Privacy Policy

Through this Privacy Policy we inform you about the way in which we collect, use, transfer and protect your personal data. This data is processed in accordance with the provisions of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“the General Data Protection Regulation”, hereinafter “GDPR”) and the relevant national data protection legislation.

1. Who We Are

PRION POCT SRL, a Romanian legal entity, with its registered office in Bucharest, Sector 1, Calea Dorobanți no. 164, registered with the Trade Register under no. J2009004796405, sole registration code 25426886, established on 09.04.2009 (hereinafter “the Company” or “We”). The Company operates in the field of distribution, implementation, training and servicing of medical diagnostic technologies in Romania.

Our contact details are:

  • Registered office address: Calea Dorobanți no. 164, Sector 1, Bucharest
  • E-mail address: office@poct.ro
  • Phone number: +4 021 230 04 22

2. How Do We Process Your Personal Data?

The Company, in its capacity as Controller, processes the personal data of clients and potential clients, contractual partners and collaborators, representatives of the partners and manufacturers we represent, as well as of other natural persons who interact with the Company and/or are engaged in contractual relationships with it.

Personal data is:

  • processed lawfully, fairly and in a transparent manner in relation to the data subject;
  • collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;
  • adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed;
  • accurate and kept up to date;
  • kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the data is processed;
  • processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.

3. What Types of Personal Data Do We Process and for What Purposes?

In order to complete and submit the contact form on the Company’s website, we process the following types of personal data: first name, last name, the institution or company you represent, phone number, e-mail address, the subject of the request and, where applicable, other data provided at the initiative of the data subject in the “Message” section.

In order to carry out the commercial relationship and to provide consultancy, technical recommendations, offers and support regarding our equipment and services, we process the identification and contact data of clients and their representatives, necessary for concluding and performing contracts.

For website visitors, we may collect data through cookies or other similar technologies, such as: IP address, internet browser, location, web pages accessed on our website, time spent on the website, internet network and device used. For more details in this regard, please consult the Cookie Policy.

We do not use your personal data to send you marketing communications unless you expressly give your consent for such communications. In this case, we only process your e-mail, first name and last name and ensure that you have a simple option to unsubscribe at any time, i.e. to withdraw your consent.

4. What Are the Legal Grounds for Processing Personal Data?

Your personal data is processed for the purpose of:

  • concluding and performing various contracts, as well as for pre-contractual steps carried out at your request;
  • complying with our legal obligations;
  • on the basis of consent requested and/or given in advance (for example, for sending marketing communications or for the use of cookies that are not strictly necessary);
  • for the purpose of the legitimate interests pursued by the Company (e.g. managing the requests received, exercising the rights and legitimate interests of the Company in contentious or non-contentious proceedings).

5. For How Long Do We Process Your Personal Data?

Personal data is stored for processing for the period necessary to achieve the processing purposes mentioned in this Policy or for the period required by law (e.g. in matters of archiving, accounting, etc.). Once these periods expire, the data is deleted or anonymized.

6. To Whom Do We Disclose Personal Data?

We will not communicate or transfer to any third party any of the personal data collected from you or about you, except to:

  • Public authorities and institutions – when there is a legal obligation to do so or for the purpose of a legitimate interest;
  • Contractual partners or collaborators of the Company who provide us with web hosting, website development and maintenance, IT services, online marketing and communication services;
  • International partners and manufacturers represented by the Company, to the extent necessary for carrying out a project;
  • Any third party – if you have expressly and specifically given your consent, for that particular situation and that particular data.

In principle, in order to fulfill the purposes mentioned above, the Company does not carry out transfers of personal data to third countries outside the European Economic Area or to international organizations. Should such transfers become necessary, they will be carried out in strict compliance with the applicable legal provisions, either on the basis of adequacy decisions in force or by implementing other appropriate legal mechanisms.

7. What Protection Measures and Safeguards Do We Take?

The Company implements appropriate technical and organizational measures to ensure a high level of security and protection of personal data. We use security methods and technologies, together with internal working policies and procedures, including control and audit, to protect the personal data collected in accordance with the relevant legal provisions in force regarding data protection.

8. What Are Your Rights as a Data Subject?

Any data subject may exercise the following rights, as provided by the General Data Protection Regulation:

  • The right of access;
  • The right to rectification;
  • The right to erasure;
  • The right to restriction of processing;
  • The right to data portability;
  • The right to object to processing;
  • The right not to be subject to a decision based solely on automated processing, including profiling;
  • The right to address the National Supervisory Authority for Personal Data Processing (www.dataprotection.ro) and the courts of law.

To exercise these rights or for any questions related to the processing of your personal data, please contact us at the e-mail address: office@poct.ro.

9. Changes to This Policy

PRION POCT SRL reserves the right to update this Privacy Policy periodically. The updated version will be published on this page, together with the date of the latest revision. We recommend that you review this page regularly.