Privacy Policy regarding the processing of personal data
Your privacy is one of our core obligations, and therefore
we make every effort to process your personal data in accordance with the
principles set out in applicable law, in full compliance with Regulation (EU)
2016/679 ("General Data Protection Regulation" or "GDPR").
One of the main principles of this legal framework is transparency, which is
why we have prepared this document through which we want to inform you about
how we collect, use, transfer and protect your personal data when you interact
with Fidelitti in relation to the goods and services that we provide.
We reserve the right to periodically update and modify this
Privacy Policy to reflect any changes in how we process your personal data, or
any changes in legal requirements. In the event of any such change, we
will display the modified version of the Privacy Policy on our website, so we
ask you to periodically check the contents of this Privacy Policy.
Who we are and how you can contact us
Fidelitti is a registered trademark of Fidelitti Ukraine
SRL, a legal entity registered in the jurisdiction of Romania, headquartered in
Galati, Strada Rosiori, Nr. 12, Bloc G2, Scara 1, Etaj 3, Ap. 50, Judet Galati,
with registration number in the Commercial Register J17/567/06.04.2022, with
tax fiscal number RO 45921170. (hereinafter "Fidelitti",
"fidelitti.com "or "we"). In accordance with the data
protection legislation, we are the operator when processing your personal data.
Since we are always open to your opinion, as well as to
provide you with any additional information that you may need regarding the
processing of your data, we recommend that you contact the Fidelitti Data
Protection Officer at the email address gdpr@fidelitti.com or by mail or by
courier to Romania, Galati, Strada Rosiori, Nr. 12, Bloc G2, Scara 1, Etaj 3,
Ap. 50, Judet Galati - marked: Attention, Fidelitti Data Protection Officer.
What categories of personal data do we process?
As a rule, we receive your personal data directly from you, so you can control the type of information you provide to us. With this header, we receive information from you as follows:
- when creating an account on the website fidelitti.com you send us: email address, first and last name;
- in your personal account (My account) on the website fidelitti.com you can add additional information such as: gender, mobile phone number, date of birth, delivery addresses.
We may also collect and subsequently process certain
information about your behavior when visiting our website in order to
personalize your online experience and provide you with offers tailored to your
profile. having read the section on processing purposes below.
On our website, we may store and collect information using
cookies and similar technologies in accordance with the Cookie Policy.
We do not collect or process confidential data included in
the General Data Protection Regulation in special categories of personal
data. We also do not want to collect or process the data of minors under
the age of 16.
What the purposes and grounds of processing are
We will use your personal data for the following purposes:
1. For providing Fidelitti services in your favor
This overall objective may include, as appropriate, the following:
- creating and managing an account on the site fidelitti.com;
The processing of your data for these purposes is in most
cases necessary for the conclusion and execution of the contract between
Fidelitti and you, as well as certain processing provided for these purposes is
required by applicable law, including tax and accounting legislation.
2. To improve our services
We always want to offer you the best online shopping
service. To do this, we may collect and use certain information about your
behavior as Buyers. Thanks to this information, we can improve the quality of
service and the provision of services.
3. For marketing
We want to keep you informed of the best offers for the
goods and services you are interested in. To do this, we can send you any
type of message (for example: email or SMS) containing general and thematic
information, information about goods similar or complementary to those you have
purchased, information about offers or promotions. We always make sure that
these processes are carried out in compliance with your rights and freedoms,
and decisions made on their basis do not have legal consequences for you and do
not have a similar significant impact on you.
In most cases, we base our marketing communications on your prior consent. You can change your mind and withdraw your consent at any time as follows:
- change settings in your personal account in the "Personalization" section;
In certain situations, we may base our marketing activities
on our legitimate interest in promoting and developing our commercial
activities. In any situation when we use information about you in our
legitimate interests, we take care and take all necessary measures to ensure
that your fundamental rights and freedoms are not affected. However, you
can at any time, using the means described above, request us to stop processing
your personal data for marketing purposes, and we will carry out your request.
4. To protect our legitimate interests
There may be situations in which we will use or transfer information to protect our rights and business activities. These may include:
- measures to protect the site and users fidelitti.com from cyber attacks;
The common basis of these types of processing is our
legitimate interest to protect our commercial activities, while it is understood
that we ensure that all measures we take guarantee a balance between our
interests and your fundamental rights and freedoms.
In addition, in some cases we base our processing on legal
provisions, such as the obligation to ensure the protection of goods and
valuables provided for by the applicable legislation in this matter.
How long do we store your personal data
As a rule, we store your personal data as long as you have
an account on the website fidelitti.com. You can request us to delete
certain information or close your account at any time, and we will fulfill
these requests provided that certain information is preserved, including after
the account is closed, in situations where this is required by applicable law
or our legitimate interests.
Who we share your
personal data with
Depending on the circumstances, we may transfer or grant access to certain of your personal data to the following categories of recipients:
- courier service providers;
If we have a legal obligation or if it is necessary to
protect legitimate interests, we may also disclose certain personal data to
government authorities.
We guarantee that access to your data by third parties of
private law is carried out in accordance with the legal provisions on data
protection and confidentiality of information, on the basis of contracts
concluded with them.
Which countries do we transfer your personal data to?
As a rule, your personal data is stored and processed in the
European Union and the European Economic Area (EEA).
If your personal data is transferred outside the European
Union or the EEA, the transfer will be carried out (a) on the basis of a
decision of the European Commission, by which it decides that the relevant
third country provides an adequate level of protection, (b) on the basis of
mandatory corporate rules or (c) on the basis of standard contractual
provisions adopted by By the European Commission. In addition, if we find
that one of these measures is not sufficient to ensure an appropriate level of
protection, in each case we will take additional technical and/or
organizational security measures in accordance with the recommendations of the
European Commission.
How do we protect the security of your personal data?
We strive to ensure the security of personal data by
applying appropriate technical and organizational measures in accordance with
industry standards.
The transfer of your personal data is carried out using the
latest encryption algorithms, and we store them on secure servers, while
ensuring data redundancy.
To make payments, we use the services of the PayU payment
system. Any payment information is encrypted using HTTPS technology with
TSL 1.2 encryption.
Despite the measures taken to protect your personal data, we
draw your attention to the fact that the transmission of information via the
Internet in general or through other public networks is not completely secure,
as there is a risk that the data will be viewed and used by third parties
without permission. We cannot be held responsible for such vulnerabilities
of systems that are not under our control.
What rights do you have?
The General Data Protection Regulation grants you a number
of rights with respect to your personal data. You can request access to
your data, correction of any errors in our files and/or you can object to the
processing of your personal data. You can also exercise your right to file
a complaint with the competent supervisory authority or go to
court. Depending on the circumstances, you can also exercise the right to
request the deletion of your personal data, the right to restrict the
processing of your data and the right to data portability.
Additional information about each of these rights can be
obtained by reading the table below.
To be able to exercise your rights, you can reach out to us
using the contact information provided in the "Contacts"
section. If you want to exercise these rights, pay attention to the following
aspects:
Personality
We take the confidentiality of all registrations containing
personal data seriously. For this reason, please send us your requests
regarding such Registrations using the email address associated with the
website account fidelitti.com Otherwise, we reserve the right to confirm your
identity by requesting additional information aimed at confirming your
identity.
Fees
We will not charge you for exercising any rights with
respect to your personal data, except in cases where your request for access to
information is unreasonable, repetitive or excessive, in which case we will
charge a reasonable amount in such circumstances. We will inform you of
any applicable fees before we process your request.
Response time
We aim to respond to any valid requests within a maximum of
one month, unless it is particularly difficult or if you have made multiple
requests, in which case we will respond within a maximum of two months. We
will let you know if we need more than a month. We can ask you if you can
tell us exactly what you want to get or what you are worried about. This
will help us to act faster and reduce the response time to your request.
Rights of third parties
We should not comply with the request if it negatively
affects the rights and freedoms of other interested persons.
Access rights
You can ask us:
Data correction
You can ask us to correct or add your inaccurate or
incomplete personal data. We can try to verify the accuracy of the data before
correcting it.
Deleting data
You can ask us to delete your personal data, but only if:
- they are no longer needed for the purposes for which they were collected; or
We are not obligated to comply with your request to delete
your personal data. If the processing of your personal data is necessary:
- comply with a legal obligation; or
- to establish, exercise or defend a right in
court.
There are other circumstances in which we are not obligated
to comply with your request to delete data, although these two circumstances
are the most likely circumstances in which we can reject your request.
Keep in mind that before you use this right, you download
from your account fidelitti.com and save all documents related to orders made
on the website fidelitti.com , regardless of whether the invoice was issued to
you or to another individual or legal entity (for example, be: invoices,
warranty cards). If you do not take this step before using your right to
delete, you will lose all these documents, and Fidelitti will not be able to
make them available to you, depending on the circumstances, since the process
of deleting data, respectively, the account on the site fidelitti.com with all
the accompanying data and documents — an irreversible process.
Data processing
restriction
You can ask us to restrict the processing of personal data, but only if:
- their accuracy is disputed (see the corrections section) so that we can verify their accuracy; or
We may continue to use your personal data after a restriction request if:
- we have your consent; or
Data portability
You can ask us to provide you with your personal data in a
structured, currently used and machine-readable format, or you can request that
they be "transferred" directly to another data operator, but in each
case only if:
- the processing is based on your consent or on the conclusion or performance of a contract with you; and
Objections
You may at any time, for reasons related to your specific
situation, object to the processing of your personal data on the basis of our
legitimate interest, if you believe that your fundamental rights and freedoms
prevail over this interest.
In addition, you can object at any time to the processing of
your data for direct marketing purposes (including the creation of profiles)
without explanation, and in this case we will stop this processing as soon as
possible.
Automated decision-making
You can ask not to be the subject of a decision based solely
on automated processing, but only when that decision is:
- has legal consequences against you; or
- affects you in other similar ways and to a large extent.
- we need to conclude or execute a contract with you;
Claims
You have the right to file a complaint with the supervisory
authority regarding the processing of your personal data. In Romania, the
contact details of the data protection supervisory authority are as follows:
National Supervisory Authority for the Processing of
Personal Data
G-ralsky Boulevard. Gheorghe Mageru is not. 28-30,
sector 1, postal code 010336, Bucharest, Romania
Phone number: +40 318 059 211 or +40 318 059 212;
Email address: anspdcp@dataprotection.ro
Without violating your right to appeal to the supervisory
authority at any time, please contact us in advance, and we promise that we
will make every effort to resolve any problem peacefully.
We remind you that you can contact the Fidelitti Data Protection Officer at any time by sending a request in any of the following ways:
- by e-mail to: gdpr@fidelitti.com ; or