Privacy Policy

PRIVACY POLICY

 

 

 

EUROCAS-TEHNICA ALIMENTARA SRL

 

  1. INTRODUCTION

 

Thank you for your interest in our company and the products we sell through the eurocas.com website.

 

The protection of personal data is a very important topic for us. When you enter into a relationship of any kind with us, you entrust us with your information, some of which is personal data protected by European data protection laws.

 

This document (hereinafter referred to as the “Privacy Policy) contains the necessary information regarding the use of personal data. Please read this document carefully. We recommend that you read this document together with the Terms and Conditions.

 

The Privacy Policy describes in detail how EUROCAS-TEHNICA ALIMENTARA SRL (“we”, “us”, “Company”, “Organisation” or “The Controller”) processes your personal data in the context in which you browse our website, place orders, contact us or interact with us in any other way. The purpose of this Privacy Policy is to provide you with clear, complete and transparent information regarding the processing of your personal data, the rights you have under Regulation (EU) 2016/679 (“GDPR” or “GDPR”). Where applicable (e.g., cookies and electronic marketing), we also comply with the ePrivacy Directive.

 

By “personal data” we mean any information about an identified or identifiable natural person (“data subject”); An identifiable person is a person who can be identified, directly or indirectly, in particular by reference to an identifier such as name, identification number, location data, online identifier or to one or more elements specific to his or her physical, physiological, genetic, mental, economic, cultural or social identity.

 

The processing of your personal data is always carried out in full compliance with the applicable regulations, in particular the GDPR.

 

For any questions, requests or further clarifications regarding this Privacy Policy or the way we handle your personal data, please contact us at the following email address: marketing@eurocas.ro or at the postal address of the registered office.

 

 

  1. CONTROLLER’S IDENTIFICATION & CONTACT DATA

 

Name: EUROCAS-TEHNICA ALIMENTARA SRL

Registered office:

 

 

Trade Register Registration Number: J1998000276354

EUID: [*]

Tax code:

E-mail:

Telephone: [*]

Data Protection Officer’s e-mail: [*]

 

  • OTHER SERVICES, SITES, AND APPS

 

This Privacy Policy does not cover third-party applications and websites that you may reach by clicking on links on our website. This is beyond our control. We encourage you to review the Privacy Policy on any website and/or app before providing any personal data.

 

  1. CHANGES

 

We may change this Privacy Policy at any time. All updates and changes to this Privacy Policy are effective immediately upon notice, which we will make by posting on the website and/or notifying by email.

 

 

  1. PERSONAL DATA. PURPOSES. LEGAL BASES

 

When you browse our website, when you place an order, when you fill out a form, when you send us a request by email or when you contact us for any other purpose and on any other communication channel, you may communicate to us the following personal data, which we collect directly from you or from other sources, as explained in the table below.

 

 

Personal data processed*

 

 

Purpose/Purposes*

 

Legal Basis(s)

 

Name

Billing/delivery address

 

 

for invoicing

to comply with the law

for the prevention of fraud and other cybercrimes

to create an account on the website

for direct marketing (if applicable)

 

 

 

 

 

conclusion or performance of a contract – Art. 6 (1) b) GDPR

 

legal obligation – Art. 6 (1) c)  GDPR

 

 consent – Art. 6 (1) a) GDPR – (for direct marketing only)

 

 

E-mail

 

For e-invoicing

To comply with the law

To prevent fraud and other cybercrimes

to create an account on the website

to communicate with you.

for direct marketing (if applicable)

 

 

 

 

conclusion or performance of a contract – Art. 6 (1)  b) GDPR

consent – Art. 6 (1)  a) GDPR – (for direct marketing only)

legitimate interest – Art. 6 (1) f) GDPR

 

 

 

Phone

 

 

To communicate with you

For order delivery

To inform you about the status of your order

for direct marketing (if applicable)

 

conclusion or performance of a contract – Art. 6 (1) b) GDPR

consent – Art. 6 (1)  a)  GDPR – (for direct marketing only)

legitimate interest – Art. 6 (1) f) GDPR

 

 

IP Address

 

 

to defend against cyberattacks

and fraud prevention.

for the operation of the network

 

 

legitimate interest – Art. 6 (1) f) GDPR

 

 

Most personal data is collected directly from you (e.g. by filling in a form on the website). Most personal data is as described above, but there may be situations where we collect data from third parties (e.g. partners, platforms).

 

In addition to the information indicated above, we also collect the following information, depending on the circumstances: 

 

  • How you interact with our site (e.g., information about how and when you access our site or what device you use to access the site).
  • Information provided when you fill out forms or questionnaires.
  • The content of messages sent through messaging and email systems.

 

If you make purchases by bank card, certain payment information (card data) will be collected, but it will be stored by our payment processor partners in a way that we cannot read or have access to.

 

We may also process personal data for the following purposes:

 

  • To respond to your questions and requests and to provide you with customer service;
  • For marketing purposes, but only if we have your consent. prior or when there is a legal exception to obtaining consent;
  • To provide and improve the services we provide;
  • To diagnose or fix technical problems;
  • To defend against cyberattacks;
  • For the creation and/or maintenance of accounts;
  • To comply with legislation, such as compliance with tax legislation that requires us to keep accounting documents for a certain period;
  • In the unlikely event of a dispute, for the establishment or assertion of a right in court.

 

 

  1. OBLIGATION TO PROVIDE PERSONAL DATA AND POSSIBLE CONSEQUENCES OF NOT PROVIDING THEM

 

The provision of personal data that EUROCAS-TEHNICA ALIMENTARA SRL requests from you through the website or through other means of communication may represent a necessary obligation for the conclusion of a contract or an obligation imposed by the legal provisions in force.

 

In this regard, your refusal to provide the personal data requested of you may make it impossible for us to conclude a contract with you, to deliver the ordered products to you, to allow you to create a user account, to respond to your requests, to send you notifications regarding the order placed or to comply with specific legal obligations (such as the issuance and transmission of the tax invoice).

 

If some personal data is optional, you will be explicitly informed that the provision of that data is not mandatory and you will not suffer any negative consequences if you choose not to provide it.

 

  • SOURCES OF PERSONAL DATA

 

As part of our online store activities, EUROCAS-TEHNICA ALIMENTARA SRL collects personal data directly from you (when you create an account, place an order, or contact us via various channels). We may also collect personal data automatically when you browse our website (e.g., IP address, browser, device used, and online behaviour).

 

  • STORAGE PERIOD

 

We store your personal data. only for the period necessary to fulfil the purposes, but not more than 7 years after the termination of the contract or the last interaction with us, unless you have given your consent for direct marketing activities, in which case we keep the data until the consent is withdrawn. After the end of the period, personal data will be destroyed or deleted from computer systems or transformed into anonymous data to be used for scientific, historical or statistical research purposes. Please note that in certain expressly regulated situations, we store data for the period required by law.

 

  1. RECIPIENTS OF PERSONAL DATA

 

In order to fulfil contractual and legal obligations, your personal data may be passed on to various categories of recipients, including public authorities and third party contractual partners. Thus, EUROCAS-TEHNICA ALIMENTARA SRL may communicate personal data to IT service providers, website hosting and maintenance service providers, couriers and logistics service providers, financial and banking service providers (for payments and processing transactions), marketing providers, as well as to legal and accounting service providers in order to comply with legal obligations.

 

We may also transmit your personal data to public authorities (e.g. tax authorities, control and supervisory bodies) when we are legally obliged to provide it or when this is necessary to defend our legitimate rights. Your data may also be disclosed to commercial or marketing partners, but only with your explicit consent, if applicable.

 

In all cases, EUROCAS-TEHNICA ALIMENTARA SRL ensures that the transmission of your personal data is done in accordance with the legislation in force, based on appropriate technical and organizational measures and only if the recipients of the data guarantee their protection in accordance with the standards imposed by Regulation (EU) 2016/679.

Recipient list:

Marketing – SIMPLE ADVERTISING SRL […]

Hosting – HOST-AGE.RO GAZDUIRE WEB S.R.L.

Website Maintenance – OkkWebMedia SRL

NETOPIA FINANCIAL SERVICES S.A

PayPal

GLS General Logistics Systems Romania SRL

 

  1. INTERNATIONAL TRANSFERS

 

The transfer of personal data to a third country can only take place if the state to which the transfer is intended ensures an adequate level of protection. The transfer of data to a state whose legislation does not provide for a level of protection at least equal to that offered by the GDPR is only possible if there are sufficient guarantees regarding the protection of the fundamental rights of data subjects. These guarantees will be established by us through contracts concluded with the providers/service providers to whom the transfer of your personal data will be carried out. Each time we transfer your personal data outside the European Economic Area (EEA), we will ensure that a similar level of protection is in place through one of the following data protection mechanisms provided by the GDPR.

 

We are currently forwarding the data to the following destinations as shown in this table.

 

Destination

Destination country

Transfer mechanism

Google LLC ( Alphabet Inc)

USA

European Commission Adequacy Decision – Data Privacy Framework

 

Meta Platforms, Inc.

 

 

USA

European Commission Adequacy Decision – Data Privacy Framework

ByteDance Ltd.

China

Explicit consent

 

 

  1. MARKETING DIRECT

 

To the extent that we have obtained your consent, we may use personal data for direct marketing and for online advertising/retargeting campaigns. Currently, we can run online advertising and retargeting campaigns through Google Ads, Meta/Facebook and TikTok Ads. We could also carry out e-mail marketing, SMS marketing or similar online advertising/retargeting campaigns. 

 

Retargeting campaigns target existing customers who have opted for marketing (lists uploaded to platforms), website visitors, people who have added products to the cart, people who have viewed products/categories, as well as similar audiences.

 

You can object to direct marketing and/or withdraw your consent at any time by following the unsubscribe instructions in each email or SMS (“unsubscribe”, “unsubscribe”) or by submitting a request to this effect to marketing@eurocas.ro.

 

  • COOKIE-URI

 

Cookies are small files, consisting of letters and numbers, that are stored on your device (computer, smartphone, tablet) when you access a website. They are transmitted via the web browser and can be re-read later by the site that placed them. Cookies enable the site to function correctly and efficiently, improve page performance, and adapt content to the user’s preferences.

 

Through cookies, the site can remember data such as the selected language, the contents of the shopping cart, account login or the last pages visited. They also enable analysis of how users interact with the site and the delivery of personalised content or relevant advertisements based on browsing behaviour.

 

Although cookies do not contain viruses or harmful code and do not access information from your device’s memory, some may collect personal data, such as your IP address, a session ID, or information about your browsing preferences. In such cases, the rules of the ePrivacy Directive, transparency and user control over data apply.

 

Our website uses cookies as described in the pop-up window on our website. That cookie table is automatically updated, and we encourage you to read it and make your cookie choices known.

 

 

  • PROFILING AND AUTOMATED DECISIONS

 

   ☒   We do not make automated decisions with legal effect or significant impact on you.

 

 

  • RIGHTS UNDER THEGDPR

 

Your rights according to the GDPR are the following:

 

(a) The right to be informed about the processing of your personal data

 

(b) Right of access to data. You have the right to obtain from us a confirmation as to whether or not personal data concerning you is being processed and, if so, access to that data and to the information provided for in Art. 15 para. (1) of the  GDPR.

 

(c) The right to rectify inaccurate or incomplete data. You have the right to obtain from us, without undue delay, the rectification of inaccurate personal data concerning you.

 

(d) The right to erasure (“right to be forgotten”).  In the situations provided for in Art. 17 of the  GDPR, you have the right to request and obtain the erasure of your personal data.

 

  1. e) The right to restriction of processing. In the cases provided for in Art. 18 of the GDPR, you have the right to request and obtain the restriction of processing.

 

  1. f) The right to transmit the data we have about you to another controller (“right to portability”). According to Art. 20 of UK GDPR, you have the right to “transfer” your personal data to another controller.

 

  1. g) The right to object to data processing. In the cases provided for in Art. 21 GDPR, you have the right to object to data processing.

 

  1. h) The right not to be subject to a decision based solely on automated processing, including profiling with legal or similar significant effects on you.

 

  1. i) The right to go to court to defend your rights and interests.

 

  1. j) The right to lodge a complaint with a Supervisory Authority.

 

Please note that:

 

(1) You may withdraw your consent to direct marketing at any time by following the unsubscribe instructions in each email or by sending a request to the email address marketing@eurocas.ro, in other situations where the processing of your data is based on consent according to this information notice, you can send the request for withdrawal of consent to the email address marketing@eurocas.ro .

 

(2) If you wish to exercise your rights, you may do so by sending a written, signed and dated request to the e-mail address: marketing@eurocas.ro.

 

(3) The rights listed above are not absolute. There are exceptions, so each request received will be analysed in order to decide whether it is valid or not. To the extent that your request is well-founded, we will make it easier for you to exercise your rights. If the request is unfounded, we will reject it, but we will inform you of the reasons for the refusal and of your rights to lodge a complaint with the Supervisory Authority and to take legal action.

 

(4) We will try to respond to the request within one month. However, the deadline may be extended by a further two months depending on factors such as the complexity of the application, the volume of applications received, or the inability to identify you within a reasonable timeframe.

 

(5) If, despite our best efforts, we are unable to identify you and you do not provide us with additional information to be able to identify you, we are not obliged to comply with the request.

 

For any other information you can contact us at marketing@eurocas.ro.

 

 

 

You’ve reached the end. Congratulations! Thank you for taking the time to learn how we protect your personal data!

 

 

Last Update:        05.02.2026