Personal data protection

Contents

Introduction
Definitions
Principles and purpose
Our commitment to privacy
Information we collect
How we use the information
Information we share
Data retention
Your rights
Security
Useful links
Contact

1. Introduction

1.1. Premises

When you use this website, you entrust us with your information. This Privacy Policy explains what data we collect, why we collect it, and what we do with it.

Association „Club Sportiv Negru 2018 Cluj-Napoca" commits to respecting the privacy of personal data of any user, in accordance with Regulation (EU) 2016/679 (GDPR) and other applicable data protection laws.

1.2. Data controller

Association „Club Sportiv Negru 2018 Cluj-Napoca"

Office: Cluj-Napoca, Romania

Email: contact@2018negru.ro

The Association is referred to as the "Controller" under GDPR.

2. Definitions

Under Article 4 GDPR:

„Personal data" – any information relating to an identified or identifiable natural person.
„Processing" – any operation performed on personal data (collection, storage, use, etc.).
„Consent" – any freely given, specific, informed and unambiguous indication of agreement.
„Controller" – the legal entity that determines the purposes and means of processing.

3. Principles and purpose

We process personal data in accordance with GDPR Article 5: lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity and confidentiality.

Legal bases used: consent (online donations, contact form), legal obligation (Form 230), legitimate interest (communication with donors, site operation).

4. Our commitment to privacy

We process only the personal data necessary for our activities. We take measures to protect this website and user data against unauthorised access, modification or destruction. We never sell or disclose confidential information to unauthorised third parties. We do not use data for marketing without explicit consent.

5. Information we collect

We collect only strictly necessary data, directly from you:

Online donations: Name, email, phone (optional), donation amount – for payment processing and receipts
Form 230: Name, CNP, address – for submitting to ANAF
Contact form: Name, email, message – to respond to inquiries
Sponsorship: Company contact and fiscal data – for sponsorship contracts
Automatic: IP, browser type, pages visited – for site operation and statistics

6. How we use the information

Personal data is used exclusively for: processing donations, submitting Form 230 to ANAF, responding to contact messages, managing sponsorship contracts, and improving the site.

7. Information we share

We do not sell or share personal data for commercial purposes. Data may be shared only with: NETOPIA Payments (payment processing), ANAF (Form 230 submission), or when required by law.

8. Data retention

Data is retained as long as necessary for the purpose or as required by law: Donations – 5 years (fiscal law); Form 230 – as needed for ANAF; Contact form – until request resolved, max 1 year; Sponsorship – contract duration and legal archiving.

Upon request, data may be deleted within 30 days, except when legal retention applies.

9. Your rights

Under GDPR, you have the right to: information, access, rectification, erasure, restrict processing, data portability, object, and to lodge a complaint with the supervisory authority (ANSPDCP in Romania).

To exercise these rights, contact us at contact@2018negru.ro or via the contact page.

National Supervisory Authority for Personal Data Processing (ANSPDCP)

28-30 General Gheorghe Magheru Blvd., Sector 1, Bucharest 010336

Phone: 031/8059211 | Email: anspdcp@dataprotection.ro

Website: www.dataprotection.ro

10. Security

We use HTTPS/TLS, process payments via PCI DSS certified NETOPIA, do not store card data, and limit access to authorised persons. No method of transmission over the Internet is 100% secure.

11. Useful links

12. Contact

For questions about data processing: contact@2018negru.ro | Office: Cluj-Napoca | Contact page