1. Identity of the Controller

The controller of personal data is:

SC PRINTCO SRL

Registered office: Iași, Bld. Chimiei nr. 82G

Email: juridic@printco.ro

For the purposes of Regulation (EU) 2016/679 (“GDPR”), our company acts as a data controller.

2. Scope of Application

This policy applies to all personal data collected through the website, in particular through the quote request form for printing services (production of printed materials).

3. Types of Data Processed

Through the quote request form, we may process the following categories of data:

• first name and last name
• email address
• phone number
• company name
• the content of the message (details about the job, technical specifications, quantities, etc.)

We do not request and we do not intentionally process sensitive data.

4. Purposes of the Processing

Data is processed exclusively for the following purposes:

• analysing the request and preparing a commercial offer
• communicating with the requester
• initiating and, where applicable, carrying out a contractual relationship
• internal archiving and commercial records

5. Legal Basis for Processing

Data processing is carried out on the basis of:

• art. 6 para. (1) lit. b GDPR – steps taken at the request of the data subject prior to entering into a contract
• art. 6 para. (1) lit. f GDPR – legitimate interest (management of commercial requests)
• art. 6 para. (1) lit. a GDPR – consent

6. Data Storage Period

Data will be kept for a maximum period of 12 months from the last interaction, except in situations where:

• a contract is concluded (in which case legal archiving deadlines apply)
• there are legal retention obligations

7. Recipients of the Data

Data may be disclosed, to the extent necessary, to:

• IT service providers (hosting, email)
• software service providers (CRM, invoicing)
• public authorities, where there are legal obligations

Data is not sold, transferred or assigned to third parties for commercial purposes.

8. International Transfers

Personal data is not transferred outside the European Union or the European Economic Area.

In the event that, in the future, such a transfer becomes necessary (for example, through the use of external providers), it will be carried out in compliance with the legal safeguards provided by the GDPR (e.g., standard contractual clauses).

9. Rights of the Data Subject

Under the GDPR, you have the following rights:

• the right of access to data
• the right to rectification
• the right to erasure
• the right to restriction of processing
• the right to data portability
• the right to object
• the right to lodge a complaint with the ANSPDCP (the Romanian Data Protection Authority)

To exercise these rights, you can contact us at: juridic@printco.ro

10. Data Security

We adopt appropriate technical and organizational measures to protect data against unauthorized access, loss or disclosure.

11. Cookie Policy

Our website uses cookies to ensure proper functioning and to improve the user experience.

What are cookies:

Cookies are small files stored on the user’s device when they access the website.

Types of cookies used:

• Essential cookies – necessary for the operation of the website
• Analytics cookies – used to understand how the website is being used (e.g., Google Analytics)

Consent

On first access to the website, the user will have the option to accept or refuse non-essential cookies through a banner. The user can withdraw consent at any time by changing the browser settings.

12. Data Processing for Recruitment Purposes

In our careers section, we collect and process personal data submitted by candidates.

Types of data processed:

• the submitted CV (including professional experience, education, skills)
• cover letter (if provided)
• contact details (email, phone)
• any other information voluntarily provided by the candidate
• Purpose of processing:
• evaluation of the application
• contacting the candidate
• conducting the recruitment and selection process
• Legal basis:
• Data processing is carried out on the basis of:
• art. 6 para. (1) lit. b GDPR – steps taken at the request of the data subject
• art. 6 para. (1) lit. a GDPR – consent of the candidate

Storage period:

Candidates’ data will be kept for a maximum period of 12 months after the end of the recruitment process, with possible extension only with the explicit consent of the data subject.

Candidates’ rights:

Candidates have all the rights provided by the GDPR, including the right to request the deletion of their data at any time.

13. Changes to the Policy

We reserve the right to update this policy. The updated version will be available on the website.

The information on this website is provided in good faith and for informational purposes only. Printco assumes no responsibility for any errors or omissions.