Română
RO

Privacy policy

1. When does it apply?

The privacy policy applies to the personal data of those who wish to become, are or have been clients of the Berindean Law Firm, including data collected, used or disclosed while using our website, available at berindean.ro. When we refer to “the Firm”, “we” or “our firm” in this statement, we mean the Berindean Law Firm.

You can manage your consent on the purposes for which personal data will be used by sending an e-mail to the address natalia@berindean.ro, you can write to us at Cluj-Napoca, Eugen Brote str. 8, ap. 3, Cluj county, or by accessing the contact page.

This policy is valid starting from 25.05.2018.

 

2. What is the purpose?

When you use our website you entrust us with some of your personal data. We understand this and appreciate it. In everything we do we strive to protect them and give you the best possible control over them.

The privacy policy helps you understand what personal data we collect about you, how we use your personal data and what choices you have about its use.

We are committed to maintaining the accuracy, confidentiality and security of your personal data. In order to be consistent with legislative changes and/or with the practical realities faced, we reserve the right to adjust this policy at any time, the changes becoming mandatory from the moment they are published on the site.

 

3. What is personal data?

We want you to understand as clearly as possible what “personal data” represents. Personal data is information about an identified or identifiable person. Examples of such data: name, surname, address, telephone number, email, ID card data, CNP, bank information, cookies, computer IP address, mobile device IDs, information from your web browser (such as browser type and browser language), actions you take on our website, etc.

 

4. For what purpose do we collect them?

Personal data is collected for the effective development of professional relationships, to provide you with the best possible services, to permanently improve the functionalities of our website or to bring to your attention legal information and invitations to events with legal tangent relevant to you.

We limit the personal data we collect to what is relevant for the particular processing thereof. We do not process your personal data in ways that are incompatible with the purposes for which the information was collected or subsequently authorized by you.

CONTRACTUAL data (mandatory) – for starting the hiring process of a legal assistance contract and for the effective development of the professional relationship. Data may be collected (name, surname, CNP, telephone, email, etc.) to be able to answer your questions related to our products and services (including by using a solution dedicated to you), to be able to organize the processing and delivery of services to you. These data are collected through dedicated forms on the site such as: contact, request advice, my account, etc. These data are generically referred to as “contractual data”. Without them, your request cannot be taken over (for example, we do not know how to answer your questions), it cannot be processed (for example, tax documents cannot be issued to collect the value of the services, etc.). You will not be able to benefit from our services by using our website without providing this data.

Clients already engaged in a legal assistance contract cannot opt ​​out of the processing of personal data, without also assuming the effects that such restriction/renunciation/deletion would have on the execution of the contract. The legal basis for the processing of this data is, on the one hand, the execution of the contract and on the other hand, our legitimate interests (Article 6 paragraph 1 lif (f) of the general data protection regulation).

FUNCTIONAL data – for the best possible experience in using the website

Direct data can be collected (name, surname, phone, email, etc.) to ensure a better experience in using the site. The data is collected through the forms on the website. This data is generically referred to as “data for functional purposes”.

Indirect data can be collected that can be used to create a better structured website (eg Google Analytics reports, etc.). This data helps us to see the navigation flow of visitors to the site, the volume of browsing as well as other useful information relevant to the improvement of the site in order to provide you with the best possible browsing experience. All these functionalities are designed to offer you the best information and purchase options. If you do not agree to the use of data for this purpose, you cannot take advantage of these functionalities. The legal basis for the collection of this data is the consent (art. 6 paragraph (1) letter (a) of the General Data Protection Regulation) that you expressed by subscribing to the newsletter.

MARKETING data – for a better structured website, relevant information about the Berindean Law Office and social media information

Personal data is collected, such as direct data (surname, first name, phone, email, etc.) or indirect data (cookies, computer IP address, location, mobile device IDs, etc.).
Direct data is collected for newsletter subscriptions (the transmission of newsletters, legal information, legislative news, relevant jurisprudence, invitations to legal events, relevant information about the Berindean Law Firm, etc.). If you wish to stop receiving such materials you can access the “unsubscribe” link located at the bottom of our company’s marketing emails. You can also contact us at any time at contact@berindean.ro to update your information, to restrict their use, to delete them or to exercise any right provided by the European Regulation 2016/679 regarding the GDPR.

Cookies are data files that are sent from a website to a browser to record information about users for various purposes. We use cookies and similar technologies. For more information see the cookie policy page on our website.
The data can also be used to display advertisements adapted to your wishes (eg: Google Remarketing, Facebook Pixel, etc.). You may be shown advertisements for products that you have been interested in or viewed that are not related to our site.

Our Site allows you to connect with social media networks such as Facebook (facebook.com), Linkedin (linkedin.com) and Twitter (twitter.com) (“Social Media”). Logging in can collect your IP address and the page you visit on our website. A cookie is also set to allow social media applications to function properly. You may be given an option by your social media accounts to post information about your activities on your personal social media network profile page to allow other users in your network to access that information.

We call this data generically “data for marketing purposes”. The legal basis for the collection of this data is consent (art. 6 paragraph (1) letter (a) of the General Data Protection Regulation).

 

5. How do we collect them and how do you manage your consent?

When you interact with our website, we give you the opportunity to give and withdraw your consent to the use of your data at any time.

We provide site visitors and customers who provide personal data with the means to choose how we use that data. Consent regarding the processing of personal data can be requested when subscribing to the newsletter, when launching the contact form, as well as for any other purpose that involves the granting of consent, by accessing a general control panel (cumulative or individual, for each category of data or individual purpose) or by other technical means, created for this purpose.

You will have the opportunity to give your explicit consent to the purposes for which the personal data will be used and to manage it afterwards, in accordance with the regulations in force.

 

6. What rights do you have?

We make every effort to guarantee you the rights you have, in accordance with the legislation in force.

You have the right to access your personal data. Accordingly, where applicable, we provide you with access to the personal data we hold about you. We also give you the choice to receive information from us, but also to correct, amend or delete your information.

We may limit or deny access to personal data if the effort or expense of providing access would be disproportionate to the risks to your privacy, or if the rights of others other than you would be violated. Other reasons for denying or limiting access may include restrictions imposed by applicable law or similar, justified matters.

You have the right to modify and delete your personal data, especially incomplete or inaccurate data, for example, if some of the personal data you provided (phone number, e-mail address, authorized person, etc.) is no longer current.

We take reasonable steps to ensure that the personal data we process is viable for the intended use and accurate, complete and current. In this regard, we rely on you to update and correct personal data to the extent necessary for the purposes for which it was collected or subsequently authorized by you.
Requests to access, modify or delete information will be processed and resolved as quickly as possible, within a maximum period of 30 days.

You have the right to restrict processing, to object to the processing of personal data concerning you and to request the rectification, updating or deletion of data in accordance with the law. This right can be exercised at any time, free of charge and without justification, with the exception of those data for which the processing is a legal obligation.

You have the right to request portability (export) of personal data. We may limit or deny the portability of personal data where the effort or expense of providing access would be disproportionate to the benefits in that case.

You have the right not to be subject to an automatic individual decision.

You have the right to submit a complaint to the National Supervisory Authority for Personal Data Processing (ANSPDCP), as well as to go to court, in accordance with the legal provisions in force.

 

7. Who do we disclose your data to and where do we transfer it?

We collaborate with other lawyers, contractual employees, accounting service providers and internet companies: Google, Facebook, iCloud, servers, e-mail, etc. – all this, for the best possible experience with our website.

We may share your personal data with service providers in order to improve the experience of using the site (eg: Google Analytics, etc.) or to provide services in the legal field (Google, Facebook, Mailchimp, etc.), as well as for other purposes: accounting services, law, consulting, affiliates, collaborators, etc. Data disclosure is made on the basis that the services necessary to run our business cannot be provided by us. We make every effort to obtain a confidentiality commitment from them, which guarantees that this data is kept secure and that the provision of this personal information is done in accordance with applicable law. In the event that our providers of hosting services, sending newsletters or other similar services are transferred outside the European Economic Area (EEA), efforts are made to ensure adequate safeguards.

 

8. How do we ensure data security?

The security of your data is important to us. We make all the necessary efforts in this regard.

We take reasonable and appropriate measures to protect personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account its nature. We take all internal measures to identify and ensure the security of information, the measures being checked regularly and adapted to the state of the art. Our office uses related service providers with a reputation in the market (eg: hosting services, software development services, marketing solutions, etc.) to fulfill this objective.

 

9. What is the retention period?

We keep the information according to the legal specifications, for the duration of the activity of the law firm and as long as you agree.

The storage of personal data is done for the periods of time specified by the legislation in force, in order to maintain records related to the activities carried out, for the protection of legal rights and the exercise of other rights according to the law and concluded contracts, the fulfillment of any archiving requirements, in accordance with the legal provisions. The personal data necessary to benefit from the functionalities of our website are stored for an indefinite period of time, until the website is deleted or you unsubscribe from the website.

 

10. How do we treat the requests of minors?

We do NOT provide services and do NOT deliver goods to minors except in the express cases provided by law.

Our company does NOT follow in its data processing activities, the processing of personal data of minors (people under 18). We do not carry out direct marketing promotional activities to minors.

Any person who provides us with personal data and mentions that he is a minor, we will contact him to obtain the consent of the parent, except in cases where the best interest of the minor is more important. If, however, there is a processing of personal data for a person who is not of age, we will stop the processing of this data once we become aware of this fact, if the consent of the parent is not received.

Any processing of personal data of minors is carried out in accordance with legal requirements and in strictly determined cases. Minors who have reached the age of 14 may purchase services, request and receive communications from our company only with the consent of their legal representative or guardian, as required by law.

 

11. What do we do in case of security incidents?

Informing yourself and the authorities is the first step. Fixing the situation is our priority.
In the event of a personal data breach, we will notify the competent data protection authorities within 72 hours, depending on the degree of risk to the customer or the website visitor. Affected customers or site visitors will also be notified of the breach.

We will take all necessary measures to remedy the situations that arise, in order to protect your rights.

 

12. What records are kept?

We keep records to demonstrate compliance with the requirements of this policy.

We will keep relevant records of:
a. the purpose of processing personal data;
b. categories of data subjects and personal data processed;
e. when possible, the expected retention periods for different categories of personal data;
f. a general description of the security measures used to protect personal data;
g. exercising your rights