Personal Data Processing Policy

1. Introduction

1.1. This privacy notice applies to personal data collected through the domain www.customsoft.io.

1.2. The personal data processing activities are carried out under the responsibility of the Administrator of the website/applications, CustomSoft SRL with headquarters in Blvd Iuliu Maniu, no. 7, Building I, floor 2, office no. 2.11, compart. 10, Sector 6, Bucharest, postal code 061072 as the operator. 

1.3. You can contact the person responsible for data protection through email, at dpo@customsoft.io.


2. Types of personal data we can collect

2.1. When you access pages from our website, it is possible for us to ask for the following information:

1. First name;
2. Last name;
3. Telephone number;
4. E-mail address.

We request this data to be able to get in contact with you and to provide you with the information you are requesting about our products and services.

1. Eva E-commerce;
2. Eva B2B;
3. Eva MarketPlace;
4. mAIa;
5. Web development.

2.2. To manage www.customsoft.io and offer you an enhanced navigation experience, the Administrator and our service suppliers have the legitimate interest to use cookies or web beacons to collect aggregate data. The cookie usage has the purpose of displaying content correctly, create and memorize authentication data, custom the interface, and improving the service through implementing and testing technical solutions. It is possible that through cookie modules and similar techniques to collect data such as IP address, your cookie ID, your internet browser, your location, the pages that you access on our website, the announcements that you have viewed or clicked on.

2.3. For more options and information about the way we use cookie modules and other tracking technologies, and how to control them, please check our Cookie Policy.

2.4. In the following list you find more information about how you can change your browser’s cookie settings:

https://www.google.com/intl/en/policies/technologies/managing/

https://support.mozilla.com/en-GB/kb/Cookies#w_cookie-settings

https://windows.microsoft.com/en-GB/windows-vista/Block-or-allow-cookies

https://www.apple.com/safari/features.html#security


3. The purpose of collecting personal data

Personal data collected by the website’s or app’s administrator are processed for purposes that include:

  • Using www.customsoft.io services;
  • Providing information about CustomSoft’s products and services;
  • Activation or registration of some products and services and improving functionalities;
  • Receiving information about CustomSoft’s products, offers, and services;
  • Storing preferences for future interactions and communication with CustomSoft;
  • Improving services, testing new products and services;
  • Receiving customized messages, offers, and special announcements, relevant to your interests, based on the information that you have shared with us;
  • Managing relationships with partner clients;
  • Facilitating access to information;
  • Improving communication;
  • Analyzing and understanding the interactions with customers;
  • Implementing security programs;
  • Answers for your questions or solving solicitations for products and services, and informing you about the state of them.

We process your personal data only for the purposes we have communicated. If we use it in other (appropriate) purposes, we will apply extra protection measures for your data, and it will be used only after your consent.


4. Sharing of personal data

4.1. We can share your personal data with product suppliers, business partners, and other third parties in accordance with the applicable law.

These categories of recipients can be: accountancy services providers, juridical assistance, banks or any other business partners, when the information is required for the execution of a contract or when there is a legitimate interest from the website’s/app’s administrator, without affecting the rights of the data subjects, and with respecting necessary security measures.

4.2. We can share personal data with other partners too, for managing data, and other parties that have a mandatory relationship with the website’s/app’s administrator, to offer its services (for example e-mail marketing campaigns, push notifications, contracts).

4.3. In the event we receive a request from the authorities through which the disclosure of personal data of the users is required, according to the law we are obliged to execute.

4.4. We will communicate with you the data (if you submit a request to access data). Starting with 25 may 2018, we can communicate your data to another operator if you request it, to guarantee the right regarding data portability (as far as we have the obligation, and according to the rules regarding the portability of the data applicable according to the General Data Protection Regulation starting with May 25, 2018, and in the technological conditions existing at the time of your request).

4.5. We can share your data if we are going through a company transition, for example, a merger, the acquisition by another company, or the sale of all or part of the assets.


5. Your rights

5.1. The right to be informed

Through this Personal Data Processing Policy, the users of the services provided by www.customsoft.io are informed about the identity and contacts of the operator, the contacts of the person responsible for data protection, the purposes of managing personal data, the transfer to third parties or international organizations, the storing time span of data, and the rights that they have.

5.2. The right to access your data

Users have the right to obtain from us a confirmation that we do or do not process data concerning them, and if we do, the respective data and appropriate information.

If the user requests, we can offer a copy of the personal data that we manage. For any other requested copies, we can charge a fair tax, based on administrative costs. The information will be provided in electronic format, currently used. We reserve the right to ignore the unfounded, excessive or repeated solicitations.

5.3. The right to rectification

The user can request the rectification of inexact personal data, respectively incomplete personal data, inclusively a supplementary declaration. This right can be exercised directly through the user account. If you have difficulties, please contact us.

5.4. The right to delete data (“the right to be forgotten”)

The user can request the deletion of any personal data concerning him if one of the reasons is applied:

  • That personal data is not required anymore to meet the goals that it was collected or managed for;
  • The user withdraws consent on the basis of which the processing takes place and there is no other legal basis for processing;
  • The user resists the processing process;
  • Personal data was processed illegally;
  • Personal data must be deleted because of a legal obligation for the operator;

According to legal provisions, the obligation to delete the user’s data does not apply if the processing is necessary.

  • For the exercise of the right to free expression and information;
  • To comply with a legal obligation or to perform a task performed in the public interest or in the exercise of an official authority with which the operator is invested;
  • For reasons concerning public interest or public health;
  • For archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes or for finding, exercising or defending a right in court;

This right can be exercised directly by accessing the user account. If you have difficulties, please contact us.

5.5. The right to restrict processing

The user has the right to restrict the processing if one of these cases apply:

  • The user denies the accuracy of data for a period that allows us to check;
  • The processing is illegal, and the user opposes the deletion of personal data by instead soliciting the restriction of the process;
  • We do not need to process that personal data anymore, but the user solicits it for the establishment, exercise or defense of a right in the court;
  • The user resisted processing, for the time interval in which it is verified that the legitimate rights of the operator prevail over those of the data subject.

5.6. The right to data portability

The user has the right to receive the personal data concerning him and provided to the operator in a structured format, currently used, and which can be read automatically and has the right to transmit this data to another operator, without obstacles from the operator to whom the personal data were provided, if:

  • Processing is based on consent or contract; and
  • Processing is made through automated means.

In exercising the right of data portability, the user has the right for personal data to be sent directly from one operator to another, where this thing is technically possible.

If you exercise this right, you will receive an email with a secured link that contains all solicited data.

5.7. The right to object

The user has the right to object at any moment for good and legitimate reasons about his particular situation, and the data concerning him has to be part of a process, with the exception of the cases when there are legal opposite dispositions. In case of justified opposition, the process cannot target that data anymore.

5.8. The right not to be subjected to an automated individual decision-making process

The users have the right to request and obtain the retreat/cancelation/reevaluation of any decision that has juridical effects and concerns him, adopted exclusively based on a processing of personal data, conducted through automatic means, destined to evaluate some aspects of his personality, such as professional competence, credibility, behavior or any other aspects like this.

5.9. The right to address justice

Without prejudice to the possibility of addressing with a complaint to the supervisory authority regarding the protection of personal data, users have the right to sue for the defense of any rights guaranteed by law, which have been violated.

If the user suffered any damage as a result of the processing of personal data, carried out illegally, it can be addressed to the competent court for its repair.

For any solicitation about personal data about the use of your personal data, you can contact us at:

E-mail: dpo@customsoft.io;

Phone number: +40726-33.98.93

Address: Blvd Iuliu Maniu, no. 7, Building I, floor 2, office no. 2.11, compart. 10, Sector 6, Bucharest, postal code 061072

We encourage you to maintain your personal settings complete and updated. Our team is making all of the necessary efforts to solve your solicitations as quickly as possible.

According to the Personal Data Protection Law, the time to answer is 30 days. If because of the complexity of the request we can’t implement the solicited measures in less than a month, this period can be extended, according to the law, to 60 days. In this situation, you will receive a piece of information within 30 days from submitting the request, regarding the reasons for the delay.


6. Criteria and period of data storage

The data provided through the application will stay in the website’s/application’s Administrator only during the existence of the services provided, and strictly for the observance of the legal requirements that apply (for example the archive deadlines), and for the protection of the legal rights and interests of the website/application Administrator.


7. Connecting other websites

On www.customsoft.io you can encounter links to other websites for your information. These websites can function independently of CustomSoft, and have their own notifications, statements or privacy policies. We recommend you to read them to understand how your personal data can be processed on those websites because we are not responsible for the content of websites that do not belong or are not administrated by the website’s/application’s Administrator, or for using the confidentiality practices of those websites.


8. Social networks

8.1. According to the choices about settings on different social media websites, some personal data can be shared with www.customsoft.io, connected to activities and social media profiles. When you choose to participate in some forums on social media, such as Facebook, Twitter, Yammer, Pinterest, Instagram, LinkedIn etc., you have to be familiarized with them and understand the tools they offer by these websites that allow you to make choices regarding the way you share your personal data on your profiles on social media.

8.2. www.customsoft.io is engaged in the practices and privacy policies of these third parties, as well as in our own internal rules regarding social media, and this personal data processing policy, therefore, reads the applicable confidentiality notifications and the related information regarding the way personal data is used on these social networks.


9. Cloud

www.customsoft.io can store personal data on a cloud. This means that your personal data can be processed in the name of the website’s/application’s administrator by a cloud service provider and can be stored in different locations around the world. The website’s/application’s administrator uses organizational and contractual measures to protect your personal data, and to impose similar requirements, but no less restrictive for our cloud service providers, including requirements that personal data be processed exclusively for the purposes indicated above.


10. How we protect your personal data

We take our responsibility seriously to protect the personal data you provide us with. To avoid the loss, improper use or unauthorized access, the website’s/application’s administrator uses a variety of security technologies and organizational procedures to help protect personal data.


11. Special information for parents

11.1. Even if www.customsoft.io does not target children under 16 years old, we have the obligation to follow the law and solicit the permission of the parents or legal tutor before collecting, using, or disclosing information regarding children.

11.2. www.customsoft.io firmly recommends that parents collectively take an active role in supervising their children’s online activities. If you think that we have collected personal data from people under 16 years old, contact us at the e-mail address dpo@customsoft.io.


12. Changes to the notification of confidentiality

12.1. The services provided by www.customsoft.io are always evolving, and the form and type of services can modify from time to time without prior notice. For the reason that we reserve the right to change or add from time to time this confidentiality notice, and any content reviews will be posted on our websites or will be sent through a push notification through the application or e-mail.

12.2. We will post an important announcement on the confidentiality notification page to inform you about any significant modifications to it, and we will indicate in the upper part of the announcement the date of the most recent update.

12.3. The new confidentiality notification will be enforced at the moment of posting. If you do not agree with the reviewed notification, you will have to change your preferences or consider stopping using the services provided by www.customsoft.io. If you continue to access or use our services after the changes, it means that you agree to comply with the reviewed privacy notification.


13. How you can contact us

Contact us at this address: Blvd Iuliu Maniu, no. 7, Building I, floor 2, office no. 2.11, compart. 10, Sector 6, Bucharest, postal code 061072

Phone number: +40726-33.98.93

E-mail: support@customsoft.io