Processing and protection of personal data

Privacy Policy on the Processing of Personal Data
We consider ensuring the right to the protection of personal data as a fundamental commitment ElectricSun.de, so we will devote all necessary resources and efforts to process your data in full compliance with Regulation (EU) 2016/679 (“General Data Protection Regulation” or “GDPR“), as well as any other legislation applicable in Romania. As one of the essential principles of this legal framework is transparency, we have prepared this document in forming you about how we collect, use, transfer and protect your personal data when you interact with us in connection with our products and services, including through our website or through the apps available on your mobile phone.

We reserve the right to update and modify this Privacy Policy from time to date to reflect any changes in the way we process your personal data or any changes to legal requirements. In the event of any such change, we will display the amended version of the Privacy Policy on our website, which is why we ask you to periodically check the content of this Privacy Policy.

Who are we and how you can contact us?
ElectricSun.de is the trade name of S.C. ELECTRICSUN S.R.L., the legal person of Romanian nationality, having its registered office in Arad, postal code 310212, 12 Gorunului Street, having serial number in the Trade Register J02/858/02.12.2010, unique tax registration code RO27769953 (hereinafter “ElectricSun.de” or “we”) for the purposes of data protection legislation, when processing your personal data.

As we are always open to finding out your opinions, as well as to provide you with any additional information you may need regarding the processing of your data, we encourage you to contact the Data Protection ElectricSun.de Officer at the e-mail address office@electricsun.de or by post or courier at Arad, postal code 310212, 12 Gorunului Street – with mention: to the attention of the Data Protection officer ElectricSun.de.

What categories of personal data do we process?
In general, we collect your data directly from you, so you have control over the type of information you provide us. As an example, we receive information from you:

When you create an account ElectricSun.de, you send us: email address, first and last name;
Within your page (My Account) from the ElectricSun.de platform you can add additional information, such as: photo, gender, nickname, mobile phone number, landline number, date of birth, education level, delivery addresses, alternative email address, bank card details, etc.;

When placing an order, you provide us with information such as: the desired product, first and last name, delivery address, billing details, payment method, phone number, bank card details, etc.

We also offer you the opportunity to register in ElectricSun.de platform through your Facebook or Google account. If you choose one of these options, you’ll be directed to a Facebook Inc/Google LLC-managed page, where they’ll inform you about the transfer of your data. to ElectricSun.de. You can view Facebook and Google’s privacy policies using the following links: https://www.facebook.com/about/privacy, https://policies.google.com/privacy

We may also collect and process certain information about your behaviour while visiting our website or using the smartphone app to personalize your online experience and provide you with offers tailored to your profile. We invite you to learn more about this by consulting the section on the purposes of processing below.

On our website and in the smartphone app we may store and collect information in cookies and similar technologies, according to the Cookie Policy.

We do not collect or otherwise process sensitive data included by the General Data Protection Regulation into special categories of personal data. We also do not wish to collect or process data of minors under the age of 16.

What are the purposes and grounds of processing

We will use your data. for the following purposes:

1. For the provision of services ElectricSun.de for your benefit.
This general purpose may include, where appropriate, the following:
a) Creating and managing your account within the ElectricSun.de platform;
b) Processing of orders, including taking, validating, dispatching and invoicing them;
(c) Resolution of cancellations or problems of any kind relating to an order, goods or services purchased;
d) Return of products in accordance with legal provisions;
(e) Reimbursement of the value of the products in accordance with the legal provisions;
f) Providing funding through eCredit, in collaboration with our partners Cetelem and BRD Finance;
g) Issue of Raiffeisen Bank’s ElectricSun.de card;
h) Providing support services, including providing answers to your questions about your orders or ElectricSun.de goods and services.

Processing your data for these purposes is in most cases necessary for the conclusion and execution of a contract between ElectricSun.de and you. Certain processes subsumed to these purposes are also required by applicable law, including tax and accounting legislation.

2. To improve our services
We always want to offer you the best online shopping experience. To do this, we may collect and use certain information about your behaviour, as Buyer, we may invite you to complete satisfaction questionnaires following the completion of an order or we may conduct, directly or with the help of partners, market studies and research.

We base these activities on our legitimate interest in conducting business, always taking care that your rights and freedoms are not in any way affected.

3. For marketing purposes
We want to keep you up to date on the best deals for the products/services you are interested in. In this respect, we can send you any type of message (such as: e-mail/SMS/telephone/mobile push/webpush/etc.) containing general and thematic information, information about products similar or complementary to those you have purchased, information about offers or promotions, information about products added in the “My Account/My Basket” section or the “Account/Favourites” section or shown interest in purchasing them, as well as other commercial communications such as market research and opinion polls, and we may display personalized recommendations on the website and smartphone app. To provide you with information of interest to you, we may use certain data about your behaviour as buyer (e.g. products viewed/added to wish-list/purchased) to create a profile. We always ensure that these processes are carried out respecting your rights and freedoms and that decisions made on their basis have no legal effect on you and do not affect you to a significant extent.

In most cases, we base our marketing communications on your previous consent. You can change your mind and withdraw your consent at any time by:
– Changing customer account settings in the “My Subscriptions” section;
– Accessing the unsubscribe link displayed within the messages you receive from us; or by
– Contacting ElectricSun.de using the contact details described above.

In certain situations, we can base our marketing activities on our legitimate interest in promoting and developing our business. I. In any situation where we use information about you for a legitimate interest of ours, we take care and take all necessary measures to ensure that your rights and freedoms are not affected. However, you can ask us at any time, by the means described above, to stop processing your data for marketing purposes, and we will comply with your request.

4. To defend our legitimate interests
There may be situations where we use or transmit information to protect our rights and business. These may include:
– Measures to protect the website and users of the platform ElectricSun.de from cyber-attacks:
– Measures to prevent and detect attempted fraud, including the transmission of information to the competent public authorities;
– Measures to manage the various other risks.

The general basis of these types of processing is our legitimate interest in defending our business, being understood that we ensure that all measures we take guarantee a balance between our interests and your fundamental rights and freedoms.

In some cases, we also base our processing on legal provisions such as the obligation to ensure the security of the goods and values provided for by the applicable legislation in this field.

How long do we keep your personal data?
As a general rule, we will store your data as long as you have an account in the ElectricSun.de platform. You may ask us to delete certain information or close your account at any time, and we will comply with these requests, subject to the preservation of certain information, including after the account is closed, in situations where applicable law or our legitimate interests require it.

Who do we transmit your personal data to?
Where applicable, we may transmit or provide access to certain personal data to the following categories of recipients:
– companies within the same group of companies as ElectricSun.de;
– courier service providers;
– payment/banking service providers;
– marketing/telemarketing service providers;
– market research service providers;
– insurance companies,
– IT service providers;
– other companies with which we can develop joint programmes to offer our goods and services on the market.

If we have a legal obligation or if it is necessary to defend a legitimate interest, we may also disclose certain personal data to public authorities.

We make sure that access to your personal data is available to you. by third-party legal persons governed by private law shall be carried out in accordance with the legal provisions on data protection and confidentiality of information, on the basis of contracts concluded with them.

Which countries do we transfer your personal data to?

We currently store and process your data. personal data on the territory of the European Union.

However, we may transfer some of your data. entities located in the European Union or outside the Union, including countries to which the European Commission has not recognised an adequate level of protection of personal data.

We will always take steps to ensure that any international transfer of personal data is carefully managed in order to protect your rights and interests. Transfers to service providers and other third parties will always be protected by contractual commitments and, where appropriate, other safeguards, such as standard contractual clauses issued by the European Commission or certification schemes, such as the Privacy Shield for the Protection of Personal Data Transferred from within the EU to the United States of America.

You can contact us at any time, using the contact details set out above, to learn more about the countries where we transfer your data and the guarantees we have implemented with respect to these transfers.

How do we protect the security of your data Personal
We are committed to ensuring the security of personal data by implementing appropriate technical and organisational measures, in accordance with industry standards.

Transmission of your data personal data is done using state-of-the-art encryption algorithms and we store them on secure servers, while ensuring data redundancy.

To make payments we use the services of the payment processor euplatesc.ro . Any payment information is encrypted using HTTPS technology with TSL 1.2 encryption.

Despite the steps taken to protect your personal data, we would like to point out that the transmission of information over the Internet, in general, or through other public networks, is not completely secure, with the risk that the data will be seen and used by unauthorized third parties. We cannot be responsible for such vulnerabilities of systems that are not under our control.

What rights do you have?
The General Data Protection Regulation recognises a number of rights in relation to your personal data. You can request access to your data, correct any mistakes in our files, and/or object to the processing of your personal data. You may also exercise your right to complain to the competent supervisory authority or to seek justice. If applicable, you may also have the right to request the deletion of your personal data, the right to restrict the processing of your personal data and the right to data portability.

More information on each of these rights can be obtained by consulting the table below.

In order to exercise your rights, you can contact us using the contact details set out above. Please note the following if you wish to exercise these rights:

Identity. We take the confidentiality of all records containing personal data very seriously. For this reason, please send us your requests, registrations using the email address for the ElectricSun.de account. Otherwise, we reserve the right to verify your identity by requesting additional information aimed at confirming your identity.

Fees. We will not charge you for exercising your rights regarding the protection of your personal data, unless your request to access information is unfounded, i.e. repetitive or excessive, in which case we will charge a reasonable amount. We will inform you of any fees applied before you resolve your request.

Duration of response. We intend to respond to any valid requests within a maximum of one month, unless this is particularly complicated or if you have made several requests, in which case we are expected to respond within a maximum of two months. We’ll let you know if we need more than a month. We may ask you if you can tell us exactly what you want to receive or what you are worried about. This will help us act faster and shorten the response time to your request.

Rights of third parties. We must not comply with a request if it would adversely affect the rights and freedoms of other data subjects.

Targeted Rights Description

You can ask us:

Access
• confirm whether we process your personal data;
• provide you with a copy of this data;
• provide you with other information about your personal data, such as the data we have, what we use, to whom we disclose it, if we transfer it abroad and how we protect it, how long we retain it, what rights you have, how you can make a complaint, where we obtained your data, insofar as the information has not already been provided to you by this information.

Correction
You may ask us to rectify or supplement your inaccurate or incomplete personal data.
We may try to verify the accuracy of the data before it is corrected.

Delete data
You may ask us to delete your personal data, but only if:
• they are no longer necessary for the purposes for which they were collected; Or
• you have withdrawn your consent (if the processing of the data was based on consent); Or
• give effect to a legal right to object; Or
• they have been illegally processed; Or
• we have a legal obligation to do so.

We are under no obligation to comply with your request to delete your personal data if the processing of your personal data is required for:
• to comply with a legal obligation; Or
• for the establishment, exercise or defence of a right in court.

There are certain other circumstances in which we are not obliged to comply with your request to delete data, although these are the most likely circumstances in which we may refuse this request.

Be aware that, before exercising this right, you download from your ElectricSun.de account and save all documents related to orders made from ElectricSun.de, whether the billing was made to you or to another natural or legal person (such as: invoices, guarantee certificates). If you do not do this before exercising your right of deletion, you will lose all these documents and ElectricSun.de will be unable to provide them to you, as appropriate, because the process of deleting the data, respectively the ElectricSun.de account, with all the data and documents related to it, is an irreversible process.

Restricting data processing
You may ask us to restrict the processing of personal data, but only if:
• their accuracy is disputed (see rectification section) to allow us to verify their accuracy; Or
• processing is illegal, but you do not want the data deleted; Or
• they are no longer necessary for the purposes for which they were collected, but you need them to establish, exercise or defend a right in court; Or
• You have exercised your right to object and verifying that our rights prevail is ongoing.

We can continue to use your personal data following a request for restriction, where:
• we have your consent; Or
• to establish, exercise or defend a right in court; Or
• to protect the rights of ElectricSun.de or other natural or legal person.

Data portability
You can ask us to provide your personal data in a structured, commonly used and readable format, or you can request that it be “ported” directly to another data controller, but in each case only if:
• Processing is based on your consent. or on the conclusion or performance of a contract with you; And
• processing is done by automatic means.

Opposition
You may object at any time, for reasons related to your particular situation, to the processing of your personal information on the basis of our legitimate interest, if you consider that your fundamental rights prevail over this interest.

You can also object to the processing of your data at any time for direct marketing purposes (including profiling) without invoking any reason, in which case we will cease this processing as soon as possible.

Making automatic decisions
You may ask not to be subject to a decision based solely on automatic processing, but only when that decision:
• produces legal effects on you; Or
• affects you in a similar way and to a significant extent.

This right shall not apply where the decision reached following automatic decision-making:
• we are required to enter into or terminate a contract with you;
• is authorized by law and there are adequate safeguards for your rights and freedoms; Or
• is based on your explicit consent.

Complaints You have the right to file a complaint with the supervisory authority about the processing of your data. Personal. In Romania, the contact details of the data protection supervisory authority are as follows:

National Supervisory Authority for Personal Data Processing
28-30 General Gheorghe Magheru Street, Sector 1, postal code 010336, Bucharest, Romania, Phone: +40.318.059.211 or +40.318.059.212; E-mail: anspdcp@dataprotection.ro

Without affecting your right to contact the supervisory authority at any time, please contact us in advance, and we promise that we will make every effort to resolve any matter amicably.

• Please note that you can contact the Data Protection ElectricSun.de officer at any time by submitting your request in any of the following ways:
– by e-mail at: office@electricsun.de or
– by post or courier at: 12 Gorunului Street, Postal code 310212, Arad – to the attention of the Data Protection Officer ElectricSun.de.

Cookies usage policy and similar technologies

The https://www.ElectricSun.de site uses cookies. By browsing this site, you consent to the use of cookies.

The following information is intended to inform the user of more details about the placement, use and administration of cookies used by the website https://www.ElectricSun.de or other sites in the ElectricSun network. There are also some useful links related to this topic. If you need more information that is not found below, you can contact us at: office@electricsun.de.

Please read the following information carefully:

This website uses cookies to provide visitors with a much better browsing experience and services tailored to everyone’s needs and interests.

In what we call “web 2.0”, “cookies” play an important role in facilitating access and delivery of the many services that the user enjoys on the Internet, such as:
• Personalization of certain settings such as: the language in which a site is viewed, the currency in which certain prices or tariffs are expressed, keeping options for various products (measures, other details, etc.) in the shopping cart (and memorizing these options) – thus generating the flexibility of the “shopping basket” (accessing old preferences by accessing the button “before” and “back”)
• Cookies provide site owners with valuable feedback on how their sites are used by users, so they can make them even more efficient and accessible to users.
• Allow multimedia or other applications from other sites to be included in a specific site to create a more valuable, useful and enjoyable browsing experience;
• Improve the efficiency of online advertising.

What is a cookie?

An “Internet Cookie” (also known as “browser cookie” or “HTTP cookie” or simply “cookie”) is a small file, consisting of letters and numbers, that will be stored on the computer, mobile terminal or other equipment of a user from whom the Internet is accessed. The cookie is installed by request issued by a web-server to a browser (e.g. Internet Explorer, Chrome) and is completely “passive” (does not contain software, viruses or spyware and cannot access the information on the user’s hard drive).

A cookie consists of two parts: the name and content or the value of the cookie. Furthermore, the duration of a cookie is determined; technically, only the webserver that sent the cookie can access it again when a user returns to the website associated with that webserver.

Cookies themselves do not require personal information in order to be used and, in most cases, do not personally identify internet users.
• Session cookies – these are temporarily stored in the web browser’s cookie folder so that it can store them until the user leaves the web site or closes the browser window (e.g. at the time of logging in/out on a webmail account or social networks)
• Persistent cookies – These are stored on the hard drive of a computer or equipment (and generally depend on the preset lifetime of the cookie). Persistent cookies also include those placed by a website other than the one the user is visiting at the time – known as ‘third party cookies’ – which can be used anonymously to memorize a user’s interests so that advertising is delivered as relevant to users as possible.

What are the advantages of cookies?

A cookie contains information that links a web browser (user) to a specific web-server (website). If a browser accesses that web-server again, it can read the information already stored and react accordingly. Cookies provide users with a pleasant browsing experience and support the efforts of many websites to provide comfortable services to users: e.g. online privacy preferences, website language options, shopping carts or relevant advertising.

What is the life of a cookie?

Cookies are managed by webservers. The life of a cookie can vary significantly, depending on the purpose for which it is placed. Some cookies are used exclusively for a single session (session cookies) and are no longer retained once the user has left the website and some cookies are retained and reused every time the user returns to that website (‘permanent cookies’). However, cookies can be deleted by a user at any time through browser settings.

What are third-party cookies?

Certain sections of content on some sites may be provided through third parties/providers (e.g. news box, video or ad). These third parties may also place cookies through the website and they are called “third party cookies” because they are not placed by the owner of that website. Third-party providers must also comply with the applicable law and the privacy policies of the site owner.

How cookies are used by this site

A visit to this site may place cookies for the purposes of:
• Site performance cookies
• Visitor analysis cookies
• Cookies for geotargetting
• Registration cookies
• Advertising cookies
• Advertising Provider Cookies
These cookies may come from third parties.

Performance Cookies

This type of cookie retains the user’s preferences on this site, so there is no need to set them every time you visit the site.
Examples:
• Volume settings for video player
• the speed of video streaming with which the browser is compatible

Cookies for visitor analysis

Each time a user visits this site the analytics software provided by a third party generates a cookie for the user’s analysis. This cookie tells us if you have visited this site before. The browser will tell us if you have this cookie, and if not, we will generate one. It allows to monitor the unique users who visit us and how often they do it. As long as you are not registered on this site, this cookie cannot be used to identify individuals, they are used only for statistical purposes. If you are registered we may also know the details you have provided to us, such as your email address and username – which are subject to confidentiality and the provisions of the Terms and Conditions, the Privacy Policy and the provisions of applicable legislation regarding the protection of personal data.

Cookies for these

These cookies are used by a software that determines which country you come from. It is completely anonymous and is used only to target content – even when you are on our page in Romanian or another language you receive the same advertisement.

Cookies for registration

When you register on this site, we generate a cookie that tells us whether you are registered or not. Our servers use these cookies to show us the account you are registered with and if you have permission for a specific service. It also allows us to associate any comments you post on our website with your username. If you have not selected “keep me registered”, this cookie will be automatically deleted when you close your browser or computer.

Advertising cookies

These cookies allow us to find out whether or not you have viewed an online ad, what its type is and how long it has been since you saw the ad message. These cookies are also used to target online advertising. We may also use third-party cookies to better target advertising, to show for example vacation ads, if the user recently visited an article on the site about vacations. These cookies are anonymous, they store information about the content viewed, not about users. We also set anonymous cookies through other sites that we advertise. By receiving them, we can use them to recognize you as a visitor to that site if you later visit our website, we will be able to deliver advertising based on this information.

Advertising provider Cookies

Much of the advertising you find on this site belongs to third parties. Some of these parties use their own anonymous cookies to analyze how many people have been exposed to an ad message, or to see how many people have been exposed to the same ad multiple times.Companies that generate these cookies have their own privacy policies, and this site does not have access to read or write these cookies. Third-party cookies can be used to show you target advertising on other sites, based on your browsing on this site.

Other third-party cookies

On some pages, third parties can set their own anonymous cookies in order to track the success of an application, or to customize an application. Due to the way of use, this site cannot access these cookies, just as third parties cannot access cookies owned by this site. For example, when you share an article using the social networking button on this site, that social network will record your activity.

What type of information is stored and accessed through cookies?

Cookies keep information in a small text file that allows a website to recognize a browser. The webserver will recognize the browser until the cookie expires or is deleted. The cookie stores important information that improves the Internet browsing experience (e.g. language settings in which you want to access a site; keeping a user logged into your webmail account; online banking security; keeping products in your shopping cart)

Why are cookies important for the Internet?

Cookies are the focal point of the efficient functioning of the Internet, helping to generate a user-friendly browsing experience tailored to the preferences and interests of each user. Refusing or disabling cookies can make some sites impossible to use.

Refusing or disabling cookies does not mean that you will no longer receive online advertising – only that it will no longer be able to take into account your preferences and interests, highlighted by your browsing behavior.

Examples of important uses of cookies (which do not require a user to be authenticated through an account):
• Content and services tailored to the user’s preferences – categories of news, weather, sports, maps, public and government services, entertainment sites and travel services.
• Offers tailored to users’ interests – password retention, language preferences (ex: display of search results in Romanian).
• Retention of child protection filters on Internet content (family mode options, safe search functions)
• Limit the frequency of ad serving – limit the number of times an ad hits a specific user on a site.
• Providing more relevant advertising to the user.
• Measurement, optimization and features of analytics – such as confirmation of a certain level of traffic on a website, what type of content is viewed and how a user arrives on a website (e.g. through search engines, directly, from other websites, etc.). Websites conduct these analyses of their use to improve websites for the benefit of users.

Security and privacy issues

Cookies are NOT viruses! They use plain text formats. They’re not made up of pieces of code so they can’t be executed or can’t self-run. Therefore, you cannot duplicate or replicate on other networks to run or replicate again. Because they cannot perform these functions, they cannot be considered viruses.

Cookies can still be used for negative purposes. Because it stores information about users’ preferences and browsing history, both on a particular site and on several other sites, cookies can be used as a form of Spyware. Many anti-spyware products are aware of this fact and constantly mark cookies to be deleted as part of anti-virus/anti-spyware removal/scanning procedures.

In general, browsers have built-in privacy settings that provide different levels of cookie acceptance, shelf life and automatic deletion after the user has visited a particular site.

Other security issues related to cookies

Since identity protection is very valuable and represents the right of every internet user, it is advisable to know what possible problems cookies may create. Because information is constantly transmitted in both directions between the browser and the website, if an attacker or unauthorized person interferes in the transmission of the data, the information contained in the cookie can be intercepted. Although very rarely, this can happen if the browser connects to the server using an unencrypted network (e.g. an unsecured WiFi network).

Other cookie-based attacks involve wrong cookie settings on servers. If a website does not require the browser to use only encrypted channels, attackers may use this vulnerability to trick browsers into sending information through unsecured channels. Attackers then use the information for unauthorized access to certain sites. It is very important to be careful in choosing the most appropriate method of protecting personal information.

Tips for safe and responsible cookie-based browsing.

Due to their flexibility and the fact that most of the most visited sites and the largest ones use cookies, they are almost inevitable. Disabling cookies will not allow the user access to the most widely used sites including Youtube, Gmail, Yahoo and others. Here are some tips that can assure you that you do not worry but with the help of cookies:

• Customize your browser’s cookie settings to reflect a comfortable level of cookie security for you
• If you don’t mind cookies and you are the only person using your computer, you can set month time out for storing your browsing history and personal access data. • If you share access to the computer, you can consider setting your browser to delete individual browsing data each time you close your browser. This is a way to access sites that place cookies and delete any visitation information at the close of the browsing session.
• Install and constantly update your antispyware applications.

Many spyware detection and prevention applications include site detection of attacks. This prevents the browser from accessing websites that could exploit browser vulnerabilities or download dangerous software. Make sure your browser is always up-to-date. Many of the cookie-based attacks are carried out by exploiting the weaknesses of old versions of browsers.

Cookies are everywhere and cannot be avoided if you want to enjoy access to the best and largest sites on the Internet – local or international. With a clear understanding of how they operate and the benefits they bring, you can take the necessary security measures so that you can confidently browse the Internet.

How can I stop cookies?

Disabling and refusing to receive cookies may make certain sites impractical or difficult to visit and use. Also, refusing to accept cookies does not mean that you will no longer receive/see online advertising.

It is possible to set these cookies in your browser to stop being supported, or you can set your browser to accept cookies from a specific site. But, for example, if you’re not registered using cookies, you won’t be able to leave comments.

All modern browsers offer the possibility to change cookie settings. These settings are usually found in “options” or in the “preferences” menu of your browser.

To understand these settings, the following links can be useful, otherwise you can use the browser’s “help” option for more details.
• Cookie settings in Internet Explorer
• Cookie settings in Firefox
• Cookie settings in Chrome
• Cookie settings in Safari

For cookie settings generated by third parties, you can also consult the website: https://www.youronlinechoices.com/ro/

IAB Romania provides the following site to provide more information on privacy related to online advertising: https://www.youronlinechoices.com/ro/ For more details related to privacy issues, you can also access the following links:

https://www.dreptonline.ro/legislatie/oug_13_2012_modificare_prelucrare_date_caracter_personal_protectia_vietii_private_comunicatii_electronice.php
www.youronlinechoices.eu/ro
https://www.iabeurope.eu/cookies-faq/internet-cookies—increasing-and-enhancing-yourinternet-surfing-experience/what-are-cookies-how-do-they-work—cookies-faq.aspx
https://www.guardian.co.uk/info/cookies