Privacy Policy

qilarex ChondroLife Consultation Services

Last Updated: January 2025
Effective Date: January 2025

1. Introduction

qilarex ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our ChondroLife joint health consultation services.

This policy is designed to comply with the General Data Protection Regulation (GDPR) and Romanian data protection legislation, including Law 190/2018 on implementing measures for the General Data Protection Regulation.

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of information as described herein.

2. Data Controller Information

Data Controller: qilarex Consultation Services

Address: [Business Address], Romania

Email: [email protected]

Phone: +40 XXX XXX XXX

Data Protection Officer: [email protected]

3. Information We Collect

3.1 Personal Information

We may collect the following types of personal information:

  • Contact information (name, email address, phone number)
  • Consultation preferences and health-related goals
  • Communication records and correspondence
  • Payment and billing information (processed by third-party payment processors)
  • Feedback and survey responses

3.2 Technical Information

  • IP address and browser information
  • Website usage data and analytics
  • Cookies and similar tracking technologies
  • Device information and operating system details

4. How We Use Your Information

4.1 Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: For marketing communications and optional services
  • Contract Performance: To provide consultation services you have requested
  • Legitimate Interest: For business operations, website improvement, and fraud prevention
  • Legal Obligation: To comply with applicable laws and regulations

4.2 Purposes of Processing

  • Providing and managing consultation services
  • Communicating with you about appointments and services
  • Processing payments and billing
  • Improving our website and services
  • Sending marketing communications (with consent)
  • Complying with legal and regulatory requirements
  • Protecting against fraud and ensuring security

5. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

5.1 Service Providers

  • Payment processing services
  • Email and communication platforms
  • Website hosting and technical support
  • Analytics and marketing services

5.2 Legal Requirements

We may disclose your information when required by law, court order, or government regulation, or to protect our rights, property, or safety.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction, subject to equivalent privacy protections.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law:

  • Consultation records: 5 years after service completion
  • Communication records: 3 years after last contact
  • Marketing data: Until consent is withdrawn
  • Website analytics: 2 years from collection
  • Financial records: 7 years for tax and accounting purposes

7. Your Data Protection Rights

Under GDPR and Romanian data protection law, you have the following rights:

Right of Access

Request copies of your personal data

Right to Rectification

Request correction of inaccurate data

Right to Erasure

Request deletion of your data

Right to Restriction

Request limitation of processing

Right to Portability

Request transfer of your data

Right to Object

Object to processing of your data

To exercise these rights, contact us at [email protected]. We will respond within 30 days of receiving your request.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • SSL encryption for data transmission
  • Secure data storage and access controls
  • Regular security assessments and updates
  • Staff training on data protection practices
  • Incident response procedures

9. International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer personal data outside the EEA, we ensure adequate protection through:

  • European Commission adequacy decisions
  • Standard Contractual Clauses (SCCs)
  • Binding Corporate Rules (BCRs)
  • Certification schemes and codes of conduct

10. Cookies and Tracking

We use cookies and similar technologies to enhance your browsing experience. For detailed information about our cookie usage, please see our Cookie Policy.

11. Contact Us and Complaints

If you have questions about this Privacy Policy or wish to exercise your data protection rights, contact us:

Email: [email protected]

Phone: +40 XXX XXX XXX

Mail: Data Protection Officer, qilarex, [Business Address], Romania

If you are not satisfied with our response, you have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP):

ANSPDCP

B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Bucharest

Phone: +40 21 252 5599

Website: www.dataprotection.ro

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by posting a notice on our website or sending you a direct communication. Your continued use of our services after such changes indicates your acceptance of the updated policy.

Privacy Inquiry Form