GDPR & Data Protection
Privacy Policy
We explain what data we collect, why we collect it and how we protect it, in line with EU Regulation 679/2016 (GDPR).
1. Data Controller
Munte Athos Import Export SRL, headquartered at 36 Fantanica Street, Hall F20, Sector 2, Bucharest, Romania (VAT: RO XXXXXXXX), is the controller of personal data collected through this website. You can contact us at contact@munte-athos.ro or +40 (785) 131 060.
2. What Data We Collect
We collect only the data you voluntarily provide through the contact form: first and last name, email address, phone number (optional), company name (optional), subject and message content. We do not collect sensitive data such as racial origin, health data or political opinions.
3. Purpose and Legal Basis of Processing
The collected data is processed only to answer your information requests and manage commercial relationships. The legal bases are your consent and the company legitimate interest under GDPR. We will not use your data for other purposes without prior notice and consent.
4. Data Retention Period
Contact form data is stored for the time needed to resolve the request, plus a maximum of 12 months afterwards if no active commercial relationship exists. Data related to commercial relationships is retained according to Romanian accounting and tax obligations.
5. Data Recipients
Your data is not sold or shared with third parties for commercial purposes. It may be accessed by company employees responsible for customer relationships, email service providers and IT service providers under GDPR-compliant processing agreements. We do not transfer data outside the European Economic Area.
6. Your Rights
Under GDPR, you have the right of access, rectification, erasure, restriction of processing, data portability and objection. To exercise these rights, contact us at contact@munte-athos.ro.
7. Data Security
We implement appropriate technical and organizational measures to protect your data: HTTPS secure connection, restricted access to personal data and GDPR-compliant contracts with service providers.
8. Cookies
The website uses cookies. For full details, please consult our Cookie Policy.
9. Supervisory Authority
If you believe your rights have been violated, you have the right to file a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP), headquartered in Bucharest, or through www.dataprotection.ro.
10. Policy Updates
We reserve the right to update this policy to reflect legal or operational changes. We recommend reviewing this page periodically.
Last updated: April 2026