Privacy Policy

INTAX TRADING S.R.L. (hereinafter referred to as “INTAX,” “we,” or “us”) welcomes you to our websites and mobile applications (collectively referred to as our “online services”). We appreciate your interest in our company and the products we offer.

1. INTAX is committed to protecting your privacy

In processing personal data, we place great importance on its security. We implement rigorous technical and organizational measures, including data encryption and access restrictions, to safeguard information from unauthorized access or misuse. We are committed to adhering to the highest security standards, ensuring the continuous protection of your personal data.

2. Data Controller

INTAX is the data controller responsible for processing your personal data, unless otherwise specified in this data protection notice.

You can contact us using the following details:

INTAX TRADING S.R.L.
14B Ion Creanga Str. 075100 Otopeni Ilfov 
Romania
E-mail: office@intaxtrading.com
Telephone: +40 318 246 248

For any inquiries, suggestions, or complaints concerning the processing of your personal data, we recommend contacting our Data Protection Officer directly:
E-mail:  dpo@intaxtrading.com

3. Collection, processing, and utilization of personal data

3.1  Categories of Processed Data

We process categories of personal data including communication data (e.g., name, telephone number, email address, postal address, and IP address).

3.2 Principles

Personal data refers to any information relating to an identified or identifiable natural person. This includes, but is not limited to, names, addresses, telephone numbers, email addresses, contract master data, billing information, and payment details—any of which are capable of identifying a data subject.
We collect, process, and use personal data (including IP addresses) only where a statutory legal basis exists, or where the data subject has provided consent, for instance, by registering on our platform.

3.3 Purposes of Processing and Legal Basis

We, as well as third-party service providers acting on our behalf, process your personal data for the following purposes and on the corresponding legal bases:

3.3.1 Provision of Online Services

Legal basis: Our legitimate interest pursuant to Article 6(1)(f) GDPR, in conducting direct marketing activities, insofar as such processing is carried out in accordance with applicable data protection and competition laws.

3.3.2  Responding to User Inquiries via Contact Forms

Legal basis: Our legitimate interests in customer communication and service optimization (Article 6(1)(f) GDPR), the performance of a contract (Article 6(1)(b) GDPR), or, where applicable, based on the data subject’s consent (Article 6(1)(a) GDPR).

3.3.3 Responding to Requests via Chatbot

Legal basis: Our legitimate interest in enhancing user experience and service quality (Article 6(1)(f) GDPR), or based on the data subject’s explicit consent (Article 6(1)(a) GDPR).

3.3.4 Resolution of Service Interruptions and Ensuring IT Security

Legal basis: Compliance with legal obligations in the context of IT and data security (Article 6(1)(c) GDPR) and our legitimate interest in maintaining the security and integrity of our systems (Article 6(1)(f) GDPR).

3.3.5 Direct Marketing, Market Research, and Reach Analysis

Legal basis: Data subject’s consent (Article 6(1)(a) GDPR) or our legitimate interest in carrying out direct marketing activities (Article 6(1)(f) GDPR), in each case provided such processing complies with applicable legal requirements.

3.3.6 Assertion and Defense of Legal Claims

Legal basis: Our legitimate interest in the establishment, exercise, or defense of legal claims (Article 6(1)(f) GDPR).

3.4 Log Files

When accessing our online services, certain technical data is automatically transmitted by your browser and stored in server log files.
We retain such log files for a period of 90 days to identify disruptions and for IT security purposes (e.g., investigation of attempted cyberattacks). Log files required for evidentiary purposes may be retained beyond this period and shared with competent authorities if necessary.
Log files may also be utilized for analytical purposes in accordance with Section 3.3.5, excluding or anonymizing the IP address as appropriate.

• Log file data may include:
• IP address of the accessing device
  
• Referrer URL (originating website)
  
• Name of the internet service provider
  
• Accessed files or data resources
  
• Date, time, and duration of access
  
• Volume of data transmitted
  
• Operating system and browser data, including installed plugins
• HTTP status codes (e.g., 200 OK, 404 Not Found)
  

3.5 Chatbot Functionality

We provide a chatbot tool within our online services for the purpose of facilitating user interaction and service inquiries. Chat content may be temporarily recorded and subsequently deleted unless it forms part of a customer support case, in which event the chat history may be linked to the user’s customer account and stored for the fulfillment of contractual obligations.

3.6  Minors

This online offering is not intended for individuals under the age of 16. We do not knowingly collect personal data from children within this age group without verifiable parental consent.

3.7 Data Transfers

3.7.1 Transfers to Independent Data Controllers

Personal data may be disclosed to other data controllers only where such disclosure is necessary for the performance of a contract, based on our or a third party’s legitimate interest, or where the data subject has provided consent. Further details can be found in Section 3.3.
Additionally, data may be shared with competent authorities where required by applicable law or lawful administrative/judicial orders.

3.7.2 Engagement of Data Processors

We engage external service providers to perform specific processing activities on our behalf (e.g., sales, marketing, hosting, payment processing, contract management, and customer support). These processors are contractually obligated to maintain confidentiality, implement appropriate technical and organizational measures, and process data strictly in accordance with our instructions and applicable legal obligations. Such processors may also include entities within the INTAX.

3.7.3 Transfers to Third Countries

Where data is transferred to recipients in countries outside the European Economic Area (EEA), such transfer shall only occur if an adequate level of data protection is ensured, either through appropriate safeguards (e.g., standard contractual clauses approved by the European Commission) or based on your explicit consent. You may request further details, including a copy of the applicable safeguards, by contacting us (see Section 11).

3.8 Data Retention and Storage Periods

Personal data shall be retained only for as long as is necessary to fulfill the purposes for which it was collected, or for the duration of any legitimate interest we may have in retaining such data (e.g., for direct mail marketing following contract fulfillment).
Thereafter, personal data shall be erased unless we are legally obligated to retain it for longer periods (e.g., under tax or commercial law, which may require the storage of certain contractual or financial documents for a specified duration).

4. Cookies

A cookie is a small amount of information that is downloaded to your computer or device when you visit certain websites. We use a number of different cookies on the our website, including strictly necessary, performance, advertising, and social or content cookies. Cookies improve your browsing experience by allowing the website to remember your actions and preferences (such as logging in and selecting your region). This means you don't have to re-enter this information every time you return to the website or navigate from page to page. Cookies also provide information about how people use the website, such as whether it's their first time visiting or if they're a frequent visitor.

Some cookies are necessary to allow you to navigate our site, use its features and access secure areas. The use of these cookies is essential for the site to function. For example, we use cookies entered by the user during a session to keep track of their inputs when filling in forms that span multiple pages.

We also use functional cookies to remember choices you have made or information you have provided, such as your username, language or the region you are in. This allows us to tailor your website experience specifically to your preferences. For example, authentication cookies are functional cookies that are used during a session (or persistent, if you agree to the "remember me" feature) to allow users to log in on subsequent visits or to gain access to authorized content on the pages. The functional cookies we use include:

User-centric security cookies to detect authentication abuses for a limited persistent duration, like repeated failed login attempts. These cookies are set for the specific task of increasing the security of the service.

Multimedia content player session cookies (flash cookies) are used for the duration of a session to store technical data needed to play back video or audio content (e.g. image quality, network link speed, and buffering parameters).

Load balancing session cookies are used for the duration of the session to identify the same server in the pool in order for the load balancer to redirect requests appropriately.

User interface customization persistent cookies are used to store a user’s preference regarding a service across web pages.

Our website is dedicated to optimizing user experience and we use many tools to help us improve our website and our commerce platform. To this end, we use reporting and analytics cookies to collect information about how you use our website or our merchants’ storefronts, and how often. The performance cookies we use include:

• First party analytics cookies - we use these cookies to estimate the number of unique visitors, to improve our websites and our merchants’ websites, and to detect the most searched for words in search engines that lead to a webpage. These cookies are not used to target you with online marketing. We use these cookies to learn how our websites and our merchants’ websites are performing and make relevant improvements to improve your browsing experience.
• Third party analytics cookies - we also use Google Analytics and other third-party analytics providers listed below to help measure how users interact with our website content. These cookies “remember” what our users have done on previous pages and how they’ve interacted with the website. For more information on Google Analytics, visit Google’s information page. For instructions on how to opt out of Google Analytics, see below.Advertising cookies are used on our website to tailor marketing to you and your interests and provide you with a more personalized service in the future. These cookies remember that you visited our website and we may share this information with third-parties, such as advertisers. Although these cookies can track your device’s visits to our website and other sites, they typically cannot personally identify you. Without these cookies, the advertisements that you see may be less relevant and interesting to you. Read more about how companies use cookies to conduct targeted or retargeted advertising here. We do not set advertising cookies through our merchants’ storefronts ourselves, though merchants may choose to do so independently.
• Finally, social media and content cookies are placed by many social media plugins (for example the Facebook ’like’ button), and other tools meant to provide or improve the content on a website (for example services that allow the playing of video files, or that create comments sections). We integrate these modules into our platform to improve the experience of browsing and interacting with our websites. Please note that some of these third party services place cookies that are also used for things like behavioural advertising, analytics, and/or market research.

5. Data Subject Rights

To exercise your rights as a data subject, please refer to the contact details provided in Section 11 (“Contact”). When doing so, please ensure that your identity can be clearly and unambiguously verified.

5.1 Right of Access (Article 15 GDPR)

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed. Where this is the case, you are entitled to access such personal data and to receive further information in accordance with Article 15 of the General Data Protection Regulation (GDPR).

5.2  Right to Rectification and Erasure (Articles 16 and 17 GDPR)

You have the right to request the rectification of inaccurate or incomplete personal data concerning you.
Additionally, you may request the erasure of your personal data, provided that the legal requirements under Article 17 GDPR are met. This right does not apply to data required for compliance with legal obligations (e.g., statutory retention requirements) or for the establishment, exercise, or defense of legal claims. In such cases, data processing shall be restricted (see Section 9.3).

5.3  Right to Restriction of Processing (Article 18 GDPR)

Where the legal prerequisites are met, you have the right to request the restriction of the processing of your personal data. In such cases, the data concerned will be marked accordingly and, except for storage, only processed with your consent or for specific legal purposes.

5.4  Right to Data Portability (Article 20 GDPR)

Where the legal criteria are fulfilled, you have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format. You also have the right to request that such data be transmitted directly to another controller, where technically feasible.

5.5 Right to Object (Article 21 GDPR)

5.5.1 Objection to Processing for Direct Marketing Purposes

You may object at any time to the processing of your personal data for direct marketing purposes. Please note that there may be a short transitional period during which ongoing campaigns may continue to use your data after your objection has been received due to organizational constraints.

5.5.2 Objection to Processing Based on Legitimate Interests

Furthermore, you may object, on grounds relating to your particular situation, to the processing of your personal data where such processing is based on our legitimate interests (Article 6(1)(f) GDPR). In such cases, we shall cease processing unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or unless the processing serves the establishment, exercise, or defense of legal claims.

5.6 Right to Withdraw Consent (Article 7(3) GDPR)

If you have provided consent for the processing of your personal data, you may withdraw such consent at any time with future effect. The withdrawal of consent does not affect the lawfulness of processing carried out prior to the withdrawal.

5.7 Right to Lodge a Complaint with a Supervisory Authority (Article 77 GDPR)

You have the right to lodge a complaint with a competent data protection supervisory authority. You may contact the authority responsible for your habitual residence or place of work, or the authority competent for the controller. The competent authority for us is:
The National Supervisory Authority for Personal Data Processing (ANSPDCP)

Website: www.dataprotection.ro

6. Amendments to This Data Protection Notice

We reserve the right to modify our security and data protection measures in line with technological developments, legal requirements, or organizational changes. In such cases, this Data Protection Notice will be updated accordingly.
We therefore advise you to regularly consult the most current version of this notice, as it is subject to change.