Privacy Policy

1. Introduction

naporil ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our MovePro joint health consultation services, in compliance with the General Data Protection Regulation (GDPR) and Romanian Law 190/2018 regarding data protection measures.

2. Data Controller Information

For the purposes of data protection legislation, naporil acts as the data controller for personal data collected through our services. If you have any questions about this Privacy Policy or wish to exercise your rights, you can contact us at our designated contact information provided below.

3. Personal Data We Collect

We collect the following categories of personal data:

• Contact Information: Name, email address, phone number
• Consultation Data: Health goals, lifestyle information, consultation preferences
• Communication Records: Email correspondence, consultation session notes
• Technical Data: IP address, browser type, device information, cookies data
• Usage Data: Website interaction data, consultation booking information

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract Performance: To provide MovePro consultation services you have requested
• Consent: For marketing communications and optional data processing activities
• Legitimate Interest: For improving our services and website functionality
• Legal Obligation: To comply with Romanian and EU legal requirements

5. How We Use Your Data

Your personal data is used for the following purposes:

• Providing MovePro consultation services and follow-up support
• Scheduling and conducting consultation sessions
• Sending educational materials and consultation-related communications
• Improving our services and developing new wellness programs
• Complying with legal and regulatory requirements
• Preventing fraud and ensuring website security

6. Data Sharing and Disclosure

We do not sell your personal data. We may share your information only in the following circumstances:

• Service Providers: With trusted third-party providers who assist in delivering our services
• Legal Requirements: When required by Romanian or EU law, court orders, or legal proceedings
• Business Protection: To protect our rights, property, or safety, or that of our clients
• Consent: With your explicit consent for specific purposes

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

• Consultation Records: 3 years after the completion of services
• Contact Information: Until you request deletion or unsubscribe
• Legal Documentation: As required by Romanian law (typically 5-7 years)
• Marketing Data: Until consent is withdrawn

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right of Rectification: Correct inaccurate or incomplete data
• Right of Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent for consent-based processing

To exercise these rights, please contact us using the information provided below. We will respond within 30 days as required by GDPR.

9. International Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we need to transfer data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or Standard Contractual Clauses approved by the European Commission.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption, access controls, regular security assessments, and staff training on data protection principles.

11. Cookies and Tracking

Our website uses cookies and similar tracking technologies. For detailed information about our use of cookies, including how to manage your preferences, please refer to our Cookie Policy.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. For significant changes, we may provide additional notice through email or prominent website notifications.

13. Contact Information

For questions about this Privacy Policy, to exercise your rights, or to submit a complaint, please contact us:

14. Supervisory Authority

If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP):