and the GDPR requirements, in accordance with the provisions of the PDP.

DISCLAIMER

The website www.RIVERGATE.RO may contain links to other websites and/or other web pages which are not the property of RIVERGATE. OUR ORGANIZATION takes no responsibility for the content of these websites and therefore cannot be held responsible for the content, advertising, goods, services, software, information or other materials available on or through these websites. RIVERGATE will not be responsible for the loss of personal data, any negative effects on visitors’ personal data or other moral and/or patrimonial damages caused by access to those websites.

UPDATE OF THE PERSONAL DATA PROTECTION AND PROCESSING POLICY

Please keep in mind that this Policy may be subject to periodic content amendments, by updating the www.RIVERGATE.RO website.

How will we notify you of amendments to this Policy?

We will notify you before we make any amendments to this Policy and give you the opportunity to review the revised PDP before choosing to continue using our materials.

Please do not continue to use the www.RIVERGATE.RO website if you do not agree with such amendments. We also recommend checking this page for any updates.

The terms of the PDP shall be construed in accordance with applicable law.

CONTACT

If you have any questions or concerns about how we treat and use your personal data or wish to exercise any of your rights, please contact us at .