Privacy Policy
The General Data Protection Regulation (GDPR) is a new legal framework for data protection legislation in the EU and comes into force on 25 May 2018. Unlike EC Directive 95/46, which governs this processing prior to this point, GDPR has a direct effect within the European Union and does not need to be transposed at national level. In this way, the harmonization of the laws regulating the processing of personal data in Europe will be pursued and in certain circumstances, its scope may be extended beyond the borders of Europe.
If you are an organization that processes personal data, it is very likely that you will fall under the provisions of the GDPR. In this respect, you are subject to obligations and must comply with them. The same applies to Mevision RO SRL / GigasHost, which, given its situation, is bound by different obligations, in its capacity as processor and data operator.
Understanding the actual specifics of European regulations is no easy task when the GDRP contains 99 articles and numerous guidelines on how it will be applied. Understanding these issues is, however, essential to avoid any risk that may arise from an inaccurate interpretation of your organization’s regulatory obligations. Therefore, it is essential to have a correct understanding of the terms defined below:
Personal data: any information relating to an identified or identifiable real person. An identifiable real person is defined as any real person who can be directly or indirectly identified.
Processing: any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, transmission, storage, preservation , extracting, consulting, using or other operations.
Operator: the natural or legal person, public authority or other body, which alone or together with others, determines the purposes and means of personal data processing.
Processor: natural or legal person, public authority or other body that processes personal data on behalf of the operator.
Data protection ensures that individuals’ data is kept safe and used for clear purposes that the individual has agreed to.
Data privacy refers to IT security and the measures taken to keep data safe while it is in an organization or while it is being transferred to a third party.
Under the GDPR, you are required to ensure that records are accurate and up-to-date, and that information is only kept for as long as the organization needs it or as required by law.
A data cleanse seems like the most sensible first step, this should determine how long certain types of information should be kept before it can be safely removed. A designated person in the company should be appointed as responsible, to ensure that this is monitored regularly; so that the organization complies with the deletion of data it no longer needs.
If you have not determined the data you want us to process, the time of processing or the purpose, please inform us so that you can also enter in accordance with the Regulation.
Processing of personal data only for the purpose of the correct performance of services: Mevision RO SRL through GigasHost will never process your information for purposes other than those for the provision of services (marketing, etc.).
Applying strict security standards on servers and infrastructure to ensure a high level of security for our customers.
Reporting any data breaches without “unreasonable delay”.
As an authorized person (Web Hosting), from the perspective of the Regulation, we only process the personal data that you have established, for the time indicated and for the purposes imposed by you as the operator. We assure you that your data is safe, remains your property and is stored only on secure servers.
The back-up system is very well implemented and secured, located in the European space, and no one outside our technical department staff has access to these systems.
Your personal data may be processed by other entities appointed by Mevision RO SRL to process the data on its behalf and on its behalf. However, Mevision RO SRL remains the operator of your data. Thus, it is possible to transmit the data to public authorities, external consultants, authorized persons to whom we have outsourced the provision of certain services in Romania or outside it or the European Union/European Economic Area, always making sure that we establish adequate guarantees to protect the data ( for example, contractual confidentiality and data protection clauses).
You have the right to ask the operator for access to your personal data, to rectify, delete or limit their processing, as well as the right not to have them processed or transferred. You also have the right to data portability under certain conditions.
The purpose of processing personal data is to carry out the activity of supplying products ordered by customers. We will process personal data in a manner compliant with EU Regulation 2016/679; the legal basis being the conclusion and execution of the contract in the case of processing orders (according to Art. 6 para. (1) letter (b) of the GDPR).
The personal data processed include the name, first name, address, telephone number, e-mail address, CNP, date of birth of the customer and details of the orders sent to the subscriber. Your personal data will be kept and processed for a period necessary to achieve the purpose of the processing.
Starting from May 25, 2018, you can contact the personal data protection officer at the following e-mail address: info@gigashost.com.
It is important to know:
As a Gigas Host customer, what rights do I have?
• The right to rectification – you can rectify inaccurate personal data or complete them;
• The right to delete data (“the right to be forgotten”) – you can obtain the deletion of data, if their processing was not legal or in other cases provided by law;
• The right to restrict processing – you can request the restriction of processing if you dispute the accuracy of the data, as well as in other cases provided by law;
• The right to object – you can object, in particular, to data processing based on our legitimate interest;
• The right to data portability – you can receive, under certain conditions, the personal data you have provided to us in a machine-readable format or you can request that said data be transmitted to another operator
• The right to file a complaint – you can file a complaint about the way personal data is processed with the National Authority for the Supervision of Personal Data Processing
• The right to withdraw consent – in cases where the processing is based on your consent, it can be withdrawn at any time. The withdrawal of consent will have effects only for the future, the processing carried out prior to the withdrawal still remaining valid;
• The right not to be subject to automated decisions or additional profiling related to automated decisions: you can ask for and obtain human intervention regarding that processing or you can express your own point of view regarding this type of processing.
You can exercise these rights, either individually or cumulatively, very easily, by simply sending a request to the e-mail address info@gigashost.com
Who owns the personal data used and stored by the customer as part of the services?
Mevision RO SRL will not access and use this data unless it is necessary to ensure the functionality of the services (repair the database, restore files from backup, troubleshoot site errors)
How long are customers' personal data stored and processed?
Are GigasHost customer data transferred outside the European Union?
Reg. com.: J5/3014/2017
CIF: RO38549937
Address: 410128, 1st Aurel Covaci St., Oradea, Romania