Privacy Policy

Introduction

We value your interest in our products and services and aim to provide you with essential information on how we handle and protect your personal data.

PARALELA 45 TURISM SRL (“Paralela 45”) is fully committed to safeguarding the privacy of our customers, partners, and suppliers. This privacy policy explains the type of information we collect, why we collect it, and how you can update, manage, export, or delete your information. It also outlines the security measures Paralela 45 employs to protect such data and your rights in relation to it.

By “bucharestluxuryconcierge.ro,” we refer to any web page (website, landing page, subdomain, etc.) owned, managed, or under the umbrella of Paralela 45. By using this website, you agree to the collection, processing, and transfer of your data as described in this policy.

Please review this section regularly, as the policy may be updated or modified. Any significant changes to this policy will be notified. In addition to this policy, please refer to our Terms and Conditions and Cookie Policy.

Regulations Governing Our Data Collection

The information collected on our platform falls under the scope of:

  • General Data Protection Regulation (GDPR) 2016/679 of the European Union.
  • Directive on Privacy and Electronic Communications (2002/58/EC).

If you need further details on how we use your personal data, you can contact any Paralela 45 agency or send an email to protectiedate@paralela45.ro.

Who We Are

Paralela 45 is one of Romania’s most reputable travel companies and one of the country’s most trusted tourism brands. With 45 branches in major cities and towns across Romania, we serve travelers worldwide.

Company Information:

  • Address: B-dul Regina Elisabeta, nr. 29-31, Sector 5, Postal Code 050012, Bucharest, RO
  • Registration Number: J40/21621/1994
  • Tax Identification Code: RO6505940
  • Contact Email: protectiedate@paralela45.ro
  • Website: bucharestluxuryconcierge.ro

Use of Our Platform

We use a third-party server, Prologue Advertising SRL, to host our website. The web server automatically logs the IP address you use to access the website and other visit-related information, such as:

  • Pages accessed.
  • Information requested.
  • Date and time of requests.
  • Source of access (e.g., referring website or link).
  • Browser version and operating system details.

Purpose of Data Logging:
Our provider collects and stores server logs to ensure IT network security, including:

  • Identifying and preventing unauthorized access.
  • Mitigating the spread of malicious code.
  • Detecting unusual or suspicious activities.
  • Forecasting and defending against DDoS and other cyberattacks.

Unless investigating criminal or suspicious activity, neither we nor our provider will attempt to identify you based on server log information.

By accessing or using any part/function of our website, you agree to comply with the terms, conditions, and policies outlined and/or available via hyperlink. Additionally, you affirm that you meet the minimum legal age requirements according to applicable national legislation.

If you do not agree to the established terms, conditions, and policies, you should refrain from using our website.

 

Sources of Data Collection

We collect personal data about you from the following sources:

  1. Information Provided Directly by You

    • Through email communications.
    • Via our website, bucharestluxuryconcierge.ro, during actions.
    • During interactions on social media platforms.
    • During meetings or in-person discussions.

  2. Social Media Interactions

    • When you interact with us on social media (e.g., by liking, sharing, commenting, or submitting reviews), we may access information about you.
    • This includes data you have made publicly available on your social media profile.

These data sources allow us to better serve you, process your requests, and provide personalized services while respecting your privacy.

How We Use Your Personal Data

Below, you can find the purposes for which we process your personal data, the individuals who have access to your data, and how we store it:

1. Processing Data When You Interact with Us via Contact Details on Our Website, Contact Form, or Social Media Accounts

When you interact with us using the contact details available on bucharestluxuryconcierge.ro, the contact form, or by interacting with us via social media messenger functions (e.g., feedback, complaints, information requests, etc.), we will use your contact details and other data you provide to offer information and offers about our services and products, to resolve any reported issues, to assess customer satisfaction, and to continuously improve the services we offer.

Personal Data Collected:

  • Name, surname, phone number, email address, Internet Protocol (IP), cookie ID, data you have made public on your social media profile, and any other data you voluntarily send to us.

Legality of Processing:

  • We process your data to take steps at your request before entering into a contract (Art. 6/1/b of Regulation (EU) 2016/679).
  • We process data in pursuit of our legitimate interest to respond to any questions, complaints, or suggestions you send and to improve our services and the experience we offer to our customers (Art. 6/1/f of Regulation (EU) 2016/679).

Who We May Share Your Data With:

  • IT service providers for our company (web hosting and hosting services), or providers to whom we outsource specific technical support services for our website, cybersecurity monitoring, and intrusion detection, or customer relationship management system providers.
  • Email provider: Microsoft – Office 365.
  • Social media platforms: Facebook, Instagram, Twitter, YouTube.
  • Regulatory authorities and other state bodies if required by legal or statutory obligations.

We will disclose your personal data only to the extent necessary to achieve the intended purpose. We have taken all necessary measures to ensure that external service providers who access your data have implemented physical, electronic, and managerial security measures to protect the data.

Data Retention Period:

  • We will store your data in our communication database for a maximum of 12 months from the last interaction.

Where Data Is Stored:

  • Data recorded through Paralela45.ro will be stored on the servers of our web hosting providers.
  • Emails will be stored on Microsoft – Office 365 servers in Austria.
  • Data sent through social media will be stored by those platforms according to their own policies.
  • Data we download locally will be stored on our secure local servers and in the cloud.

2. Processing Data When You Interact with Us Using GDPR Control Panel Contact Forms and When You Submit a Data Access Request

When you interact with us using the contact forms in the GDPR Control Panel, we will use your contact details and other information you provide during communication to process your subscription, data update, data verification request, or your wish to be forgotten. To exercise your legal rights under GDPR, we must first identify you and process your data.

Personal Data Collected:

  • Name, surname, phone number, email address, physical address, date of birth, relationship to the data subject (if the request is completed on behalf of another person), and any other information you voluntarily provide.

Legality of Processing:

  • We process your data to comply with our legal obligations under GDPR (Art. 6/1/c of Regulation (EU) 2016/679).

Who We May Share Your Data With:

  • IT service providers for our company (web hosting and hosting services), or providers to whom we outsource specific technical support services for our website, cybersecurity monitoring, and intrusion detection, or customer relationship management system providers.
  • Email provider: Microsoft – Office 365.
  • Regulatory authorities and other state bodies if required by legal or statutory obligations.

We will disclose your personal data only to the extent necessary to achieve the intended purpose. We have taken all necessary measures to ensure that external service providers who access your data have implemented physical, electronic, and managerial security measures to protect the data.

Data Retention Period:

  • We will store your data in our communication database for a maximum of 12 months from the last interaction.

Where Data Is Stored:

  • Data recorded through Paralela45.ro will be stored on the servers of our web hosting providers.
  • Emails will be stored on Microsoft – Office 365 servers in Austria.
  • Data we download locally will be stored on our secure local servers and in the cloud.

3. Processing Data When You Interact with Our Content on Social Media or Share Information from Our Website

You can find us on Facebook, Instagram, Twitter, and YouTube. Whenever you interact with us through our social media accounts (e.g., comments, likes, reviews, shares, etc.), we will have access to the public data available on your social media profile.

Personal Data Collected:

  • Name, profile picture, any public information from your social media profile, or information you voluntarily share with us.

Legality of Processing:

  • We process your personal data to respond to your request before entering into a contract (Art. 6/1/b of Regulation (EU) 2016/679).
  • In pursuit of our legitimate interest (Art. 6/1/f of Regulation (EU) 2016/679), we process data to respond to any questions, suggestions, or complaints you send and to improve our services and the experience we offer to our customers. Additionally, we aim to keep you informed about updates we publish that may interest you.

Who We May Share Your Data With:

  • IT service providers for our company (web hosting and hosting services), or providers to whom we outsource specific technical support services for our website, cybersecurity monitoring, and intrusion detection, or customer relationship management system providers.
  • Social media platforms: Facebook, Instagram, Twitter, YouTube.
  • Regulatory authorities and other state bodies if required by legal or statutory obligations.

We will disclose your personal data only to the extent necessary to achieve the intended purpose. We have taken all necessary measures to ensure that external service providers who access your data have implemented physical, electronic, and managerial security measures to protect the data.

Data Retention Period:

  • Data shared with social media platforms will be stored by those platforms according to their own policies.

Where Data Is Stored:

  • Data shared with social media platforms will be stored by them according to their own policies, which may be located within the European Union or the USA.
  • Data we download locally will be stored on our secure local servers and in the cloud.

4. Processing Data for Commercial and Marketing Communications

We may send you information about the services we offer if you have requested this information (for example, by subscribing to our newsletter) or if you are already our customer, and we believe this information may be of particular interest to you.

Personal Data Collected:

  • Name, surname, email address, phone number

Legality of Processing:

  • We process your data to take steps at your request before entering into a contract (Art. 6/1/b of Regulation (EU) 2016/679).
  • We process your data based on your consent (Art. 6/1/a of Regulation (EU) 2016/679) for marketing communications.
  • We process data based on our legitimate interest if you are already our customer and we believe the information may be highly relevant to you (Art. 6/1/f of Regulation (EU) 2016/679).

Who We May Share Your Data With:

  • IT service providers for our company (web hosting and hosting services), or providers to whom we outsource specific technical support services for our website, cybersecurity monitoring, and intrusion detection, or customer relationship management system providers.
  • Newsletter service provider: Active Soft.
  • Regulatory authorities and other state bodies if required by legal or statutory obligations.

We will disclose your personal data only to the extent necessary to achieve the intended purpose. We have taken all necessary measures to ensure that external service providers who access your data have implemented physical, electronic, and managerial security measures to protect the data.

Data Retention Period:

  • For newsletter subscriptions, data processing will continue until you request to unsubscribe.
  • For processing based on legitimate interest when you are already our customer, we will process your data during the contract period and continue for up to 3 years after the contract is terminated.
  • Commercial communications (e.g., offers, negotiations) that did not result in a contract will be stored for 12 months from the last interaction.

Where Data Is Stored:

  • Data registered through bucharestluxuryconcierge.ro will be stored on the servers of our web hosting providers.
  • Data processed through Active Soft SRL will be stored according to their privacy policy.
  • Data we download locally will be stored on our secure local servers and in the cloud.

Important: If you wish to stop receiving newsletters or marketing materials from Paralela 45, you can exercise your right to object to the use or processing of your data by:

  • Clicking on the unsubscribe link at the bottom of any marketing email we send and following the instructions in your browser.

5. Processing Your Data to Provide Easy and Enjoyable Browsing on bucharestluxuryconcierge.ro

When you access our website, we collect data about you through online identifiers (cookies and IP), which are stored in log files. We use this information to design our website in a way that better adapts to the needs of our users. Additionally, your IP address may be used to help diagnose potential server issues, manage our website, maintain security, prevent fraud, authorize access to the services available on our website, analyze trends, track visitors’ movements, and gather general demographic information to help identify visitor preferences.

You can find more information about cookies, as well as how to delete cookies and disable tracking, by accessing the Cookie Policy available on our website.

Personal Data Collected:

  • Internet Protocol (IP)
  • General location of the computer (level of region or county)
  • Device used
  • Website browsing history
  • Timestamp, request/action
  • Type and version of browser and operating system
  • Other information generated while using our website, including when, how often, and under what circumstances it is used

Legality of Processing:

  • We use cookies that make your browsing on our website easier and more enjoyable, in our legitimate interest (Art. 6/1/f of Regulation (EU) 2016/679).
  • Non-essential cookies are not used without your consent (Art. 6/1/a of Regulation (EU) 2016/679).

Who We May Share Your Data With:

  • IT service providers for our company (web hosting and hosting services), or providers to whom we outsource specific technical support services for our website, cybersecurity monitoring, and intrusion detection, or customer relationship management system providers.
  • Third parties placing cookies: Google, Hotjar, Facebook, AddThis.
  • Regulatory authorities and other state bodies if required by legal or statutory obligations.

We will disclose your personal data only to the extent necessary to achieve the intended purpose. We have taken all necessary measures to ensure that external service providers who access your data have implemented physical, electronic, and managerial security measures to protect the data.

Data Retention Period:

  • There are session cookies and persistent cookies. Session cookies are deleted when you close your browser, while persistent cookies may have different lifespans, depending on their purpose. More information on the lifespan of the cookies we use can be found in our Cookie Policy.

Where Data Is Stored:

  • Data collected through our own cookies will be stored on the hosting provider’s servers, located in Romania.
  • Data collected through third parties placing cookies will be stored on their servers, located in the European Union, UK, or the United States.
 

Links to Other Websites

bucharestluxuryconcierge.ro may contain links to other websites that are not owned or controlled by Paralela 45. Please note that we are not responsible for the privacy practices of other websites or third parties. We encourage you to be aware when leaving our website and to read the privacy policies of every website that may collect personal information.

Processing Data of Minor Individuals

We process data of individuals under the age of 18 only with the consent of their legal representative, in order to ensure the proper functioning of the contracted services for the legal representatives of minors.

It is possible that we may receive information about individuals who have not yet reached the age of 18 due to fraudulent or deceptive actions by a third party. If we are notified of this, upon verification, and when required by law, we will immediately obtain the legal representative’s consent to use this information or, if we cannot obtain the consent, we will delete the information from our servers.

If you wish to notify us about receiving information concerning individuals under the age of 18, please do so by sending an email to protectiedate@paralela45.ro.

International Transfers of Personal Data

We use a number of third parties to provide us with services necessary for our business operations or to help us run our business, and these third parties process your information on our behalf, including:

  • Telephone service providers
  • Email service providers
  • IT service providers
  • Website developers
  • Web hosting providers
  • Marketing service providers
  • Email marketing providers

These partners operate both inside and outside the European Economic Area (“EEA”).

List of international partners with whom we share data:

  • Third parties that place cookies: Google, Facebook, Hotjar, AddThis
  • Online platforms: Facebook, Instagram, Twitter, YouTube

Personal data may be stored and processed in any country where we engage service providers. We may transfer the personal data we hold about you to recipients in countries other than the country where the data was originally collected, including to the United States. These countries may have different data protection rules than those in your country. However, we will take measures to ensure that such transfers comply with applicable data protection laws and that your personal data remains protected according to the standards described in this privacy policy.

In certain circumstances, courts, law enforcement agencies, regulatory agencies, or security authorities in those other countries may have the right to access your personal data.

Where applicable, we ensure that an international data transfer is governed by a data transfer mechanism using one or more of the following mechanisms:

  • Standard contractual clauses of the EU with a data recipient outside the EEA or the UK
  • Verification that the recipient has implemented binding corporate rules

Additionally, we ensure that all our international partners have adopted additional measures to provide adequate guarantees, enforceable rights, and effective legal remedies. These measures are designed to offer further assurance to data subjects that data transfers based on standard contractual clauses or binding corporate rules provide a level of protection equivalent to that guaranteed within the European Union.

Your Rights

As a data subject, you have specific legal rights regarding your personal data that we collect and process. Paralela 45 respects these rights and ensures that we properly consider your interests.

  1. Withdrawal of Consent: If the processing is based on your consent, you can withdraw your consent at any time for the specific processing.

  2. Rectification of Data: If you notice that we hold inaccurate personal data, you can request at any time the correction of the personal data concerning you. We make reasonable efforts to maintain personal data—especially data that is used continuously and is in our possession or control—accurate, complete, up-to-date, and relevant, based on the latest information available to us.

  3. Restriction of Processing: If you are in any of the following situations, you can request us to restrict the processing of your data:

    • You contest the accuracy of the personal data while we verify its accuracy,
    • The processing is unlawful and you request restriction of processing rather than the deletion of the personal data,
    • We no longer need your personal data, but you request it for the establishment, exercise, or defense of a legal claim, or
    • You object to the processing while we verify whether our legitimate grounds outweigh your rights.

  4. Access to Your Data: You can request information about the personal data we hold about you, including details on which categories of data we hold, what it is used for, where it was collected from if not directly from you, and to whom it has been disclosed, if applicable. You can obtain a free copy of the personal data we hold about you. We reserve the right to charge a reasonable fee for excessive or abusive requests.

  5. Right to Data Portability: Upon request, we will transfer your personal data to another controller where technically feasible, provided the processing is necessary for the execution of a contract. Instead of receiving a copy of your personal data, you may request that we directly transfer the data to another controller specified by you.

  6. Right to Erasure: You can request us to delete your personal data if:

    • The data is no longer necessary for the purposes for which it was processed,
    • You object to the further processing of personal data (see Right to Object below),
    • The personal data has been unlawfully processed,
    • You withdraw the consent on which the processing is based.

    Except when processing is necessary for:

    • Compliance with a legal obligation,
    • Legal requirements regarding data retention periods,
    • Establishment, exercise, or defense of a legal claim.

  7. Right to Object: You can object at any time to the processing of your personal data due to a special situation. In this case, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of a legal claim. When objecting, please specify if you want your personal data to be deleted or the processing to be restricted.

  8. Right to Lodge a Complaint: In case of an alleged violation of data protection legislation, you can file a complaint with the supervisory authority for data protection:

    • National Supervisory Authority for Personal Data Processing by completing the online form available at: Plângeri ANSPDCP

    Important to Note:

    • Timeframe: We will aim to resolve your request within 30 days. However, the period may be extended for legal reasons or the complexity of the request.
    • Access Restrictions: In certain situations, we may not be able to grant you access to all or part of your personal data due to legal restrictions. If we deny your access request, we will provide the reason for the refusal.
    • Inability to Identify: In some cases, we may not be able to identify the personal data due to a lack of identification details provided in your request. If you do not provide additional information that allows us to identify you, we will not be able to process your request to exercise your legal rights as described in this section.

Exercising Your Rights

To exercise your legal rights, please contact our Data Protection Officer in writing at protectiedate@paralela45.ro.

This version was updated on 01.11.2024.

AdDitional
information

Facebook Instagram Whatsapp

Contact