This Policy informs you about how we collect, use, transfer and protect your personal data. We process them in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive no. 95/46/EC (“General Data Protection Regulation”, hereinafter “RGPD”) and relevant national legislation on the protection of personal data.
1. WHO ARE WE?
The operator – booksgoalsbylexy.com (hereinafter the “We” or other similar derivatives).
Our contact details are:
Headquarters address: Hunedoara, Petrosani
Email address: contact@booksgoalsbylexy.com
2. HOW WE PROCESS YOUR PERSONAL DATA?
booksgoalsbylexy.com, in its capacity as Operator, processes the personal data of candidates who apply for available positions, employees, natural person clients, representatives of legal person clients, contractual partners and collaborators, and the data of other natural persons who interact with the Company and / or are engaged in contractual relations with it.
The personal data are:
- processed legally, fairly and transparently towards the data subject;
- collected for specific, explicit and legitimate purposes and not further processed in a way incompatible with these purposes;
- adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
- accurate and up-to-date;
- kept in a form that allows the identification of the data subjects for a period that does not exceed the period necessary to fulfill the purposes for which the data are processed;
- processed in a way that ensures adequate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, by taking appropriate technical or organizational measures.
3. WHAT TYPES OF PERSONAL DATA ARE PROCESSED AND FOR WHAT PURPOSE ARE THEY PROCESSED?
For the conclusion and execution of service and partnership/collaboration contracts , we mainly process the following types of personal data: name, surname, identity card/passport number and number, gender, home address/residence, bank account number , e-mail address, no. phone numbers, IP addresses, operating system used, type of browser from which you access our sites or control panels, internet provider, pages and files accessed.
In the context of staff recruitment , we process the following types of personal data: name, surname, address, date of birth, citizenship, gender, no. phone number, e-mail address, data on professional and/or social experience, education and professional training, skills and other personal data arising from the information contained in the CV and in the submitted cover letter, and as the case may be , following the discussions during the employment interview
In order to complete and submit the contact form (“Contact”) and the order form (“Order”) on the website www.booksgoalsbylexy.com (hereinafter the “website”), we process the following types of personal data: name, surname, email, phone number, address and, as the case may be, other data if left at the initiative of the data subject.
For website visitors, it is possible to collect data through cookies or other similar technologies, such as: IP address, internet browser, location, web pages accessed on our website, time spent on the website, internet network, device used. For more details in this regard, see the Cookie Policy – https://www.booksgoalsbylexy.com/cookies-policy/ (see on the website)
We do not use your personal data to send you marketing communications , such as newsletters , unless you expressly consent to such communications by ticking a consent box. In this regard, we only process your e-mail, first and last name, and ensure that you have a simple option to unsubscribe at any time, or to withdraw your consent to receive these types of communications.
4. WHAT ARE THE LEGAL GROUNDS ON WHICH PERSONAL DATA PROCESSING IS BASED?
Your personal data is processed in order to:
- the conclusion and execution of various contracts ;
- to fulfill our legal obligations ;
- based on the consent requested and/or provided in advance (in the context of staff recruitment, for the transmission of marketing communications, etc.);
- for the purpose of the legitimate interests pursued by the operator (e.g. the adoption of protection and security measures for our employees, the exercise of legitimate rights and interests of the Company in contentious or non-contentious procedures, etc.).
5. HOW LONG WE PROCESS YOUR DATA. PERSONAL?
Personal data are stored for their processing for the duration necessary to achieve the processing purposes mentioned in this Policy or for the duration required by law (e.g. in matters of archiving, accounting, etc.).
6. TO WHOM DO WE TRANSMIT PERSONAL DATA?
We will not communicate or transfer to any third party any of the personal data collected from you or about you except :
- To public authorities and institutions – when there is a legal obligation in this regard or for the purpose of a legitimate interest (defense of the Company’s rights in contentious or non-contentious procedures, etc.).
- To the contractual partners or collaborators of the Company, which at the moment are : The list of entities to which we provide your information is as follows: Google, Microsoft, CloudFlare, Hosterion, Romarg, WordPress, FGO, Meta (Facebook, Instagram), Let’s Encrypt.
If the personal data processed by the Company are transferred by it directly or through its contractual partners/collaborators outside the European Economic Area , we assure you that these transfers take place in compliance with the RGPD (in particular art. 46 of the RGPD) , of the legal provisions applicable in the matter, based on adequate guarantees (standard data protection clauses adopted by the Commission) and on the condition that there are opposable rights and effective remedies for the persons concerned.
The list presented is subject to change and the policy will be updated accordingly.
- To any third party – if you have given your consent expressly and punctually, for that situation and that data.
7. WHAT PROTECTION MEASURES AND GUARANTEES DO WE TAKE?
booksgoalsbylexy.com implements appropriate technical and organizational measures to ensure a high level of security and protection of personal data. We use security methods and technologies, together with internal work policies and procedures, including control and audit, to protect the personal data collected according to the legal provisions in force relevant to the protection of personal data.
booksgoalsbylexy.com can modify or update the security measures periodically, to avoid the degradation of the entire security. The Company’s customers agree and accept the foregoing. Also, booksgoalsbylexy.com and the organizations that provide services and products will perform customer checks to further secure their data in the control panel.
8. WHAT ARE YOUR RIGHTS. AS A TARGETED PERSON?
Any data subject may exercise the following rights as provided by the General Data Protection Regulation:
- The right of access;
- Right of rectification;
- The right to erasure;
- The right to restrict processing;
- The right to portability;
- The right to oppose the processing;
- The right not to be subject to a decision based solely on automated processing, including profiling;
- The right to address the National Supervisory Authority for the Processing of Personal Data and the courts.
For any questions, concerns or the exercise of these rights, you can contact us by e-mail at contact@booksgoalsbylexy.com.