Attorney of Law PIRLOG Iulian Marius., with office in Bucharest, 71 Unirii Bd., G2C building, 2nd entrance, ap 63, 3rd District, Bucharest, 030829, registered with the Bucharest Bar based on Decision no. 2698 dated 25 November 2008, having sole registration code RO24944944 (“ALPIM, “we” or “us”) is committed to safeguard privacy and personal data.

With a few exceptions, ALPIM is generally the controller of personal data provided to us, determining the purposes for which, and the way in which, personal data is processed.

This Data Protection Policy is intended to inform clients, prospective clients and more generally all visitors to this website about how we collect, use, disclose, protect or otherwise process personal data.

  • When, how and what personal data we may process

Our website
When using the website for mere information purposes, we may collect the personal data that your web browser transmits to our server, including your IP address, the date and time of your visit, and data relating to your operating system and web browser.
The purpose of this processing is strictly to ensure the security and successful navigation of our website, and to compile statistical data on the use of our website.

Cookies
Our website uses cookies. For more information in this regard, please see below our cookies policy.

Rendering of services
During an engagement, or when preparing for/ in relation to an engagement, we may collect and process personal data about our clients, prospective clients, their affiliates, their representatives or the relevant members of their personnel.
All personal data processed by us is necessary to fulfil the purposes for which they were collected, as indicated below.
The processing of your personal data includes any operation or set of operations which is performed upon personal data, such as collection, recording, organization, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission or otherwise making available, alignment or combination, blocking, erasure or destruction of data, and such processing will always be carried out in compliance with data protection rules.
Kindly note that, when you provide us information about third parties you must have provided the data subjects with information about such disclosures and established a legal basis for sharing the personal data with us, to the extent required by applicable law.

Recruitment
If you are a potential recruit to join ALPIM, we may collect and process personal data, including name and job title, e-mail and telephone, curriculum vitae (which might include age and gender, if provided to us, education, employment track, etc.) and other information relevant for the recruitment process. We use this data exclusively for the recruitment process, and we limit the data processing for what is strictly necessary to attain this purpose.

Why do we use your personal data?

We use your personal data for the following purposes:

  • providing legal services, including legal representation before courts of law, arbitral tribunals or other competent authorities;
  • management of the contractual relationship with our customers
  • compliance to our legal obligations (such as obligations on the fight against money laundering and terrorist financing, reporting obligations to the fiscal authorities);
  • management related to the use of our computer systems (e.g. Internet webpage, data management platforms, communication systems used), including prevention and detection of the security threats, frauds or other unauthorised or malicious activities;
  • to comply with the court decisions and exercising and/or defend our rights and interests and,
  • for any other related and/or ancillary purpose above-mentioned, or in any other purpose for which your personal data have been provided to us, compliant to the applicable legislation.

Also, based on your consent we can send you various communications through the channels you have previously approved, to keep you up-to-date on the latest developments in the legal field, announcements and other information on our services, products, events and projects or other promotional events.

What sort of personal data do we collect?

For the above-mentioned purposes the following personal data will be processed:

  • contact related information, such as your name, position title, post address, including your residential address, if provided, office address, telephone number, mobile telephone number, fax number, and email address;
  • additional information processed within the context of a contractual relationship entered into with us or voluntarily disclosed by you, such as: instructions provided, performed payments, information on any legal matters, disputes, litigations or other court proceedings where you are involved in any capacity (defendant, plaintiff, intervener, counsel of records, consultant, expert, etc.);
  • Within the context of the services we provide, we can also collect and process special categories of personal data, such as: revealing racial or ethnic origins, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.

 

What is the legal basis for the processing of personal data?

Any operation related to your personal data processing will be performed based on one of the following legal basis below:

  • Processing is necessary for the conclusion or performance of a contract to which you are party;
  • Processing is necessary for compliance with a legal obligation to which the controller is subject;
  • You have given consent to the processing of your personal data;
  • Processing is necessary to protect your vital interests or of another natural person;
  • Processing is necessary for the purposes of the legitimate interests pursued by us or by a third party (e.g. when the processing is necessary for the performance of a contract to which your organisation is part), except where such interests are overridden by your interests or fundamental rights and freedoms of the data;

For special categories of data, the processing will be performed only if besides a legal basis for data processing, one of the following specific conditions shall apply:

  • The explicit consent of the subject data has been obtained;
  • There is a legal obligation we are subject to, for processing this category of data;
  • Processing is required for the establishment, exercise or defence of legal claims.

 

Who has access to your personal data?

We can disclose your personal data to lawyers (including other third parties we are cooperating with for the provision of services) and specialists in the legal field (including mediators, patent lawyers), consultants or experts involved in cases we manage and services we provide, courts, or arbitral courts, as well as other public authorities, entities indicated by you, parties involved in your case, or other entities in the context of our provision of services (such as: insurance service providers, cloud, telephone, e-mail service providers etc.).

 

How do we process your personal data?

Personal data will be subject to the following processing operations: collection, recording, organisation, use for

the specified purposes, disclosure to third specific parties above-mentioned, dissemination, storage and erasure.

 

How long do we process your personal data?

In general, we will delete your personal data if they are no longer needed to meet the purposes for which they were originally collected.

We will retain your personal data for as long as necessary to fulfil the purposes for which it was collected and processed in compliance with this Data Protection Policy. To determine the retention period for personal data, we will take into consideration the purposes for which they were collected, as well as the nature and sensitivity of the information and the applicable legal requirements.
Where we have based our processing of your personal data on your consent, you have the right at any time to withdraw your consent.
During the retention of your personal data, we take technical and organizational security measures against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties.

We are not liable for any loss regarding incorrect, false, insufficient or incomplete personal data you provide us.

  • Transfer abroad of personal data

In the context of performing the above operations, your personal data may be transferred abroad to European Union (“EU“) or European Economic Area (“EEA“) countries.
Where such a transfer occurs, adequate safeguards are taken to comply with the legal requirements set out in the General Data Protection Regulation no. 2016/679 adopted by the European Parliament (“GDPR“).

What rights do you have in the context of your personal data processing?

If you have questions regarding this form and the protection of your privacy or you intend to exercise any of your legal rights, as specified below, please contact us by email at office@pirlog.ro and/or at the post address in Bucharest, 71 Unirii Bd., G2C building, 2nd entrance, ap 63, 3rd District, Bucharest, 030829

We will try to solve your request within 30 (thirty) days. However, the period may be extended due to specific reasons regarding the specific law or the complexity of the request.

Your rights related to the data processing are as follows:

 

  • Your rights in relation to personal data processing

Access: You may contact us at any time to request access to your personal data, and we will confirm to you whether we are processing your personal data and for what purposes, as well as provide details of the categories of personal data concerned, the recipients of the personal data, the retention periods (where possible) and your rights.
Rectification:If any of your personal data that we hold appears to be inaccurate or incomplete, you may ask us to correct or complete it at any time.
Erasure:you may ask us to have your personal data erased if it is no longer necessary for us to keep it in connection with the purposes for which it was collected. However, we must keep track of certain information necessary in order to comply with legal obligations, and/or to handle any claims or litigation.
Restriction: You may ask us to limit the way in which we process your personal data (i.e., require us to continue to store your personal data but not to process it without your consent), for example where you think the personal data we hold is inaccurate, for a period enabling us to verify the accuracy of personal data, or where you have objected to our processing.
Objection: You may object to our processing of your personal data on grounds relating to your specific situation, where we are processing your personal data to pursue our legitimate interests.
Portability: You may ask us to send you your personal data in an electronic, structured, commonly-used and machine-readable format and have your personal data transmitted directly from us to another data controller, where technically feasible without hindrance where the processing is carried out by automated means and is based on your consent or is necessary for the performance of a contract to which you are party.
Withdrawal of your consent: You may withdraw your consent at any time, where the processing is based on your consent. Withdrawal of consent does not affect the lawfulness of processing based on consent before it was withdrawn.

You also have the right to contact us at any time if you wish to complain about our processing of your personal data and you may lodge a complaint at any time with a supervisory authority.

Right to lodge a complaint: Where an alleged breach of the privacy law in force, you may lodge a complaint at the supervisory authority for data protection from your domicile country or where the alleged violation occurred. The responsible body in Romania is: The National Authority for the Supervision of Personal Data Processing, which shall accept the submission of the relevant written complaints at the address: 28-30 Blvd. G-ral. Gheorghe Magheru, District 1, Postal Code 010336, Bucharest, Romania or by e-mail (anspdcp@dataprotection.ro) website: www.dataprotection.ro

  • Automated individual decision-making, including profiling

Your personal data are not subject to any decisional process based solely on automated processing, including profiling.

  • Amendments to the Data Protection Policy

Any amendments to this Data Protection Policy will be posted on this page.

  • How do we protect your personal data in the context of their processing?

We apply an adequate level of security and we have implemented physical, electronic and administrative procedures to protect all information we collect. Our policies and procedures on data security are tightly aligned to the international standards widely accepted and are periodically reviewed and updated, as appropriate, to meet our business needs, technological changes as well as, regulatory requirements. The access to personal data shall be granted only to the authorized personnel and only for the fulfilment of specific purposes, under the obligation of their secrecy. In case of a security breach on the personal data, the organiser shall be required to comply with all legislation in force on the notification of a data security breach.