Last updated: April 25, 2026

Privacy Policy

This policy explains what personal data we collect through this website, how we use it, and your rights under Regulation (EU) 2016/679 (GDPR) and applicable Romanian law.

1. Data Controller

The controller of personal data collected through this website is Anyang Romania (Daniel Serdenciuc), located at Aleea Tudor Neculai Nr. 151, Iași, România. For any data protection questions, contact us at anyangromania@tbk.ro.

2. Data we collect

We only collect data you provide directly via the contact form:

  • Full name
  • Email address
  • Phone number (optional)
  • Company name (optional)
  • Message subject
  • Message content
  • Submission date and time

3. Purposes of processing

We use your data to:

  • Reply to your contact form requests
  • Provide technical and commercial offers you request
  • Fulfill pre-contractual and contractual obligations
  • Improve our services in aggregated, anonymized form

4. Legal basis

We process your data based on Article 6(1) GDPR:

  • Your consent (lit. a) — given by ticking the box when submitting the form
  • Pre-contractual measures (lit. b) — preparing an offer or contract at your request
  • Legitimate interest (lit. f) — improving our services, without affecting your rights

5. Recipients

Your data is accessed only by authorized company staff. We do not sell or share your data with third parties. We may disclose data only to competent public authorities upon legal request.

For form delivery we use an SMTP service provider (data processor) that handles the data only on our behalf, under an Article 28 GDPR processing agreement.

6. International transfers

Your data is stored and processed in the European Union. We do not transfer data to third countries without appropriate safeguards under Chapter V of GDPR.

7. Retention period

We keep your data for a maximum of 3 years from the last interaction, after which it is deleted or anonymized. If a contract is concluded, related data is kept per legal obligations (typically 10 years for accounting records).

8. Your rights

Under GDPR, you have the following rights:

  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure ("right to be forgotten") (Art. 17)
  • Right to restriction of processing (Art. 18)
  • Right to data portability (Art. 20)
  • Right to object (Art. 21)
  • Right to withdraw consent at any time
  • Right to lodge a complaint with ANSPDCP — Romanian National Supervisory Authority (www.dataprotection.ro)

9. How to exercise your rights

To exercise any of the rights above, send an email to anyangromania@tbk.ro with the subject "GDPR Request". We will reply within 30 days at no cost.

10. Data security

We use reasonable technical and organizational measures: HTTPS connection, restricted data access, encrypted storage, and strong passwords. However, no system is 100% secure — please do not send sensitive data via the form.

11. Cookies

For details on cookie usage, see the Cookies Policy.

12. Changes

We may update this policy periodically. The current version is published on this page, with the last update date noted above. For significant changes, we will notify you by email or via a site notice.