privacy policy
Through this Policy, we inform you about how we collect, use, transfer, and protect your personal data. We process this data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive No. 95/46/EC ("General Data Protection Regulation," hereinafter "GDPR") and relevant national legislation on personal data protection.
1. WHO ARE WE?
SC SOFIAMAN IMPEX SRL, hereinafter the Company or We,
Our contact details are:
Registered office address: Ștefan cel Mare street, no. 341, 615200 Tg. Neamț, Romania
Email address: comenzi@sofiaman.ro
Phone no.:0758.251.577
2. HOW DO WE PROCESS YOUR PERSONAL DATA?
The Company, in its capacity as Operator, processes the personal data of candidates applying for available positions, employees, individual clients, representatives of legal entity clients, contractual partners and collaborators, and the data of other natural persons who interact with the Company and/or are involved in contractual relationships with it.
Personal data are:
- processed lawfully, fairly, and transparently in relation to the data subject;
- collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes;
- adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed;
- accurate and kept up to date;
- kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;
- processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.
3. WHAT TYPES OF PERSONAL DATA ARE PROCESSED AND FOR WHAT PURPOSE ARE THEY PROCESSED?
In the context of personnel recruitment, we process the following types of personal data: first name, last name, address, date of birth, citizenship, gender, phone number, email address, data regarding professional and/or social experience, education and professional training, skills, and other personal data resulting from the information contained in the CV and cover letter submitted, and, where applicable, following discussions during the job interview.
For the conclusion and execution of service provision and partnership/collaboration contracts, we primarily process the following types of personal data: first name, last name, identity card/passport series and number, gender, home/residence address, bank account number, email address, phone number.
For completing and submitting the contact form ("Contact") and order form ("Order") on the Company's website - www.sofiaman.ro, we process the following types of personal data: first name, last name, email, phone number, and, where applicable, other data if left at the initiative of the data subject in the "Message" section.
For website visitors, we may collect data through cookies or other similar technologies, such as: IP address, internet browser, location, web pages accessed on our website, time spent on the website, internet network, device used. For more details, please consult the Cookie Policy.
We do not use your personal data to send you marketing communications, such as newsletters, unless you expressly consent to such communications by checking a consent box to that effect. In this regard, we only process your email and ensure that you have a simple option to unsubscribe at any time, i.e., to withdraw your consent to receive these types of communications.
4. WHAT ARE THE LEGAL GROUNDS FOR PROCESSING PERSONAL DATA?
Your personal data is processed for the purpose of:
- concluding and executing various contracts+;
- fulfilling our legal obligations;
- based on consent requested and/or provided in advance (in the context of personnel recruitment, for sending marketing communications, etc.);
- for the legitimate interests pursued by the Company (e.g., adopting protection and security measures for our employees, exercising legitimate rights and interests of the Company in contentious or non-contentious proceedings, etc.).
5. HOW LONG DO WE PROCESS YOUR PERSONAL DATA?
Personal data is stored for processing for the duration necessary to achieve the processing purposes mentioned in this Policy or for the duration required by law (e.g., for archiving, accounting, etc.).
6. TO WHOM DO WE TRANSMIT PERSONAL DATA?
We will not communicate or transfer any of the personal data collected from or about you to any third party, with the exception of:
- Public authorities and institutions - when there is a legal obligation to do so or for a legitimate interest (defending the Company's rights in contentious or non-contentious proceedings, etc.).
- Contractual partners or collaborators of the Company who provide us with web hosting, website development and maintenance, online marketing services, etc.
- If you have given your explicit and specific consent for that situation and those data.
In cases where personal data processed by the Company is transferred by it directly or through its contractual partners/collaborators outside the European Economic Area, we ensure that these transfers comply with the GDPR (especially Art. 46 of the GDPR), applicable legal provisions, are based on appropriate safeguards (standard data protection clauses adopted by the Commission), and that enforceable rights and effective remedies for data subjects exist.
7. WHAT PROTECTION MEASURES AND GUARANTEES DO WE TAKE?
The Company implements appropriate technical and organizational measures to ensure a high level of security and protection of personal data. We use security methods and technologies, along with internal working policies and procedures, including control and audit, to protect personal data collected in accordance with relevant applicable legal provisions on personal data protection.
8. WHAT ARE YOUR RIGHTS AS A DATA SUBJECT?
Any data subject may exercise the following rights, as provided by the General Data Protection Regulation:
- Right of access;
- Right to rectification;
- Right to erasure;
- Right to restriction of processing;
- Right to data portability;
- Right to object to processing;
- Right not to be subject to a decision based solely on automated processing, including profiling;
- Right to lodge a complaint with the National Supervisory Authority for Personal Data Processing (www.dataprotection.ro) and the courts.
To exercise these rights or for any questions regarding the processing of your personal data, please contact us at the email address: dpo@sofiaman.ro or by phone: 0365401269, contact person Ionel Orza. Data Protection Officer (DPO) services are outsourced and provided by GDPRComplet.”
Last updated: 12.03.2026



