The security of your data is one of our main concerns, in the sense that we are committed to protecting the confidentiality of all personal data we collect, process and store, in compliance with all laws and regulations applicable to data protection, including the General Data Protection Regulation (EU) 2016/679 (GDPR).
Appsure Solution and Tried&Tested Consulting are legal entities operating under the name of Business Security Design, operating in Bucharest, Romania, and working with both their own teams and collaborators to implement their own projects, custom projects and turnkey software solutions for customers from the country and abroad.
If you have any questions regarding data protection, you are welcome to contact us at any time at the e-mail address: [email protected].
Personal data we process
We collect personal data provided by you through e-mails sent to us, forms available on this website (newsletter subscription) or following phone calls. This way, we assure you that you are always in control of the personal information you disclose. We do not store information usually found in cookies or other similar technologies for analyzing website traffic. Google is the only entity that collects and analyses traffic data to our site, when accessed through the interface of Google Search, Google Maps or Google Business, these data being collected in accordance with specific cookies and analytics policies by Google .
The purpose of processing personal data
We use and process personal information transmitted by you for well-defined purposes:
Information purpose
The personal data provided are used to provide support services, implement a specialized consulting program tailored to customer needs and provide timely answers to questions received. Also, these data are necessary for the elaboration of a collaboration / service contract between us and your company, in order to ensure the legislative framework in force on the fiscal and accounting side.
Improving our services
We collect data specific to the user behavior or to the beneficiary of the services provided by us because we want to permanently improve their quality and to be adapted to the real needs of the market. To collect and process this type of data we will use online questionnaires made through the Google Forms platform. Please note that before completing such a questionnaire, it is necessary to know the terms and conditions imposed by the Google platform.
Marketing
We want to keep you up to date with the latest products, services and opportunities offered by our company. We reserve the right to notify you by email, telephone or SMS with generic information related to the projects in which we are actively involved, campaigns and other services of interest. At the same time, we make sure that your rights and freedoms guaranteed by the legislation in force are protected. Marketing campaigns are also based on your prior consent. At the same time, we make sure that your rights and freedoms are protected by the legislation in force.
Also, there may be situations in which we will use or transmit personal information in order to protect specific rights and activities. Thus, we can take measures to protect the website and users of the platform www.business-security-design.com against cyber attacks, specific prevention measures and detection of attempted fraud and transmission of data to authorized public authorities and other measures to manage adjacent or force majeure risks.
Prevention actions for these situations are for our legitimate interest to protect the recurrent activity, but we guarantee the balance between our professional interests and the fundamental rights and freedoms guaranteed by the legislation in force.
Duration of personal data retention
We will process this data throughout our contractual relationship and, after its completion, at least for the period required by the applicable legal provisions in the field, in order to achieve the processing purposes mentioned above. We usually keep your personal data for a maximum period of 24 months. Upon request, we delete previously processed personal information, but reserve the right to retain certain details in order to comply with applicable tax and accounting legislation.
Third parties with access to processed personal data
In specific cases, some of the personal information provided will be disclosed to the following categories of third parties: courier service providers and banking transaction service providers. If the competent authorities request access to this data, we reserve the right to disclose it in full safety to our customers.
Protecting processed personal data
We periodically conduct internal security audits so as to ensure an increased level of security and protection for the data processed. However, despite our efforts to store the information in a secure operating environment that is not available to the public, we cannot guarantee the security of this information during transmission using Internet connections or various public networks. We cannot be held responsible for the vulnerabilities of systems that are beyond our control.
Your rights
As a data subject, you have the following rights:
The right to access data
You have the right to obtain from us a confirmation that we process the personal data concerning you. You also have the possibility to obtain a copy of the personal data provided to our company and which have been processed.
The right to rectification
You have the right to obtain an updating of inaccurate or incorrect personal data, as well as the right to complete personal data that have been incompletely provided.
The right to delete data
You have the right to obtain the deletion of personal data concerning you, without undue delay, and we have the obligation to delete such data when: (i) personal data are no longer necessary for the purposes for which they were collected or processed; (ii) the data holder withdraws his consent on the basis of which the processing takes place and there is no other legal basis for the processing; (iii) the holder opposes the processing and there are no legitimate reasons to prevail as to the processing; (iv) personal data have been processed unlawfully; (v) personal data must be deleted in order to comply with a legal obligation incumbent on our company under Union law or Romanian law. We will communicate to each recipient to whom the personal data have been disclosed any deletion thereof, unless this proves impossible or involves disproportionate effort and we will inform about these recipients, if we are requested to do so.
The right to restrict processing
You have the right to request the restriction of the processing of personal data. This means that the processing of personal information is limited, so that we can keep the data provided, but without using or processing it. This right applies in specific circumstances provided by the General Regulation on the Protection of Personal Data.
The right to data portability
You have the right to receive your personal data provided, in a structured, commonly used format, which can be read automatically and can be transmitted to another operator, under certain conditions. In exercising this right, you have the right to have personal data transmitted directly from us to another operator when this is technically feasible.
The right to opposition
You have the right to oppose, for reasons related to the particular situation in which you are, at any time, the processing of your personal data, including the creation of profiles based on those provisions.
The right to file a complaint
You have the right to file a complaint with the National Authority for the Supervision of Personal Data Processing.
The right to withdraw your consent
You have the right to withdraw your consent, at any time, without affecting the legality of the processing of personal data carried out by our company based on the consent given before its withdrawal.
Response times
We intend to respond to any written request received by email within 48 hours, calculated within working days. In special cases, in which the request requires a preliminary analysis or other steps on our part, the term is extended up to 21 calendar days. This exceeding of the usual term will be notified in advance, within the established term of 48 hours. In general terms, we respond to calls coming to the displayed phone number within a maximum of 24 hours, within working days, if the call was made at the end of the working hours and within a maximum of 48 hours, within working days, if the call was arrived outside business hours.
In Romania, the GDPR supervisory authority is the National Authority for the Supervision of Personal Data Processing, based in G-ral Blvd. Gheorghe Magheru no. 28-30, Sector 1, postal code 010336, Bucharest, Romania.
Phone: +40 318 059 211
Email: [email protected]
The above rights may be exercised at any time.
To exercise these rights, we encourage you to send a request to e-mail: [email protected].