Data processing agreement

This agreement applies to applications stored in the Website/Webstoresmarket and is an integral part of the Terms. Ads with external application links to an ATS or company site are outside of Webstoresmarket’s scope of responsibilities.

Last update: March 28th, 2022

1. Personal data processing

Personal data processing (“Processing”) refers to any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

2. Customer Representatives

2.1. To allow access and to provide the Services, Webstoresmarket processes data regarding the persons representing the Customer ("Representatives") in relation to the use of the Services.

2.2. Webstoresmarket processes personal data of the Customer Representatives as a Data Controller in correspondence with the Privacy Policy for Customer,  which is an integral part of the Terms.

2.3. By adding users and contact persons to the Customer's account, You declare that You have the necessary authorization and that the persons have been informed of and are acquainted with the Privacy Policy for Customer of Webstoresmarket.

3. Applications

When publishing an ad:

3.1. The Customer is a Data Controller with respect to the applications received in its account.

3.2. The Website is a technological platform that allows Customer to receive and store applications submitted by Applicants to the Customer’s offers. As a provider of this Service, Webstoresmarket acts in the role of a Data Processor.

4. Obligations of the Customer

As part of these Terms, the Customer:

4.1. determines the purposes and means for processing of personal data, as the processing necessary to publish offers for open positions and to receive and store applications to these offers in the Customer’s account; The Customer shall not process personal data for purposes other than or incompatible with this objective.

4.2. as a Controller is responsible to choose appropriate legal basis for processing the Applicants data in accordance with the Regulation (EC) 2016/679;

4.3. undertakes to ensure and bear full responsibility that the requirements of the Regulation (EU) 2016/679 and these Terms will be respected and complied with by its Representatives, personnel and all other persons to whom it might provide data regarding the Applicants;

4.4. should Applicants request to exercise their data protection rights, the Customer shall fulfill these requests and/or provide the Applicants with confirmation or reasoning for rejecting the request within the terms set by the Regulation (EU) 2016/679;

4.5. undertakes to provide up-to-date contact details to allow Applicants to contact the Customer regarding personal data protection matters, including contact details of its Data Protection Officer (if applicable);

4.6. shall not require in any way from Applicants to its offers to send special categories of personal data within the meaning of Art. 9 and Art. 10 of Regulation (EC) 2016/679 through the Website. The Website is not intended for collecting, processing and storing of such data.

5.Data Processing for the purpose of providing the Services

Webstoresmarket provides technical solution that allows You to receive and store applications in your account, with regards to this Service Webstoresmarket processes data on your behalf as a Data Processor.

5.1 By accepting these Terms, You assign to Webstoresmarket to process personal data for the purposes of providing the Services subject to this Agreement on your behalf, strictly complying with these Terms and Your Instructions (i.5.3).

5.2. Webstoresmarket undertakes not to process information regarding Applicants to your offers for purposes other than those specified in these Terms, except when required to do so under applicable law or in cases where it acts as a Controller.

5.3. Instructions for data processing. These are the instructions outlined in this Agreement, as well the instructions made through the functionalities available in the Website. You agree that You will submit your instructions in the manner provided for in the Website and that your instructions shall be in compliance with the Regulation (EC) 2016/679.

5.4. By accepting these Terms You declare that You have been informed that in some occasions set forth by law, Webstoresmarket may be required to keep and disclose certain data that it has processed on your behalf to the competent authorities. Webstoresmarket undertakes to inform You of such orders, except in the cases when it is prohibited by law.

5.5. The Data Processing, related to the provision of the Services.

6. Storage, erasure and export of data

By accepting these Terms, You assign and Webstoresmarket undertakes to:

6.1. provide technical solution to enable the storage of applications submitted by Applicants in your account until deleted by You (by your Representative), but no longer than 6 /six/ months from the publication date of the offer;
Regarding applications to offers published prior to the current Agreement update, the previous one-year storage period applies. The company has the option to choose to apply the new six-month storage period to the previously published offers as well. In case the company does not select this option, it obliges to review and remove in a timely manner applications it no longer has a lawful reason to store;

6.2. ensure automatic erasure of applications to offers in your account after the technical storage period listed in p. 6.1. expires (unless the applications have been deleted earlier by You, using the functionalities provided in the Website);

6.3. provide technological functionality in the Website to enable Applicants to delete applications they have sent to You from your account, at any time. However, Applicants are under no obligation to use the functionalities of the Website and are entitled to send requests directly to You at any time;

6.4. to automatically erase all applications in your account upon termination of your registration in the Website, except when this is prohibited by law. If would like to keep this data, you should do this prior to closing the account using the export functionality.

6.5. items 6.1. - 6.4. do not waive your obligation as Data Controller to review and erase in due time personal data (applications) for the processing of which You have no legal basis or the legal basis has become invalid.

6.6. Export. In case You would like and have a lawful ground to store applications outside of your account, You can use the functionality for exporting applications. You undertake not to store in your account and not to retrieve and process data for the processing of which You have no legal ground or the same has become invalid.

6.7. Consent. In case You would like to use information received by Applicants to your offers for future, You undertake to obtain explicit consent from the respective Applicants. Webstoresmarket is not responsible for any subsequent processing of Applicants data for which You have not received proper consent for processing.

7. Scope of the assigned activities

The scope of the processing activities assigned by the Customer to Webstoresmarket with the acceptance of these Terms and with the use of the Services is defined as follows:

7.1. Objective: to provide the Services subject to this Agreement.

7.2. Data subjects: Applicants who have applied to your offers on the Website.

7.3. Data: The information and documents contained in the applications sent to You.

7.4. Subject and nature: provide technical solution that enables You to receive applications to your offers in your account, to review, store, export, and erase them, etc.

7.5. Term: for the duration of the agreement between You and Webstoresmarket, unless otherwise stated in these Terms or in the applicable legislation.

8. Security

Webstoresmarket undertakes to:

8.1. apply technical and organizational measures (with regard to personnel, buildings, software, hardware, networks, servers, encryption, control, reporting and monitoring, vulnerability testing, etc.) to ensure level of protection against unauthorized or incidental access, loss, change, disclosure or erasure of data, that takes into consideration the relevant risks.

8.2. guarantee that all persons authorized by Webstoresmarket to process data shall be bound by obligation of confidentiality and shall undergo regular trainings on the protection of personal data in accordance with their activities;

8.3. shall not disclose personal data belonging to the Customer to any third party in any circumstances, except for the provided for in the Terms or by law.

9. Audits on personal data processing

9.1. Webstoresmarket undertakes to provide the necessary assistance to a competent supervisory authority in carrying out audits and checks of the personal data processing activities assigned by You.

9.2. Webstoresmarket shall periodically provide information on the available certificates, audits, etc. in a form and manner that ensure the security of the Services is not impaired. In case in relation to your personal data processing obligations additional checks are required, it is possible to assign an audit after signing a preliminary agreement with Webstoresmarket, specifying the scope, duration and a mutually agreed certified auditor under the Regulation (EC) 2016/679. In performing such an audit, the Customer undertakes to pay all fees, remunerations and costs for the performed activities and services, both by the auditor and by Webstoresmarket. An audit may be conducted only in a manner and to an extent that do not prejudice the obligations and rights of other users of the Website with regards to personal data protection.

10. Notification of the Customer

Webstoresmarket undertakes to inform You:

10.1. in the event of an inspection undertaken by a supervisory authority in relation to the data processing of information related to Applicants data received in your account, except in cases where this is prohibited by law;

10.2. if it is unable to fulfill its obligations under these Terms for any reason;

10.3. without undue delay (but no later than 24 hours of becoming aware) if it detects a security breach of Applicants data stored in your account, including information about the nature of the personal data breach, where possible, the categories and approximate number of data subjects concerned and the categories and approximate number of personal data records concerned; description of likely consequences of the personal data breach and description of the taken or proposed measures to address the data breach or mitigate its adverse effects.

11. Customer assistance

Webstoresmarket undertakes to:

11.1. assist You if You need to demonstrate the performance of your obligations in relation to the data processing assigned to us;

11.2. assist You in performing your obligations to notify the supervisory authority in the event of a security breach;

11.3. assist You, as far as possible and reasonably expected, by providing functionalities in the Website and organizational and technical measures in performing your obligations related to requests regarding data protection rights by Applicants to your offers;

11.4. You assign and Webstoresmarket undertakes, upon receipt of a request for exercising of rights under the Regulation (EU) 2016/679 from an Applicant, who has sent an application to You, to inform the Applicant that he/she should contact You directly using the contact details provided by You. With respect to this, You have the obligation to keep your contacts on the Website up to date, at any time (i. 4.5).

12. Liabilities

A processor shall be liable for the damage caused by processing only where it has not complied with obligations of the Regulation specifically directed to processors or where it has acted outside or contrary to lawful instructions of the Controller. Where a Controller or Processor has paid full compensation for the damage suffered, that Controller or Processor shall be entitled to claim back from the other Controllers or Processors involved in the same processing that part of the compensation corresponding to their part of responsibility for the damage.

Organizational and technical measures

This document contains the technical and organizational measures in relation to the Services provided in Webstoresmarket and is an integral part of the Data Processing Agreement.
In order to protect the personal data Webstoresmarket applies technical and organizational measures (with regard to personnel, buildings, software, hardware, networks, servers, encryption, control, reporting and monitoring, vulnerability testing, etc.) to ensure level of protection against unauthorized or incidental access, loss, change, disclosure or erasure of data, that takes into consideration the relevant risks and impact;

Last update: May 17th, 2022

ORGANIZATIONAL AND TECHNICAL MEASURES

1. Data protection

The Customer is the sole Controller with respect to the data in its account. Webstoresmarket as a Processor will treat the Customer’s data as confidential and will process it only with regards to and to the extent necessary to provide the Services or in cases provided for in the Terms and the Policy.

2. Security Policies

2.1. Webstoresmarket will follow security policies that take into consideration both the legislation and the best practices in its data processing activities in order to ensure confidentiality, integrity and availability.

2.2. To determine adequate level of technical and organizational measures and appropriate level of protection Webstoresmarket performs analysis of its activities as a Processor.

2.3. In order to ensure effective protection Webstoresmarket will regularly review the security policies and at least annually will conduct a full review.

2.4. Webstoresmarket employees are obliged to apply these policies and practices. They are required to review and commit to each policy update, as well as to review all policies annually.

2.5. Webstoresmarket will apply recruitment procedures that involve verifications to the extent allowed by the applicable law.

2.6. Webstoresmarket employees will complete security and data privacy trainings taking into consideration their role at least annually.

3. Security Incidents

3.1.Webstoresmarket will follow documented security incident response plan in compliance with the notification requirements of the Regulation.

3.2. Webstoresmarket will investigate all potential security incidents and apply the response plan. Should the Customer suspect security vulnerability or incident, it should immediately notify Webstoresmarket.

3.3. Webstoresmarket will notify the Customer without undue delay (and no later than 24 hours) if it identifies a security incident related to the Customer’s data and will provide to the Customer, as far as reasonably possible, information about the incident and the taken remediation activities.

4. Physical Security and Entry Control

4.1. Webstoresmarket will use data centers that have pysical access control measures in place, a log of the visits will be kept, as well as an up-to-date list of the people authorized to access the facilities.

4.2. Webstoresmarket will use data centers with failover power supply, air conditioning, protectoin against fire, theft and vandalism.

4.3. Webstoresmarket will control the physical access to its offices by only allowing access to authorized persons or persons accompanied by authorized personnel. Webstoresmarket will apply technical and organizational measures as systems for perimeter and access control and other.

5. Information Systems and Networks

5.1. Webstoresmarket will maintain documented architecture of its infrastructure. Webstoresmarket will regularly review the architecture with respect to security and will apply best practices related to segmentation and isolation. Should v use wireless networks, they will be encrypted and they will use secure authentication. These networks will not have direct access to the Services and Webstoresmarket will not use wireless networks for the provision of the Services.

5.2. Webstoresmarket will store the Customer’s data logically separated from other Customer’ data.

5.3. Webstoresmarket will encrypt data when in transit via public networks by use of HTTPS, Force-TLS for encrypted transfer of data by email (applicable if you use such email functionality) and other technologies.

5.4. Webstoresmarket will use appropriate solutions for management of cryptographic keys, encryption and pseudonymization of the stored data according to the level of risk related to the specific activities.

5.5. Webstoresmarket will provide its employees with the minimal access rights necessary for their job role or specific assignment, requiring access, for the duration of the assignment.

5.6. Webstoresmarket will apply best practices when managing passwords, cryptographic keys, sessions and accounts, etc.

5.7. Webstoresmarket will use sofware and hardware solutions for protection and security monitoring and auditing of the Services (Web Application Firewalls, Network Firewalls, Key management and encryption devices, SIEM, etc.), as well as end-point solutions such as anti-virus and anti-malware software, automated software updates, encryption, etc.

5.8. If applicable, Webstoresmarket will sanitize physical media intended for reuse or if no reuse is planned, it will destroy it following best practices.

6. Security, Integrity and Availability

6.1. Webstoresmarket will conduct automatic and/or mannual vulnerability and penetration tests on regular basis, as well as when modifiying exisiting or deploying new applications, systems or networks.

6.2. Webstoresmarket will conduct vulnerability and penetration tests of the applications, systems and networks, incl. by means of ethical hacking performed by an independent third-party with adequate experience and reputation at least once a year and/or upon major changes.

6.3. Webstoresmarket will follow and maintain change management policies and procedures. Prior to implementation of changes to applications, systems and networks, changes will be documented in change requests that will include description, reason for the change, schedule, risk and impact assessment, expected outcome, rollback plan and approval by authorized person.

6.4. Webstoresmarket will maintain inventory of all information systems and assets related to the provision of the Services and will monitor their status.

6.5. Webstoresmarket will periodically evaluate the information systems used for the provisioning of the Services with regards to their security, integrity and availability.

6.6. Webstoresmarket will use backup systems to backup Customer’s data and guarantees that at least one copy will be stored separately from the production system. The backups will be stored encrypted. Webstoresmarket will perform backup restoration testing.

6.7. In addition to planned updates of the software, applications, systems and network devices, if necessary Webstoresmarket will apply partial security patches after evaluation of their appropriateness and the risk involved.

7. In addition to the above listed organizational and technical measures Webstoresmarket will also apply the requirements and guideliness of CPDP:

7.1. Physical protection. Webstoresmarket will apply technical and organizational measures for physical protection of personal data, including (when applicable):

• identifying the areas with controlled access;
• determining the premises where personal data are to be processed;
• determining the premises where the elements of the communication and information systems for personal data processing are to be located;
• determining the organization of physical access;
• determining the regime of visits;
• determining the use of technical means of physical protection;
• appointing a team to respond in case of violations.

By means of: locks; cabinets; metal safes; equipment of the areas with controlled access; equipment of the premises; devices for physical access control; security guards and/or security system; perimeter protection devices; firefighting devices; fire detection and extinguishing systems; devices detecting substances (metal, explosives, etc.).

7.2. Personnel protection. Webstoresmarket will apply organizational measures regarding persons who process personal data, including (when applicable):

• knowledge of legislation relating to the protection of personal data;
• knowledge of policies and guidelines for the protection of personal data;
• knowledge of threats to the processed personal data;
• related to sharing of critical information among employees (e.g. IDs, passwords for access, etc.);
• consent to assume an obligation of non-disclosure of personal data;
• training;
• training the employees to respond to events that threaten the security of personal data.

(a) To apply measures that guarantee access to personal data only to persons whose official duties or a specific task require such access adhering to the need-to-know principle.

(b) To oblige persons prior to processing personal data to become acquainted with:

• legislation relating to the protection of personal data;
• instruction and guidelines for the protection of personal data;
• threats to the personal data processed.

(c) Persons processing personal data will sign a declaration of non-disclosure of personal data to which they have access in relation to the performance of their responsibilities.

7.3. Documentary protection. Webstoresmarket will apply organizational measures for protection of printed documents containing personal data, including (when applicable):

• determining the registers which will be maintained in paper copies;
• determining the conditions for personal data processing;
• regulating the access to registers;
• controlling the access to registers;
• determining the time-limits for storage;
• rules for reproduction and distribution;
• procedures for destroying;
• procedures for inspection and control of processing.

  7.4. Information systems and networks. Webstoresmarket will apply technical and organizational measures for protection of the information systems and networks, including (when applicable):

• instruction for personal data protection, protection guidelines and standard operating procedures;
• defining roles and responsibilities;
• identification and authentication;
• registers management;
• session controls;
• external links/connections;
• telecommunications and remote access;
• monitoring;
• virus protection;
• accidents/contingency planning;
• maintenance/operation;
• configuration management;
• copies/backups for recovery;
• information media;
• physical environment/surroundings;
• personnel protection;
• training the employees to respond to events that threaten the security of data;
• determining time-limits for personal data storage;
• procedures for destruction/removal/deletion of media.

7.5. Cryptographic protection. Webstoresmarket will apply technical and organizational measures for cryptographic protection of personal data, including (when applicable):

• standard cryptographic capabilities of the operating systems;
• standard cryptographic capabilities of the database management systems;
• standard cryptographic capabilities of communications equipment;
• systems for distribution and management of cryptographic keys;
• systems for electronic signature.

Privacy policy for employers

Please read carefully this document. It contains the Privacy Policy for Customer (“Policy”) and is an integral part of the Terms of Service for Customer (“the Terms”). If You do not accept the Terms, it is not possible to use the Services. In case of amendments in the Policy, the changes will be published here.

Last update: May 17th, 2022

PRIVACY POLICY FOR Customer

For the purpose of providing the services (“Services”) on the website Webstoresmarket , with IMPERATIVE Ltd , UIC: 205824695, processes personal data of Customer Representatives and natural persons – Customer or other natural persons specified below (“Data Subjects”/”You”), in compliance with this Policy.

Upon processing of personal data, Webstoresmarket complies with all applicable data protection legislative acts, including, but not limited to, the Regulation (EU) 2016/679 (“Regulation”).

According to the Regulation, personal data means any information relating to You which makes You identifiable. Personal data processing (“Processing”) means any operation or set of operations which is performed on personal data by automated or other means.

1. Data Subjects

In connection with the provision of the Services, Webstoresmarket processes information regarding the following Data Subjects:
(a) Customer Representatives (“Representatives”) – natural persons;
(b) Customer – natural persons registered in the Website;
(c) Natural persons specified by the Customer as contact persons (for administrative contact, financial contact, data protection officer, etc.)

2. Data processed in connection with the provision of the Services

2.1. Information provided by You

You are free to decide whether and how to use the Services provided in the Website. We clearly indicate in the forms for entry of personal data whether the data is mandatory or voluntary. Mandatory data is data without which We would be unable to provide the relevant Service or part of it.

(a) Registration of a company account, users and contact persons. To register and use a company account in the Website information regarding the Customer; the Customer Representatives; Contact Persons; Data Protection Officer as defined in the Regulation (if applicable) is required. In addition, information about the registration and the acceptance of the Terms (date, time and IP address) is stored.

The data You provide when registering an account, adding Representatives and contact persons may include:

• Customer – natural persons: name, registered address, other contact details (address for correspondence; telephone; email address); UIC/BULSTAT; VAT number, etc.
• Customer Representatives (“Representatives”) – natural persons: name, position, business phone number, business email address, etc.
• Contact persons – natural persons: name, position, business phone number, business email address, etc.

(b) Additional users and contact persons. According to the Terms, if necessary and provided You have administrative rights, You may add additional company users (Representatives) to the company account. For this purpose You fill in the following data: name, surname, position, business email address, access rights, etc. Upon adding company users and contact persons in the company account, You declare and warrant that You are authorized to do so and that You have made the respective persons aware of this Policy.

(c) Contracts, declarations, etc. Documents exchanged between You and Webstoresmarket relating to the conclusion and performance of the Contract (annexes, powers of attorney, declarations, invoices, etc.). Such documents may contain name, position, contact details, signature/electronic signature, etc.

(d) Correspondence, complaints and claims. For the purpose of handling complaints, claims, disputes, inquiries, requests and other issues communicated to us via electronic forms on the Website, by phone calls to Webstoresmarket’s PBX, by post or by email, We store and process such information as well as the outcome of the processing.

(e) Special categories of data (sensitive data). The Services provided by Webstoresmarket and the functionalities available on the Website are not intended for collection, storage and processing of special categories of data within the meaning of Art. 9 and Art. 10 of the Regulation. You undertake not to store such data in your company account. Besides, You shall not require from the Applicants in relation to your offers to send such data through the Website. Webstoresmarket does not and is not obliged to monitor the presence of such data in the Website.

(f) Other data. Webstoresmarket may as well process other data related to You in cases You voluntarily provide such data by filling in the respective electronic forms on the Website, adding preferences, settings, etc.

2.2. Data related to the process of using the Services

(a) Contractual and financial information. In relation to the conclusion and performance of the contract for the provisioning of the Services between You and Webstoresmarket, the following data may be processed:

• Information regarding the contractual arrangements;
• Information related to the administration and provision of Services;
• History and information of ordered Services;
• History and information regarding the use of Services;
• Other information generated or provided in the course of using the Services.

(b) Settings and notifications. Some of the Services provide settings and notifications (including by email) to facilitate your usage of the Website. Webstoresmarket processes the relevant information for this purpose.

(c) Instructions and log of the personal data processing operations. Webstoresmarket provides You with a technological solution that allows You to receive applications to your offers and store them in your account. By accepting the Terms, the Customer (in the capacity of “Controller”) assigns to Webstoresmarket (in the capacity of “Processor”) to process personal data for the purposes of providing the Services, in strict compliance with the Terms and your Instructions (item 5.3. of the Data Processing Agreement, which is an integral part of these Terms).

In this regard, We may store information about the instructions made by You or your Representatives via the available functionalities in the Website, as well as processing operations related to personal data. Such information includes:

• Actions such as accessing the account and making changes therein, ordering of services, publishing and editing of job offers, etc.
• Actions including access to data, e.g. access, erasure, export, etc.

The stored information includes the action, the Representative performing the action, date and time, IP address, etc.

(d) Logs related to security, technical maintenance, development, etc. The Website uses logs for the following purposes:

• To ensure the reliable functioning of the Services and to detect technical problems;
• To ensure the security of the Services and to detect malicious activities;
• Logs required by law (such as logs of electronic statements).

Server logs, logs of Web Application Firewalls and other devices falling in this category. Such logs are necessary to detect technical problems, malicious activities, etc., as described above. The logs are stored for a period of up to 1 /one/ year. They may contain the following information: date and time, IP address, URL, browser and device information. Some devices may use security technologies based on cookies.

(e) Cookies. The normal functioning of the Website requires the use of cookies. 

3. Purposes of personal data processing

Webstoresmarket collects, uses, and processes the information described earlier for the purposes provided for in this Policy and in the Terms of Service. These include:

• Purposes necessary for the conclusion and performance of the contract for provision of the Services between You and Webstoresmarket;
• Purposes necessary for protecting and exercising the legitimate interests of other users of the Services, third parties and Webstoresmarket;
• Purposes for which You have granted explicit consent;
• Purposes necessary for the fulfilment of Webstoresmarket’s legal obligations.

(a) Contract conclusion and performance. These are the purposes necessary for the conclusion and performance of the contract between You and Webstoresmarket, including the required data processing upon registration, creating an account, and the activities related to the provision of the Services available on the Website. The purposes include communication with You, including by email, necessary for the provision of the Services and/or for notifying You of changes in the Services. For this purpose, processing of some or all of the above categories of data might be necessary.

(b) Legitimate interest. The purposes of legitimate interests of Webstoresmarket or of third parties (other users of the Website (Applicants, Customer, Customer Representatives, administrative contact persons, and unregistered users of the Website), Webstoresmarket’s employees and subcontractors or service providers) and include:

• Ensuring the Website’s normal operation and use by You and by the other users, maintenance and administration of the Services, dispute resolution, detection and prevention of malicious activities;
• Detection and repair of technical or functionality related issues;
• Communication with You, including by email, on important issues related to the Services;
• Receipt and processing of claims, complaints, requests and other correspondence;
• Exercise and protect Webstoresmarket’s rights and legal interests, including by legal proceedings, and rendering assistance to other users of the Website and/or affected third persons in exercising and protecting their rights and legal interests.

For these purposes, processing of some or all of the above categories of data might be necessary.

(c) Legal obligations. These are purposes such as:

• Financial and accounting activities where processing and storage of information is required by law for the purpose of fulfilment of tax, accounting and other reporting obligations;
• Activities related to the performance of statutory obligations for the retention or provision of information upon receipt of a relevant order issued by competent state or court authorities; to facilitate the competent state authorities in exercising their control powers; to perform Webstoresmarket’s legal obligations to notify You of various circumstances related to your rights, the Services provided or your data protection, etc.;
• Documenting and reporting activities, and other obligations related to the fulfilment of the requirements under Regulation (EU) 2016/679 and the applicable legislation, including the obligations assigned under the Data Processing Agreement or other applicable obligations.

For these purposes, processing of some or all of the above categories of data might be necessary.

(d) Explicit consent. Your data may be processed on the basis of your explicit consent. In such case, the processing is specific, to the extent and within the scope provided for in the respective consent.

4. Storage period

Below You can find information about the maximum storage periods of the different types of data. We apply the general principle for storing data in minimal volume and for a period not longer than necessary for the provision of the Services, ensuring their security and reliability, and meeting the legal requirements.

In case of a legal dispute or proceedings requiring data retention and/or at the request of a competent state authority, data may be stored for longer than the duration specified above until the final settlement of the dispute or the proceedings before all instances. The storage duration may be changed according to the applicable legislation.

Any change in or termination of the relations between the Customer and its Representatives shall not entail a change in the storage periods specified above, due to the fact that the information regarding the orders, instructions and activities of the Representatives is necessary as proof and for reporting purposes with regard to contractual and legal obligations.

Backup. For the purpose of ensuring the reliability of the Services and for prevention of data loss in case of technical issues, a backup policy is applied. The maximum period for updating (erasure of data) from all backup copies is 30 days.

5. Provision of information

Webstoresmarket shall not provide your personal data to third parties in any way other than those set out in this Policy, the Terms and as prescribed by law.

The Customer and the Employer Representatives. The data in the Customer’s account, such as data related to the Customer Representatives, requested services, published offers, and other actions, is accessible to the Customer and its Representatives with access rights granted by the Customer.

Suppliers and subcontractors. Webstoresmarket works with subcontractors and service providers such as dedicated data centers for reliable and secure colocation of servers and network equipment, accounting services, etc. When working with subcontractors and suppliers, Webstoresmarket requires that they comply strictly with its instructions, this Policy and the Terms.

Third parties. Your personal data may only be provided to third parties in the following cases: when this is prescribed for by law; if requested by a competent state or judicial authority; with your explicit consent; if necessary to protect the rights and legitimate interests of Webstoresmarket and/or other users of the Services.

Change of ownership. In the event of a merger, acquisition or sale of assets affecting personal data processing, You will be given an advance notice.

6. Rights with regard to personal data

The Regulation provides for the following rights for natural persons:

6.1. Right of information.
This Policy aims to inform You in detail about the processing of your personal data with regard to the Services provided.

6.2. Right of access. You are entitled to receive confirmation whether your personal data is being processed, to receive access to it, as well as information about its processing and your rights.

Such access is available via the functionalities provided in the Customer’s account.

6.3. Right of rectification. You are entitled to have your data rectified in case it is incomplete or inaccurate.

Your data may be rectified by You and/or by an authorized Customer Representative.

6.4. Right of erasure. You have the right to ask for data to be erased unless there is a material basis and/or legal obligation for its processing.

6.5. Right of restriction with regard to processing. The Regulation provides for the possibility of restricting your personal data processing in case there are grounds for this set forth therein.

6.6. The right to notify third parties. Where applicable, You have the right to request the Controller to notify third parties with regard to rectification, erasure or restriction of the processing of your personal data when the Controller has provided your data to them.

6.7. Right of data portability. You have the right to receive the personal data You have provided and which is related to You in a structured, commonly used, machine-readable format, and to use such data with another controller at your discretion.

6.8. The right not to be subject to a decision based solely on automated processing, including profiling which produces legal effects concerning You or similarly significantly affects You unless there are grounds provided for in the applicable data protection legislation, as well as appropriate safeguards to protect your rights, freedoms and legitimate interests.

No technology falling within this category is used for the provision of the Services on the Website.

6.9. Right to withdraw consent. You have the right to withdraw at any time your consent for personal data processing based on prior given consent. Such withdrawal shall not affect the lawfulness of the processing based on consent before its withdrawal.

6.10. Right to object. You have the right to object with respect to data processed on the basis of legitimate interest.

In the event of such an objection, We will examine your request and, if justified, We will comply with it. If We believe there is sufficient legal grounds for the processing or where necessary for establishing, exercising or defending legal claims, We will inform You accordingly.

6.11. Right to lodge a complaint with a supervisory authority.
You have the right to lodge a complaint with a supervisory authority if You consider that the processing of personal data concerning You infringes the applicable data protection legislation. 

7. Accuracy of the data
webstoresmarket.international shall have no liability for the accuracy of the data provided by You, does not perform checks in this respect and does not guarantee the actual identity of the data subjects. In any case of doubt, identified fraud and/or misuse, please notify us immediately. When providing any data on the Website, You undertake not to violate other people’s rights in relation to the protection of their personal data or their other rights.

8. Data Protection Officer
Questions and requests related to exercising your personal data protection rights can be addressed to the Data Protection Officer of Webstoresmarket:

Email address: office.imperative@yahoo.com

Policy for use of cookies

Here you can find information about the cookies and similar technologies used for storage of information related to the provided services (“Services”) on the website Webstoresmarket and/or the mobile versions and applications (“the Website”).

Last update: June 13th, 2022

POLICY FOR USE OF COOKIES

Cookies allow information to be stored in your browser (or mobile application). They are used to store settings and identifiers required for some of the services provided on the Website.

Webstoresmarket applies strict policy in line with the new EU requirements.

Cookies are used for the following purposes:

Deleting cookies from your browser
A special functionality is provided on Webstoresmarket, allowing you to delete all cookies from Webstoresmarket.

Control of cookies in the browser
If you want, you can also use your browser settings to delete and/or disable cookies from specific or all websites. More information about this can be found on aboutcookies.org.