Privacy policy

Data protection

Protection of your personal data when you visit our website is very important to us. All information about you, such as your name, address, phone number, email address, account number, etc., as well as all information traceable to you, is referred to as personal data. This also includes the IP address which is automatically logged when you visit a website. This is absolutely essential from a technical point of view.

We want you to know, if and when we collect data, what kind of data it is and how we use it. We have taken technical and organisational measures to ensure that data protection regulations are complied with by both ourselves and any external service providers. In particular, we also take into account the General Data Protection Regulation (GDPR) of the European Union (EU) which has been in force since 25 May 2018.

Below you will find information about the data that is recorded during your visit to our website and how it is used.

If you wish to assert your rights (see below), please contact IAMSAT as the person responsible for data processing on this website. E-mail either office@iamsat.ro or the e-mail address given in the legal notice.

 

Legal bases

Personal data can only be "processed" if there is a valid legal basis for it. Processing must be for a specific purpose. We process personal data that we may collect from you through this website based on the following.

Legal basis:

Weighting the balance of interests in accordance with Article 6 (1) (f) GDPR / General Data Protection Regulation.

If tools are used for the purpose of making our website more usable, more efficient and more secure, this can be done in the context of a weighting of interests, since user behaviour is not profiled and the visitor's IP address is saved and is only non-anonymized for a very short time.

We also process the information you provide to us for the purpose of a possible or existing business relationship (B2B relationship) as part of the weighting of interests.

The contractual relationship is in accordance with Article 6 paragraph 1.b of the GDPR/General Data Protection Regulation.

If you, as a private individual, provide us with your personal information (for example, in a product survey) we process this personal data as part of the initiation of a contract or to process the contractual relationship.

The legal requirements comply with art. 6 para. 1.c of the GDPR/General Data Protection Regulation

Insofar as we are subject to legal requirements, which we must adhere to in order to respect your personal data, this is done on the above legal basis.

Consent is in accordance with Article 6 paragraph 1.a of the GDPR / General Data Protection Regulation.

In rare cases, we may want to use the personal data you have provided for a purpose other than the one intended. If this happens and there is no other legal basis, we need your freely given consent which can be withdrawn at any time for the future – and for which we will ask for your separate consent.

 

Access to the website

When you visit our website, your IP address and other information are transmitted automatically. We do not store this data ourselves, but our service provider needs this information for the technical provision of the website. It automatically records every access to our home page, as well as any recovery of a file stored on the home page.

The following data is logged: the name of the requested file, the date and time of the call, the amount of data transferred, notification of the successful call, and the web browser. The IP address of the computer the request was sent from is not saved. As such, personal user profiles cannot be created.

Storage serves the internal purposes of the system, essentially to guarantee our website’s availability.

Among other things, in accordance with § 100 TKG (interruption and misuse of telecommunications systems), the log data will be deleted again after a reasonable period of time (maximum 10 weeks). The processing under our responsibility is covered by Art.6 Paragraph 1.f of the GDPR.

Note that telecommunications service providers are legally obliged to have reasonable grounds for storing login data (Art. 6 (1)c of the GDPR).

 

Information obligations pursuant to Art. 13 GDPR

The General Data Protection Regulation obliges us to provide adequate information whenever personal data is collected directly from the data subject. We collect personal data from you on our website and we want you to be informed accordingly. Typical circumstances where this would apply include, for example

  • When we collect your IP address for the technical provision of the website
  • when we use a tracking tool that uses the IP address
  • We receive your entries. in a contact module for communication with us.

 

Basic procedure:

If you have provided us with personal data, we will only use it to answer your questions and for technical administration, the exception being the anonymized IP address which may be used for statistical analysis.

Your personal data will only be transmitted to third parties or otherwise logged  if this is necessary for the purpose of processing the contract - in particular the transmission of order details to suppliers - this is necessary for billing purposes, and we are legally obliged to do so for order processing by subcontractors or if you have previously given your consent. You have the right to withdraw your consent at any time with future effect.

The stored personal data will be deleted if you withdraw your consent, if it is no longer necessary in order to fulfil the purpose for which they were stored, i.e. the process has been completed and there are no legal deletion periods to the contrary, or if storage is for reasons other than legal requirements. If the data cannot be deleted for technical reasons, we will anonymize it so that no personal reference can be made in the future.

Our company is responsible for all surveys and processing of this website.

Further detailed information can be found at the following:

Should we want to use the logged IP address for other purposes, this is explained in more detail below.

 

Transfer of data

Service provider (general information).

We involve external service providers for activities such as marketing, programming, data hosting and call centre services. We have chosen service providers based on careful selection, and we monitor their activities at regular intervals, in particular to ensure that your data is managed and stored securely. We urge service providers to maintain confidentiality and to comply with legal requirements.

 

Cookies

Cookies are small text files that can be stored on your computer for various purposes. Cookies can have various functions. For example, some cookies allow the user to use the website more comfortably, others record user behaviour or help identify users when they return to a website.   

When you visit our website, "cookies" are stored in the cache of your browser. These are:

 

fe_typo_user

Session cookie for managing Typo3 users. No personal data is processed.

Storage duration: session

 

be_typo_user

Session cookie for managing Typo3 users. No personal data is processed.

Storage duration: session

 

PHPSESSID session cookie for the operation of a PHP website. It is used to recognize your browser for various purposes (for example, to remember the language settings).

Storage duration: session

 

Web analysis by Matomo

This website uses Matomo to collect anonymous usage data for this website. This data is processed on its own servers and as such remains under the control of IAMSAT (without disclosure to third parties).

Visitor behaviour data is collected to identify any problems, such as pages that have not been found, search engine problems, or unpopular pages. As soon as the data (the number of visitors see the error pages or just one page, etc.) is processed, Matomo generates reports for IAMSAT so that it can react to them (changes in appearance, new content, etc.).

Processing of your personal data is based on the legitimate interest (Art. 6 para. 1 lit. f GDPR) of the person responsible.

When processing the data, we check the functionality of this website. This information provides information on, for example, whether the content and campaigns of offers are well received or how the structure of the website is used. Our team benefits from this and can react to it, so you also get the benefit of a website that is constantly improving.

Your anonymised personal data will only be used to improve the use of the website.

 

You can opt to prevent analysis and linkage of actions you have taken.

 

Links to other websites

Our website contains links to external websites operated by third parties, over which we have no influence on the content. As such we cannot accept any liability for this third-party content. Links are marked differently. If you position the mouse on a link (such as an icon), your browser will usually display it at the bottom left.

The provider or operator of the pages in question is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time they were connected. No illegal content was found at the time the link was created. The permanent monitoring of the content of the linked pages is not reasonable without concrete evidence that any law has been broken. If we are aware of legal violations, we will immediately remove these links.

Note that when you follow a link on our website, in some cases the third party (e.g. Facebook, LinkedIn, Instagram) will analyze how you got there. they can determine the jump address (our website), your IP address and other data. For example, if you have a Facebook account and are currently logged in there, Facebook may assign this information to your account.

If you don’t what this to happen, please do not use the link on our website. Note the data protection statements of third parties whose page the link leads to.

We will support you in accordance with the GDPR and other legal provisions so that you can assert your rights.

 

Your rights - the rights of the data subject as per the GDPR

Art. 12-23 GDPR regulates the rights of the data subject, i.e. your rights regarding the processing of your personal data. For us they are essentially:

  • The right to information at the latest at the time of collection in accordance with Article 13 GDPR, this data protection statement being confirmation of our compliance

  • The right to information as per Art. 15 GDPR

  • The right to erasure as per Art. 17 GDP
  • The right to restrict processing as per Art. 18 GDPR
  • The right to object as per Art. 21 GDPR
  • Where applicable: the right to data portability as per Art. 20 GDPR

We will support you in accordance with the GDPR and other legal provisions so that you can assert your rights.

For questions regarding the exercise of your rights, please contact the address indicated in the legal notice. Please understand that even if in the interest of the rights of others, we can only provide personal information if you can properly identify yourself.

You also have the right to lodge a complaint with a data protection supervisory authority.

National Authority for the Supervision of The Processing of Personal Data.

B-dul. G-ral. Gheorghe Magheru 28-30, Sector 1,  010336 Bucharest, Romania

Contact phone number:

+40 318 059 211
+40 318 059 212

We make every effort to save your personal data by taking all the technical and organizational possibilities so that it is not accessible to third parties. In the case of unencrypted email communication, we cannot guarantee full data security, so we recommend using an encrypted route or post for confidential information.

 

Security

Our employees and the companies that provide services on our behalf are obliged to ensure confidentiality and compliance with applicable data protection laws.

We take all necessary technical and organizational measures to ensure an adequate level of security and to protect your personal data handled by us, in particular against the risk of unintentional or unlawful destruction, manipulation, loss, modification or disclosure or unauthorized access. Security measures are continuously improved, taking into account the latest technological developments.

 

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content, such as commands or questions that you send us as the operator of the website, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from http://http:///tohttp://https:/// and by the lock symbol in the browser line.

If SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties.