Document content
The purpose of this Privacy Policy is to explain what data we process, for what purpose we process it and what we do with it. We are aware that your personal data belongs to you, so we make every effort to process it securely. We do not transmit personal data except in accordance with our legal obligations and only to recipients established by law.
The transmission of personal data to third parties, other than those required by law, will be carried out, if necessary, following your information and on the basis of your consent, entering into firm confidentiality agreements with these third parties that contain strict requirements regarding the technical and organizational measures for the protection of personal data mandatory for third parties.
1. Terms and conditions
All users of the site undertakes to comply with these conditions for the use of the site. By using, viewing, transmitting, retaining, storing and/or using the Site's information and materials, the services or features offered in or by the Site or the Site's content, in any way, you agree to each of the terms and the following conditions.
The Western University of Timisoara reserves the right to change unilaterally and without any prior notification: the content, the form of presentation and/or the structure of the website at any time, the changes made being considered to be accepted by you if you continue to use the website after displaying the Terms and Conditions on the website, after notifying in advance, visibly, that the present Terms and Conditions have been updated.
The site and the services provided by the site are not intended for minors, but they can access the site without any risk to them.
2. Processing of personal data
To carry out its activities, the Western University of Timișoara processes personal data of certain categories of natural persons. These may include personal data of students, employees, users of this site or collaborators/contractual partners of the Western University of Timișoara.
Personal data means any information relating to an identified or identifiable natural person, and an identifiable person is that person who can be identified, directly or indirectly, in particular by reference to an identification element such as a name, an identification number, data location, an online identifier, or to one or more specific elements of its physical, physiological, genetic, psychological, economic, cultural or social identity.
This Policy refers to the personal data of our students, employees, other people who come into contact with us or who visit our locations, employees or people in the process of hiring, collaborators, etc. and applies to personal data collected by: e-mail or directly at the location, through various forms, CVs, video recordings, website, social media, etc. In order to carry out the activity, the West University of Timișoara may collect, process and store certain personal data required from a legal point of view, in legitimate interest or for the conclusion and/or execution of a contract. This data can be, but is not limited to: name, first name, CNP, CI/BI series, age, gender, citizenship, address, IP address, telephone, e-mail address, data from special categories related to health status , photo-video images, etc.
If data about such a person is processed, this person is referred to as "data subject” within the meaning of the legislation in the field of personal data protection.
3. The purpose for which we collect and process your personal data
3.1. student
a. To provide you with our services:
– Education services – the legal basis for data processing is education legislation
Personal data processed: first and last name, home address, CNP, series and number of the identity document, telephone, e-mail address, age, sex, date of birth, personal data from special categories (information about health status)
– Research activities – the legal basis for data processing is your consent.
Personal data processed: first and last name, home address, CNP, series and number of the identity document, telephone, e-mail address, age, sex, date of birth, personal data from special categories (information about health status)
b. To communicate with you
– Your information, opinions, notifications, suggestions from you, solving the various problems you report to us, offering personalized services – the legal basis for data processing is the legitimate interest of the operator and/or the interest of the natural persons concerned
Personal data processed: first and last name, home address, CNP, series and number of the identity document, telephone, e-mail address, age, sex, date of birth, personal data from special categories (information about health status)
c. To comply with our legal obligations – the legal basis for data processing is the legal obligation of the operator
- According to the applicable legislation, some of your personal data are processed based on our legal obligation.
Personal data processed: first and last name, home address, CNP, series and number of the identity document, telephone, e-mail address, age, sex, date of birth, personal data from special categories (information about health status).
d. Legitimate interest
– Audio-video recordings through the CCTV surveillance system – the legal basis for data processing is the legitimate interest of the operator and/or the legitimate interest of the data subjects for the protection of persons and property
Personal data processed: photo-video images
– Online identifiers – the legal basis for data processing is the legitimate interest of the operator, the legitimate interest of the data subjects in protecting IT systems and improving the relationship with you.
Personal data processed: IP address, MAC address of your device, geographic location, information about your operating system and browser.
3.2. Employees or contributors
a. For employment – the legal basis for data processing is the conclusion of an Individual Employment Contract
Personal data processed: name and surname, telephone, home address, e-mail address, education and training information, professional qualifications, experience, state of health, etc. (information contained in CVs, skill sheets)
b. During employment – the legal basis for data processing is the execution of an Individual Employment Contract and the legal obligations incumbent on the operator (labor legislation)
Personal data processed: name and surname, telephone, home address, e-mail address, information on education and training, professional qualifications, experience, state of health, assessments, data of persons in care, data of minors, data of other natural persons in various employee relations etc. (information contained in CVs, skill sheets, medical leave certificates, birth, marriage, death certificates, etc.).
c. The legitimate interest
– Audio-video recordings through the CCTV surveillance system – the legal basis for data processing is the legitimate interest of the operator, the legitimate interest of the data subjects for the protection of persons and property
Personal data processed: photo-video images
– Online identifiers – the legal basis for data processing is the legitimate interest of the operator, the legitimate interest of the data subjects in protecting IT systems and improving the relationship with you.
Personal data processed: IP address, MAC address of your device, geographic location, information about your operating system and browser.
3.3. Visitors
We use your personal data to ensure the security of you, our assets and our staff. In this case, we base our data processing on the legitimate interest, namely the protection of these premises, persons, assets and personnel.
Data processed in this context may be your name as well as other personal data that you can provide us directly, at our request, as well as your images recorded using the video surveillance system.
3.4. Visitors to our site
When you access our website, the web server automatically saves access logs containing the IP address of the visitor, the web resource (document) accessed, as well as information about the Operating System/Browser used. We store this data to prevent fraud and to ensure the security of the website and information.
Also, on our website we use cookies to improve the browsing experience of all visitors, as well as to measure the effectiveness of this website.
Through cookies we do not collect or process any information on the basis of which the user could be identified. For more details, go to Policy for the use of cookies.
We collect information about how you use our services, such as the types of content you view or interact with, or the frequency and duration of your activities.
We collect the contact information you give us.
We collect information from or about the computers, phones or other devices from which you access our site, depending on the permissions you have granted.
Here are some examples of device information we collect:
- attributes such as operating system, hardware version, device settings, file and software names and types, and device identifiers;
- device locations, including specific geographic locations, such as through GPS, Bluetooth, or Wi-Fi signals;
- connection information, such as mobile operator or Internet Service Provider (ISP) name, browser type, language and time zone, mobile phone number and IP address.
4. Transmission of personal data to third parties
The Western University of Timișoara transmits personal data to the following third parties:
- Personal data of our students are transmitted to public authorities, according to legal provisions
- Personal data of employees and collaborators are transmitted to public authorities, according to legal provisions and to contracted companies (occupational medicine, occupational health and safety, meal vouchers, gift vouchers, holiday vouchers, etc.)
- To our partners for the execution of contracts in the field of research.
5. Duration of personal data processing
The Western University of Timișoara processes:
- Personal data of students, according to legal provisions
- Personal data of the students included in the research programs, during the research and according to the legal and contractual provisions with the research partners
- Personal data of employees and collaborators for the duration of employment and then for the duration provided by labor legislation regarding the personnel file
6. How we protect personal data
Personal data is processed securely. The Western University of Timișoara has taken appropriate technical and organizational measures regarding data security, against unauthorized processing or alteration, against loss or destruction, as well as against disclosure and unauthorized access to personal data transmitted, stored or processed. The Western University of Timișoara ensures the integrity, availability, confidentiality and authenticity of personal data.
The Western University of Timisoara uses advanced security methods and technologies, together with policies applied to employees and work procedures to protect the processing of personal data, according to the legal provisions in force.
The Western University of Timișoara has concluded a contract whereby the Internet and hosting service provider ensures that it has taken all security measures, such as: limiting both physical and remote access, being installed in a center of data and periodically subjected to a security audit.
The Western University of Timișoara makes every reasonable effort, justified from a commercial point of view, to protect the personal data we hold, we analyze new technologies in the field and, when and if necessary, apply them in order to upgrade the systems our security.
We have also implemented appropriate technical and organizational measures to ensure that only personal data necessary for the specified purposes are processed. The principle of implicit data protection will also be followed during the development of new services.
However, despite our efforts to store collected information in a secure operating environment that is not publicly available, we cannot guarantee the absolute security of such information during transmission or storage in our systems. In the event of a security breach that will endanger privacy or personal information, we undertake to inform you of these things, either through the website or through other methods at our disposal (email messages, phone calls, etc.).
7. The rights of natural persons
As a data subject, you have a number of rights, including:
- the right of access – allows you to obtain confirmation that your personal data is being processed by us and, if so, what are the relevant details of such processing activities;
- the right of rectification – allows you to rectify your personal data if it is incorrect;
- the right to erasure – allows you to obtain the deletion of your personal data in certain cases, such as:
- if the data are no longer necessary in relation to the purposes for which they were collected;
- if the processing was based on your consent and if you have withdrawn your consent, or it has expired or if there is no longer a legal basis for processing your personal data;
- a court or regulatory authority has decided that your personal data in question must be deleted;
- if it turns out that your personal data has been processed illegally.
- the right to restriction – allows you to obtain the restriction of the processing of your personal data in certain cases, for example, when you dispute the accuracy of your personal data, for a period that allows us to verify this accuracy;
- the right to object – allows you to object to the further processing of your personal data, under the conditions and within the limits established by law;
- the right to data portability – allows you to receive the personal data you have provided to us in a structured, commonly used and readable format, or to transmit this data to another data controller.
You can exercise your rights mentioned above and obtain information regarding the processing of your personal data by submitting to us, in our capacity as data operator, a written request or by e-mail to the address support@e-uvt.ro
Also, in the event of a security incident/breach or if your rights have been violated, you have the right to file a complaint with the National Authority for the Supervision of Personal Data Processing, in its capacity as an autonomous central public authority with general competence in the field of personal data protection.
The National Supervisory Authority for the Processing of Personal Data
- G-ral Blvd. Gheorghe Magheru 28-30, Sector 1, postal code 010336, Bucharest, Romania
- dataprotection.ro