Home/Privacy Policy

Privacy Policy

Last updated: December 2024

1. Introduction

DGI ("we", "us", "our") respects the privacy of our website visitors and clients. This Privacy Policy explains how we collect, use, store, and protect your personal information in accordance with the General Data Protection Regulation (GDPR) and applicable Romanian legislation.

2. Data Controller

The personal data controller is:

  • Name: DGI
  • Address: [Company address]
  • Email: contact@getdgi.com
  • Phone: +40 XXX XXX XXX

3. Data We Collect

3.1 Data provided directly by you:

  • Contact data: name, surname, email address, phone number
  • Company data: company name, VAT ID, headquarters address (for business clients)
  • Communication content: messages sent via the contact form
  • Billing data: information needed for invoice issuance

3.2 Automatically collected data:

  • Technical data: IP address, browser type, operating system, screen resolution
  • Usage data: pages visited, time spent on site, traffic source
  • Cookies: for improving experience (see dedicated section)

4. Processing Purposes

We use your data for:

  • Service provision: to provide requested services and manage the contractual relationship
  • Communication: to answer questions and inform you about projects
  • Marketing: to send newsletters and offers (only with your consent)
  • Service improvement: to analyze how the website is used and optimize it
  • Legal obligations: to comply with legal requirements (billing, accounting)

5. Legal Basis for Processing

We process your data based on the following legal grounds:

  • Contract execution: for providing requested services
  • Consent: for marketing and newsletters (which you can withdraw at any time)
  • Legitimate interest: for improving services and website security
  • Legal obligation: for maintaining accounting documents

6. Data Sharing

We do not sell your data to third parties. We may share data with:

  • Service providers: hosting, email, analytics tools (under processing agreements)
  • Authorities: when required by law or to protect our rights
  • Business partners: only with your explicit consent

6.1 Third-Party Providers

We use the following third-party services:

  • Google Analytics - for traffic analysis
  • Google Search Console - for SEO monitoring
  • EU-based hosting services
  • Email marketing services (with EU servers)

7. Data Transfer Outside EU

If data is transferred outside the European Economic Area, we ensure appropriate safeguards (standard contractual clauses, Privacy Shield certification, or adequacy decisions).

8. Retention Period

We keep your data for different periods depending on the purpose:

  • Contractual data: contract duration + 3 years
  • Billing data: 10 years (per tax legislation)
  • Marketing data: until consent withdrawal
  • Technical data: maximum 26 months
  • Contact messages: 2 years from last communication

9. Your Rights

Under GDPR, you have the following rights:

  • Right of access: you can request a copy of the data we hold about you
  • Right to rectification: you can request correction of inaccurate data
  • Right to erasure: you can request data deletion ("right to be forgotten")
  • Right to restriction: you can limit how we use your data
  • Right to portability: you can receive your data in a structured format
  • Right to object: you can object to processing in certain situations
  • Right to withdraw consent: you can withdraw your consent at any time

To exercise these rights, contact us at: contact@getdgi.com

10. Cookies

10.1 What are cookies?

Cookies are small text files stored on your device when you visit a website.

10.2 Types of cookies used:

  • Essential cookies: necessary for website operation
  • Performance cookies: help us understand how the site is used
  • Functional cookies: remember your preferences
  • Marketing cookies: used for relevant ads (only with consent)

10.3 Cookie management

You can control cookies through your browser settings. Disabling some cookies may affect website functionality.

11. Data Security

We implement technical and organizational measures to protect your data:

  • SSL/TLS encryption for all connections
  • Need-to-know based data access restriction
  • Regular and secure backups
  • Security monitoring and updates
  • Staff training on data protection

12. Policy Changes

We may update this policy periodically. We will notify you of significant changes via email or by displaying a notice on the site. The last update date is shown at the beginning of the document.

13. Complaints

If you believe your data processing violates GDPR, you have the right to file a complaint with:

National Supervisory Authority for Personal Data Processing (ANSPDCP)

  • Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Bucharest
  • Email: anspdcp@dataprotection.ro
  • Website: www.dataprotection.ro

14. Contact

For any questions about this policy or your data, contact us:

  • Email: contact@getdgi.com
  • Phone: +40 XXX XXX XXX
  • Address: [Company address]

We will respond within a maximum of 30 days from receiving the request.

Privacy Policy | DGI | DGI