Privacy Policy

Privacy Policy on Website

This document was produced in accordance with Article 13 of Regulation (EU) 2016/679 (“Regulation”) to inform users of our privacy policy, so that they can understand how their personal data will be processed when they use our website (“Site”) and, if applicable, the cases where they must provide their consent to the processing of their personal data. Personal data provided by users or that are otherwise obtained during the use of services for navigating and accessing restricted areas of the Site (“Services”), will be processed in accordance with the provisions of the Regulation and the confidentiality obligations on which Controller’s business is based.

1. The data controller and the data protection officer (“DPO”)

Serious Business 2003 SRL with registered office at 15 Doamna Stanca Street, Pitesti, Arges County, Romania (hereinafter Serious Business or the “Controller”) commits itself to protecting the on-line privacy of its users at all times. We thus ask that you, before you transmit any personal data to the Controller, read this privacy notice carefully because it contains important information about protection of personal data.

The Data Protection Officer (“DPO”) under Article 37 et seq. of the Regulation can be contacted at the address

2. Personal data being processed
a. Data provided by the user

Identifying data. That term means personal data such as first and last name, email, mobile number, online identifiers or one or more characteristic aspects that identify the data subject or make him or her identifiable

Free text fields and documents. We would like to urge you not to write any data that fall within the special categories, such as racial or ethnic origin, political opinions, religious or philosophical beliefs, information on your physical or mental health, biometric data or genetic data, sexual orientation etc.

Furthermore, you should ensure that the personal data filled in the forms of the Site are correct and accurate and you shall inform Serious Business on any amendment or modification of these data. You will be held solely liable for any damage caused to the Controller or any third party because of the wrong, inaccurate or insufficient data/information in the Site forms.

b. Navigation data

During their normal operation, the IT systems and the software procedures used to make the Site functional automatically obtain certain information about web navigation, the transmission of which is implicit in the use of internet communication protocols. This information is not collected to be associated with identified data subjects but, by their nature, via associations and processing with data held by third parties, could allow identification of users or surfers. This category includes information about IP addresses, domain names of the computers used by users who connect to the Site, addresses in URI (“Uniform Resource Identifier”) notation of the resources requested, time of the request, method used to submit the request to the web server, size of the file obtained in response, numeric code indicating the status of the response given by the web server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment. These data are used solely to obtain anonymous statistical data about the use of the Site and to make sure they are functioning properly, and to identify anomalies and/or abuses, and are deleted immediately after they are processed. The data could be used to determine liability in the event of hypothetical computer crimes that harm the Site or third parties.

c. Data collected using cookies

Our website use cookies. For more information on the cookies that we use and the data that we collect through cookies, please refer to our detailed Cookie Policy.

3 Children’s personal data

Serious Business fully understands the importance of the protection of children’s personal data. This Site is not addressing and is not designed to address minors. Serious Business has no intention of collecting and maintaining personal data records of minors who may have access to the Site. If Serious Business finds out that minors’ data have been collected without the consent of the holders of parental responsibility, where necessary, the data will be immediately erased.

4 Purposes of the processing
  • Creating business quotations for inqueries sent via Site
  • Allowing navigation on the Site and providing the services made available on the Site by the Controller, including managing the Site’s security
  • Sending newsletters
  • Responding to requests of the data subjects using the contact form
5 Legal basis for the processing

Consent of the data subject according to Act CXII of 2011 on the Right of Informational Self-determination and Freedom of Information and Regulation (EU) 2016/679 of the European Parliament and the Council. Furthermore, the provisions of Act C of 2000 on Accounting regarding the issuance of invoices.

6 Recipients of the personal data

The personal data so collected may be shared, for the purposes set forth in Section 4 of this privacy notice, to different- to different persons or entities:

  • persons that provide services to Serious Business and typically act as processors including persons entrusted with performing technical maintenance (hosting providers or e-mail platform providers)
  • persons, companies or professional firms providing Serious Business with advice and consultancy regarding accounting, administrative, legal, tax, financial and debt collection matters related to the provision of the Services
  • persons authorized to perform technical maintenance (including maintenance of network equipment and electronic communications networks)
  • public entities, bodies or authorities to whom your Personal Data may be disclosed, in accordance with the applicable law or binding orders of those entities, bodies or authorities
  • Persons authorized by Serious Business to process Personal Data needed to carry out activities strictly related to the provision of the Services, who have undertaken an obligation of confidentiality or are subject to an appropriate legal obligation of confidentiality (e.g., employees of Serious Business).
7 Transfer of personal data

Serious Business does not currently transfer personal data collected through the Site outside the European Economic Area. If Serious Business proceeds in the future with such transfers, , Serious Business represents that the processing will be performed using one of the methods permitted by current law, such as the adoption of Standard Clauses approved by the European Commission, or selecting persons that adhere to international programmes for the free movement of data (e.g., the EU-USA Privacy Shield) or that operate in countries considered secure by the European Commission.

8 Storage of the personal data

Serious Business retains the users’ personal data only for the period required to serve the purposes for which the personal data are collected. Personal information that the users have provided when they contact Serious Business through the Site for submitting a message, request, information or query will be stored in our files until Serious Business can properly handle the relevant matter and be able to examine and respond to the request, message, information or query. In case Serious Business processes personal data for compliance with a legal obligation, Serious Business will retain such data for the period stipulated in the law.

9 Data subjects’ rights

Under the Regulation, the user of the Site has the right at any time to ask Serious Business for access to his or her personal data, to rectify or delete them or to object to their processing, or, in some cases, request that the processing be restricted and to receive the personal data concerning him or her in a structured, commonly used and machine-readable format.
Requests must be sent in writing to the Controller or to the DPO at the addresses listed in the “10 Contact Information” section of this document.
In any case, please note that, as a data subject, you are entitled to file a complaint with The National Authority for the Supervision of Personal Data Processing (ANSPDCP) if you believe that the processing of your Personal Data carried out through this Site violates applicable law.

10 Contact Information

To exercise your rights above or for any other request, you may write to the Controller at the physical address indicated above or at the dedicated contact and, to contact the DPO directly, with the subject line “Request to exercise privacy rights”.

11 Amendments

The Controller reserves the right to amend or merely update the contents of this document in whole or in part, including due to changes in applicable law. The Controller thus requests that its users periodically consult this privacy notice to see the most recent and updated version of its privacy notice so that they will always be up to date about the data being collected and how Serious Business uses them.
This Privacy Policy entered into force on 25th of May, 2018
Serious Business reserves the right to partly or fully amend this Privacy Policy, or simply to update its content, e.g., as a result of changes in applicable law.
Serious Business therefore invites you to regularly visit this Privacy Policy in order to acquaint yourself with the latest updated version of the Privacy Policy, so that you may remain constantly informed on how we collect and use Personal Data.