BUSINESS PROCESS INNOVATION S.R.L. as the data controller and BPION Services Kft. as data processor respects the privacy of all individuals concerning whom personal information is provided and is committed to protecting them. As a data controller, we handle personal data confidentially and we take all security, technical, and organizational measures to ensure the security of your data.
The terms used in this Privacy Statement shall be construed in accordance with the terms defined in the interpretative provisions of the GDPR.
The Data Controller is BUSINESS PROCESS INNOVATION S.R.L.
Seat: Bucharest, 1st District, Constantin D. Aricescu 26-30, 3rd floor
Company registration number: 44684318
Represented by: Bela Kakuk, Daniela Zsigmond
Phone: +40 72 053 44 26
In connection with the management of the data, we hereby inform you of the personal data we process, the principles and practices we follow in the handling of personal data, and the ways and means of exercising the rights of those concerned.
Data handled and collected by BUSINESS PROCESS INNOVATION S.R.L.
This section provides you with information on how we collect, use and share your personal and other information with a third party.
You are allowed to enter your own personal information only. If you provide the personal information of any third party, it is your duty to obtain the consent of the third party concerned, in this respect our responsibility is completely excluded.
The data provided by you to us are handled purposefully and are not used for any other non-designated purpose.
As data controllers, we use data processors to perform our activities. Data processors will not make an independent decision, they are only entitled to act under the terms of the contract concluded with BUSINESS PROCESS INNOVATION S.R.L. and based on our instructions.
You can disable cookies on our website at any time. You can do this by activating the feature in your browser that can disable cookies. Note, however, that if you disable all cookies in your browser, you may not be able to visit certain parts of our website or you will not be able to use certain features.
You have specific rights to your personal data.
- Access to the data we manage of you. At your request, we provide information on whether we are handling your personal data, the purpose, legal basis, duration of the data handling, and for whom and for what purpose they have received and what data. We will send the information within 30 days following the submission of the request.
- If data is obsolete or incorrect, it corrects, You can request its correction or deletion. You may at any time have the right to make such a request on one of the following contact details. We will correct or delete the data within 3 business days following the receipt of the request. After the deletion, the data cannot be restored. Deletion does not apply to data handling required by law.
- Limitation of data handling. You are entitled to restrict your data handling instead of correcting or deleting your personal information.
- Protest against the use of personal data. The application on the protest will be examined within the shortest possible time, but within a maximum of 15 days, and we will make a decision on its validity. You will be informed about this decision in writing.
At your request, the information, the information and the action taken on your request will be provided free of charge. If your application is clearly unjustified or, in particular, because of its repetitive nature, is excessive in view of the provision of the requested information or the administrative costs involved in the requested action, a reasonable fee may be charged, or we may refuse to take action based on the request. The denial of the request will be notified in writing within 25 days of the receipt of the application by indicating the reasons. In this case, you are entitled to appeal to the National Data Protection and Information Authority or to a court.
BUSINESS PROCESS INNOVATION S.R.L. undertakes to ensure the security of data and to take all technical and organizational measures and put in place the procedural rules that ensure the protection of all collected, stored and processed data, as well as to prevent the destruction, unlawful use and unlawful alteration of data.
Organizational measures include controlling physical access to our seat, educating employees, and closing paper-based files on the right premises. Technical measures include encryption related to access to our systems, password protection and the use of antivirus software.
We call upon the attention of any third party to whom the data is transmitted or passed on based on Your consent, to comply with the requirement of data security.
As part of the process of making your personal information available to us, this data may also be transmitted over the Internet. Even though we take all the necessary steps to protect the privacy of your personal information, you may not be considered to be completely secure on the Internet. Accordingly, you must acknowledge and agree that we cannot assume full responsibility for the security of the data transfer through our website and that such transmission may take place at your own risk. As soon as your personal information arrives in our systems, strict procedures are in place to ensure security and prevent unauthorized access.
Management And Notification Of Data Protection Incidents
Privacy incident means any event that results in the unauthorized processing or processing of personal data, in particular unauthorized or accidental access, alteration, disclosure, deletion, loss or destruction, as well as accidental destruction or damage to personal data processed, transmitted, stored or processed.
In the event of a privacy incident, the supervisory authority shall be notified within 72 hours of its knowledge, unless the privacy incident is unlikely to pose a risk to the rights and freedoms of natural persons. If required by law, all affected users are also informed of the incident.
Law enforcement options
We make every effort to ensure that your personal data is processed in accordance with the law, however, if you feel that BUSINESS PROCESS INNOVATION S.R.L. has not done so, you have the possibility to write to email@example.com or to Bucharest, Romania and mail address.
If You feels that your right to the protection of personal data has been violated, You can seek legal remedy in compliance with the applicable laws and regulations at the agencies that have jurisdiction.
The present document is governed by the EU Regulation No 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Regulation (EC) No 95/46 April 27, 2016).
Bucharest, 15th of August 2021.
BUSINESS PROCESS INNOVATION S.R.L.