GDPR Compliance Statement
Our Commitment to GDPR Compliance
At You'll Get It, we are committed to ensuring the privacy and protection of your personal data in compliance with the General Data Protection Regulation (GDPR) and relevant Romanian data protection laws.
Data Protection Principles
We adhere to the following principles when processing your personal data:
- Lawfulness, Fairness, and Transparency: We process data lawfully, fairly, and in a transparent manner.
- Purpose Limitation: We collect data for specified, explicit, and legitimate purposes.
- Data Minimization: We limit data collection to what is necessary for the purposes for which it is processed.
- Accuracy: We take reasonable steps to ensure personal data is accurate and kept up to date.
- Storage Limitation: We retain data only for as long as necessary for the purposes for which it is processed.
- Integrity and Confidentiality: We process data in a manner that ensures appropriate security.
- Accountability: We are responsible for and can demonstrate compliance with these principles.
Legal Basis for Processing
We process personal data only when we have a valid legal basis under the GDPR, including:
- Consent
- Contractual necessity
- Legal obligation
- Vital interests
- Public interest
- Legitimate interests
Data Subject Rights
Under the GDPR, you have the following rights:
- Right to Information: Receive clear information about how we use your data.
- Right of Access: Obtain confirmation that we are processing your data and access your personal data.
- Right to Rectification: Have inaccurate personal data corrected or completed if incomplete.
- Right to Erasure: Request deletion of your personal data in certain circumstances.
- Right to Restriction of Processing: Request restriction of processing in certain circumstances.
- Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format.
- Right to Object: Object to processing based on legitimate interests or direct marketing.
- Rights Related to Automated Decision Making and Profiling: Not be subject to decisions based solely on automated processing that produce legal effects.
To exercise these rights, please contact us at contact@youllgetit.eu.
Data Protection Officer
Contact us at:
- YOU'LL GET IT S.R.L.
- Reg. No: J2025027781008
- CUI: 51649682
- EUID: ROONRC.J2025027781008
- contact@youllgetit.eu
International Data Transfers
When we transfer personal data outside the European Economic Area (EEA), we ensure adequate protection through:
- EU Commission adequacy decisions
- Standard contractual clauses
- Binding corporate rules
- Other appropriate safeguards
Data Breach Procedures
We have procedures in place to detect, report, and investigate personal data breaches. In case of a breach that is likely to result in a risk to your rights and freedoms, we will notify the Romanian National Authority for the Supervision of Personal Data Processing (ANSPDCP) and, in high-risk cases, the affected individuals.
Data Protection Impact Assessment
We conduct Data Protection Impact Assessments (DPIAs) when processing is likely to result in a high risk to individuals' rights and freedoms, particularly when using new technologies.
Records of Processing Activities
We maintain records of our data processing activities as required by Article 30 of the GDPR.
Contact Information
If you have any questions about our GDPR compliance, please contact: contact@youllgetit.eu
Last Updated: April 9, 2025