GDPR - Data Protection

1. Introduction

We respect and implement the provisions of the General Data Protection Regulation (GDPR - EU Regulation 2016/679) and applicable local laws.

2. Data Processing Principles

We process personal data in accordance with the following principles:

• Legality, fairness and transparency
• Purpose limitation
• Data minimization
• Accuracy
• Storage limitation
• Integrity and confidentiality

3. Your Rights under GDPR

• 3.1. Right of Access (Art. 15)
• 3.2. Right to Rectification (Art. 16)
• 3.3. Right to Erasure ('Right to be forgotten') (Art. 17)
• 3.4. Right to Restriction of Processing (Art. 18)
• 3.5. Right to Data Portability (Art. 20)
• 3.6. Right to Object (Art. 21)
• 3.7. Right to Withdraw Consent

4. How to Exercise Your Rights

To exercise any of your GDPR rights, you can contact us: Email: kkaservices.com@gmail.com (Subject: 'GDPR Request'), Phone: +40 758 834 733. We will respond within 30 days.

5. Legal Basis for Processing

• Consent (Art. 6(1)(a))
• Contract (Art. 6(1)(b))
• Legal Obligation (Art. 6(1)(c))
• Legitimate Interest (Art. 6(1)(f))

6. Security Measures

We implement appropriate technical and organizational measures:

• SSL/TLS Encryption
• Restricted Access
• 2FA
• Regular Backups

7. Data Breach

In case of a data breach posing a risk to your rights, we will notify you within 72 hours and report to the relevant authority.

8. International Data Transfer

If we transfer data outside the EEA, we ensure appropriate safeguards are in place (Standard Contractual Clauses).

9. Complaints

You can file a complaint with ANSPDCP (www.dataprotection.ro).

10. Data Protection Officer (DPO)

Contact: kkaservices.com@gmail.com