Your privacy is one of our core commitments at the Transilvania IT Association (hereinafter referred to as “Transilvania IT Cluster” or “we”).

We take care to process your personal data in accordance with the principles established by the applicable data protection legislation in Romania, including Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (“GDPR”). Personal data means any information relating to an identified or identifiable natural person, where an identifiable person is someone who can be identified directly or indirectly, particularly by reference to an identification number or one or more specific factors of physical, physiological, mental, economic, cultural, or social identity.

This privacy policy concerns the personal data of cluster members, business partners, other individuals who contact and visit us, as well as their representatives, potential employees, interns, associates, or persons attending events organized by or involving Transilvania IT Cluster. It applies to data collected through our website, transilvaniait.ro, as well as all other personal data we collect via email or offline interactions, or in the context of events organized by or involving Transilvania IT Cluster. The privacy policy describes:

  • The purposes for which we collect and use your personal data
  • The legal grounds for processing such data
  • The categories of personal data we collect and process
  • The duration of data processing
  • To whom we may disclose personal data
  • Transfer of personal data
  • How we protect your personal data
  • Our cookie policy
  • Your rights and how you can exercise them

PURPOSES, LEGAL GROUNDS FOR PROCESSING, AND CATEGORIES OF PERSONAL DATA

In the context of your interaction with Transilvania IT Cluster, as a natural person, you may be subject to data processing activities that we carry out.

What personal information do we collect about you?
We may collect personal information from you in the course of our activities, including through the use of our website, when you contact us or request information, when you engage our services, or as a result of your relationship with one or more of our staff members.

The personal information we process includes:

  • Basic information such as your name (including prefix or title), the company you work for, your title or position, and your relationship with a person
  • Contact information such as your postal address, email address, and phone number
  • Financial information such as payment-related details
  • Technical information, such as data from your visits to our website or applications, or related to the materials and communications we send you electronically
  • Information you provide for meeting and event participation purposes, including dietary requirements and access needs
  • Identification and background information provided by you or collected as part of our business acceptance processes
  • Photographs and/or video recordings of participants at events organized by or involving Transilvania IT Cluster
  • Any other information you may provide us

Legal grounds for processing:

  • To perform a contract or to take steps at your request prior to entering into a contract (e.g., engaging a person to deliver our services)
  • To comply with legal and regulatory obligations
  • For legitimate business purposes

Explicit Consent: For close-up photos or video recordings, we rely on your consent, which may also be expressed through gestures or behavior (e.g., your posture in photos or video recordings). If you do not wish to appear in such photos/videos, you can always address the photographer directly.

You can always withdraw your consent, including your preference not to receive our newsletters in the future, by clicking “Unsubscribe” in the respective email or writing to privacy@transilvaniait.ro.


PROVISION OF PERSONAL DATA

When data is requested directly from you, Transilvania IT Cluster will ask you to provide all categories of personal data we require for the purposes mentioned above, as we may otherwise be unable to carry out our activities (including but not limited to delivering our services).

If you provide Transilvania IT Cluster with the personal data of other individuals, please inform them, prior to such disclosure, of how Transilvania IT Cluster intends to process their personal data as described in this Privacy Policy.


DISCLOSURE OF YOUR PERSONAL DATA

While we generally do not disclose your personal data to third parties, we may:

  • Share your contact details with our affiliates within Transilvania IT Cluster, our contractual partners, and service providers (including data processors);
  • Disclose relevant personal data to members who have provided us with your details in the context of delivering the requested services, where necessary for these purposes;
  • Publish photos/videos recorded during events organized by or involving Transilvania IT Cluster (including in the context of webinars), on our website (www.transilvaniait.ro) or social platforms such as Facebook, LinkedIn, or YouTube.

DATA RETENTION

We aim to retain your personal data for the duration of the support agreement and thereafter, in accordance with our internal policies and legal obligations.

Your personal data is stored only as long as necessary to fulfill the purposes for which the data was collected in line with this Data Protection Policy. We may retain additional information if required to comply with other legal requirements. Information about members/customers is stored for a maximum of 12 months after the member/customer no longer has a valid ongoing relationship with us.


TRANSFER OF PERSONAL DATA

We do not transfer your personal data to countries within or outside the EU unless expressly provided by law or required for data collection purposes. If changes occur, you will be duly informed.


HOW WE PROTECT YOUR PERSONAL INFORMATION

We use various technical and organizational measures to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction, in accordance with applicable data protection laws.


COOKIE POLICY

When navigating the transilvaniait.ro website, data regarding your visit is automatically generated. This includes your IP address, browser, access time, accessed page/document, and other technical data.

Our website does not use cookies to track your browsing preferences, searches, or other potentially intrusive elements.

The categories of data processed in this context include the time and date of website access and the IP address used to access our website.

This data processing activity is based on our legitimate interest in ensuring the proper functioning of our website and improving it.


YOUR RIGHTS

As a data subject, the GDPR grants you several rights, including:

  • Right of Access (Article 15 of GDPR):
    You have the right to obtain confirmation from Transilvania IT Cluster as to whether your personal data is being processed and, where applicable, access to that personal data.

  • Right to Rectification (Article 16 of GDPR):
    You have the right to obtain from Transilvania IT Cluster the rectification of inaccurate personal data concerning you. Considering the purposes of the processing, you have the right to have incomplete personal data completed.

  • Right to Erasure (“Right to be Forgotten”) (Article 17 of GDPR):
    In cases where (1) the personal data is no longer necessary for the purposes for which it was collected, (2) you withdraw your consent, and there is no other legal basis for processing, (3) you object to the processing, and there are no overriding legitimate grounds, or (4) the personal data has been unlawfully processed, you have the right to obtain the erasure of your personal data.

  • Right to Restriction of Processing (Article 18 of GDPR):
    You have the right to request that Transilvania IT Cluster restricts the processing of your personal data in the following cases:

    1. You contest the accuracy of the personal data, for a period enabling Transilvania IT Cluster to verify its accuracy.
    2. The processing is unlawful, and you oppose the erasure of the personal data, requesting instead the restriction of its use.
    3. Transilvania IT Cluster no longer needs the personal data for the purposes of the processing, but you require it for the establishment, exercise, or defense of legal claims.
    4. You have objected to processing pursuant to Article 21(1) of GDPR, pending the verification of whether the legitimate grounds of Transilvania IT Cluster override yours.
  • Right to Data Portability (Article 20 of GDPR):

You have the right to receive the personal data you have provided to Transilvania IT Cluster in a structured, commonly used, and machine-readable format, and you have the right to transmit that data to another controller without hindrance from us, where:

      1. The processing is based on consent or a contract.
      2. The processing is carried out by automated means.
  • Right to Object (Article 21 of GDPR):
    You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data based on legitimate interests pursued by Transilvania IT Cluster, including profiling based on these provisions.
  • Right to Withdraw Consent:
    If processing is based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to Lodge a Complaint:
    You have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) if you consider that your data protection rights have been infringed. Contact details for ANSPDCP are as follows:
    Website: www.dataprotection.ro
    Address: Bd. Gheorghe Magheru 28-30, Sector 1, 010336 Bucharest, Romania