Privacy Policy
For us, the processing and protection of personal data is extremely important, which is why we have developed this PRIVACY POLICY (“POLICY”), which applies to personal data collected on websites owned by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA, headquartered at str. Rennes 29, 550006 Sibiu, registered at the Trade Registry under no. 50836330, e-mail alinaiuga2@gmail.com, namely the websites https://insidepeace.podia.com/ and www.insidepeace.net.
This procedure is designed to ensure the company’s compliance with the provisions of Regulation (EU) 2016/679, the main objective being to increase the level of protection of personal data and to create a climate of trust and transparency that allows each person to have control over their own data.
Through this POLICY, we have described the types of personal data collected for the use of the websites, as well as the types of data collected through online forms completed by you.
“GDPR”, “Regulation” – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
“Personal data” – any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
“Processing” – any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.
“Controller” – the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
“Processor” – a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
“Recipient” – a natural or legal person, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of such data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
“Third party” – a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
“Consent” – of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
“Personal data breach” – a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored, or otherwise processed.
“Representative” – a natural or legal person established in the Union who, designated in writing by the controller or processor pursuant to Article 27 of the GDPR, represents the controller or processor with regard to their respective obligations under the GDPR.
“Binding corporate rules” – personal data protection policies which are adhered to by a controller or processor established on the territory of a Member State for transfers or sets of transfers of personal data to a controller or processor in one or more third countries within a group of undertakings, or group of enterprises engaged in a joint economic activity.
“Supervisory authority” – an independent public authority established by a Member State pursuant to Article 51 GDPR.
We assure you that we strictly respect the confidentiality of your data as visitors, users, members, customers, or potential customers, and that we commit to using it strictly for the purpose for which it was collected, such as:
Providing, delivering, and billing our services/products
Providing you with access to your account and sending you information and communications related to customer service, account activation, confirmation of orders and services, and billing
Improving our products and services and providing personalized recommendations
Inviting you to participate in surveys regarding our services
Sending you offers for content upgrades, additional materials, coaching and mentoring services, as well as other services or training programs Sending newsletters, updates, marketing messages, promotional offers, or other commercial communications
Analysing how our products and services are used, including data about website traffic, page visits, content popularity, and user engagement
Creating statistical reports with anonymized data
Developing new services and improving existing services, as well as informing you about changes and updates regarding our services
Preparing offers tailored to your needs and requests
Analysing market trends and identifying sales opportunities based on anonymized data
Managing and maintaining our IT systems
Organizing and hosting events
Managing our websites, systems, and applications
Complying with legal obligations and responding to requests from public authorities or professional bodies
Collecting feedback from you regarding our services or events
Informing you about other events and activities, only if you have given your prior consent
Providing support and assistance when you contact us with requests or issues
We collect your data only if you voluntarily provide it to us and we will not sell, transfer, or otherwise disclose your personal data to third parties except as described in this Policy.
WHAT PERSONAL DATA WE COLLECT
The first and last name are requested for addressing, invoicing, and contact purposes.
We request the phone number in order to provide you with details about the events you have registered for, to contact you for additional information regarding product delivery or service provision, or to inform you about offers and promotions for our courses or events, if you have opted for this.
The username and password (these are issued randomly and automatically upon first registration; later, you have the possibility to change them) are collected for the purpose of authenticating you on the websites https://insidepeace.podia.com/ and www.insidepeace.net, so that you can benefit from the ordered services and/or products and have the best experience with us.
The address is collected by us solely for the purpose of shipping and invoicing the products/services ordered by you. We will also use the address to resolve any complaints regarding the ordered products/services in the context of the communications that will be conducted.
Payment Methods and Bank Card Data
Collecting personal data also involves filling out online payment forms presented by you when performing an e-Commerce transaction on one of our websites that uses a payment processor’s solutions. Completing the online payment forms with all requested and mandatory information, including personal data, is required exclusively for purchasing our services and products.
Through the websites we own, we will never request your PIN code, expiration date, or CVV2/CVC2 code except in the payment form. Do not send card details by email, phone, or other forms.
Images, Photos, Videos, Audio Materials
By virtue of our legitimate interest in monetizing in as many ways as possible the materials produced by us, we will additionally commercialize recordings of the courses/sessions/webinars conducted by us. By registering for a course/webinar/training program and by accepting and completing the express consent form, the data subject/participant expressly consents that IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA may use photographs, video, or audio materials created by its staff or contractors during the courses, without the need for a special separate consent/agreement from the participant.
We request the email address in order to provide you with information about product delivery and services you may be interested in, promotions, future events we organize, or to send you our newsletter. We may also use the email address to evaluate the effectiveness of our marketing and advertising policies and to request your feedback on our products and services.
When necessary, we will use the email address to resolve any complaints regarding the ordered products/services. Since we respect the right to privacy, you can unsubscribe at any time by clicking the unsubscribe link, or by sending an email titled “unsubscribe” to alina@insidepeace.net.
FROM WHOM AND HOW WE COLLECT PERSONAL DATA
We collect personal data directly from you through the use of a web form, an electronic form, or a printed form, or through correspondence/contractual documents with us. We may also collect personal data from public sources.
WHAT IS THE LEGAL BASIS FOR PROCESSING PERSONAL DATA
The legal basis for processing is:
Your consent;
A contract to which you are already a party;
A request for an offer made prior to purchasing a program or service;
Legitimate interest.
HOW LONG WE PROCESS AND RETAIN PERSONAL DATA
The criteria used to determine the period of personal data storage are defined by the purpose of collection and the legal basis. After the expiration of the respective period, the corresponding data is deleted if it is no longer necessary for the execution or conclusion of a contract, or if the data subject has not expressed consent for storing these data for a specific period of time.
If you request the deletion of data, in accordance with your right to make such a deletion request, we will proceed with deleting the data, except in situations where we are obliged to retain it.
TO WHOM WE TRANSFER PERSONAL DATA
The recorded information is intended for use by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA and is communicated only to the following recipients: contractual partners, suppliers, authorized representatives, payment processors, or courier companies (only in the case of product or material deliveries).
Also, in the event of a change in the associates of IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZAT or in the case of a division, reorganization, dissolution, or insolvency, it is possible that we transfer your data to new owners or administrators/liquidators.
Exceptionally, your data may be transferred to or accessed by entities outside the European Union, including countries to which the EU does not recognize an adequate level of personal data protection. These situations mainly occur when using online platforms/programs/tools for processing orders, promotion, or related IT infrastructure. For example, when using email marketing platforms, Facebook, Instagram, or applications offered by Google or Microsoft, although the infrastructure itself is in the European Union, it may be accessed by parent organizations in the country of origin. In all such situations, IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZAT will take the necessary measures to ensure that personal data is protected, such as standard contractual clauses issued by European authorities or relevant certifications recognized within the European Union.
We do not encourage SPAM, we do not provide your email address or other data to third parties (individuals or legal entities), we do not sell, offer, or exchange email addresses obtained through this site, and we do not disclose your email address to other people who access/manage the pages of this site.
Data Protection Regarding the Use and Application of Facebook
On this website, we have integrated components of the Facebook social network.
According to GDPR, Facebook may act as either a joint controller or a processor, depending on the situation. In most cases, Facebook companies (META) act as data controllers. When Facebook is a data controller, personal data is managed as described in Meta’s Data Use Policy: https://www.facebook.com/about/privacy/update. For example, META is the data controller for most activities carried out on Facebook, Instagram, Messenger, and other Meta Products, managing the data as described in its own data use policies.
The META operator is Meta Platforms Ireland Limited, which you can contact by post at:
Meta Platforms Ireland Limited
4 Grand Canal Square
Grand Canal Harbour
Dublin 2, Ireland
META acts as the data controller when IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZAT places ads based on information users provide directly to Facebook (META) or regarding data received via the Facebook (META) pixel or SDK. IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZAT is the data controller when placing ads using custom audiences based on data files or uploading personal user information through other Facebook measurement and analysis services.
The data protection guide published by META, available at https://facebook.com/about/privacy/, provides information about Meta’s collection, processing, and use of personal data. It also explains the privacy settings offered by META to protect the personal data of the data subject. Different configuration options are available to stop data transfer to Facebook.
Data Protection Regarding the Use of Google AdWords
On this site, we have integrated Google AdWords. Google AdWords is an online advertising service that allows advertisers to place ads in Google search results and on the Google advertising network. Google AdWords allows an advertiser to predefine certain keywords so that an ad displayed in Google search results is shown when the user searches using those keywords.
The Google AdWords operator is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
Additionally, the data subject has the option to contest category-based advertising by Google. For this purpose, the data subject must use the link at https://www.google.de/settings/ads and make the desired settings in each internet browser they use.
Additional information and the actual provisions regarding Google data protection can be found at https://www.google.com/intl/ro/policies/privacy/.
Right to information – you can request information regarding the processing activities of personal data.
Right to rectification – you can submit requests to correct inaccurate personal data or to complete it.
Right to erasure (“right to be forgotten”) – you can obtain the deletion of data when its processing has not been lawful or in other cases provided by law.
Right to restriction of processing – you can request restriction of processing if the accuracy of the data is contested, as well as in other cases provided by law.
Right to object – especially regarding data processing based on our legitimate interest.
Right to data portability – you can request that your data be transmitted to another operator.
Right to lodge a complaint – you can file a complaint regarding the processing of personal data with the National Supervisory Authority for Personal Data Processing or before the courts.
Right to withdraw consent – in cases where processing is based on the consent of the data subject, this can be withdrawn at any time. Withdrawal of consent will have effect only for the future; processing carried out prior to withdrawal remains valid.
Right not to be subject to automated individual decision-making, including profiling.
To exercise the rights mentioned above, please submit a written, dated, and signed request to the email address: alina@insidepeace.net.
The designated person will record the response to the request in the Operator’s In-Out Register and will assign an outgoing number.
The responsible person will communicate the response to the data subject in the requested manner or according to the real possibilities of transmission.
The designated person will respond within 30 days from the date of receiving the request from the data subject.
This period may be extended by 60 days when necessary, taking into account the complexity and number of requests. In this case, the data subject will be informed of the extension within 30 days from receipt of the request, including the reasons for the delay.
The content of the websites and materials owned by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA is not intended for minors, but its content is not harmful to them.
We do not collect information and data of minors under 18 years of age except with the prior, explicit, and freely given consent of their legal representatives.
The security of personal data is important to us. We have adopted appropriate organizational, administrative, technical, and physical measures to protect personal data against accidental or unlawful destruction, accidental loss, alteration, disclosure or unauthorized access, use, and all other forms of unlawful processing of personal data in our possession.
IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA undertakes the obligation to manage safely and only for the specified purposes the personal data you provide to us.
The websites use adequate security measures against loss, alteration, or misuse of information under our control.
However, IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA does not assume responsibility for information loss caused by software errors of the site or hosting server.
For purchases on our websites, we use SSL (Secure Sockets Layer) certificates.
Although we are very careful regarding data processing, no entity can guarantee complete security of data transmitted over the Internet. Therefore, it is important to adopt your own security measures and not provide passwords or access to others.
We offer website users the possibility to send comments, questions, and suggestions. Any information sent through contact forms will be used respecting the right to privacy and image of individuals.
Our web pages use cookies. Cookies are text files stored on a computer system via an Internet browser.
Many websites and servers use cookies. Many cookie modules contain a so-called cookie ID, which is a unique identifier composed of a string of characters that allows web pages and servers to attribute the browser in which it is stored. This allows websites and visited servers to differentiate one browser from others containing different cookies.
Through cookies, we can provide users with more user-friendly services, which would not be possible without cookies. By using a cookie, the information and offers on our site can be optimized according to the user. Cookies allow, as mentioned earlier, recognition of website users. For example, the user does not need to enter access data each time the site is accessed because it is retrieved, and the cookie is thus stored in the user’s computer system.
The data subject can prevent the use of cookies at any time through the appropriate browser settings. In addition, cookies already set can be deleted at any time from the browser. This is possible in all popular Internet browsers. If the data subject disables cookies in the browser, not all functions of the website may be fully used. For more information on this subject, visit the Cookie Policy.
It is possible that sometimes we post testimonials that contain personal data. Before posting, we will obtain consent. If you wish to update or delete a testimonial, you can contact us at alina@insidepeace.net.
The website and social media accounts operated by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA may provide publicly accessible resources and sessions/live events, community forums, comment sections, discussion boards, or other interactive features (“Interactive Areas”). You should be aware that any information you post in an interactive area may be read, collected, and used by other people who access it, so it is your sole choice and responsibility to post or disclose matters related to your life and personal information.
Given the nature and sensitive character of the discussions/topics/case studies that take place in the trainings/programs/courses/events/sessions conducted by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA, we remind you that you are solely responsible for any consequences of any kind generated by these disclosures.
The purpose of the sessions/meetings/materials/resources provided by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA is to enhance personal development and improve participants’ quality of life through training in these group sessions/meetings. By enrolling in these groups/communities, you were informed about the purpose and nature of the activities conducted.
Therefore, the activities conducted by IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA do not replace professional, psychological, legal, or financial counseling. You are solely responsible for how you apply or implement this information/exercises/materials, and you understand that IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA is not responsible for the risks and consequences related to their application or the decisions you make.
To request the removal of your personal information from an interactive area, contact us at alina@insidepeace.net. In some cases, it may not be possible to remove your personal information; in such cases, we will inform you if we cannot do so and explain why.
If we consider that a change in the privacy rules is necessary, we will publish the respective changes on this page to inform you about the types of information we collect and how we use it. If you have any questions regarding our privacy policy, please contact us at alina@insidepeace.net.
IUGA M. DIANA-ALINA PERSOANA FIZICA AUTORIZATA takes privacy matters seriously and intends to remain at the forefront regarding privacy policy and data protection.
We will periodically update the privacy policy and post updates on this page.
We will investigate and try to resolve any request or complaint regarding the use or disclosure of your personal information. If you are not satisfied with our response, you can file a complaint with the National Supervisory Authority for Personal Data Processing.
You can find more information on how to contact the National Supervisory Authority for Personal Data Processing at: http://dataprotection.ro/?page=procedura_de_solutionare_a_plangerilor.