Through this Privacy Policy we want to provide you with all the necessary information regarding the processing of personal data that we collect directly or indirectly from you when you interact with us.
We are committed to ensuring the privacy and protection of your data. personal and we want to be completely transparent about the situations, purposes and ways in which we carry out our processing activities.
When we ask you for personal data, we will in particular ensure that it is adequate, relevant and limited to what is necessary in relation to the specified, explicit and legitimate purposes of the processing.
We pay particular attention to your rights. and respond to your requests when you need additional information.
Within this Privacy Policy you can access the Information Notes where we present in detail the main processing activities.
We are AMAZONIA AQUAPARK SRL, a legal entity of Romanian nationality, with registered office in Timiș county, Avram Imbroane street no. 56, Timișoara township, Romania registered at the Timiș Commercial Registry under no. J35/801/2014, with CUI 32965190. (“Amazonia Aquapark”, “We”).
When we process your data based on purposes and means of processing established by us, we are a Personal Data Controller and we are responsible for meeting all legal requirements regarding the processing of your data. personal.
Our registered office is located in Romania, Timiș county, Avram Imbroane street no. 56, Timișoara town.
We carry out our activity at the address of the work point in Timiș county, Avram Imbroane street no 56, Timișoara locality (Amazonia Aquapark).
Our data protection officer works at the address of the work point and can be contacted by email at: dataprotection@amazonia.ro
You can contact us both by post/courier and by email, at the mentioned addresses.
This Privacy Policy applies to you, as a visitor, customer, partner, user, employee, participants in various contests, winners, etc., when:
The data we process is obtained both directly and indirectly from you when you interact with us as described in this Privacy Policy.
When you send us data that does not belong to you, in situations such as registering someone else’s contact details, using someone else’s bank card when making payments, providing personal data of children you accompany and for which you are not responsible legal, the transmission of another person’s CVs or other similar situations, please inform the respective persons as well as their guardians accordingly by making them aware of our Privacy Policy, before using them in the relationship with us.
We process your personal data in accordance with national and European provisions on the protection of personal data, in particular:
Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. (hereinafter referred to as GDPR);
Directive 2002/58/EC on the processing and protection of personal data in the electronic communications sector.
Law no. 190/2018 on measures to implement Regulation (EU) 2016/679 of the European Parliament and of the Council;
For the purposes of this Privacy Policy, we will collectively refer to them as “data protection laws”
We will also take into account:
The purposes for which we may process your data are varied.
In general, we process your personal data when necessary to provide you with Amazonia Aquapark products and services under a contract, to customize and adapt to your needs. these products and/or services or to fulfill our legal obligations arising from our activity (e.g. tax obligations, keeping and archiving supporting documents, communication with the authorities, etc.), or when necessary to defend our legitimate interest.
Legitimate interest refers to:
We will also use consent as a legal basis whenever we process your data based on your permission. that you give in advance in various situations. (registration for the Amazonia Aquapark Newsletter, participation in surveys, etc.). Where we rely on this legal basis, you always have the right to withdraw your consent at any time. The withdrawal of consent does not affect the legality of the processing carried out on the basis of the consent before its withdrawal.
Please see our information notices for detailed information on the legal bases and purposes that are used in relation to the processing of your data.
Your data may also be disclosed to other third parties such as IT service providers, payment processors, financial and accounting service providers, marketing service providers, health and safety service providers, web application and tools providers, website developers and mobile applications, market research providers, recruitment service providers, consultants, lawyers, legal advisors, auditors, or other similar entities.
We disclose your data. to them only when necessary, taking into account the risks and applying appropriate safeguards.
Some of these categories of recipients may process your data for their own purposes or in accordance with legal requirements imposed on them by the authorities. In this context, they acquire the quality of Data Operator for the processing activities carried out, becoming directly responsible for compliance with data protection laws.
Others will only process personal data at our request and for our purposes, based on prior instructions. They are considered our data processors for processing your data. personal data.
We only use trusted agents who provide sufficient guarantees to implement appropriate technical and organizational measures so that the processing of your data comply with the requirements of data protection legislation. Processing your data personal data by our agents is always carried out only after we have ensured that all legal requirements necessary for the protection of this data are met.
It is also possible to transmit your data to authorities or certain State institutions, only when we are obliged by law to do so or when we have a well-founded legitimate interest.
As a rule, the data we collect about you. are processed on the territory of Romania, but also within the European Union, where the same legal provisions on data protection apply.
Your data they can also be transferred to countries that offer an adequate level of protection (e.g. the United Kingdom of Great Britain and Northern Ireland), according to the decision on the appropriate level adopted by the European Commission. In other words, transfers to these destinations are considered as safe as transfers between European Union member countries. Transfers made under these conditions do not require special authorisations.
We make continuous efforts to protect your data throughout its lifetime, to prevent, eliminate or reduce the risks posed by processing activities.
Our data protection team consists of data and information security experts, data protection officers and legal specialists who together define and implement appropriate strategies, policies and procedures for the protection of your data. personal.
Our privacy and data protection program ensures that all measures necessary to meet legal requirements are effectively addressed by implementing policies and procedures adapted to the specifics of our activity.
We regularly train our employees referring to their field of activity and the risk represented by the activity carried out by them.
Through the information security program, we particularly promote techniques such as pseudo-mining and encryption of personal data.
We consider the risks and impact that a potential security incident may have on your rights and freedoms, so we have implemented procedures that help prevent, remedy or mitigate the impact on the privacy of your personal data should such a risk materialize.
We carry out data protection impact assessments whenever a certain processing activity may pose a risk to your fundamental rights and freedoms, before we start processing your data.
We impose special conditions on all our authorised representatives before we pass on your data to them. personal data in accordance with data protection laws.
We ensure data protection from the moment of conception and by default throughout the processing, when we implement new IT systems or new processing activities.
We have appointed a data protection officer who monitors the compliance of our personal data processing activities in accordance with legal requirements.
We keep records of the processing activities that fall under our responsibility as a personal data controller.
We have limited the retention of personal data in accordance with legal requirements and our legitimate interests, and we ensure its safe destruction.
We regularly audit IT systems in order to improve security measures ensuring an optimal level of security, in accordance with the technological development of the market.
Under the conditions laid down in the data protection laws, as a data subject, you have the following rights:
If you wish to exercise any of your rights in relation to the processing of your data. If you have any questions about your personal data, need clarification or would like further information, please contact our Data Protection Officer by email at dataprotection@amazonia.ro.
We will follow up your request. no later than 30 calendar days from the date of registration of the application. Given the complexity and the number of requests, we can extend this period by another two months. We will always inform you in advance of any such extension, together with the reason for the delay.
Depending on the nature of the request, where the information you provide is insufficient to identify, investigate and resolve your request, we may request additional information from you.
Before responding to any request, we will always ensure that we have sufficient data to ensure that you are the owner of the data that is the subject of the request. If we cannot identify you, we may refuse to provide you with requested information that may not belong to you.
We may also refuse to comply with your requests if you ask us for the same information repeatedly, excessively or without legal basis.
Within Amazonia Aquapark your data may also be processed by other data controllers with whom you may interact in various situations:
This Privacy Policy does not cover any data controllers other than Amazonia Aquapark.
We will update our privacy policy as necessary to reflect any changes to our processing of your data. personal data in relation to our processing activities and legislative changes that may occur in data protection laws.
Visit this page regularly to make sure you always have up-to-date information.
FOR THE LATEST NEWS:
FOR THE LATEST NEWS: