Confidentiality policy on the use of personal data
This Information Note applies to:
We collect and process your personal data as follows:
Through our activity on the site, we will not collect or process sensitive personal data related to you (i.e. information about racial or ethnic origin, political opinions, religious confession or philosophical beliefs, health, sexual life, or sexual orientation), unless:
If you voluntarily provide us with personal data (including sensitive personal data) through your interaction with the www.nexiacrg.ro site or by contacting us by phone, e-mail or in any other way, by our own will and not at our request, we will erase such personal data from our systems unless we consider that processing is necessary for a legitimate purpose of NEXIA CRG, unless you made this data public (for example, in a message forum that is visible to the public), in which case we will delete this data from www.nexiacrg.ro only if the law so requires or if we do not want to keep it.
Every time you visit www.nexiacrg.ro, we automatically collect the following data:
If we obtain your personal data from a third party, we will provide you with all relevant information on processing as soon as possible but no later than one month after you obtained your personal data.
We can process your personal data in the following cases:
We process your personal data for various technical, administrative and operational reasons, such as:
In some cases, we will process your personal data only with your consent (i.e., in the case of advertising and marketing). In these cases, we will separately request your consent in a transparent manner when providing your personal information. Subsequently, you may withdraw your consent at any time by sending a request to firstname.lastname@example.org. Withdrawal of consent will not affect the lawfulness of the processing that took place before its withdrawal.
When requesting personal data to comply with legal or contractual obligations, the provision of such personal data by you is required. This means that if such personal data is not provided, we will not be able to manage the contractual relationship or comply with the legal obligations imposed on us. In all other cases, the provision of personal data is optional and you are not required to provide it.
We may process your personal data, such as identification data, contact details and address of residence, for the purpose of the possible exercise of our rights or claims against you in the future. This processing is based on our legitimate interest, and we need to exercise our rights in the event of possible litigation.
Specifically, we will use your personal information as such:
Users and clients:
For the purpose of providing services, delivering goods and making payments based on relevant contracts, we may process your personal data, such as identification data, contact details, bank details.
This processing is based on
We may process your personal data so that we can provide you with information about goods or services that we believe you are interested in. If you are an existing customer, we will only contact you by email with information about goods and services similar to those that were previously sold or with information on the major economic and business news as reflected in the mass media through the weekly newsletter.
If you are a new customer, we will contact you electronically only if we have your prior consent. If you do not want us to use your data in this way, check the appropriate box in the form where we collect your contact information form in your user account.
We will not send your personal data to third parties for marketing purposes without your explicit consent to this effect. We may also use your personal data to measure or understand the preferred content linked to our products; and to make suggestions and recommendations to you and other Users of our site about products that may be of interest to you or them.
Candidates for jobs published by NEXIA GRG:
In connection with your participation in the recruitment and selection process for one or more of the available jobs, within NEXIA CRG EXPERT / AUDIT, we may collect and process your personal data (i.e. the CV data on which you send to us) for the purpose of selecting, evaluating professional competencies for the job (s) you apply for, and communicating with you during the recruitment process.
This processing is based on the legitimate interest of NEXIA CRG.
NEXIA CRG will not transmit (by selling or renting) any third party your personal information.
Within NEXIA CRG, staff members using your personal data are subject to privacy obligations with respect to personal data. NEXIA CRG staff members have the right to manage their personal data only on the basis of the instructions provided by NEXIA CRG, in connection with their job responsibilities.
Appropriate technical and organizational measures are taken to protect personal data. This site uses security measures against the loss, alteration or misuse of information under our control. NEXIA CRG does not, however, assume responsibility for the loss of information caused by software errors with which the site is designed and hosted. We also do not respond for server security errors that host the site.
Personal data may be communicated to governmental authorities, tax authorities and / or law enforcement agencies if required by applicable law or if necessary for the exercise of our rights, including conditions of use, or for the protection of our legitimate interests (including the legitimate interests of third parties) in accordance with the applicable laws.
Your personal data may also be disclosed to third parties as follows:
NEXIA CRG performs an appropriate prior assessment of the selection of third party service providers and requires these service providers to maintain adequate technical and organizational security measures to protect personal data and process personal data only in accordance with the instructions specified by NEXIA CRG. Service providers will have the right to use subcontractors in providing services to NEXIA CRG, provided that each subcontractor respects the same data protection obligations as service providers.
We will retain your personal data for the period necessary to meet the purposes listed in this Policy or for the period required by applicable national law, in accordance with the applicable legal minimum retention periods and / or as necessary to exercise our legitimate rights (and the legitimate rights of others).
If you are a Client, we will keep your personal data in the course of your contractual relationship with you.
If we have a relationship with you as a Partner, we will continue to keep this personal data until the termination of our relationship and the minimum retention period required by law.
If you are subscribed to our weekly newsletter, we will keep your personal information as long as you wish to receive this information.
If we process your personal data under your consent, such personal data will be processed only for the period of your consent, unless you withdraw or limit your consent before the expiration of that period. In such cases, we will cease processing of that personal data for the relevant purposes, subject to any legal obligation to process such personal data and / or our need to process such personal data for the purposes of our legitimate rights (including the legitimate rights of others).
The site http://www.nexiacrg.com is managed and maintained by NEXIA CRG and Bright Agency and hosted by the company’s servers http://www.gmb.ro/
We intend not to transfer your personal data outside the EEA unless there are adequate safeguards, including:
You have the following rights according to the relevant legislation:
Please be aware that your rights described above may be limited in certain situations and subject to the applicable laws and regulations on the protection of personal data. For example, the right to oppose the processing of your personal data may be limited if we can demonstrate that we have compelling legitimate reasons to process your personal data that outweighs your interests. You will need to prove your identity and give us further details to help us respond to your request.
We will not charge a fee to meet your request unless this is permissible by law and, if such fee is charged, it will be reasonable and proportionate to your request.
In order to exercise one or more of these rights, please contact us at e-mail email@example.com
We keep your personal data on NEXIA CRG’s servers located in Romania.
We use appropriate technical and organizational measures to protect your personal data and prevent unauthorized access to it. We have entered into contractual relationships with third parties providing hosting services and these contracts include obligations on organizational and technical security of personal data.
You are responsible for preserving the confidentiality of all means of authentication (i.e. username, passwords, etc.) used by you to access parts of the http://www.nexiacrg.ro site. Data transmission over the Internet is not entirely secure. While we do our best to protect your data, we can not guarantee 100% the security of your data transmitted to our site; any personal data transmission is at your own risk. Once we receive your data, we will use strict security procedures to try to prevent unauthorized access.
If you have any questions or concerns regarding the processing of your personal data by http://www.nexiacrg.ro, if you want to exercise one or more of your rights, you can contact us at e-mail firstname.lastname@example.org Please do not disclose sensitive personal data (i.e. information about racial or ethnic origin, political opinions, religious or other beliefs, health or membership of a trade union), social security numbers when contacting us.
Last Update: May 24, 2018.
Note: We may periodically update this policy and notify you of any change by posting the new version on http://www.nexiacrg.ro.
Nexia CRG is a member firm of the „Nexia International” network. Nexia International is a leading worldwide network of independent accounting and consulting firms, providing a comprehensive portfolio of audit, accountancy, tax and advisory services.
„Nexia International” also refers to the trading name of Nexia International Limited, a company registered in the Isle of Man, which operates the Nexia International network. Company registration number: 53513C. Registered office: 1st floor, Sixty Circular Road, Douglas, Isle of Man, IM1 1SA.
Nexia International Limited does not deliver services in its own name or otherwise. Nexia International Limited and the member firms of the Nexia International network (including those members which trade under a name which includes the word NEXIA) are not part of a worldwide partnership. Nexia International Limited does not accept any responsibility for the commission of any act, or omission to act by, or the liabilities of, any of its members. Each member firm within the Nexia International network is a separate legal entity.
Nexia International Limited does not accept liability for any loss arising from any action taken, or omission, on the basis of the content on this website or any documentation and external links provided.
The trade marks NEXIA INTERNATIONAL, NEXIA and the NEXIA logo are owned by Nexia International Limited and used under licence.
References to Nexia or Nexia International are to Nexia International Limited or to the „Nexia International” network of firms, as the context may dictate.