Introduction
This policy is valid for the website www.thecolosseum.ro, hereinafter referred to as “the site”.
The site belongs to the data operator COLOSSEUM CENTER MANAGEMENT SRL with headquarters in P-ta Charles De Gaulle no. 15, floor 3, Charles De Gaulle Plaza Building, Office no. 325, Campus 06, Bucharest, district 1, having J40 / 9751/2011 and CUI 28980303; Correspondence address: Colosseum – Offices, Soseaua Chitilei, no. 284, district 1, Bucharest, Postal Code: 012407, Telephone: +40 31 438 25 92, Email: contact@thecolosseum.ro (hereinafter referred to as “Organization” or “COLOSSEUM” or “We”)
The data of the contact person for the protection of personal data: Colosseum – Offices, Soseaua Chitilei, no. 284,district 1, Bucharest, Postal Code: 012407 Telephone: +40 31 438 25 92 Email: contact@thecolosseum.ro
The protection of your personal data is essential for us. This personal data protection policy expresses the strong commitment of COLOSSEUM to respect and protect the personal data of each person and to ensure compliance with data protection legislation (mainly EU Regulation 2016/679, hereinafter referred to as “GDPR ”And European Directive 2002/58).
This policy for the protection of personal data is intended to inform you of what types of personal data we may collect from you, how we use them, to whom we transmit them, how we protect them, and your rights.
Please note that we may update this personal data protection policy at any time. In this case, we will change the date of the “last update” and indicate the date on which changes were made. This personal data protection policy is integrated into the data protection agreements we have entered into with our service providers or partners. We encourage you to periodically review potential updates to this personal data protection policy.
Definitions
“Personal data” means any information that could identify you either directly or indirectly (for example, first name, last name, email / home address, IP address, etc.)
“Processing” means an operation or set of operations performed on personal data or on personal data sets, with or without the use of automated means, such as the collection, registration, organization, structuring, storage, adaptation or modification, extraction, consultation, use, disclosure by transmission, dissemination or making available in any other way, alignment or combination, restriction, deletion or destruction.
The basic principles related to the processing of personal data, defined in the GDPR, are the following:
Principle (according to GDPR) | What it means for us to respect the principle |
The principle of legality, fairness and transparency | To be open and transparent about what we do with the data and why we use it; to ensure that we process the data fairly and that we have a legal basis for processing it |
The principle of purpose limitation | To collect personal data only for determined, explicit and legitimate purposes and not to process the data later in a way incompatible with these purposes |
The principle of minimizing data | To collect and use only the minimum necessary data |
The principle of accuracy | To make sure the data is correct, complete and up to date |
The principle of limiting the storage period | Not keeping the data longer than necessary |
The principle of integrity and confidentiality | To process the data safely |
The principle of responsibility | To be responsible for the processing we perform and to be able to demonstrate at any time the observance of the legal provisions |
What personal data we collect, why and how we use it
In order for you to have the clearest vision of how we use your personal data, you can find information in the following table, so:
- Column 1- In what context are your data collected? The information in this column provides what activity or scenario you are involved in when we use or collect your personal data.
- Column 2- What types of personal data can we hold about you? The information in this column details what types of personal data we collect.
- Column 3- How and why do we use them? The information in this column details how we use your personal data and the purposes for which it is collected.
- Column 4- What is the legal basis for the processing of your personal data? The information in this column provides the legal basis on which we may use your personal data.
In what context are your personal data collected? | What types of personal data may we hold about you? | How and why do we use your personal data? | What is the legal basis for the processing of your personal data? |
Newsletter subscription and commercial communications | -name and surname – email address – age – domicile – phone number – sex | – We send you marketing communications (when you asked us) – We keep an updated list with the date on which you requested not to be contacted – We perform analyzes or statistics | Consent (no direct marketing communication will be sent to you if you have not agreed to receive it) Legitimate interest: to adapt our marketing communications and understand their effectiveness, to help us better understand your needs and to improve our services (to develop our business) Legitimate interest: to keep your details on a removal list, if you asked us not to send you direct marketing messages |
Online navigation Information collected by cookies or similar technologies (“Cookies” *) as part of your browsing on the site * Cookies are small text files stored on your device (computer, tablet or mobile) when you browse the internet. | Data related to the use of our website: – Pages you’ve visited – Duration of your visit Technical information: – IP address – Browser information – Device information | To allow the proper functioning of our site: – Correct display of content – To ensure that the website is secure and to protect you against improper use of our sites or services – To run statistics: – To improve our offers | Legitimate interest: to ensure that the site works properly, is safe and is constantly improving, to develop our business Consent: for cookies that are not necessary for the operation of the site |
Questions sent by you to Us Information collected when you ask questions about our services | – name and surname – email address – phone number – other information you have shared with us regarding your request. | – To answer your questions – Where necessary, to connect to relevant services – For statistical purposes – To send you quotation estimates when you request it | Execution of a contract: In order to provide you with the information requested in the context of the contract between you and Us Legitimate interest: To help us better understand the needs and expectations of our users and therefore improve our services |
Applying for a job Information collected when applying for a job at COLOSSEUM | Identification information – Contact details – CV (qualifications, previous jobs, etc.) – Interview notes | – To examine the candidates’ applications – To manage recruitment processes – To hire candidates | Execution of a contract: to take steps at your request in order to conclude a contract; Legitimate interest: To find the best candidates for our job offers |
COLOSSEUM does not process your personal data for secondary purposes that would be different from those you have been informed about.
In which cases and to whom do we transmit your personal data
Some of your personal data can be accessed:
- Within COLOSSEUM and by any member of the COLOSSEUM Group; this will be done only on the basis of the need to know and, where necessary, to provide you with the services you have requested or in the context of a contract between you and COLOSSEUM, or with your consent (especially in marketing purposes)
- reliable service providers acting as subcontractors, who will perform certain necessary services for the purposes indicated above on our behalf (marketing services, hosting services, database maintenance, etc.); we provide only the information they need to perform such services and will act only according to the instructions of COLOSSEUM, being contractually obliged to ensure a level of security and confidentiality for your personal data at the same level at which COLOSSEUM is obliged to provide and comply with applicable laws regarding the protection of personal data
In addition, COLOSSEUM may share your personal data with third parties:
- to protect the rights, property or safety of COLOSSEUM, our users, our employees or others, or
- in case of a merger or sale of the company’s assets (in this case your personal data will be disclosed to the potential buyer) or
- to comply with a legal obligation or to respond to legal proceedings of any kind, ordered by the courts or the implementation of enforcement measures that are requested by the competent authorities, or
- for other purposes required by applicable law or with your prior consent.
Where we store your personal data
The data is stored in the European Union.
How long is your personal data kept
We will retain your personal data only for as long as is necessary for the purpose for which they were collected. However, we may retain your data for a longer period of time in application of specific legal or regulatory provisions and / or to comply with applicable statutes of limitations. In case of longer data retention for other reasons, we will inform you about such reasons and about the applicable retention period.
To determine the retention period of your personal data, we use in particular the following criteria:
- if you subscribe to a service, we keep your personal data for the duration of our contractual relationship and then in accordance with the limitation period.
- If you have agreed to do direct marketing, we will keep your personal data until you unsubscribe or ask us to delete it.
- If cookies are placed on your computer, we keep them for as long as necessary to achieve their purposes and for a period defined in accordance with European regulations on data protection.
- for candidates, we keep your personal data in accordance with the applicable prescription
How is your personal data protected
We are committed to maintaining the security of your personal data and to take all reasonable security measures to do so, implementing all necessary organizational and technical measures in accordance with this personal data protection policy and applicable laws and regulations to will protect your personal data against any unauthorized access and modification, disclosure, loss or destruction. By contract, it is necessary that the service providers who process your personal data on our behalf do the same.
What are your rights
In accordance with the applicable regulations regarding the protection of personal data, you benefit from a certain number of rights regarding your data, namely:
Right of access: you have the right to be informed in a concise, transparent, intelligible form regarding the way in which your personal data are processed. You also have the right to obtain:
- confirmation whether or not the personal data concerning you are processed and, where applicable
- to access this personal data and to obtain a copy of it
Right to rectification: you have the right to obtain the rectification of your inaccurate personal data. You also have the right to complete personal data, including by providing an additional statement.
Right to deletion (“right to be forgotten”): in some cases, you have the right to have your personal data deleted. However, this is not an absolute right, and COLOSSEUM may have legal or legitimate reasons for keeping this personal data.
The right to restrict the processing: in some cases, you have the right to obtain the restriction of the processing of your data.
Right to data portability: you have the right to receive your data that you have provided to COLOSSEUM, in a structured, commonly used format that can be read automatically and you have the right to transmit this data to another operator without obstacles from COLOSSEUM. This right only applies when the processing of your personal data is based on your consent or a contract and this processing is carried out by automatic means.
The right to object to the processing: you have the right to object at any time to the processing of your personal data. When you exercise your right to object, for reasons related to your particular situation, to a processing based on the legitimate interest of COLOSSEUM, COLOSSEUM may, however, invoke compelling legitimate reasons to continue processing.
Right to withdraw your consent, at any time, to the processing that is based on consent: you can withdraw your consent for the processing of your personal data when such processing is based on your consent. Revocation of consent does not affect the lawfulness of the processing performed on the basis of the consent prior to the revocation of the consent.
The right to lodge a complaint with the supervisory authority
We inform you that in Romania there is the National Authority for the Supervision of Personal Data Processing (“ANSPDCP”) and that you have the right to file a complaint when you consider that your rights have been violated.
Address: Bd. General Gheorghe Magheru 28-30, district 1, Bucharest, postal code 010336
Email: anspdcp@dataprotection.ro
Phone: +40.318.059.211
Web page: http://www.dataprotection.ro
Additional Information
For additional information regarding your rights and to exercise them, you can contact the contact person for the protection of personal data: Colosseum – Offices, Soseaua Chitilei, no. 284, district 1, Bucharest, Postal Code: 012407 Telephone: +40 31 438 25 92 Email: contact@thecolosseum.ro
About cookies
This site uses cookies. For more information on how these files are used, please access this link: about cookies
Thank you!