Legal documents
Your GDPR rights
Your data stays yours. Here’s how to exercise the rights guaranteed by the General Data Protection Regulation (EU 2016/679).
This is an informative English translation. The legally binding version is the Romanian original, which prevails in case of any discrepancy.
Art. 15
Right of access
To find out what personal data we hold about you, how we use it and who we share it with.
How to exercise: Send an email and we reply with a complete report within 30 days (usually much faster).
Art. 16
Right to rectification
To correct inaccurate or incomplete personal data (name, email, phone, etc.).
How to exercise: Most can be changed directly from Settings. For the rest, write to us.
Art. 17
Right to be forgotten (erasure)
To ask us to delete your personal data completely.
How to exercise: LIVE now in Settings → Personal data → “Delete account”. You confirm with your password, receive a confirmation email, and the account enters scheduled deletion with a 90-day recovery window (the account becomes inaccessible immediately). After it expires, personal data is anonymized within no more than 30 days (except tax invoices — kept for 10 years, anonymized, in accordance with Tax Code Art. 25(4)).
Art. 18
Right to restriction
To have us temporarily halt the processing of your data (e.g. while we dispute an error).
How to exercise: Contact us by email and we suspend processing.
Art. 20
Right to portability
To receive all your data in a structured format (JSON), so you can move it to another service.
How to exercise: LIVE now in Settings → Personal data → “Download my data”. You receive a JSON with all your data (account, organization, sales, clients, audit log) — instant download, rate limit 1 export per 5 minutes.
Art. 21
Right to object
To object to certain processing (e.g. marketing emails, profiling).
How to exercise: Click “Unsubscribe” in any email you receive, or write to us.
Complaint to the supervisory authority
If you believe your rights have been infringed, you have the right to lodge a complaint with ANSPDCP — the National Supervisory Authority for Personal Data Processing. Before doing so, please contact us first — we will try to resolve it quickly and amicably.
dataprotection.ro · B-dul G-ral. Gheorghe Magheru 28-30, Bucharest · 0318 059 211 · anspdcp@dataprotection.ro
How to contact us
For any GDPR request, write to us at contact@albertoiacob.ro with the subject GDPR — [type of request]. We respond within a maximum of 30 calendar days (usually much faster). Reasonable requests are free of charge.
Data controller: IACOB MIHAI-ALBERTO PFA · CUI 54802933 · ORC No. F2026028449007 · Bucharest, Romania. Full address on the invoice and upon request.
See also the Privacy Policy for full details about processing.