Privacy policy (GDPR)

Last updated: 3/25/2026

1. Data controller

Controller: NISIPEANU IONUT PFA, tax ID 50037758, headquartered in Dambovita County, Romania.

2. Data collected

The website may collect the following categories of data:

Anonymous technical data

Anonymized IP address, browser type, operating system, visited pages, visit duration, and interactions with the website.

Cookies and similar technologies

Details about these technologies are explained in the cookie policy.

Voluntarily provided data

Only if the user sends information through the contact form or by email, such as name, email address, and message.

3. Purposes of processing

  • - Ensuring the proper and secure operation of the website.
  • - Measuring site performance and analyzing usage.
  • - Improving the user experience.
  • - Communicating with users who voluntarily submit contact data.

4. Legal basis for processing

Art. 6(1)(f) GDPR - legitimate interest for website operation, security, and traffic analysis.

Art. 6(1)(a) GDPR - user consent for optional cookies and for voluntarily submitting personal data.

5. Data retention period

Anonymous analytics data

According to Google Analytics or similar providers policies, typically between 14 and 26 months.

Voluntarily submitted data

For the period required to handle the request, then archived according to applicable law.

6. User rights

Users have the right to:

  • - Access their personal data.
  • - Request rectification or deletion.
  • - Request restriction of processing.
  • - Object to processing.
  • - Data portability, where applicable.
  • - Withdraw consent at any time.
  • - Lodge a complaint with the competent data protection authority.

7. Data recipients

Data may be shared with:

  • - IT service and hosting providers.
  • - Analytics providers such as Google Analytics.
  • - Public authorities where required by law.

8. International data transfers

If services from companies outside the EU are used, data transfers are carried out in compliance with European standards, including standard contractual clauses where required.

9. Data security

The operator implements technical and organizational measures to protect data against unauthorized access, loss, or disclosure.

10. Policy updates

The operator may update this policy. The revised version will be published on the website.

Data protection contact

For exercising your rights or for questions related to data processing, you can contact us using the details published on the site.