PRIVACY POLICY

Privacy policy

1. Context

1.1. RPABOX AUTOMATION S.R.L., a Romanian limited liability company registered with the Trade Registry under no. J40/12526/2018, sole registration no. 39820340, having its registered office in Bucharest, Sector 2, 13 Barbu Vacarescu Street, (“RPAbox”, “we” or “us”), who provides certain professional services in connection with robot process automation software (the “Services”) and who, in connection with those Services or your use of this website, acts as a controller of your personal data.

1.2. This privacy policy (the “Privacy Policy”) describes how your information is collected, used and shared when you use the Services or otherwise engage with us. The Privacy Policy must be read in conjunction with our Terms of Service and is deemed to be incorporated therein by reference.

1.3. The term “you” shall be construed and interpreted as to refer to any individual person accessing this website or having access to the Services provided by us, and whether directly or in the context of its organization.

1.4. The term “personal data” shall be construed and interpreted as to refer to any information which may be used to identify you such as your name, e-mail address, telephone number, social media usernames or your business title or IP address.

1.5. Please read the Privacy Policy and contact us if you need further assistance.

2. Communications

2.1. Any provision of personal data by you to us shall be governed by this Privacy Policy.

2.2. In case you have reasonable suspicion that your personal data has been compromised in relation herein, need any assistance, or wish to exercise any of your rights detailed below, please contact us immediately at contact [at] rpabox.com.

3. Personal data we collect

3.1. In relation to your use of this website, we may collect and process the following type of personal data:
(i). your contact details, such as full name and email address, as these are provided by you;
(ii). your work title, department name and other information related to your work or organisation, as these are provided by you;
(iii). your public details, as available on social media pages such as LinkedIn or Facebook, for the purpose of offering a tailored answer to your queries.

3.2. In relation to the provision of Services to you, we may collect and process the following type of personal data:
(i). your contact details, such as full name and email address, country, city, as these are provided by you or your organization;
(ii). your work title, department name and other information related to your work or organisation, as these are provided by you or your organization;

3.3. We have no intention of collecting any personal data of children below 16 years old and should it come to our attention that such data has reached us, we shall delete it immediately.

4. Storage of personal data

4.1. We store personal data until no longer necessary to provide our Services and in accordance with any retention of information (including any personal data contain therein) obligations that we may have pursuant to the applicable law or any contractual documentation.

4.2. Necessity is determined on a case by case basis and dependant on the nature of the personal data, reason for collection and processing, retention needs or obligations and/or other similar criteria.

5. Disclosure of Information

5.1. For the purposes described herein, we may disclose any of your personal data to:

(i). third-party service providers assisting us in providing the Services or any part thereof;
(ii). our professional advisors, such as attorneys, financial consultants, auditors;
(iii). third-party applications or websites which may be connected to, or which we use in providing, the Services;
(iv). third-parties who may acquire RPAbox in whole or in part, pursuant to an acquisition, spin-off or other similar transaction;
(v). any governmental authority or regulatory body, for the purpose of safety measures, addressing alleged illegal behaviours, or in connection with an order, subpoena, warrant, or other type of request.

5.2. Processors. With respect to the persons to which we are disclosing your personal data and which act as processors for us, we make every effort to ensure:

(i). they are bound by contractual arrangements granting personal data protection;
(ii). they store your personal data in safe locations and keep proper security measures in place.

5.3. Controllers. We are also using services of certain contractors that are also controllers of your personal data, such as e-mail service providers and for further details, please also check out their own privacy policies.

6. Transferring data abroad

6.1. We may transfer any of your personal data in any country of the European Union, or the European Economic Area, and any other third countries.
6.2. Nonetheless, in operating such transfers, we shall:

(i). comply with the requirements and conditions imposed by the applicable law, including and without limitation, the EU General Data Protection Regulation, and
(ii). make sure adequate protection is in place in the country of destination, or
(iii). if not, enter into standard clauses agreements with, and request certification mechanisms from, the person to which we are disclosing any data.

7. Keeping personal data secure

7.1. It is our aim to protect the personal data we collect and for that purpose we undertake all efforts to implement and to keep the best security measures in place.

8. Your rights in respect of personal data

8.1. You should know that, in relation to your personal data that we may process, you maintain the following rights:
(i). Right of access – you can send us a request for us to confirm what type of personal data we process and the conditions of processing;

(ii). Right to rectification – you can request us to rectify any inaccurate or incomplete personal data;

(iii). Right to be forgotten - you can request us to erase any personal data where: (i) it is no longer needed in the context of its initial purpose and there is no actual lawful purpose, (ii) you withdraw your consent, (iii) you appeal to your right to object and there are no legitimate grounds for us to continue processing it, (iv) we have unlawfully processed it, (v) it is necessary for compliance with EU law or RPAbox national law, or (vi) it was collected from children.
(iv). Right to restriction of processing – you can request us to restrict processing your personal data where: (i) you contest its accuracy for a period enabling us to perform verifications thereof, (ii) the processing is unlawful, and you choose restriction over erasure, (iii) we no longer need it the purposes of processing but you require us to do so, for the purposes of establishing, exercising or defending a legal claim, or (iv) you have objecting our processing and verification of the legitimate grounds is pending.
(v). Right to data portability – if the processing is made on the basis of your consent or the performance of a contract and is undertaken by using automatic means, you can request receiving your personal data that you have provided us in a structured, commonly used and machine-readable format and transfer such data to another controller, where technically feasible.
(vi). Right to object - you may object, on grounds relating to your particular situation, if processing is based on legitimate interest and to object any processing for marketing purposes, including profiling.
(vii). Right not to be subject to a decision based solely on automated processing, including profiling - you may ask not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or which similarly significantly affects you.

(viii). Right to file a complaint – you may file a complaint with the data protection authority (in Romania, the ANSPDCP) and also, address your complaint to the competent courts of law.

8.2. Should you wish to exercise any of your rights detailed above, please contact us immediately at contact [at] rpabox.com.

9. Amendments to the Terms of Service

9.1. This Privacy Policy may be amended and updated from time to time, including for the purposes of ensuring protection of your personal data, transparency in respect of our processing, or any applicable law requirements, provided however, that in relation to any material changes hereof, we shall make best efforts to provide you with reasonable notice.