Preamble
European Confederation of Local Intermediate Authorities, with headquarters in 9-31 Avenue des Nerviens, 1040 Brussels, is the operator of the personal data transmitted through this site.
This document describes cepli.eu’s policies and practices regarding the collection and use of your personal data and establishes your privacy rights.
Ensuring the confidentiality of information received from users is an ongoing responsibility and requires periodic updating of the provisions of this document as we implement new measures required by specific legislation or adopt new privacy policies.
We specify that for consent-based data processing we will notify you of any change and request your additional consent.
With regard to the age of users, we will not request or receive information of any kind from persons under the age of 16.
At this moment, on behalf of cepli.eu, there are no third parties authorized, in accordance with the provisions of Regulation (EU) 2016/679, to process personal data. However, the need to use certain specialized services or technologies through which cepli.eu can fulfill its duties may in the future justify the authorization of third parties (the data will not be transmitted simultaneously to all authorized persons). The list of cepli.eu proxies (name, field of activity, address, contact details), when they exist, will be displayed here. Therefore, for your correct and complete information, please refer to this document each time you use the services we offer you.
We undertake with all responsibility to respect the confidentiality of your personal data and to treat all personal data provided by you as confidential, processing, when the situation requires it, only the information provided by the legislation in force.
Legislation
Starting from 25 May 2018, it became applicable to Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter “GDPR Regulation”). According to the provisions of this normative act, we have the obligation to manage the personal data that you provide us by using the site in safe conditions and only for the specified purposes.
For more details on the content of the GDPR Regulation, we invite you to access the following link:
The person responsible for the protection of personal data
According to the provisions of the GDPR Regulation, we have appointed a personal data protection officer. For questions, concerns or requests related to the exercise of legal rights regarding the processing of your personal data, we invite you to contact this person.
The e-mail address at which you can contact the data protection officer is: gdpr@cepli.eu.
Collection and use of personal data
Personal information you give us:
In order to provide you with quality services, we may collect, store and use the following types of personal data:
- information about the device you use, about your visits and navigation within this website (including IP address, geographical location, browser type and version, operating system, referral source, duration of visit, content viewed and hyperlinks accessed);
- information you provide to us if you create an individual access account (including your contact details);
- information you provide to us for the purpose of subscribing to email notifications or communications (including name and email address);
- information you provide to us when you use the services or information derived from the use of these services (including the frequency and type of use of the services);
- information contained in communications you send to us directly or via forms available on the Site (including the content of the communication and data associated with the communication);
- information you provide when you purchase products from our website;
- information you provide when you post messages, opinions, comments, etc. on the site. (including their content and data associated with publication);
- any other personal data you have decided to provide to us.
You have the option not to provide us with your personal data
You can access this site without having to provide your personal data or consent. You can also provide us with the minimum personal information necessary to be able to provide you with website-specific services (eg data required to log into your access account, contact data to respond to your requests, etc.).
If you have an access account on the site, you have the possibility at any time to edit your profile, where you can manage your data and where you can opt for granting or withdrawing consent regarding marketing communication (advertising).
However, you should keep in mind that if you choose not to provide us with your data, we will most likely not be able to communicate and provide you with personalized services.
Purposes of using personal data
Personal data collected from you, from third parties or from public sources will be used strictly for the purposes specified in this document, in accordance with the following legal grounds:
Communications, based on the legitimate interest of cepli.eu according to art. 6 para. (1) lit. f) of the GDPR Regulation: if you contact us, either through this website or otherwise, we may process your name, contact details, location and other information you provide to us in order to be able to answer your questions, to organize a meeting, a telephone conversation or another type of communication;
The purchase of products, based on our contract with you, according to art. 6 para. (1) lit. b) of the GDPR Regulation: by purchasing products from this site, you agree to become a party to a Contract, with the related Terms and Conditions (specified at the time of purchase). In this situation, your personal data (e.g. full name, contact data, address, identity card data, payment details) will be processed by cepli.eu for the following purposes:
- conclusion of the contract regarding the purchase of products;
- issuance of mandatory tax and transport documents (invoice, receipt, shipping notice, etc.);
- shipping the products to the address communicated by you;
- collection of the price corresponding to the purchased products;
- the possible return of the purchased products, in accordance with the legislation in force and the contractual specifications.
Marketing and public relations, based on your consent, according to art. 6 para. (1) lit. a) from the GDPR Regulation: if you are a visitor to our website, we can process through cookies and web beacons your IP address, geographic location, browser type and version, operating system, source of recommendation, duration of visit, log files , interactions with our website and our online campaigns, information you have provided through website forms, information about products or services purchased for the following purposes:
- to conduct marketing research;
- to analyze visitor characteristics;
- to evaluate the impact of marketing communication;
- to plan future marketing activities;
- to personalize the services and communications offered to visitors;
- to target advertising.
At the same time, if you have subscribed to our newsletter, we can process the personal data you have provided us for:
- to distribute these communications to you;
- notify you about changes to our services;
- to personalize communication with you;
- to send you e-mail notifications about our activity that we think may be of interest to you.
We specify that you can inform us at any time if you are no longer interested in these materials.
Security, based on the legitimate interest of cepli.eu, according to art. 6 para. (1) lit. f) of the GDPR Regulation: if you are a visitor to our website, we can process the personal data you have provided us, the data collected automatically about you or your device (e.g. cookies, web beacons, etc.), in in accordance with this privacy notice, to ensure the protection of this site against fraud, to protect the rights and interests of cepli.eu and third parties, as well as intellectual property rights.
We note that this information may be disclosed to the authorities, as required by law, for the purpose of criminal investigation or prosecution.
Disclosure and transfer of personal data
The information we collect from you will be processed in the European space and/or outside of it, depending on the purpose of the processing.
We assure you that we strive to apply appropriate measures to guarantee the protection of the confidentiality and security of your personal data during the transfer and to use it only in accordance with the provisions set forth in this Privacy Policy.
As we do not collect or store sensitive information about you, the risk of your rights and freedoms being affected is minimised.
To the extent permitted by applicable data protection legislation, we may disclose your personal data to customers (e.g. to demonstrate the quality of our services), auditors, agencies, supervisory authorities or other external service providers, in order to fulfill our contractual obligations. We will clearly indicate each data recipient for you, if it is well known at the time of initiation of processing.
We may also disclose your personal data:
- where the law requires us to do so in connection with legal proceedings;
- to establish, exercise or defend legal rights (for the purpose of fraud prevention).
Your rights
According to the GDPR Regulation, you have the following specific rights:
- to access and rectify (correct) the registration of your personal data, if it is inaccurate;
- to request the deletion of data or the cessation of their processing, subject to certain exceptions;
- to request the cessation of the use of your data for direct marketing purposes;
- to file a complaint with the data protection authority, if you have concerns about how we process your personal data;
- to request, when and from a technically feasible point of view, the direct transmission or to another operator of your personal data. If access cannot be provided within a reasonable time, we will provide you with a date on which the information will be provided;
- to request additional information about: the purpose of the processing, the categories of personal data concerned, which was the source of the information and how long it will be stored.
You can exercise any of these rights at any time by contacting our data protection officer at the e-mail address gdpr@cepli.eu.
Important! Please exercise your rights judiciously, bearing in mind that abuse may subject you to legal liability.
The contact details of the National Authority for the Supervision of Personal Data Processing are as follows:
- Address: Bucharest, bd. General Gheorghe Magheru, no. 28-30, sector 1, postal code 010336
- Web address: http://www.dataprotection.ro
- Email address: anspdcp@dataprotection.ro
- Telephone: +40.318.059.211; +40.318.059.212
- Fax: +40.318.059.602
Retention of personal data
All personal data collected by us are stored in Romania, on the same server on which the website is located, belonging to the hosting service provider – cyber_Folks.
We process personal data only after obtaining your consent and keep it for an unlimited period of time or until the consent is revoked (unless otherwise required by law and this is necessary for the purpose of the processing).
If you do not give or revoke your consent to data processing, we will only store the minimum absolutely necessary data (full name, contact details, references and notes), to the extent that our legitimate interest or other legal basis justifies this.
At the same time, we will keep information and documents containing personal data (including electronic documents):
- if the law obliges us;
- if the information and documents are relevant to any legal proceedings;
- to establish, exercise or protect our legal rights (including for fraud prevention purposes).
Security of personal data
To protect the confidentiality of the data and personal information you provide us, we take technical and administrative measures that we constantly update and test.
Access to your personal data is restricted, being allowed only to employees who need that information to be able to provide you with benefits or services. In this context, our employees are trained on the importance of ensuring the confidentiality and security of the information provided by you.
If a personal data breach occurs, we will do our best to eliminate it, while assessing the level of risk arising from it, according to our personal data breach policy. If it is determined that such data breach may cause you physical harm, material or non-material damage (for example, discrimination, identity theft, fraud or financial loss), we will contact you without undue delay, except where otherwise required by law. The actions we take will be in full cooperation with the competent supervisory authority.
Privacy Policy Changes
Given that the legislation on the protection of personal data, the interpretations and recommendations of state bodies and supervisory authorities will undergo changes, we reserve the right to modify this information document at any time, for any reason and without notification.
We will notify you of any changes to our privacy policy by posting them on this page. This document supersedes all previous communications or statements regarding our privacy practices and the terms and conditions of use of this website.
Third Party Sites
This site may contain hyperlinks and details of third party websites. We are not responsible for and have no control over the privacy policies and practices of any third parties.
About cookies
A cookie is a small file, consisting of letters and numbers, stored on the device from which a website is accessed, following the request issued to the browser (e.g. Chrome, Edge, Firefox, etc.) by the web server that host the website; the file in question is completely passive: it does not contain software, viruses, spyware and cannot access information stored on the device in question.
We use cookies to optimize the operation of this website and offer you the most pleasant and personalized browsing experience on cepli.eu.
For more details on cookies, please visit the Cookie Policy.
Site Security
No one, absolutely no one, can guarantee invincible security measures for data transmissions on the Internet. As such, we cannot guarantee the total security of the information you provide, and you understand that any information you transfer to cepli.eu is done at your own risk.
However, we assure you that we use a range of best practice security measures to protect the cepli.eu website (technical and administrative) designed to protect data from misuse, unauthorized access, disclosure, loss, modification or destruction .
However, we cannot completely rule out the possibility of incidents of misuse or unauthorized access (situations to which all websites are exposed). In these cases, we will try to quickly isolate the problem, restoring the optimal level of site operation, minimizing the discomfort caused to users. If the situation requires it, we will notify the competent authorities about these incidents of incorrect use or unauthorized access to the cepli.eu website.
Questions, concerns, complaints
Please contact our data protection officer at gdpr@cepli.eu in any of the following situations:
- if you have questions, concerns, complaints related to your personal data and the exercise of related rights;
- if you want us not to use the information you have provided to us;
- if you want to update or correct your personal data.