We are committed to respecting your privacy by complying with all applicable data protection laws and regulations, including the General Data Protection Regulation (EU) 2016/679 („GDPR"). Your right to privacy and the protection of the personal data you provide to us and the trust you place in us are important to us, and that is why through this Privacy Policy ("Policy") we provide you with important information about how Dr. Max Romania handles your personal data. This Policy applies to any service, website or application that collects, records, modifies, uses, accesses, transmits, or stores personal data. This Policy is intended to provide you with information about the personal data we collect from you or that you provide to us and how it will be processed by us. Please read the following carefully to understand our practices regarding your personal data and how we will treat it. Please check for updates to this Policy. If we make any changes that we consider important, you will be able to view them online.
Purpose of processing
| Personal data processed
| Basis of processing
| Processing time
| Recipients / Authorised persons
|
Management of pharmacovigilance/cosmetic-surveillance cases
| Name, surname, age, telephone, e-mail, health condition (adverse reaction), duration, severity, suspected drug/product
| Legal obligation (Law No 95/2006)
| For the duration of the case and 10 years after completion
| Manufacturer, distributor, ANMDM
|
Providing answers to your questions, complaints or requests by letter, e-mail, telephone, fax
| Name, surname, telephone/fax number, e-mail address, postal address, voice.
| Conclusion of contract
| For the duration of the resolution of the application and 3 years from the date of resolution
| Software vendor, call-center service provider, public authorities
|
Monitoring of premises and/or goods
| Picture, location
| Legitimate interest
| 30 days from the date of recording of the image
| CCTV system provider, security company, public authorities
|
Recruitment
| Data contained in CV as well as references, employment test results, recruiter's notes, signature
| Conclusion of a contract
| For the duration of the recruitment process and 6 months from the date of completion
| Software provider
|
Storage of CVs after completion of the recruitment process
| Data contained in CV
| Consent
| 2 years from the date of consent or until consent is withdrawn
| Software provider
|
Initiating contracts or executing contracts concluded by the Company
| Surname, first name, position, telephone, e-mail, signature
| Contractual obligation
| For the duration of the contract and 3 years from the date of termination of the contract
| Software supplier, public authorities
|
Initiating or conducting relations between the Company and representatives of public authorities with whom it interacts in the course of its day-to-day business
| Surname, first name, position, telephone, e-mail, signature
| Legal obligation
| During the course of the Company's business
| Software supplier, public authorities
|
Use of social media platforms (Facebook, LinkedIn,
| Name and surname / psudonym used, picture,
| Consent
| Data will not be stored in Dr. Max Romania databases, but due to the functionality of social platforms, we may have access to public information in your account
| / |
Use of the website
| Name, first name, position, telephone, e-mail, signature, Data contained in CV, IP, any other information provided
| Legitimate interest
| During the course of the Company's business
| Software provider, hosting provider, social media platforms, public authorities
|
Information about our company
Dr. Max Romania is represented by Dr.Max SRL.
Dr.Max SRL is located in Aeroportului Street, no. 53, Mogoșoaia and is registered in the Trade Register under no. J23/673/2007 with fiscal code no. RO9378655.
For more information on the Company, please visit www.drmaxromania.com, contact us at dpo@drmax.ro or call 021 301 74 74.
By accessing or using any part/function of our Websites you agree to accept and abide by the terms, conditions and policies mentioned and/or available via hyperlink and you are at least of legal age under applicable national law. If you do not accept the terms, conditions and policies set out in this documentation, then you should not continue to access our Website and/or use our services.
The content of the Websites: images, texts, web graphics, scripts, software, design rights, model rights, patents, trademarks, constitute the entire property of Dr. Max Romania and are protected by copyright and related rights laws and by intellectual and industrial property laws. The use without Dr. Max Romania's consent of any of the elements listed above is punishable under the laws in force.
Dr. Max Romania may offer the user/customer, by means of an agreement, the right to use, in a described form, certain content of the site. This agreement applies strictly to the content(s) defined, for a period set out in the agreement and only to the person(s) allowed to use this content, without being able to use other content of the Dr. Max Romania Websites.
4. FOR WHAT PURPOSES AND ON WHAT GROUNDS DO WE PROCESS YOUR PERSONAL DATA?
There are many types of situations in which we are in contact with you and your personal data. For example, we collect personal data in the following situations:
a. When you use or communicate with us via multimedia portals and/or social networks:
When you communicate with us by telephone, fax, email, voicemail, text messaging (SMS), picture messaging (MMS), video messaging or instant messaging:
c. When you send us any kind of address:
d. When you use our websites:
e. When we have recruitment, selection, and talent evaluation processes:
f. When we send you commercial and marketing communications:
g. When using social plugins (see point 3 below for more details):
– IT service providers for our company (hosting and data storage) or providers to whom we outsource certain technical support services for our website or providers of customer relationship management systems
– The platform on which our website has been developed and which hosts our website
– The provider of the chat widget on the site (Facebook)
– Members of our group of companies (this includes our subsidiaries, our parent company and all its subsidiaries) as reasonably necessary for the purposes set out in this policy
– Social media platforms: Facebook, LinkedIn, Instagram, Twitter, Pinterest
– Regulators and other state authorities if required by legal or statutory requirements.
Additional information on social media platforms used:
Facebook plugins ("share button"): You can recognize the plugins of Facebook Inc., 1 Hacker Way, Menlo Park,
, California 94025, USA by the Facebook logo or the "share button". For an overview of Facebook plugins, please click on:
http://developers.facebook.com/docs/plugins/. When using our online services, the plugin establishes a direct connection between your browser and the Facebook server. Facebook is therefore informed that you are using our online services with your IP address. When you click on the "share button" on Facebook, while logged into your Facebook account, you can link the content of our online services with your Facebook profile. Facebook will then be able to associate the use of our online services with your user account. We would like to point out that we, as providers of online services, do not obtain any information about the content of the data transmitted and its use by Facebook. For more information, please see Facebook's privacy policy at https://www.facebook.com/policy.php. If you do not want Facebook to associate the use of our online services with your Facebook account, please log out of your Facebook user account.
LinkedIn: The provider of the LinkedIn network is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time you access one of our online services containing LinkedIn features, a connection to LinkedIn's servers is established. LinkedIn is informed that you are using our online services with your IP address. When you click on LinkedIn's "referral button" while connected to LinkedIn, your use of our online services may be associated with you and your user account. We would like to point out that we, as providers of the online services, are not made aware of the content of the data submitted and how LinkedIn uses it. For more information, please refer to LinkedIn's privacy policy at: https://www.linkedin.com/legal/privacy-policy
6. TRANSFER OF PERSONAL DATA ABROAD
Dr. Max Romania shares personal data with partners operating outside the European Economic Area ("EEA").
List of international partners with whom we share data;
Personal data may be stored and processed in any country where we engage service providers. We may transfer the personal data we hold about you to recipients in countries other than the country in which the personal data was originally collected, including to the United States or Israel. These countries may have data protection rules that are different from those in your country. However, we will take steps to ensure that any such transfers comply with applicable data protection laws and that your personal data remains protected according to the standards described in this Privacy Policy. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may have the right to access your personal data.
Where applicable law requires us to ensure that an international data transfer is governed by a data transfer mechanism, we use one or more of the following mechanisms:
We will only store your personal data for the period necessary to achieve the processing purposes set out above, while complying with the legal requirements in force as well as the durations mentioned above. If, after the expiry of the set duration, the Company determines that it has a legitimate interest or legal obligation to further process your personal data for other purposes, you will be duly informed of this effect. Once the processing period indicated above expires and the Company no longer has legal or legitimate grounds to process your personal data, the data will be deleted in accordance with its procedures, which may involve archiving, anonymization, or destruction.
All personal data processing activities described in this Policy relate exclusively to persons who are at least 16 years old. The use of the systems as well as the results of the processing is prohibited in respect of children under this age without the consent of their parents/legal guardians. If, despite our reasonable efforts to prevent it, such processing nevertheless takes place, we will stop it once we notice that users have not reached the age mentioned above. However, there may be pharmacovigilance/ cosmetic vigilance cases in relation to minors, so the minor's personal data necessary for the reporting and investigation of pharmacovigilance/ cosmetic vigilance cases may be processed based on legal requirements.
The Company hereby informs you that it constantly evaluates and updates the security measures implemented to ensure the safe and secure processing of personal data.
In the context of the processing of your personal data, you have the following rights:
The above rights can be exercised at any time. To exercise these rights, we encourage you to send a written request, dated and signed, to the following address: str. Jiului, nr. 8, J8 Office Park, clădirea A, București sau prin e-mail la: dpo@drmax.ro
Version date: 18.10.2024.