SneakerDB

Privacy Policy

This document explains how SneakerDB, headquartered in Bucharest, Sector 3, Aleea Fetești, Nr. 2-4, o cameră, Bloc I25, Scara 2, Etaj 2, Ap. 22, registered with the Trade Register Office under no. J40/12484/2020 CUI 43110678, processes your personal data and ensures its protection, in accordance with applicable legislation, including Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).

This notice applies to data processing carried out by SneakerDB. This document is relevant to you regardless of your position: customer, partner - natural person, representative of a partner - legal entity, applicant for an offer, or person who contacts us for other purposes (e.g., regarding requests or complaints), visitor to any of our offices or workplaces, internal staff, visitor to our website, etc.

This notice covers, in the following order:

  • categories of personal data we process;
  • purposes for which we process that personal data;
  • grounds that justify our processing;
  • persons to whom we disclose the data;
  • period for which we store the data;
  • consequences of refusing to provide us with your personal data;
  • your rights and information about how to exercise them;
  • our contact details;
  • situations in which this notice applies and its modifications.

1. Categories of Data, Purpose, Grounds

1.1. Current/Potential Customers of SneakerDB

We may process personal data regarding our customers' representatives for:

  • Providing our services. We will use your data to send you an offer (at your request), to conclude and execute the contract with you, and to ensure we provide the requested services. In this case, we will base the processing on the need to conclude and/or execute the contract with you and on your consent for sending offers. We will mainly process your contact data (name, email, phone) and, if we have a contractual relationship with you, the data included in the contract.
  • Operation of our services. We will use your data to ensure the operation of our services through their evaluation and sending of transactional messages/alerts or messages related to program functionalities. We also use your data for internal statistics regarding service functionality. We will mainly process your identification data (name, email, phone), your feedback, IP address, access and usage logs. We will also keep audio recordings of phone conversations with our employees for these purposes. The grounds for these processing activities will be, as applicable, the execution of the contract with you, our legitimate interest, or consent.
  • Handling your requests. We will use your data to respond to any requests, requirements, complaints, or other questions you send us in the context of our relationship. In this case, the grounds for processing will be the execution of the contract with you or, as applicable, your consent. We will mainly use your name, contact data (email, phone), and information included in the request you send us.
  • Marketing communications. To send you communications and offers about our products, services, and promotions (on our initiative), we need to process your personal data. In this case, data processing will be based on your consent. We will mainly process the following data about you: name, email, phone.

1.2. Members of Our Contractual Partners - Legal Entities

We may process your data for:

  • Maintaining contractual relationships
  • Marketing communications

1.3. Our Contractual Partners - Natural Persons

We may process your personal data for:

  • Conducting business relationships
  • Handling your requests
  • Marketing communications

1.4. Members of Public Authorities

In this case, we will use your personal data to fulfill our legal obligations, such as responding to authority requests, maintaining required records, and similar matters.

For example, we must keep your name, the authority you represent, and your signature in control registers that the law requires us to maintain. Also, if you send us an information request on behalf of your authority-employer, we will process your data (name, position, employer, email, phone) to respond.

1.5. If You Are a Visitor to Our Premises

In this case, we may use your personal data to ensure the security of persons and property.

At reception, we will process your personal data included in a valid ID document, as well as information about the purpose of the visit, all for ensuring the security of persons and property in our premises, based on our legitimate interest.

1.6. If You Are a Visitor to Our Websites or Have Interacted with Any of Our Social Media Pages

In this case, we may use your personal data for the following purposes:

  • Improving your website experience. To take into account preferences you've expressed in previous browsing sessions, to adapt our website to your device, to solve problems you might encounter when accessing it, we process data such as: IP address; cookie identifiers; other online identifiers; unique device identifier (UUID); date and time of website access; visit history; web request; date and time of request/access; device used to access the website; Internet browser type and language; information about events on your device (e.g., errors); information about your device's hardware settings; information about your location when accessing our website.
  • Understanding your opinions. When you post a comment under one of our social media posts, press the Like button, share our post, or send us a message on any of our pages, we will mainly process the data you've provided (username, profile picture, action taken - like/other reaction, content of your comment or message).
  • Managing our IT systems and protecting them. We may process your data for: managing our communication systems; managing our IT security; conducting security audits of our IT networks; protecting our data and systems against attacks and similar acts in the virtual environment.

1.7. If You Have Submitted a Review or Participated in Our Campaigns

In this case, we may use your data to promote the company and its projects, including through the use of testimonials provided.

In these cases, processing is based on your consent. The data that may be processed can be, as applicable: name, photo, video (in case of testimonials provided this way).

1.8. In General, Regardless of Your Position

We may also process your data for the following purposes:

  • Handling your requests. We will use your data to respond to any requests, requirements, complaints, or other questions you address to us.
  • Responding to authority requests or processing data in other cases where the law requires us to. Sometimes we may have a legal obligation to communicate your data to certain authorities, to store your data for a certain period, or to process your data in another way.
  • Conducting transactions, restructuring, or other operations. In the context of transactions, we may disclose your data to potential buyers or their consultants or authorities, although we will try to minimize this as much as possible.
  • Protecting our rights and interests or those of other persons. We may process your data to establish, exercise, or defend our rights or interests or those of other persons before courts, enforcement officers, notaries, other public authorities, arbitration tribunals, mediators, or other public or private bodies that resolve disputes.
  • Fraud prevention. We are interested in conducting our activity legally. Therefore, we may process your data (such as by transmitting this data to our consultants in various fields - auditors, lawyers, etc., or by consulting this data).

1.9. About Third-Party Data

If you provide us with personal data about other persons (e.g., your representatives, family members, dependents, etc.), you must ensure that you have informed them about this and directed them to this notice regarding how SneakerDB processes personal data.

We will inform the respective persons appropriately about how we process their data, when applicable.

2. To Whom We Disclose Your Personal Data

As a rule, we do not disclose your data to other natural or legal persons. We limit access to data for persons outside the SneakerDB company, but in certain cases, it may be necessary to disclose your data as described below.

3. Conditions for Transferring Your Data to Third Countries

At present, we do not transfer and do not intend to transfer your personal data or parts thereof to other companies, organizations, or persons in third countries or to international organizations.

4. How Long We Keep Your Data

We store your data in accordance with our personal data storage policy, which assigns a storage period based on the processing purpose and the category of data processed.

5. What Happens If You Don't Provide Us With Data

In most cases, you are not obliged to provide us with your personal data. However, if you do not provide the requested data, we will not be able to, for example, conclude or negotiate a contract with you, sell you products or provide our services, allow you access to all options on our website, respond to your complaints or requests, or send you communications about products, services, and promotions that might interest you.

6. Absence of Automated Decision-Making

We do not make decisions based solely on automated processing of your data (including profiling) that would produce legal effects concerning you or similarly significantly affect you.

7. Your Rights and How to Exercise Them

Your Rights

  • Right of access to data
  • Right to rectification of data
  • Right to erasure of data ("right to be forgotten")
  • Right to restriction of processing
  • Right to object
  • Right to data portability
  • Right to withdraw consent
  • Right to lodge a complaint with the supervisory authority

8. Our Contact Details

You can contact us at the following details:

  • Full name: SneakerDB
  • Correspondence address: Bucharest, Sector 3, Aleea Fetești, Nr. 2-4, o cameră, Bloc I25, Scara 2, Etaj 2, Ap. 22
  • Email address: "hello [at] sneakerdb [dot] net"
  • Website: www.sneakerdb.net

9. When This Notice Applies

This general notice applies to the processing of data concerning you by SneakerDB.

10. Modifications to This Policy

We may modify this policy. In such cases, we will inform you in advance by posting this policy on the website 20 days before it takes effect.

This version of the policy will take effect on October 9, 2021.

11. What the Terms Used in This Notice Mean

  • Supervisory Authority for Personal Data Processing: an independent public authority that, according to the law, has responsibilities regarding the supervision of compliance with personal data protection legislation. In Romania, this supervisory authority is the National Supervisory Authority for Personal Data Processing (ANSPDCP).
  • Special Categories of Personal Data (Sensitive Personal Data): personal data that reveals racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership; genetic data; biometric data for the unique identification of a natural person; data concerning health, sex life, or sexual orientation of a natural person.
  • Personal Data: any information relating to an identified or identifiable natural person (referred to as "data subject"). A natural person is identifiable if they can be identified, directly or indirectly, particularly by reference to an identifier such as a name, identification number, location data, online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
  • Controller: the natural or legal person who determines the purposes and means of processing personal data. According to the law, the responsibility for compliance with personal data legislation rests primarily with the controller. In our relationship with you, we are the controller, and you are the data subject.
  • Processor: any natural or legal person who processes personal data on behalf of the controller, other than the controller's employees.
  • Data Subject: the natural person to whom certain personal data refers (to whom the data "belongs"). In our relationship with you (the controller), you are the data subject.
  • Processing of Personal Data: any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of personal data/sets of personal data.
  • Third Country: a country outside the European Union and the European Economic Area.