GDPR Compliance
CloudLinux.ro is fully compliant with the General Data Protection Regulation (GDPR) - EU 2016/679
Our Commitment to GDPR
CLOUDZERO SRL is committed to protecting your personal data and respecting your privacy rights under GDPR. We have implemented comprehensive measures to ensure compliance with all GDPR requirements.
Your GDPR Rights
1. Right to Access (Article 15)
You have the right to obtain confirmation about whether we process your personal data and to access that data.
How to exercise: Email [email protected] with subject "GDPR Access Request"
Response time: Within 30 days
2. Right to Rectification (Article 16)
You can correct inaccurate personal data and complete incomplete data.
How to exercise: Update your profile in the dashboard or contact us
Response time: Immediate (self-service) or within 30 days
3. Right to Erasure / Right to be Forgotten (Article 17)
You can request deletion of your personal data under certain conditions.
How to exercise: Email [email protected] with subject "GDPR Erasure Request"
Response time: Within 30 days
Note: Some data must be retained for legal obligations (e.g., invoices for 10 years)
4. Right to Restriction of Processing (Article 18)
You can request limitation of processing your personal data.
How to exercise: Email [email protected] with subject "GDPR Restriction Request"
Response time: Within 30 days
5. Right to Data Portability (Article 20)
You can receive your personal data in a structured, machine-readable format.
How to exercise: Email [email protected] with subject "GDPR Portability Request"
Response time: Within 30 days
Format: JSON or CSV
6. Right to Object (Article 21)
You can object to processing based on legitimate interests or direct marketing.
How to exercise: Email [email protected] with subject "GDPR Objection"
Response time: Within 30 days
7. Right to Withdraw Consent (Article 7)
You can withdraw consent for processing at any time.
How to exercise: Update preferences in dashboard or contact us
Response time: Immediate
8. Right to Lodge a Complaint (Article 77)
You can file a complaint with a supervisory authority.
Romanian Authority: ANSPDCP (Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal)
Website: www.dataprotection.ro
Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, București
How We Protect Your Data
- Encryption: All data transmission is encrypted using SSL/TLS
- Access Controls: Strict authentication and authorization
- Data Minimization: We only collect necessary data
- Purpose Limitation: Data used only for stated purposes
- Storage Limitation: Data retained only as long as necessary
- Integrity & Confidentiality: Regular security audits
- Accountability: Documented compliance procedures
Data Processing Activities
| Activity | Legal Basis | Retention |
|---|---|---|
| Account Management | Contract Performance | While account active |
| Payment Processing | Contract Performance | 10 years (tax law) |
| Service Provision | Contract Performance | While service active |
| Security Monitoring | Legitimate Interest | 90 days |
| Support Communications | Contract Performance | 3 years |
Data Breach Notification
In the event of a data breach that poses a risk to your rights and freedoms, we will:
- Notify ANSPDCP within 72 hours
- Notify affected individuals without undue delay
- Provide information about the breach and mitigation measures
- Document the breach and our response
Third-Party Processors
We work with GDPR-compliant processors:
- Stripe: Payment processing (GDPR compliant, EU operations)
- Oblio: Invoicing (Romanian company, GDPR compliant)
All processors have signed Data Processing Agreements (DPAs) ensuring GDPR compliance.
Contact Our DPO
For GDPR-related inquiries, contact our Data Protection Officer:
- Email: [email protected]
- Subject Line: "GDPR - [Your Request Type]"
- Phone: +40 733 403 403
- Address: CLOUDZERO SRL, Sesul de sus 184A, Floresti, Cluj, Romania