Marael Technology complies with Regulation (EU) 2016/679 on the protection of personal data (GDPR). This page summarises the principles we apply and, above all, the rights you have and how you can exercise them. It complements the Privacy Policy.
1. Our commitment
We process personal data in accordance with the GDPR principles: lawfully, fairly and transparently; only for specified purposes; limited to what is necessary (data minimisation); keeping it accurate; for a limited period; and ensuring its integrity and confidentiality.
2. Your rights
As a data subject, you have the following rights:
- The right of access — to find out whether we process data about you and to obtain a copy of it.
- The right to rectification — to correct inaccurate data or complete incomplete data.
- The right to erasure (“the right to be forgotten”) — to request the erasure of data, under the conditions provided by law.
- The right to restriction of processing — to limit processing in certain situations.
- The right to data portability — to receive the data in a structured, commonly used and machine-readable format.
- The right to object — to object to processing based on our legitimate interest.
- The right to withdraw consent — at any time, without affecting the lawfulness of processing carried out before the withdrawal.
- The right not to be subject to automated decision-making — including profiling. We note that we do not take automated decisions with legal effects on you.
3. How to exercise your rights
You can exercise any of these rights through a request sent to contact@marael.ro. To protect your data, we may ask you for additional information to confirm your identity.
We will respond to your request without undue delay and, in any event, within one month of receiving it. This period may be extended by two months where necessary, taking into account the complexity and number of requests — in which case we will inform you. Exercising your rights is generally free of charge.
4. The right to lodge a complaint
If you consider that the processing of your data breaches the law, you have the right to contact the supervisory authority:
- National Supervisory Authority for Personal Data Processing (ANSPDCP)
- 28-30 Gheorghe Magheru Blvd., District 1, postal code 010336, Bucharest, Romania
- anspdcp@dataprotection.ro · https://www.dataprotection.ro
5. Data security
We implement technical and organisational measures appropriate to the risks — including traffic encryption (HTTPS), access control, constant system updates and applying the data minimisation principle — to protect the personal data we process.
6. Related documents
For full details about the data we collect and about cookies, see Privacy Policy and Cookie Policy.