Who we are?
KLAUSEN EXIM S.R.L company, a limited liability company, established and operating in accordance with the laws of Romania, headquartered in Gilau, Farm 7, Hall 11, Cluj county, registered with J12 / 5082 / 28.12.1994 and CUI RO 6839312, hereinafter referred to as “KLAUSEN EXIM” is responsible for the processing of your personal data that it collects directly from you.
According to the legislation, our company is a personal data controller. In order for your data to be processed securely, we have made every effort to implement reasonable steps to protect your personal information.
Who are you?
According to the legislation, you, the beneficiary of our services, the representative or contact person of a company or the person in a relationship of any kind with our company, are a “targeted person”, meaning an identified or identifiable individual. In order to be completely transparent about the data we are processing and to allow you to easily exercise your rights at any time, we have implemented measures to facilitate communication between us, the data controller and you, the data subject.
The protection of your personal information is very important to us. Therefore, we are committed to complying with European and national legislation on the protection of personal data, in particular Regulation (EU) 679/2016, also known as the GDPR and the following principles:
- Legality, fairness and transparency – We process your data legally and correctly. We are always transparent about the information we use, and you are properly informed.
- You are in control – Within the limits of the law, we offer you the possibility to examine, modify, delete the personal data you have shared with us and to exercise your other rights.
- Data integrity and purpose limitation – We use the data only for the purposes described at the time of collection or for new purposes compatible with the original ones. In all cases, our purposes are compatible with the law. We take reasonable steps to ensure that our personal data is accurate, complete and up to date.
- Security – We have implemented reasonable security and encryption measures to protect your information as best we can. However, keep in mind that no website, no application, and no internet connection is completely secure.
Questions and requests
If you have questions or concerns about the processing of your data or about how we treat any privacy issue, you can write to us at the e-mail address: email@example.com
What kind of information we collect about you?
The information is collected only when you voluntarily and knowingly accept sending it to us.
You can use our website without disclosing personal data. However, if you wish to benefit from our services, you will be required to provide your data during a registration process.
The requested data may include: full name, telephone number, e-mail address.
We may collect data through cookies or other similar technologies, such as IP address, internet browser, location.
Why do we collect personal information?
We collect your information for specific and legit purposes which include, but are not limited to, the following:
- In order to conclude or execute a contract between you and us;
- To answer your questions and requests;
- For marketing purposes, but only if we have your prior consent;
What is the legal basis for data processing?
- You consent to the processing of your personal data – Please note that you can withdraw your consent at any time by sending a written request to the e-mail address firstname.lastname@example.org
- Data processing is required to conclude or execute a contract between you and us – Such as the execution of a contract regarding the sale (or collaboration) of one or more products on the website by placing an order by you and accepting it by Klausen Exim, in compliance with the legal provisions and the terms and conditions for the sale of Klausen Exim products, or to take action, at your request, before concluding a contract.
- Data processing is necessary in order to fulfill a legal obligation, such as keeping accounting documents for a period of 10 years.
For how long do we store the data?
Personal data collected and used for the provision of services and the products supply by Klausen Exim will be stored for the contractual period, with the possibility of extension for a longer period imposed by law, regulations or applicable rules on accounting obligations or requests of public authorities.
Immediately after the end of the applicable storage period the data will be deleted, destroyed or transferred to an archive (unless prohibited by applicable law or regulation on record keeping).
To ensure that data is not kept longer than necessary, Klausen Exim will periodically review the data and, if necessary, delete it.
How do we share your information with others?
Klausen Exim may transfer the data, by disclosing or granting remote access rights, only through secure applications, to third parties, such as affiliates and other business partners of Klausen Exim, acting as proxies by processing personal data for and on behalf of Klausen Exim (for example, data storage on cloud servers, legal and financial consultants, courier companies, technical service providers or shipping support providers) with which Klausen Exim has concluded contractual arrangements required in accordance with EU and national regulations.
We will transfer data to third parties only to the extent necessary to fulfill the applicable Processing Purposes for which your data is collected and processed.
Klausen Exim may disclose data in order to comply with legal provisions or in response to a request from a court or other public authority. Klausen Exim will also be able to disclose information if it considers, in good faith, that it is necessary to prevent or stop fraud or limit its consequences in order to protect Klausen Exim and its employees.
What security measures we have taken?
As part of the administration, we have taken technical and organizational measures to ensure a level of security appropriate to the risks involved in data processing, in particular through misuse, accidental destruction, illegal or unauthorized access, loss, alteration, disclosure, intentional or accidental manipulation, third party access, deletion and modification. To this end, we have developed and implemented data security policies and other privacy practices.
Our employees as well as the service providers associated with our information systems undertake to respect the confidentiality of the personal information in our possession.
You will be notified of a data security breach within a reasonable period of time after such a breach is discovered, unless a competent public authority determines that the notification would prevent a criminal investigation or harm national security. In this case, the notification shall be postponed according to the instructions of that authority. We will promptly answer your questions regarding such a data breach.
What are your rights?
According to the GDPR Regulation your rights are as follows:
- The right to withdraw consent
- The right to be informed about the processing of your data
- The right to access the data
- The right to rectify inaccurate or incomplete data
- The right of erasure (“the right to be forgotten”)
- The right to restrict processing
- The right to transmit the data we have about you to another operator
- The right to object to the data processing
- The right not to be subject to a decision based exclusively on automatic processing, including profiling
- The right to address the court
- The right to complaint to a Supervisory Authority
Please note that:
- If you want to exercise your rights, you can do so by sending an email to the e-mail address:
- The rights listed above are not absolute. There are exceptions, so each request received will be analyzed so that we can decide whether it is justified or not. To the extent that the request is justified, we will facilitate the exercise of your rights. If the request is unfounded, we will reject it, but we will inform you about the reasons for the refusal and about the rights to file a complaint with the Supervisory Authority and to go to court.
- We will try to respond to your request within 30 days. However, the deadline can be extended depending on various aspects, such as the complexity of the application, the large number of applications received or the inability to identify yourself in a timely manner.
- If, although we make every effort, we are unable to identify you and you do not provide us with additional information in order to identify you, we are not required to comply with the request.
Questions, requests and the legal exercise of your rights
If you consider that one of your rights has been violated, you can contact the National Authority for the Supervision of Personal Data Processing at the telephone numbers +40.318.059.211 / +40.318.059.212 or by email at: email@example.com
For other information you can access the Authority’s website, at www.dataprotection.ro