Terms and conditions
1. The content of this website
The superfood.ro website offers visitors information about the company’s activity and about the products imported and distributed: a variety of products for babies, children and adults.
The information on this site is tailored in such a way as to provide professional information, but at the same time accessible to all parents using this medium.
2. Responsibility
All information published on this website is for information purposes only and cannot replace, where appropriate, the advice of doctors who are in contact with the reality of your case.
Superfood.ro recommends that you contact your doctor or specialist whenever necessary for any specific problem.
Superfood.ro has links to other sites. These links to other sites are provided solely as a convenience to you and are not a guarantee of any product or service on those sites. None of the information on these sites is guaranteed by Superfood.ro. Also the data privacy policy may be different on these sites from that of Superfood.ro.
3. The right to ownership
The entire content of this site, unless otherwise stated, is the property of SUPERFOOD COMPANY S.R.L.
Copyright, trademark and other proprietary rights laws protect the content of the site.
The content of the Superfood.ro website may not be reproduced, modified, transferred, published, displayed, transmitted or recorded in any form or by any means, including, but not limited to, photocopying or electronic or mechanical recording, and may not be used to create derivative works without the prior written consent of SUPERFOOD COMPANY S.R.L.
Violation of these conditions, according to Romanian laws, is a crime and immediate measures will be taken to restore legality by using legal means of protection and compensation for the violation of rights.
Comments, messages, replies or any other content from members are the property of the authors.
Superfood.ro does not claim ownership of this content, but by posting this content on this site you agree that the owners of the site have a perpetual and royalty-free right of use, distribution, reproduction, multiplication, modification, adaptation, public display individually or with other information, photographs, graphics, sounds, moving images, including on this site or other sites, in catalogs, magazines, or any other use, including commercial.
4. Data collection
In accessing the site and using the services offered, only in the case of sending a message through the contact form, you agree to provide true, accurate and complete data about yourself as requested in the contact form.
The data obtained through the contact forms may be used by Superfood.ro or the owner of this site, to send you by mail commercial offers or information of the Superfood.ro site.
5. Data confidentiality
Superfood.ro has taken the necessary steps to align with the requirements of EU Regulation 679/2016.
Superfood.ro respects and protects the confidentiality of your personal data. Any personal information is processed and used in accordance with the personal data privacy policy and will not be used in any way that contravenes this policy. This information cannot be the object of a transaction between Superfood.ro and third parties.
In any case, your data will not be disclosed, except in cases provided by law.
Superfood.ro has the right to use this information only in its own interest or in the interest of the owner of the site, without providing personal identifying information.
6. Personal data protection
In accordance with the requirements of EU Regulation 679/2016 (GDPR) for the protection of individuals with regard to the processing of personal data and the free movement of such data, as well as Law 190/2018, Superfood.ro is obliged to manage securely and only for the specified purposes, the personal data you provide us about yourself, a member of your family or another person.
Personal data is provided by members when creating an account on the Site. Personal data provided by members may be processed by Superfood.ro in order to provide its services in optimal conditions. According to the GDPR, users have the right of access, the right to intervene on data, the right not to be subject to an individual decision and the right to take legal action. Members also have the right to object to the processing of their personal data and to request the deletion of such data. To exercise these rights, members can use the services offered by the site (self-service) or make a request by e-mail to adrian.magda@gdprservicii.ro.
In addition to the data submitted by members, the site’s servers automatically collect certain non-personal identification data, such as the IP address of the computer from which the site is accessed, the address from which you came to the site, etc. All this data can be used by Superfood.ro to improve the services offered.
7. Basic security requirements for personal data processing
The operator Superfood Company SRL with headquarters in Str. Izlazului, nr.3, Pantelimon, jud. Ilfov, with VAT number RO6045338, registered at the Trade Register with J23/1369/2002 complies with the minimum security requirements for processing personal data.
The user identification and authentication
User means any person acting under the authority of the controller, authorised person or representative with a recognised right of access to personal databases. Users have access to a personal database only at the appropriate authorization level by identifying themselves with a unique personal password.
The users, in this case employees of Superfood Company, the operator, act under its authority.
User access to databases containing personal data is through personal access codes, such as usernames, protected by passwords as an authentication method. Access codes are assigned individually to each user based on a specific procedure. User accounts not used for more than 12 months are permanently deactivated after an operator check. Access codes can be retrieved on request using the e-mail address, and the user will receive a link to reset the access code.
The operator designates authorized users for the collection and entry of personal data into an information system. Any modification of personal data can only be made by authorized users designated by the operator. The operator will take steps to ensure that the information system records who made the change and the date and time of the change. For better management, the operator will take measures to ensure that the information system maintains deleted or modified data.
Access codes allow only the minimum level of access to personal data that is necessary for the fulfilment of the service tasks.
Potential programmers who would develop applications for processing personal data will not be given access to personal data, unless they have been previously anonymized.
Anonymous data will be used for user training or presentations. Employees teaching the training courses will not use personal data during their training.
Type of access
Users only access personal data necessary for the fulfilment of their service tasks. To this end, the controller determines the types of access by functionality (such as: administration, input, processing, saving, etc.) and by actions applied to personal data (such as: write, read, delete), as well as the procedures for these types of access. Programmers of personal data processing systems will not have access to personal data. The operator will allow programmers access to the personal data after it has been anonymised. The technical support department may have access to personal data for exceptional cases. Anonymous data will be used for user training or presentations. Employees teaching the training courses will use personal data during their own training. The operator will determine the strict modalities by which personal data will be destroyed. Authorisation for this processing of personal data must be limited to a few users.
Data collection
The operator designates authorized users for the collection and entry of personal data into an information system. Any modification of personal data can only be made by authorized users designated by the operator. The operator will take steps to ensure that the information system records who made the change and the date and time of the change. For a better administration the operator will take measures to maintain the information system with deleted or modified data.
The execution of back-up copies
Weekly, the operator will make backups of the personal databases. Copies will be stored in a directory on the operator’s own server. Files can be accessed with a login name and password. Access to the storage directory of back-up files is limited and supervised.
Computers and terminals
Computers will be installed in restricted rooms.
Any access to the personal database, including any unauthorised access attempts, will be recorded in an access file.
Access computers used in dealing with the public on which personal data are displayed will be positioned in such a way that they cannot be disclosed to the public.
The telecommunications system is secured so that any personal data cannot be intercepted or transmitted from anywhere.
Access files
The controller shall ensure that any access to the personal data base is recorded in an access file (called log for automatic processing) or in a register for manual processing of personal data established by the controller. The information recorded in the access file or register will be:
– identification code (user name for manual personal databases);
– the name of the accessed file (file);
– the number of registrations made;
– type of access;
– the code of the operation executed or the program used;
– date of access (year, month, day);
– time (hour, minute, second).
For automatic processing this information will be stored in a general access file or in separate files for each user. Any unauthorized access attempts will also be logged. The operator is obliged to keep the access files for at least 2 years, to be used as evidence in case of investigations. If the investigations are prolonged, these files will be kept as long as deemed necessary. Access files must make it possible for the controller or the authorised person to identify persons who have accessed personal data without a specific reason, with a view to applying sanctions or referring the matter to the competent authorities.
Telecommunication systems
The operator is obliged to periodically check authentication and access types for malfunctions in the use of telecommunications systems. Operators are obliged to design the telecommunications system so that personal data cannot be intercepted or transmitted from anywhere. If the telecommunications system cannot be so secured, the operator is obliged to require the use of encryption for the transmission of personal data. Only strictly necessary personal data will be transmitted via telecommunications systems.
Personnel training
Within the training courses for users, the operator is obliged to inform them about the provisions of Law no. 677/2001 for the protection of individuals with regard to the processing of personal data and the free movement of such data, the minimum security requirements for processing personal data, as well as the risks involved in processing personal data, depending on the specific activity of the user. Users who have access to personal data will be instructed by the operator on their confidentiality and will be warned by messages that will appear on the monitors during the activity. Users are obliged to close their work session when they leave the workplace.
Computer usage
In order to maintain the security of personal data processing (especially against computer viruses) the controller will take measures consisting of:
- a) prohibiting the use by users of software programs that come from external or dubious sources;
- b) informing users about the danger of computer viruses;
- c) the implementation of automated systems for the antivirus and security of information systems;
- d) disabling, as far as possible, the “Print screen” key when personal data are displayed on the monitor, thus prohibiting their printing.
Data printing
The printing of personal data will be carried out only by users authorized for this operation by the operator. Operators are required to approve specific internal procedures for the use and destruction of these materials. The controller will approve its own security system, taking into account the minimum security requirements for the processing of personal data, and depending on the importance of the personal data processed, will impose additional security measures.
- According to the provisions of Article 12 paragraph (1) of Law 506/2004 on the processing of personal data and protection of privacy in the electronic communications sector:
1) the operator does not and will not make commercial communications using automated calling systems that do not require the intervention of a human operator, unless the subscriber concerned has expressly consented to receive such communications.
2) In addition, e-mail addresses obtained during sales will be used to send commercial offers for similar products and services, giving customers a clear and express opportunity to object by a simple and free means to such use, both when obtaining the e-mail address and on each message, if the customer has not objected initially.
3) In all commercial communications by electronic mail, the identity of the person in whose name or on whose behalf the communication is made shall be disclosed, and an address to which the addressee may send a request to cease communications shall be specified.
The Superfood.ro website is for adults. Personal information refers to full name, address (required for issuing the tax invoice), email, phone number.
Members will be able to view, modify, delete personal information, withdraw consent to publication or refuse further collection of information.
8. User's agreement regarding personal data
Superfood.ro is not responsible for the privacy policy of other sites that promote themselves directly or indirectly through the site. Please read carefully the privacy policy of each site that is linked to Superfood.ro to find out how your data is used and processed. personal. Our privacy policy is strictly for Superfood.ro.
Superfood.ro and its owner, are not responsible in any way for the relationships or consequences of these relationships, not limited to purchases, participation in contests, promotions, promotions, or any other type of relationship that may arise between you and any of those who advertise directly or indirectly through the Superfood.ro site.
9. Publicity and links to other websites
The IP address is the number your computer receives from your ISP (Internet Service Provider) to identify your location.
Superfood.ro uses this IP address to diagnose problems with the server or the administration of the Superfood.ro website.
10. IP address
A cookie is a file stored on a website visitor’s computer containing information about that visitor. We use these files to save your ID and password so you don’t have to enter them every time you visit the site, to provide users with information that is relevant to you, to mark the pages you have viewed to make sure you don’t see the same ones repeatedly.
Advertisers through our site may use cookies to generate statistics about products and locations, but they do not and will not contain personal information.
11. Cookies
These statistical files are maintained on this site to analyze, track member activity or collect location data. The aforementioned files do not contain any personal information of visitors.
12. Statistical files
Our website can organize surveys and contests for members and visitors. Participation in these surveys and contests is not compulsory and does not require the entry of personal data in case of non-participation.
In case of participation we collect contact information: email address, first and last name, demographic information and sometimes address to verify the veracity of the information provided.
This information is used to notify winners.
13. Surveys and contests
Our site can organize surveys and contests for members and visitors. Participation in these polls and competitions is not mandatory and does not require the input of personal data in the event of non-participation.
In case of participation, we collect contact information: email address, name and surname, demographic information and sometimes the address to verify the truth of the information provided.
This information is used to notify winners.