Privacy Policy

The role of the Privacy Policy is to explain the user what personal data we collect, the purpose for which we collect them and the way the data are processed. Confidentiality is a matter of high importance for our activity and we understand the importance of the data of each user. That is why we pay special attention to the processing process and strive to store personal data securely.

Personal data belong to you and we ensure you that your data will not be transferred to third parties without informing you in an appropriate way.

This Privacy Policy is subject to change at any time. All updates and changes to this Policy are valid immediately upon notification, which we will make by posting on the site and/or notifying you by e-mail.

Any questions or queries regarding your personal data can be addressed to the e-mail address office@legal-pathway.eu. You shall also use the same email address in order to exercise your legal rights.

Who we are?

Legal Pathway belongs to and is administered by Șăulean Ruxandra-Andreea – Law Firm, a form of exercising the profession of lawyer within the Bucharest Bar based on the Decision of the Bucharest Bar no. 1129/2019, having its registered office in Bucharest, Sector 1, str. Feldioara, no. 18, CIF 36924746, legally represented by titular lawyer Șăulean Ruxandra-Andreea.

Who are you?

From a legal perspective, you are the ”data subject”, meaning the natural person, identified or identifiable, beneficiary of our services or the person in a relationship of any kind with us. In order to ensure the transparency regarding the data processing and to facilitate your ability to exercise your rights at any time we have implemented appropriate measures to ensure that the relationship and communication between us, the data controller, and you, the data subject, is effective and efficient.

What are the personal data?

Personal data is any information that may be linked to an identified or identifiable natural person, called the data subject.
Personal data include all types of direct or indirect information relating to the data subject, such as name, date of birth, address, e-mail address, telephone numbers, etc.

Principles governing the processing of personal data

  • Lawfulness, fairness and transparency
  • Purpose limitation
  • Data minimization
  • Accuracy
  • Storage limitation
  • Integrity and confidentiality

All these principles are imperative for data operators. In our activity, we strive to respect them exactly, being transposed in the measures adopted in the process of collection and processing of personal data.

What data we collect?

You can use our website without disclose personal data. However, in order to benefit from our Services, you will be asked to provide your data through a registration process.

The required data might include: complete name, information from your ID card, phone number, email address, address and information regarding debit or credit card.

It is possible to collect your data through cookie modules or other similar technologies, such as IP address, internet browser, advertisements you clicked, location, web pages you accessed on our website.

Why do we collect your personal data?

We collect your data for determined and legitimate purposes which may include but not limited to the following:

  • For conclusion or performance of a contract between you and us
  • Message sending through the Contact form
  • To answer to your questions and requirements
  • For marketing purposes, but only based on your given consent
  • To offer and improve the serviced and products we provide
  • To diagnose and solve technical issues
  • For advertisement and personalized content
  • To defend against cyber attacks
  • To prove legal compliance
  • To ascertain or claim a right in court.

Lawfulness of the processing

Your data are processed in strict compliance with legal provisions. Among the legal grounds for the processing of personal data, in the relationship between you and us, are incident the following:

  • Your given consent – remember that you may withdraw your consent at any time by following the unsubscribe instructions from any email or by submitting a written request at the email address office@legal-pathway.eu
  • Processing is necessary for the conclusion or performance of a contract between you and us
  • Processing is necessary for compliance with a legal obligation.

Personal data usage

Personal data about you will only be used for the purpose for which they were collected and will be stored only as long as necessary in relation to the purpose for which it was collected.

Data disclosure to third parties

Legal Pathway can transfer your personal data, by disclosing or by remote given access only through secured applications, to third parties such as affiliated entities or other commercial partners of Legal Pathway, which act as processors processing the personal data on behalf of Legal Pathway, with which Legal Pathway concluded contractual agreements necessary according to the European Union and the national regulations. Such situations could be incidental, for example, in the case of data storage on cloud servers or in the relationship with legal and financial consultants or technical service providers.

Your data may also be disclosed to business partners as a result of a joint effort to provide a product or service.

Your data may be transferred to third parties only if this operation is necessary in order to fulfill the applicable processing purposes for which your data has been collected and processed.

Personal data collected and processed for the purposes described in this Privacy Policy may be stored on servers located abroad or transferred to affiliated entities based outside the territory of the European Union. In case of transfer of data to third countries, Legal Pathway will communicate the intention of the transfer, indicating the third countries concerned, the purpose of the transfer and will request consent when necessary, according to the legal provisions in force.

Legal Pathway may disclose data in order to comply with legal provisions or in response to a request from a court or other public authority. Legal Pathway will also be able to disclose information if it considers, in good faith, that it is necessary to prevent fraud or to limit its consequences, in order to protect itself and its employees or collaborators.

Storage period of personal data

Legal Pathway will store your personal data for a period of 5 years after the termination of the contractual relationship between you and us or for any other longer period imposed by law, regulations or applicable rules on the obligation to keep accounting documents or requests of public authorities.

After the end of the applicable storage period, the data will be deleted, destroyed, anonymized or transferred to an archive, unless prohibited by law or by the applicable record keeping regulation.

Legal Pathway will periodically check and review the database so that the indicated storage period is met.

Security measures

Legal Pathway has taken technical and organizational measures to ensure a level of security appropriate to the risks involved in the processing of data, in particular through misuse, accidental destruction, illegal or unauthorized access, loss, alteration, disclosure, intentional or accidental manipulation, access third parties, deletion and modification. To this end, data security policies and privacy practices have been developed and are being applied, which we strive to constantly review, based on technological developments.

You will be notified in the event of a breach of data security, insofar as such breach is likely to pose a major risk to your rights and freedoms, within a reasonable period of time after the discovery of such breach. The exception is where a competent public body determines that the notification would prevent a criminal investigation or harm national security. In this case, the notification shall be postponed according to the instructions of such body. We will promptly answer your questions regarding such a data breach.

Legal Pathway has implemented reasonable security measures so that we can better protect your personal data. However, please note that no website, no application and no internet connection is completely secure, which is why it is important that you also take care of the security of your personal data.

What are your rights and what are our obligations?

Based on the data protection legislation, you, as the data subject, benefit from specific rights, and we, the data operators, have the obligation to provide you with the means by which you can exercise them optimally, such as:

  • Right to withdraw the given consent for specific or for all operations – our obligation to stop the processing which the consent was withdrawn
  • Right to be informed – our obligation to realize an adequate informing, according to the legal requirements
  • Right to access – our obligation to provide the required information, under legal conditions
  • Right to correction (rectification) – our obligation to rectify the incorrect data and to complete the incomplete data
  • Right to erasure (right to be forgotten) – our obligation to erase the personal data, without undue delay, under the legal conditions
  • Right to restriction of processing – our obligation to respect the processing restriction, according to the Regulation, excepting storage
  • Right to data portability – our obligation to provide the personal data, without encountering obstacles, under the conditions provided by law
  • Right to object processing – our obligation to stop personal data processing, with certain exceptions, under the conditions provided by law
  • Right to not be subject to automated decision making – our obligation to ensure human intervention in decision making process, under the legal conditions
  • Right to address the court
  • Right to lodge a complaint with the Supervisory Authority.

To exercise your rights to which there is a correlative obligation on our part, it is sufficient to send a written, signed and dated request to the email address office@legal-pathway.eu.

The rights listed above are not absolute. There are exceptions, so each request received will be analysed so that we can decide whether it is justified or not. To the extent that the request is substantiated, we will process your request for the exercise of your rights. If the request is unfounded, we will reject it and inform you of the reasons for refusal and of the right to lodge a complaint with the Supervisory Authority and to refer it to the competent court.

We will try to respond to your request within 30 days. However, the time limit may be extended depending on various issues, such as the complexity of the application, the large number of applications received or the inability to identify you in a shorter period of time. If, although we make every effort, we are unable to identify you and you do not provide us with the additional information requested in order to identify you, we are not required to comply with the request.

Please note that no fees are charged for the exercise of your rights. However, if these rights are exercised unfairly or excessively, in particular in view of the repeated nature of the requests, you may be required to pay a reasonable fee, taking into account the administrative costs of providing the information or the communication or action required. Also, in such situations, we have the right to refuse to comply with your request.

For questions or clarifications regarding this Privacy Policy, you can write to us at office@legal-pathway.eu.