Personal data policy
S.C. HAPPICIF PNK S.R.L. protects and uses personal data, collected online, in accordance with the provisions of Regulation (EU) 2016/679 – General Data Protection Regulation (“GDPR”), the Law on the Implementation of GDPR provisions, as well as any decisions taken by the Authority National Supervision of Personal Data Protection.
We assure you that your personal data is collected legally, correctly and transparently.
First of all, we must define, and it is important for you to understand, some expressions.
It generically represents any kind of information about a natural person, whose particularities can lead, directly or indirectly, to its identification. We will list here, by way of example, but not limited to: name and surname, geographic address, any identification number, email address, any location information, and any other online identifier such as the device used to access the Internet, address , IP or information obtained through cookies, etc.
Processing of personal data
It represents any operation or set of operations performed on personal data or sets of personal data, with or without the use of automated means, such as collection, registration, organization, structuring, storage, adaptation or modification, extraction, consultation, use, disclosure to third parties by transmission, dissemination or in any other way, joining or combining, blocking/restriction, erasure or destruction.
Personal data operator
It represents any natural or legal person, under private or public law, including public authorities, institutions and their territorial structures, which establish the purpose and means of personal data processing. Data controller (within the meaning of EU Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data) is S.C. HAPPICIF PNK S.R.L. legal entity of Romanian nationality, with registered office in ALEEA NICOLAE IORGA, NO.18, BL.A52, Craiova, Dolj, with order number in the Trade Register J16/76/2015, unique registration code 33981879, responsible for processing your data personal in relation to the website.
It represents the free and express consent given, knowing the cause, regarding the use of your personal data for the purpose declared by us, namely the sale of goods and/or the provision of specific services.
Regarding your consent, in the context of the collection and use of personal data, we have taken all the technical measures so that you can give us this consent in full knowledge of the cause, from the first to the last interaction with this site.
The purpose of personal data processing and their protection
To fulfill our commercial purpose.
Our commercial purpose, in relation to the object of our company’s activity, is to achieve the contractual relationship between the subscriber and clients in the matter of sales of products specific to our object of activity, and the new personal data protection rules (GDPR), which they are opposite, they are part of this context.
To improve our services.
We always want to offer you the best online experience, and for this, we can collect and use certain information about your behavior and preferences on the website, or we can conduct, directly or with the help of partners, studies and market research.
To improve the marketing activity
We want to keep you informed about the best offers for the products/services that interest you. In this sense, we can send you any type of message (such as: e-mail/SMS/telephone/mobile push/webpush/etc.) containing general and thematic information, information about products or services similar or complementary to those that you have purchased, information about offers or promotions, as well as other commercial communications.
To defend our legitimate interests
There may be situations in which we will use or transmit information to protect our rights and commercial activity. These may include:
- measures to protect the website and platform users against cyber attacks:
- measures to prevent and detect fraud attempts, including the transmission of information to the competent public authorities;
other measures to manage various risks.
Therefore, we commit to:
- to protect the confidentiality of your data, this representing a special priority for the management of our company;
- to use this data for the sole purpose of offering you a personalized experience both on our website and on the online platforms on which we promote our products and services (Facebook and Google, etc.).
How we use personal data
Your personal data will only be used if we have your consent, in several ways, depending on their nature and specificity. Below we have detailed all the types of data we could collect and how we could use them later:
If you have provided us with your email address, it can be used by us to send you informational emails regarding offers related to our products and services, to contracts for signing, to invoices related to purchases, but also to the articles and resources related to our activity, which we periodically publish on this site;
Numele si Prenumele Name and surname
If you have provided us with your Name and Surname, we will be able to use this data to personalize the emails you receive from us. The platform we use is for the presentation of our products and services, and it allows us to personalize, based on the data provided, your experience in the relationship with us, both in the online environment and in the direct relationship. In this latter context, where, and if, it is the case, we could use these data to conclude contracts, express or implicit, between our company and you;
Home or residence address
If you have provided us with your home or residence address, we will be able to use this data to conclude contracts with you according to our object of activity, or to deliver the goods or services contracted through the website.
If you have provided us with your phone number, these data will be used to contact you directly, in case you purchase one or more of our products and services, for the purpose of informing you about possible changes, in the purpose of data confirmation or for any other situations that would require contacting you quickly;
Company data (billing data)
If you have provided us with the data of the company where you are an associate, employee, owner or administrator, such as C.N.P. (at P.F.A./I.I.), C.U.I., Trade Registry registration number, address of the company headquarters, bank account, name of the bank, name and function of the legal representative, we will be able to use these data to conclude previously agreed contracts with you;
Any other personal data necessary for the fulfillment of commercial purposes
In this category, we include any kind of additional personal data that results from the nature of our object of activity and is related to the necessity of realizing the contractual relationship between us and you, such as by way of example, but not limited to: data about owned goods, religious orientation, sexual orientation, biometric data, health, family data, etc.
If you have agreed to collect them, we may collect details about the browser used, IP address, device details such as hardware model, operating system version, unique device identifiers, and mobile network information, including the phone number. We use this data to determine how you use our website, the goal being to make the necessary changes so that you can more easily find the information you are looking for;
Unique device identifiers (sometimes called Universally Unique ID or UUID) are a string of characters built into a device by the manufacturer. This can be used to identify the device exactly (for example, the IMEI number of a mobile phone). The various device identifiers differ from several points of view: validity, whether or not they can be reset by users and how they can be accessed. A given device may have several different unique identifiers. Unique device identifiers may be used for various purposes, including for security and to detect fraud, to synchronize services, for example, messages received on a user’s email address, to remember user preferences and to serve advertisements relevant.
Depending on the authorizations of your device, we automatically collect and process information about your actual location. We use various technologies to determine your location, including IP address, GPS, Wi-Fi access points and cell towers. Your location data may allow you a personalized experience with our website, products or services, and may help us compile anonymous statistics about their use.
We will also be able to use:
The https header
Considering the current state of the art, the costs of implementation and the nature, purpose, context and purposes of the processing, as well as the risk of the various possibilities of affecting the rights and freedoms of natural persons, we have implemented appropriate technical and organizational measures to ensure a level of appropriate security, by:
- pseudonymization and encryption of personal data;
the ability to ensure confidentiality, integrity, availability and ongoing resilience of processing systems and services;
In other words, the GDPR Regulation requires that information be protected by “appropriate technical and organizational measures”, including the encryption of personal data and the ability to ensure the continuous confidentiality of systems and services. Digital certificates (including TLS / SSL) and encryption have been de facto requirements for all confidential communications worldwide online for more than 30 years and are among the most ubiquitous paradigms in existence today.
Cache memory for application data
An app data cache is a store of data on a device. It can, for example, allow a web application to run without an Internet connection and can improve application performance by allowing content to load faster.
Storage of data from the web through the browser
Browser web data storage allows websites to store data in a browser on your device. When used in “local storage” mode, the function allows data to be saved between sessions (for example, so that the data can be recovered even after closing and reopening the browser). A technology that allows data to be stored on the web is HTML 5.
A device is a computer that can be used to access our website and services. For example, a device can be a computer, a tablet, a smartphone, or any other electronic device equipped with the necessary capabilities of a browser and which connects to the Internet.
Information that is not personally identifiable
These are registered information about users, so that they no longer reflect and no longer refer to an individually identifiable user.
A pixel tag is a type of technology placed on a website or in the content of an e-mail, for the purpose of tracking activity on websites or when e-mails are opened or accessed and is often used in combination with cookies.
Sensitive personal information
This is a special category of personal information, associated with confidential medical information, racial or ethnic origin, political or religious beliefs or sexual orientation.
As with most websites, our servers automatically record page requests made when a user accesses our websites. These “server logs” usually include your web request, IP address, browser type, browser language, date and time of the request, and one or more cookies that can precisely identify your browser.
You are not obliged to provide us with any kind of data, but everything depends strictly on your option, but it is important to understand that without them your relationship with us may be limited or impossible, and that certain parts of the website may not work correctly, not being able to collaborate, or not being able to notify you about the products and services in our portfolio that you might be interested in. For our part, the enumeration of the above does not entail the mandatory collection of all these data, but it is possible to collect only a part of them, depending on your options in the relationship with us.
How long do we keep your data?
As a general rule, we will store your personal data as long as you have an account on the platform https://cocochard.com/
You can request us to delete certain information or close your account at any time and we will comply with these requests, subject to keeping certain information including after closing the account, in situations where the applicable legislation or our legitimate interests require it. Deleting the data, however, will require the cancellation of your account, if it is active at the time of the deletion request.
If you agree to close your account and terminate the contractual relationship with us, your data will remain stored in our database for a subsequent period of 60 days.
Regarding the information collected through cookies that could help to individualize or identify you, they are stored for a period of 30 days. The cookies that contribute to the creation of statistical data regarding the use by you and by other users of the website are anonymized and are stored for a period of 60 days.
Storage of personal data
Currently, we store and process your personal data in servers located on the territory of Romania. Also, to ensure total data security, we make encrypted redundant back-ups of the data stored in servers located on the territory of the European Union.
Sharing of personal data
The collected data is used strictly for the purpose of improving your relationship with us. We don’t sell, we don’t assign, we don’t make your data available to third parties in any way. We offer products and services that are based on the trust of clients and potential clients, and the safety of personal data is essential in this process.
The financial transactions related to our services will be managed by our payment service providers. We will share transaction data with our payment service providers only to the extent necessary to process your payments, to refund such payments and to deal with complaints and questions related to such payments and refunds. You can find information about the privacy policies and practices of payment service providers directly on their websites.
If our goods or services will be delivered through intermediate courier companies, you agree that the data necessary to fulfill the delivery procedures will be provided to our courier partners.
If we provide the data of the users of this site to various contractual partners with whom we collaborate, we will ensure that we will ask for your prior consent, and the contracts with them will contain confidentiality clauses.
There may be exceptional cases and only on the basis of official requests, in which we will provide the data of the users of this site to the public institutions that apply the law in Romania, this provision of data being mandatory by law.
The only data about the users of this site, to which third parties have access, are aggregated and anonymized – on the basis of which the users cannot be identified.
It is possible to make public information that does not identify you personally and to allow partners (such as publishers, advertisers or linked sites) access to it. For example, we may disclose information to indicate trends regarding the general use of our products/services.
Our marketing messages
If we have your consent, we will be able to send you, by email, marketing messages with the aim of informing you about elements of our activity that may interest you, events that we would organize, about newly published articles on this site and about useful articles published on other sites on the Internet.
Unsubscribe from the newsletter
You can unsubscribe from the newsletter at any time, using one of the methods below:
- By clicking on the unsubscribe link from any newsletter already received from us;
- By sending an email to us, in which you request unsubscription.
We will make sure that you will no longer receive our marketing messages by email. The request will be resolved within a maximum of 48 hours from receipt.
Addressing users through online advertising
Addressing users through online advertising
For this purpose, we use the main social media and advertising networks, Facebook and Google, etc., as well as several techniques for identifying users within the campaigns – based on demographic data (sex, age, geographical distribution, proximity), or interests – this information being made available to us by the networks mentioned above.
We expressly inform you that there are cases in which you will be able to see our advertisements on other sites. These are displayed based on the information we have about you (for example, when you visit or register on our page, you may then be addressed, on Facebook or in the Google partner network, with advertisements for other auxiliary products/services).
Your rights in relation to the collected data
These are your rights, in the context of our collection and processing of your data.
- The right to be informed about how your data is collected and used;
- The right to access the data we have about you;
- The right to request the rectification of the data we have about you;
- The right to request the deletion of the data we have about you;
- The right to request to stop sending marketing messages to you;
- The right to request the sending of your personal data to you or to another operator;
- The right to file a complaint, with reference to the use of your data, to the competent bodies;
- The right to withdraw your consent;
- The right of opposition;
- The right to go to court.
The above rights are not absolute, and there are exceptions to them, under well-defined conditions. For any questions, please contact us by sending an email.
Changes in the personal data policy
We reserve the right to modify this Personal Data Policy whenever the conditions of use undergo a modification or the law requires it. The last modification was made on December 13, 2022
We are at your disposal with any kind of information related to our products and services, or regarding any additional information related to the way we collect and use your personal data. In this regard, please send us an email from the contact page. Sending emails to us represents your implicit consent regarding the transfer to us of the personal data you could provide. The contractual conditions apply.