J2020000080231
36907907
Address: Adam Ion Street No. 16, Constanta
Phone: +40 745 166 244
Email: office@haiart.ro
GDPR
PRIVACY POLICY AND PERSONAL DATA PROCESSING (GDPR)
1. INTRODUCTION
This Privacy Policy describes how RAI CONCEPT DESIGN SRL (hereinafter referred to as the "Company" or the "Operator") collects, uses, stores and protects the personal data (PDP) of customers and visitors to the website www.haiart.ro , in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 ( GDPR ) and national legislation in force.
2. OPERATOR CONTACT DETAILS
| Operator Name: | SC RAI CONCEPT DESIGN SRL |
| Registered Office: | STR CAMPULUI 47Y, BERCENI, IF |
| Email Address (for GDPR/Requests): | office@haiart.ro |
| Trade Register Registration Number (J): | J2020000080231 |
| Unique Registration Code (CUI): | 36907907 |
3. CATEGORIES OF PERSONAL DATA COLLECTED
The company processes the following categories of personal data, depending on your interaction with the site:
| Data Category | Collection Context |
| Identification and Contact Data | Name, surname, delivery/billing address, telephone number, email address. |
| Payment Dates | Type of payment instrument (card), partial card information (if applicable – processed by the payment processor, not by the Operator). |
| Order Data | Products purchased, order history, transaction value. |
| Navigation Data (Online) | IP address, browser type, operating system, time spent on the site, pages visited (collected through cookies). |
| Marketing Data | Newsletter subscription preferences, history of interactions with our communications. |
4. PURPOSES AND LEGAL GROUNDS OF PROCESSING
We process DCP exclusively for the following purposes and on the basis of the appropriate legal grounds, in accordance with Art. 6 of the GDPR:
| Purpose of Processing | Legal Basis (GDPR) |
| Order Processing and Delivery | Execution of a contract (Art. 6 para. 1 letter b). |
| Invoicing and Tax Obligations | Compliance with a legal obligation (Art. 6 para. 1 letter c). |
| Marketing (Newsletter) | Your consent (Art. 6 para. 1 lit. a). |
| Improving Services | Legitimate interest (Art. 6 para. 1 letter f) – Analysis of traffic and behavior on the website. |
| Customer Relationship Management (Returns, Warranties) | Execution of a contract and legal obligations. |
5. DURATION OF DATA STORAGE
We will store your personal data only for the period necessary to fulfill the purposes for which they were collected or for the period provided by law (for example, 10 years for financial and accounting documents, according to the Fiscal Code).
-
Order and billing data: 10 years from the date of invoice.
-
Marketing data (Newsletter): Until the moment of unsubscription or withdrawal of consent.
-
Customer account: Until you request to delete your account.
6. DISCLOSURE OF PERSONAL DATA
To fulfill our purposes, we may disclose DCP to the following categories of recipients:
-
Courier service providers: For the delivery of products.
-
Payment processors: For processing transactions.
-
IT service providers and website maintenance.
-
Public authorities: On the basis and within the limits of legal provisions (e.g., ANAF, judicial authorities).
All our partners are contractually obligated to respect the confidentiality and security of your data.
7. RIGHTS OF THE DATA SUBJECT (IN ACCORDANCE WITH GDPR)
As a data subject, you have the following rights:
-
Right of access: To obtain confirmation of data processing and a copy thereof.
-
Right to rectification: To request the correction of inaccurate or incomplete data.
-
Right to erasure ("right to be forgotten"): To request the deletion of data, under certain conditions (e.g., the data is no longer necessary for the original purpose).
-
Right to restriction of processing: To request limitation of data processing.
-
Right to data portability: To receive the data provided in a structured format and to transfer it to another operator.
-
Right to object: To object to processing (including processing for direct marketing purposes).
-
The right not to be subject to a decision based solely on automated processing.
-
The right to file a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP): [Contact address of ANSPDCP, e.g. B-dul G-ral. Gheorghe Magheru no. 28-30, sector 1, Bucharest] .
8. EXERCISE OF RIGHTS
To exercise any of the rights mentioned above, please send us a written, dated and signed request to the email address office@haiart.ro or to our registered office.
9. DATA SECURITY
The company is committed to ensuring the security of DCP by implementing appropriate technical and organizational measures, including, but not limited to: data encryption, physical security measures, limiting access to data only to authorized personnel and the use of secure connections (SSL/TLS).
10. CHANGES TO THE PRIVACY POLICY
We reserve the right to change this Privacy Policy from time to time. Any changes will be posted on this page.
Last updated: October 13, 2025
What our customers say
5.0 ★ (322)
Verified