HomePrivacy Policy

Privacy Policy

Last updated: January 2025

1. Who We Are – Data Controller

This policy is issued by METEXFAB DIRECT SRL, hereinafter referred to as “the Controller”, “we” or “METEXFAB”.

Identification details:
Company name: METEXFAB DIRECT SRL
VAT number: RO 34679101
Registration No.: J04/651/2015
Registered address: Com. Traian, no. 8 George Enescu St., Bacău, Romania
Legal representative: Eduard Simon – General Manager
Email: contact@metexfab.ro
Phone/WhatsApp: +40 740 072 437

METEXFAB DIRECT SRL is a personal data controller within the meaning of Art. 4(7) of Regulation (EU) 2016/679 (GDPR), for data processed through the website metexfab.ro and in the course of its commercial activities.

2. What Data We Collect and Why

We collect only the data necessary for the conduct of our commercial activities and for communication with prospective and existing clients.

Through the contact form:
– Full name – to identify the person making the enquiry
– Email address and phone number – to respond to the request and send a quote
– Company name – to contextualise the enquiry
– Project description – to prepare a technical offer
– Type of request – for internal routing of the enquiry

Automatically, when visiting the website:
– IP address, browser type, operating system – security, technical diagnostics
– Pages visited, visit duration, traffic source – aggregated usage statistics
– Technical session cookies – correct functioning of the website

In the commercial relationship (quote, order, invoicing):
– Invoicing data (legal name, VAT number, registered address, bank account)
– Commercial correspondence data (email, phone, contact person)
– Technical part data (specifications, technical drawings, 3D models)
– Delivery data (delivery address, contact person at reception)

Important: We do not collect special category data (health, political opinions, racial origin, biometric data) and we do not direct our services to persons under the age of 16.

3. Legal Basis for Processing

All processing activities are carried out under Art. 6 of the GDPR:

– Responding to contact form enquiries → Art. 6(1)(b) – pre-contractual measures
– Sending and managing quotes → Art. 6(1)(b) – performance of a contract
– Invoicing, accounting, tax obligations → Art. 6(1)(c) – legal obligation
– Managing relationships with active clients → Art. 6(1)(b) – performance of a contract
– Aggregated statistical traffic analysis → Art. 6(1)(f) – legitimate interest
– Direct commercial communications (marketing) → Art. 6(1)(a) – explicit consent
– Archiving commercial documents → Art. 6(1)(c) – legal obligation

4. How Long We Retain Data

– Contact form data (without a subsequent contract): 12 months from the last interaction
– Data relating to concluded contracts: 10 years from the end of the relationship
– Invoicing and accounting data: 10 years (Law no. 82/1991)
– Commercial correspondence (email): 5 years from the last communication
– Technical data / server logs: 90 days
– Data processed on the basis of consent (marketing): until consent is withdrawn

Upon expiry of the retention period, data is deleted or irreversibly anonymised.

5. Who We Share Data With

METEXFAB DIRECT SRL does not sell, rent or otherwise commercialise personal data. Data may be shared exclusively with:

– Hosting / web infrastructure provider – for hosting and technical maintenance
– Accountant / accounting firm – for accounting and tax services
– Courier / transport company – for product delivery
– Public authorities (ANAF, courts of law) – to fulfil legal obligations

All partners are contractually obliged to maintain data confidentiality and not to use data for any other purpose.

We do not transfer data to third parties for advertising purposes, we do not use remarketing networks, and we do not share data with social media platforms without your explicit consent.

6. International Data Transfers

Data is processed primarily in Romania and within the European Union / EEA. Where a technical provider processes data outside the EEA, we ensure the transfer is carried out on the basis of one of the legal mechanisms under GDPR: an adequacy decision by the European Commission, Standard Contractual Clauses (SCCs), or Binding Corporate Rules (BCRs).

You may request details about the applicable safeguards by writing to contact@metexfab.ro.

7. Your Rights

As a data subject, you benefit from the following rights, exercisable free of charge at any time:

Right of access (Art. 15) – to know what data we hold and how we process it
Right to rectification (Art. 16) – correction of inaccurate or incomplete data
Right to erasure (Art. 17) – deletion of data where there is no longer a legal basis
Right to restriction of processing (Art. 18) – limiting processing in specific circumstances
Right to data portability (Art. 20) – receiving your data in a structured, machine-readable format
Right to object (Art. 21) – objecting to processing based on legitimate interest or for marketing purposes
Withdrawal of consent (Art. 7) – at any time, without affecting prior processing
Right to lodge a complaint (Art. 77) – with the ANSPDCP if your rights are infringed

How to exercise your rights: Send a written request to contact@metexfab.ro or by post to our registered address, stating: your full name, contact details, the right you wish to exercise, and a copy of an identity document. We will respond within 30 calendar days.

National Supervisory Authority (ANSPDCP):
28–30 G-ral. Gheorghe Magheru Blvd., Sector 1, Bucharest
Email: anspdcp@dataprotection.ro | Web: www.dataprotection.ro

8. Cookies

The website metexfab.ro uses a minimum number of cookies. We do not use advertising or cross-site tracking cookies.

Technical / session cookies – website functionality; strictly necessary; no consent required
Preference cookies – saving user settings; duration 12 months; consent required
Analytical cookies (optional) – anonymised usage statistics; consent required

You can manage or block cookies through your browser settings.

9. Data Security

We implement technical and organisational measures in accordance with Art. 32 GDPR:

– Encrypted communications via HTTPS (TLS 1.2/1.3)
– Restricted access to data, based on the need-to-know principle
– Regular backup of stored data
– Periodic security updates to IT infrastructure
– Confidentiality agreements signed by staff and collaborators

In the event of a security incident, we will notify the ANSPDCP within 72 hours and will inform you directly if the incident poses a high risk to your rights.

10. Policy Updates

We reserve the right to update this policy to reflect legislative changes or modifications to our services. Any significant changes will be announced by updating the date shown above, via a banner on the website, or by direct email notification. We recommend that you check this page periodically.

11. Contact

For any questions or requests relating to your personal data:

Email: contact@metexfab.ro
Phone/WhatsApp: +40 740 072 437
Address: Com. Traian, no. 8 George Enescu St., Bacău, Romania

We will respond within 30 calendar days. In complex cases, the deadline may be extended by a maximum of 60 additional days, with prior notification.

This document has been drafted in accordance with Regulation (EU) 2016/679 (GDPR) and Law no. 190/2018. Version 1.0 – in force from January 2025.

© 2025 METEXFAB DIRECT SRL · VAT RO 34679101 · Bacău, Romania

Powered by
Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None
Powered by