This Privacy Policy explains how Elimo Russel Accountants and Auditors S.R.L. (“ERAA”) processes personal data as data controller, in accordance with Regulation (EU) 2016/679 („GDPR”) and applicable national legislation.

TABLE OF CONTENTS

1. Controller and Contact Details
2. Structure of the Policy
3. General Security Principles
4. Minors’ Data
5. Personal Data Processing Situations

5.1 Website Visitors
5.2 Individual Clients
5.3 Representatives of Client Companies
5.4 Representatives of Suppliers
5.5 Other Third Parties We Interact With

6. Means of Data Processing
7. Recipients
8. Data Subject Rights
9. Exercising Your Rights
10. Cookie Policy
11. Amendments and Updates
12. Applicability

1.  Controller and Contact Details
Elimo Russel Accountants and Auditors S.R.L.
Headquarters: Bucuresti, Sector 2, Str Barbu Vacarescu, Nr 313-315, Et 5, Birou B-3.1
VAT ID: RO 43523402
Trade Register ID: J2021000134401
E-mail: office@eraa.roPhone: +400744344834

2. Structure of the Policy
This policy is structured by categories of data subjects and relevant processing activities, to ensure clarity and transparency.

3. General Security Principles
ERAA implements appropriate technical and organizational measures to ensure the integrity, confidentiality, and availability of personal data, according to the specific risks associated with its business activities.

4. Minors’ Data
ERAA does not knowingly process data of minors. Our website and services are not intended for children.

5. Personal data processing situations
5.1 Website Visitors
We may collect data such as IP address, browser type, cookie preferences, and anonymous statistical information through cookies, solely for analytics and security purposes.
5.2 Individual Clients
We process data such as name, surname, national identification number, address, contact details and financial information required to carry out the contractual relationship and comply with legal obligations in taxation, accounting, and anti-money laundering.
5.3 Representatives of Client Companies
We process the name, position, contact details, and signature of client company representatives solely for managing the contractual relationship, service-related communications, and compliance with legal obligations (e.g. AML, taxation).
5.4 Representatives of Suppliers
We process identification and contact data of supplier representatives to manage business relationships, issue and receive contractual, financial, or accounting documents.
5.5 Other Third Parties We Interact With
PWe may process contact data of persons from institutions, professional bodies, non-contractual partners or other relevant entities with whom we interact on occasion, solely for professional or legal communication purposes.

6. Means of Data Processing
Processing may include the collection, recording, organization, storage, modification, consultation, use, disclosure, erasure, or destruction of data, using manual or automated means, depending on the purpose.

7. Recipients
Data may be shared with tax and accounting authorities, supervisory bodies, legal consultants, IT service providers, or contractors, only within legal or contractual limits.

8. Data Subject Rights
You have the following rights: access, rectification, erasure, restriction, objection, data portability, withdrawal of consent, and the right to file a complaint with the ANSPDCP.

9. Exercising Your Rights
To exercise your rights, you can contact us at the email address provided in section 1. We will reply within 30 calendar days.

10. Cookie Policy
Our website uses strictly necessary, analytics, and preference cookies. Upon first visit, you will be informed of your consent options.

11. Amendments and Updates
We may update this policy periodically. We encourage you to review it regularly.

12. Applicability
This policy applies as of April 1st, 2025 and is publicly available on our website.