Thank you for your interest in our company, website, services, and/or products.
When you want to establish a relationship with us and use the services of our company Atlantis Job SRL, also known as the brand Arhidrona, which is a registered trademark, you entrust us with information about yourself, also known as personal data, and we thank youfor your trust. The protection and confidentiality of personal data is a very important subject for us, and we strive to store and process them securely and carefully, and in this sense, we explain in a clear and transparent manner our practices regarding the confidentiality of your data.
This information is presented in this document (hereinafter referred to as “Privacy Policy”, “This Document” or “The Document”) and we ask you to read them together with the Terms and Conditions section.
Our Privacy Policy aims to inform you about the processing of your personal data in connection with visiting our website www.arhidrona.com (hereinafter referred to as “the website”) and your use of any additional services offered by Atlantis Job SRL, also known as the brand Arhidrona, which is a registered trademark.
By visiting the website, purchasing our products and/or services, or interacting with us in any way, you declare that you agree with the Privacy Policy. If you do not agree with what is described in This Document, please do not use our services.
We inform you that Atlantis Job SRL, also known as the brand Arhidrona, which is a registered trademark is a personal data operator within the meaning of the GDPR for the processing of personal data.
1.1. Purpose of the privacy policy
1.2. Who are we?
1.3. Who are you?
1.4. Definitions
1.5. Other services
1.6. Complaints
2.1. Data we collect and how we use it
2.2. What happens if you do not provide us with the data
2.3. The purpose for which we collect your personal data
2.4. Legal bases for processing personal data
1.1. Purpose of the privacy policy
The purpose of this Privacy Policy is to explain what information we process (collect, use, share), why we process it, how we process it, your rights under the GDPR, and how you can update, manage, export, and delete them, and for this purpose, we act as a data controller and, by law, are obliged to provide you with this information.
We inform you that this Privacy Policy applies wherever you find us online.
1.2. Who are we?
Below you will find our identification details:
Name |
SC Atlantis Job SRL |
Registered Office |
Str. Podisului, Nr. 3A, Loc. Iasi, Jud. Iasi |
Trade Register Number |
J22/2418/2008 |
Tax Registration Code |
24302642 |
|
office@arhidrona.com |
Phone |
+40766531369 |
In accordance with current legislation, our company is a personal data operator, and to ensure that your data is processed safely, we make every effort to implement reasonable and appropriate technical and organizational measures to protect your personal data.
1.3. Who are you?
According to the legislation, you, as a natural person who is a beneficiary of our services/products, the representative or contact person of a company that is our client or potential client, visitor of the website, or person in any kind of relationship with us, are a “data subject”, meaning an identified or identifiable natural person. To be completely transparent about data processing and to allow you to easily exercise your rights at any time, we have implemented measures to facilitate the exercise of your rights.
1.4. Definitions
Personal data – means any information concerning an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more specific elements of physical, physiological, genetic, mental, economic, cultural, or social identity;
Processing – means any operation or set of operations performed on personal data or on sets of personal data, with or without the use of automated means, such as collection, recording, organization, structuring, storage, adaptation or modification, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
GDPR (General Data Protection Regulation) or RGPD (General Regulation on Data Protection) or The Regulation – means the REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL OF THE EUROPEAN UNION no. 2016/679 of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and the free movement of such data, together with the repeal of Directive 95/46/EC;
The Operator or We – means SC Atlantis Job SRL, known as the brand Arhidrona, which is a registered trademark, a Romanian nationality company with its registered office at Str. Podisului, Nr. 3A, Loc. Iasi, Jud. Iasi, registered in the Trade Register under order no. J22/2418/2008, having the tax registration code 24302642;
Data subject – represents any identified or identifiable natural person whose data is processed by us as an operator, such as clients, potential clients, or website visitors;
Consent – means any freely given, specific, informed, and unambiguous indication of the data subject’s will by which they, by a statement or by a clear affirmative action, agree to the processing of personal data, concerning them;
Anonymization – means the irreversible removal of identifying features from personal data, such that the person cannot be identified using reasonable time, cost, and technology, either by the Operator or by any other person, to identify that natural person. The principles of processing personal data do not apply to anonymized data, as they are no longer personal data.
1.5. Other services
This Privacy Policy does not cover applications and websites of third parties that you can access by clicking links on our website, and we encourage you to review the Privacy Policy of any website and/or application before providing personal data.
We are also not responsible for any kind of links from our commercial partners or those who place advertising in our podcasts or articles, including those on social network profiles. When you click on these links, third parties may collect or share data about you.
You should know that we do not control any type of link that is placed on the site by us or by other Users (such as, for example, links left in comments, videos, community, on social networks, etc.) and that you are fully responsible when you access such links and assume any kind of damage (direct or indirect) that may occur.
1.6. Complaints
For any kind of problem or clarification regarding the processing of personal data, you should know that you can file a complaint with the data protection supervisory authority, but please send us a request first to the address mentioned in this document, and we will make every effort to resolve your request as soon as possible, amicably.
For Romania, the contact details are as follows:
Name |
The National Supervisory Authority for Personal Data Processing |
Address |
B-dul G-ral. Gheorghe Magheru nr. 28-30, Sector 1, postal code 010336, Bucharest, Romania |
Phone |
+40.318.059.211 or +40.318.059.212 |
|
2.1. The data we collect and how we use it
Personal data or personal information refers to all information about an individual that can help identify that person, and this does not include data where the identity has been removed (anonymized data).
When you browse our website or when you contact us for any purpose using any communication channel, you may communicate your personal data to us. It will be necessary to collect, use, store, or transfer certain personal data, directly from you or from other sources, as we explain in the table below:
Category |
Data included |
Legal Basis |
Identification data |
First name, last name, company name, trade register number, unique identification code, your vehicle number, username or a similar identifier, position, date of birth, gender, preferred language of interaction with us, country, etc.
|
Art. 6 (1) a), b), c) GDPR – REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) |
Contact data |
Billing address, delivery address, email address, telephone number |
Art. 6 (1) a), b), c) GDPR – REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) |
Profile and usage data |
Username, password, orders made by you, your interests and preferences, feedback provided, responses to surveys Information about how you use our website, products, and services. |
Art. 6 (1) a), b), c) GDPR – REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) |
Financial and transactional data
|
Information about payments or bank account/card details, information about purchases Details about payments from and to you and other details about products and services you have purchased from us |
Art. 6 (1) a), b), c) GDPR – REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) |
Marketing & communication data |
Your preferences for receiving marketing materials from us and from our third parties and your preferred methods of communication |
Art. 6 (1) a), b), c) GDPR – REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) |
Automated/technical data technical |
IP (internet protocol) address, login details, browser type and version, location settings and time zone, browser plug-ins and their versions, operating system, operating platform and other technologies on the devices you use to access this site |
Art. 6 (1) GDPR – REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation)
|
We inform you that we do not collect any Special Categories of Personal Data about you (this includes data about racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, and the processing of genetic data, biometric data for uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation or information about criminal convictions and offences).
2.2. What happens if you do not provide us with the data
When we ask you to fill in personal data to provide you access to certain functionalities or services of the site, we will mark some fields as mandatory, because these are the information we need to provide the service or to give you access to that functionality.
Please note that if you decide not to provide us with this information, you may not be able to complete your registration as a user or may not be able to benefit from these services or functionalities.
2.3. The purpose for which we collect your personal data
Personal data |
Purpose |
Identification data (including audio-video, where applicable) Contact data
|
User registration Access to materials and products |
Identification data Contact data Financial and transactional data Profile data Marketing and communication data Automated/technical data |
Improving services Using data analysis to improve the website, products, services, customer department, and experience
|
Identification data Contact data Financial and Transactional data Profile data Marketing and communication data |
Conclusion and execution of the sales contract or service provision you enter with us |
Identification data Contact data Financial data Transactional data Profile data Marketing and communication data |
Requests or inquiries made through Customer Service/Support To manage the relationship we have with you, which may include notification about changes in terms and conditions and processing policies or our suggestion to leave a review or participate in a survey |
Identification data Contact data Financial and Transactional data Profile data Usage data Marketing and communication data Automated/technical data |
Marketing To deliver relevant content and personalized advertisements and to measure and understand the effectiveness of the ads we offer you |
Please be informed that we will use your personal data only for the purposes for which we have collected these data, unless we reasonably consider that we need to use them for another reason and that reason is compatible with the original purpose.
Please note that we may process your personal data without informing you or needing your consent, in accordance with the rules above, where the law permits us to do so.
2.4. Legal grounds for processing personal data
Our legal grounds for processing your personal data will generally be the following:
We inform you that we may disclose your data, in compliance with applicable law, to business partners or other third parties. We consistently make reasonable efforts to ensure that these third parties have implemented appropriate data protection and security measures. We have contractual clauses with these third parties so that your data is protected. In these situations, we will ensure that any transfer is legitimate according to the legislation.
Also, we may transmit data to other parties with your consent or according to your instructions, such as, for example, in the situation where you exercise a request for portability or to state-authorized bodies, based on and within the limits of legal provisions and as a result of express requests.
The transfer of personal data to a third country may only take place if the country to which the transfer is intended provides an adequate level of protection.
The transfer of data to a country whose legislation does not provide a level of protection at least equal to that offered by the General Data Protection Regulation is possible only if there are sufficient guarantees regarding the protection of the fundamental rights of the data subjects. These guarantees will be established by us through contracts concluded with the providers/service providers to whom your personal data will be transferred.
Every time we transfer your personal data outside the EEA, we will ensure that there is a similar level of protection through one of the following safeguard mechanisms:
You must keep in mind that we store your personal data only for the period necessary to fulfill the purposes, but no more than 5 years from the end of the contract or the last interaction with us.
After the end of the period, the personal data will be destroyed or deleted from the information systems or transformed into anonymous data for use in scientific, historical, or statistical research purposes.
In certain circumstances, we may anonymize personal data (so that they can no longer be associated with you) for scientific, historical or statistical research purposes, in which case we may use this information for an unlimited period without notifying you in advance. Note that in certain expressly regulated situations, we store data for the period imposed by law.
Categories of personal data
|
Storage period |
Email address Content of the messages |
5 years from the last interaction with us |
Data necessary for billing (i.e., address, customer name, delegate name)
|
10 years according to legislation |
Other personal data
|
5 years |
We understand how important the security of personal data is and take the necessary measures to protect our customers and other individuals whose data we process, from unauthorized access to personal data, as well as from modification, disclosure, or unauthorized destruction of the data we process in our current activity.
We have implemented the following technical and organizational security measures for personal data:
Dedicated policies |
We constantly adopt and review our internal data processing practices and policies (including physical and electronic security measures) to protect our systems from unauthorized access or other possible threats to their security. These policies are subject to constant checks, to ensure that we comply with legal requirements and that the systems function properly. |
Data minimization |
We ensure that the personal data we process are limited only to those necessary, adequate, and relevant for the declared purposes in this Policy.
|
Restricting access to data |
We try to restrict as much as possible the access to the personal data we process to the minimum necessary: employees, collaborators, and other individuals who need to access these data to process them and carry out a service. Our partners and collaborators are subject to strict confidentiality obligations (either by contract or legal).
|
Specific technical measures |
We use technologies that ensure the security of our customers, always trying to implement the most optimal solutions for data protection. We also make periodic data backups to recover them in the event of an incident and have implemented periodic audit procedures regarding the security of the equipment used. However, no website, no application, and no internet connection is completely secure and untouchable. |
Ensuring the accuracy of your data |
Sometimes we may ask you to confirm the accuracy or timeliness of your data to make sure they reflect reality. |
Staff training |
We constantly train and test our employees and collaborators regarding legislation and best practices in the field of personal data processing. |
Anonymization of data |
Where possible, we try to anonymize/pseudo-anonymize the personal data we process, so that we can no longer identify the individuals to whom they refer. |
However, despite our constant efforts to ensure the security of the data you entrust to us, it is possible that we may experience less fortunate events and have security incidents/breaches. In these cases, we will strictly follow the procedure for reporting and notifying security incidents and will take all necessary measures to return the situation to normal as soon as possible.
Direct Marketing
To the extent that we have obtained your prior consent or you are already a customer of the company, we may use direct marketing technologies using the information collected about you. We currently send commercial messages by email (email marketing).
You can oppose direct marketing and/or withdraw your consent at any time by following the unsubscribe instructions in each email (“unsubscribe”) or by sending a request to this effect by email: office@arhidrona.com
Your rights – questions, requests, and exercising rights
We are not required to designate a data protection officer, so any questions regarding the use of your personal data should be addressed to the contact details mentioned above.
For any questions, concerns, observations, or complaints regarding the processing of your information or if you want to exercise your legal rights or regarding confidentiality, you can contact us at the email address office@arhidrona.com
Your rights under the GDPR Regulation are the following:
The right to be informed about the processing of your data |
|
The right of access to data |
You have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed, and if so, access to the data and the information provided by Art. 15 para. (1) of the GDPR. |
The right to rectify inaccurate or incomplete data |
You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. |
The right to erasure (“the right to be forgotten”) |
In situations provided by Art. 17 of the GDPR, you have the right to request and obtain the erasure of personal data. |
The right to restrict processing |
In the cases provided by Art. 18 of the GDPR, you have the right to request and obtain the restriction of processing.
|
The right to transmit the data we have about you to another operator (“the right to portability”). |
The right to transmit the data we have about you to another operator (“the right to portability”) |
The right to object to data processing |
In the cases provided by Art. 21 of the GDPR, you have the right to object to processing. |
The right not to be subject to a decision based solely on automated processing, including profiling with legal effects or similar significant effects on you. |
|
The right to seek justice to protect your rights and interests. |
|
Please note that the rights listed above are not absolute. There are exceptions, so each request received will be analyzed so that we can decide whether it is justified or not. To the extent that the request is justified, we will facilitate the exercise of rights, and if the request is unjustified, we will reject it, but we will inform you of the reasons for the refusal and the rights to file a complaint with the Supervisory Authority and to seek justice.
We will also try to respond to your request within 30 (thirty) days. However, the deadline can be extended depending on various aspects, such as the complexity of the request, the large number of requests received, or the inability to identify you in a timely manner. If, despite all efforts, we cannot identify you, and you do not provide us with additional information to be able to identify you, we are not obliged to comply with the request.
We may occasionally update the Privacy Policy and will notify you through the website or email about the latest version. All updates and modifications to this document are valid immediately after notification, which we will make by posting on the site and/or notification by email. Even if you do not receive a notification, we encourage you to access and read the Privacy Policy periodically to be up to date with the latest versions.
Privacy Policy updated on 01.11.2023.