GDPR form
- Attention! This anonymisation request form is only for current customers (those who have placed an order and/or registered on the site).
[ultimate_gdpr_myaccount]
[ultimate_gdpr_center icon_color="#e03131"]
Policy on the processing of personal data
We consider ensuring the right to personal data protection as a fundamental commitment of DietaFlex, therefore we will devote all necessary resources and efforts to process your data in full compliance with Regulation (EU) 2016/679 (“General Data Protection Regulation” or “GDPR”), as well as any other applicable legislation in Romania. As one of the key principles of this legal framework is transparency, we have prepared this document to inform you about how we collect, use, transfer and protect your personal data when you interact with us in relation to our products and services, including through our website or mobile apps. We reserve the right to periodically update and amend this Privacy Policy to reflect any changes in the way we process your personal data or any changes in legal requirements. In the event of any such changes, we will post the amended version of the Privacy Policy on our website, so please check the content of this Privacy Policy periodically.Who we are and how to contact us
DietaFlex is the trade name of DIETAFLEX COACHING S.R.L, BLD. PANDURILOR NO.1 SC.B AP.10, Targu-Mures, Mures, 540506, Romania (hereinafter DietaFlex) As we are always open to hearing your views, as well as providing you with any additional information you may need regarding the processing of your data, we encourage you to contact the DietaFlex Data Protection Officer at the following e-mail address [at] DietaFlex.ro, by phone or via the contact form. What categories of personal data we process In general, we collect your data. personal information directly from you, so you have control over the type of information you give us. By way of example, we receive information from you. such:- When you create a DietaFlex account, please provide us with: your email address, first and last name;
- Within your page personal (My Account) in the DietaFlex platform you can add additional information such as: photo, gender, nickname, mobile phone number, landline number, date of birth, level of education, delivery addresses, alternative email address, bank card details etc.;
- When you place an order, you provide us with information such as: the product you want, your first and last name, delivery address, billing details, payment method, phone number, credit card details, etc.
- https://www.facebook.com/about/privacy
- https://policies.google.com/privacy
What are the purposes and grounds for processing
We will use your data. personal data for the following purposes: To provide DietaFlex services for your benefit. This general purpose may include, as appropriate, the following:- Create and manage your account on the DietaFlex platform;
- Order processing, including order taking, validation, dispatch and invoicing;
- Solving cancellations or problems of any kind relating to an order, goods or services purchased;
- Return of products according to legal provisions;
- Reimbursement of the value of the products according to legal provisions;
- Providing support services, including providing answers to your questions about your orders or DietaFlex goods and services.
- Change your customer account settings in the “My subscriptions” section;
- By accessing the unsubscribe link displayed within the messages you receive from us; or by
- Contact DietaFlex using the contact details described above.
- Measures to protect the website and users of the DietaFlex platform from cyber attacks:
- Measures to prevent and detect fraud attempts, including the transmission of information to the competent public authorities;
- Measures to manage various other risks.
How long do we keep your data? personal
As a general rule, we will store your data. personal data as long as you have an account on the DietaFlex platform. You may request that we delete certain information or close your account at any time and we will comply with such requests, subject to the retention of certain information even after account closure, where required by applicable law or our legitimate interests.To whom we pass on your data personal
Where appropriate, we may transmit or provide access to certain of your personal data. the following categories of recipients:- courier service providers;
- payment/banking service providers;
- marketing/telemarketing service providers;
- market research service providers;
- IT service providers;
- other companies with whom we can develop joint programmes to market our goods and services.
To which countries do we transfer your data? personal
We currently store and process your data. personal data on the territory of Romania. However, we may transfer some of your data. personal data to entities located in the European Union or outside the European Union, including in countries that are not recognised by the European Commission as having an adequate level of protection of personal data. We will always take steps to ensure that any international transfer of personal data is carefully managed in order to protect your rights and interests. Transfers to service providers and other third parties will always be protected by contractual commitments and, where appropriate, other safeguards, such as standard contractual clauses issued by the European Commission or certification schemes such as the Privacy Shield for the protection of personal data transferred from within the EU to the United States. You can contact us at any time, using the contact details set out above, to find out more information about the countries to which we transfer your data, and the safeguards we have put in place in relation to these transfers.How we protect the security of your data personal
We are committed to ensuring the security of personal data by implementing appropriate technical and organisational measures in accordance with industry standards. Transmission of your data personal data is done using state-of-the-art encryption algorithms and stored on secure servers while ensuring data redundancy. We use the services of the payment processor PayU to make payments. Any payment information is encrypted using HTTPS technology with TSL 1.2 encryption. Despite the measures taken to protect your data. personal data, please note that the transmission of information over the Internet in general, or via other public networks, is not completely secure and there is a risk that data may be seen and used by unauthorised third parties. We cannot be responsible for such vulnerabilities in systems that are not under our control.What rights do you have
The General Data Protection Regulation gives you a number of rights in relation to your personal data. You can request access to your data, correct any mistakes in our files and/or object to the processing of your personal data. You may also exercise your right to complain to the competent supervisory authority or to take legal action. Where applicable, you may also benefit from the right to request the erasure of your personal data, the right to restrict the processing of your data and the right to data portability. More information on each of these rights can be found in the table below. To exercise your rights, you can contact us using the contact details above. Please note the following if you wish to exercise these rights: Identity. We take the confidentiality of all records containing personal data seriously. For this reason, please send us your requests. about such registrations using the e-mail address of your DietaFlex account. Otherwise, we reserve the right to verify your identity by requesting additional information to confirm your identity. Fees. We will not charge you a fee to exercise any rights in relation to your data. personal data, unless your request access to information is unfounded, i.e. repetitive or excessive, in which case we will charge a reasonable amount in such circumstances. We will inform you of any fees charged before we settle your claim. Response time. We aim to respond to any valid requests within a maximum of one month, unless this is particularly complicated or if you have made multiple requests, in which case we will respond within a maximum of two months. We will let you know if we need more than a month. We might ask if you can tell us exactly what you want to receive or what you are worried about. This will help us to act faster and shorten the response time to your request. Third party rights. We must not comply with a request if it would adversely affect the rights and freedoms of other data subjects. Access You can ask us:- to confirm whether we process your personal data;
- to provide you with a copy of this data;
- provide you with other information about your personal data, such as what data we hold, what we use it for, who we disclose it to, whether we transfer it abroad and how we protect it, how long we keep it, what rights you have, how you can make a complaint, where we obtained your data, to the extent that information has not already been provided to you through this notice.
- Correction You can ask us to correct or complete your inaccurate or incomplete personal data.
- We may try to verify the accuracy of the data before correcting it.
- Data deletion You can ask us to delete your personal data, but only if:
- by e-mail to: office [at] dietaflex.ro
- via GDPR form