Here at Eventer.Net, we not only aim to create the best experience for you but also to protect your privacy.
Eventer.NET ensures the organization of medical events through the exchange of knowledge and expertise to improve experiences, outcomes, and value. Visit: eventernet.ro. Eventer.NET does not assume responsibility for any damages caused by viruses or malware. Emails sent or received by Eventer.NET may be monitored for size, traffic, distribution, and content.
If you have any questions about these changes, please don’t hesitate to contact us, and we would be happy to assist you.
It is your right to change your mind.
If you no longer wish to receive our newsletter, you can use the unsubscribe option at the end of each newsletter.
1. About Eventer.Net
Eventer.Net SRL (referred to as Eventer.Net, we, or us in this Policy), registered with the Trade Registry of Iasi under no. J22/737/2010, fiscal code RO26964360, with headquarters at: Iasi, Anastasie Panu Street, no. 30, Bl. 2A, floor 2, apt. 4, and a branch in Iasi, Anastasie Panu Street, no. 13, Bl. Ghica Voda, mezzanine.
Address: Iasi, Anastasie Panu Street, no. 13, Bl. Ghica Voda, mezzanine
Bank Account: RO34 BACX 0000 0011 0946 0000 opened at Unicredit Bank Iasi
Eventer.Net recognizes the importance of your data and is committed to protecting its confidentiality and security. Therefore, it is important for us to provide you with integrated and practical information about the processing of your personal data as data subjects (users of our websites, clients, potential clients, consumers, potential consumers, suppliers, partners, employees) within this Personal Data Protection Policy, applicable for the purposes listed below.
a. In accordance with the requirements of Law no. 677/2001 for the protection of individuals regarding the processing of personal data and the free movement of such data, as amended and supplemented, and Law no. 102/2005 regarding the establishment and functioning of the National Supervisory Authority for Personal Data Processing, Eventer.Net SRL, as the personal data controller, is obliged to administer, safely and only for specified purposes, the personal data provided by the client, a family member, or third parties. We commit to ensuring that personal data will be:
-processed in good faith and in accordance with legal provisions;
-collected for specified, explicit, and legitimate purposes;
-adequate, relevant, and not excessive in relation to the purposes for which they are collected and subsequently processed;
-accurate and up-to-date; inaccurate or incomplete data in terms of the purpose for which they are collected and processed will be deleted or rectified;
-stored in a form that allows the identification of the data subject only for the period necessary to achieve the purposes for which the data is collected and processed.
b. EU Regulation 2016/679 (Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons concerning the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC)
This Policy applies whether you visit our websites or contact us and provides information on:
-how we use your data;
-what personal data we collect;
-how we ensure the confidentiality and security of data; and
-what legal rights you have over your personal data.
The Policy applies to all devices used for accessing the company’s websites, including smartphone and tablet devices. If you do not agree with the terms and conditions related to their use (as outlined in this document regarding personal data protection, copyright, etc.), please do not use the company’s websites. Eventer.Net assumes the legislative provisions and undertakes to administer, safely and only for the declared purposes, the personal data provided by you through our forms, emails, or web applications.
Eventer.Net reserves the right to update this Policy from time to time. The changes take effect from the moment they are published on the company’s websites, mobile applications, or social media.
2. Purposes for collecting and processing your personal data:
We do not retain your data longer than necessary to achieve the purposes mentioned in this Policy. Different data retention periods apply to different types of data; however, personal data will not be retained for more than 6 years.
In the administration of this website, Eventer.Net will collect certain information (personal data) related to identified individuals or individuals who can be identified, provided by users of this site (e.g., name, address, email address, phone number, date of birth, etc.) or indirectly (e.g., IP address). If you provide us with your personal data, we will use it to respond to your requests, process registrations for conferences/events we organize and you wish to attend, send newsletters, facilitate your access to specific information or offers, and handle invoicing. We will process personal data for the following purposes, based on the legal bases indicated for each:
2.2. Response to your questions, requests, or complaints:
e will process your personal data, such as name, surname, email address, phone number, and any other information or details you may provide in the correspondence, to communicate with you regarding the execution of purchased services (possible schedule changes/changes to other purchased services, handling complaints, and processing compensations in exceptional situations), depending on the communication channel through which you contact us.
2.3. How we collect personal data:
Eventer.Net collects your personal data from the following sources:
– From you when:
o You fill out forms on our website or applications, for example, to subscribe to a mailing list or register to use our website and applications.
o You participate in an event for which we are the promoter, either online, by email, text, or phone.
o You participate in an Eventer.Net discussion forum or interact on our social media accounts.
o You communicate with us by mail, phone, fax, email, social media, webinars, online customer services, or in person.
o You access content and links from the newsletters we have sent.
– From third parties, such as software providers:
o Analyzing the usage of our websites and applications by you.
o Using our e-commerce solution, as well as those processing fees on our behalf.
o CMR (College of Physicians from Romania), which provides details about CMR members to deliver products included as part of CMR membership (or if you have given consent for us to contact you).
o Hospitals, universities, or other organizations that provide your data when purchasing our products so that we can register you.
2.4. What categories of personal data do we collect?
– Identification and contact data:
o biographical information, such as: name, surname, profession, date of birth, gender, tax identification number (CUIM), personal identification number (CNP);
o Your contact details, including address, email, phone number, or other online identifiers;
– Special categories of personal data:
o Depending on the case, we may collect details about your membership in various medical organizations. For example, if membership (such as being a member of the College of Physicians from Romania – CMR) entitles you to access or benefit from a discount on our products and services.
3. HOW WE USE YOUR DATA, THE BASIS FOR PROCESSING YOUR DATA, AND TO WHOM WE DISCLOSE IT
3.1. Within a contractual relationship:
It is possible that we process your data to execute a contract or to benefit from the services you have requested, or to meet your request before signing a contract. In this regard, we use your data to provide our products or services that you (or the organization you are part of) have requested (or that are provided because you are a CMR member) and to communicate with you regarding these products/services.
We will provide your data as follows (but only for purposes related to contracts with you):
o Third-party service providers, such as courier companies, web platforms, and applications through which we deliver our products.
o The bank where payment details are provided to process a payment.
o CMR or your organization/institution where we need to verify your details before providing our products.
3.2. Legitimate interest:
Personal data will be processed because it is necessary for the legitimate interest of Eventer.Net or the legitimate interest of a third party. Examples of situations where we process data for purposes related to legitimate interest include:
o Managing a contest in which you participated.
o Marketing Eventer.Net and the products/services we provide online, by mail, phone, SMS, social media, and email (unless we provide information through a contract or when your consent is required).
o Quantifying the effectiveness of promotions we conduct and allowing us (and third parties advertising through us, websites, and applications) to broadcast relevant information to you (including ensuring that we do not promote medical products or services that are not licensed in Romania).
o Processing technical information about your use of our website and applications to ensure that content is presented most efficiently and to enable you to use the interactive features of our website and applications.
o Processing requests, complaints, and analyzing our services.
o Consulting our professional advisors (including legal) when it is necessary for us to obtain their advice or assistance.
o Providing data to a buyer or potential buyer of all or part of our business (unless this is necessary for the performance of a contract to which you are a party).
o Entities dealing with investigations and inquiries conducted by authorities where there is no legal or regulated obligation (e.g., with the Advertising Standards Authority).
In this regard, in addition to the above, we will provide your data to:
o Direct marketing providers.
o Google Analytics, which receives technical information about how you use our website and applications.
o Partners who have provided prizes you have won. We may also provide your data to partners for contests you participated in and for which you gave consent.
o Eventer.Net and other third parties for marketing purposes if we have your consent to distribute information for this purpose.
3.3. Direct Marketing Communications
We may process personal data to inform you about our products and services, promotional offers, and for subscribing to newsletters. As a general rule, these personal data will be processed for direct marketing purposes only with your consent and through the communication channels (e.g., email, SMS, etc.) with which you agreed when expressing your consent. However, to the extent that you have provided us with your email address during registration on our websites, we may use the email address, in accordance with current legal provisions, to send you commercial communications about similar products or services based on our legitimate interest in this regard. In this case, upon obtaining your email address and subsequently with each marketing message we send, we will provide you with the opportunity to object to this use of the email address (unsubscribe).
3.4. Surveys, Customer Satisfaction Studies, and Customer Feedback
We will process your personal data when you decide to participate in our surveys or market studies, customer satisfaction surveys, or when you provide feedback on our products and services. Such personal data will be processed for the above purpose only based on your consent, taking into account our legitimate interest in understanding the needs and expectations of customers regarding our products and services.
Your participation in such surveys or market studies is voluntary. Therefore, it is your choice whether or not to provide us with personal data (such as name and surname, information about your preferences, or other personal data) by completing participation forms on our website, applications, or similar forms provided in those surveys or studies.
3.5. Automated Decision-Making and Automated Profiling
he personal data referred to herein is subject to automated decision-making processes, including automated profiling.
The processing logic is aimed at improving the purchasing experience of services and developing our service portfolio.
3.6. Organization of National Congresses, Symposia, Conventions, Training Courses, and Workshops, and/or Associated Services
For the purchase of products and services, both our own and those of our contractual partners offered by us, we inform you that we process the following personal data: name, surname, nationality, gender, home address, email address, phone number, IP address, and details of the recognized identity document, card type, card number, cardholder name, card security number, or other payment details, tax identification number (CUIM).
3.7. Invoicing and Payment Management
In the context of purchasing products and services, we process personal data for the following purposes: issuing invoices, making payments, including but not limited to refunds and compensations, as well as managing cash transactions. In this regard, we collect personal data such as: name, surname, identification number, series and number of the identity document, date of issuance and expiration of the identity document, date and place of birth, address, phone number, email address, bank details, citizenship, gender.
3.8. rocessing of Data of Representatives of Contractual Partners Involved in Contracts with Eventer.Net and/or Representatives of Public Authorities
If you are a contact person for partners, potential partners, or public authorities with whom Eventer.Net interacts in the execution of contracts, your personal data is processed as follows:
– For the initiation or conduct of the contractual relationship between Eventer.Net and partners or potential partners;
– For the initiation or conduct of relationships between Eventer.Net and representatives of public authorities with whom it interacts in the course of its current activities.
The processing of your data for this purpose is based on the legitimate interest of the Company to initiate and conduct contractual relationships and/or with public authorities in the course of the Company’s activities in the context of offering our products and services. Refusing to provide data for this purpose may result in Eventer.Net being unable to carry out its activities.
3.9. Social Responsibility
For the implementation of social responsibility programs, we process personal data for the purpose of providing services for special cases such as medical situations or students.
The processing of your data for this purpose is based on the contractual obligation under the contracts concluded by the Company with individuals who request our support in such situations. Refusing to provide data for this purpose may result in our inability to carry out our activities.
Your data is retained for the fulfillment of this purpose for a period of 4 years, after which this data will be deleted.
4. LEGAL OBLIGATIONS OF EVENTER.NET
The data provided by you will also be processed by Eventer.Net to comply with legal obligations, such as:
o Detecting and preventing crimes and providing assistance to the police or other competent authorities in investigations;
o Complying with tax legislation;
o Complying with any regulated obligations to which we are or may become subject.
In this regard, under specific circumstances, we may provide your personal data to third parties who have legitimate requests under data protection legislation, the police and other competent authorities, and external auditors of Eventer.Net.
In certain situations, Eventer.Net may explicitly request your consent to process your personal data, for example, if we want to use your association or quote you in the materials we provide.
6. SPECIAL CATEGORIES OF PERSONAL DATA
In case we process special categories of personal data, we do so under the following conditions:
o To protect your vital interests, for example, to inform an emergency contact, emergency medical services, or other emergency services in case of illness or other emergencies.
o With your explicit consent, for instance, if you provide data about your health status, ethnicity, sexual orientation, or beliefs in a study conducted through us or information about your status as a CMR member if relevant for access to/reduction of a product/service we provide.
o When processing is necessary for the establishment, exercise, or defense of a legal claim.
7. PROFILING AND AUTOMATED DECISION MAKING
We use personal features, such as the email address, for future interactions with Eventer.Net to direct our communications to a specific audience.
8. HOW LONG WE RETAIN INFORMATION
We retain your data for as long as necessary to provide our products and services or as required for our legal purposes or legitimate interests. In particular, we retain data related to:
o Products or services provided by us for 10 years from the provision of the product/service unless our relationship with you continues for a longer period.
o Contests for up to two years from the conclusion of the contest, although details related to winners, if published, may be archived indefinitely.
o For marketing purposes until you inform us that you no longer wish to receive information (e.g., by unsubscribing from the newsletter). If you express this desire, we can keep your contact details on a separate list so that you no longer receive information from us.
Once the processing period mentioned above expires, and Eventer.Net no longer has legal or legitimate reasons to process your personal data, the data will be deleted following its procedures, which may involve archiving, anonymization, or destruction.
9. To Whom Do We Disclose Your Personal Data?
To achieve the purposes described above, Eventer.Net utilizes the services of several contractual partners. Some of them act as authorized entities, such as travel agencies and reselling companies, service providers from whom you have purchased through us (e.g., road transfer services, hotel services), banks and payment processors, global distribution systems, IT service providers, software, and maintenance providers, conducting their business activities both within and outside the European Union. They may be provided with your personal data to be used within the limits of the obligations they have assumed towards the Company. The personal data we disclose to those authorized by us are limited to the minimum personal information necessary for the provision of their respective services, and we request them not to use personal data for any other purpose. We make every effort to ensure that all entities we work with store your personal data safely and securely.
Some of them, in turn, act as data controllers, such as other airlines, providers of related services (insurance, transfer, rent-a-car, hotel institutions), and travel agencies operating within the European Union.
Some of them are third parties who do not intend to process the data but may have access to it in the performance of their tasks or in their interactions with us, such as companies providing technical maintenance, financial or legal auditors.
The personal data mentioned above may be provided or transmitted to third parties in the following situations:
i. Public authorities, auditors, or institutions with competence in inspecting and controlling our activities and assets, requesting information in accordance with their legal obligations. These public authorities or institutions may include the police and regulatory authorities, border police, the National Authority for Consumer Protection, the National Authority for Personal Data Processing Security, the National Agency for Fiscal Administration, the General Inspectorate for Immigration.
ii. To comply with a legal requirement or to protect our rights and assets or other entities or persons, such as courts.
iii. To comply with a legal requirement or to protect our rights and assets or other entities or persons, such as courts.
The individuals and entities to whom we may disclose personal data are as follows:
a) To respond to your inquiries, requests, or complaints, we may disclose your personal data to our call center service providers.
b) For direct marketing communications, we may transmit personal data to advertising and marketing agencies that handle communications on our behalf.
c) For direct marketing communications, we may transmit personal data to advertising and marketing agencies that handle communications on our behalf.
10. INTERNATIONAL TRANSFER OF DATA
In limited circumstances, Eventer.Net will disclose personal data to third parties or allow the storage or manipulation of personal data in countries outside the European Economic Area. Under these conditions, your personal data will only be transferred on one of the following bases:
o If the transfer is subject to one or more of the appropriate safeguards for international transfers provided by applicable law (e.g., standard data protection clauses adopted by the European Commission in accordance with Article 46(2)(c) of the GDPR). If you would like a copy of the standard clauses we use, please contact us;
o In accordance with an approved certification mechanism;
o A decision of the European Commission provides that the country or territory to which the transfer is being made ensures an adequate level of protection (Article 45 of the GDPR);
o There is another situation in which the transfer is permitted by applicable law (e.g., where we have your explicit consent).
Regarding transfers to countries that do not provide an adequate level of protection for the processing of personal data, Eventer.Net will use the following mechanisms to ensure the guarantees required by the GDPR: standard clauses that can be obtained from the Company or consulted at email@example.com.
11. SECURITY OF DATA PROCESSING
Eventer.Net informs you through this document that it continually evaluates and updates the security measures implemented to ensure the processing of personal data in safe and secure conditions.
To protect your personal data from accidental or unlawful destruction, loss, alteration, and unauthorized access, Eventer.Net uses technical and organizational security measures, including:
Database access is based solely on a username and password, assigned only to employees and used exclusively for the performance of their duties;
o Database access is electronically monitored with the identification of the device ID within the company from which the database is queried (actions identified as follows: action type, date, time);
o All users are required to maintain the confidentiality of the data they have access to;
o Data access is only done from the company’s devices connected to its internal network;
o Automatic backup of the database is performed every month (30 days);
o Data printing is done only from the company’s designated devices.
Links to Other Websites
Eventer.Net’s web pages contain links to other Internet pages. Eventer.Net is not responsible for the security practices or content of other websites.
12. REFUSAL OF PROCESSING AND ITS CONSEQUENCES
The personal data specified represent a contractual obligation, and the data subject must provide the data to benefit from the requested services and to address the requirements made by the data subject.
In case the data subject does not provide the data for the above-mentioned purpose, Eventer.Net will be unable to carry out the activities related to the purposes mentioned earlier.
13. RIGHTS OF DATA SUBJECTS
In the context of processing your personal data, you have the following rights:
o Right of access to processed personal data: You have the right to obtain confirmation as to whether your personal data is being processed and, if so, to access the type of personal data and the conditions under which it is processed by addressing a request to the data controller.
o Right to request rectification or erasure of personal data: You have the opportunity to request, by addressing a request to the data controller, the rectification of inaccurate personal data, the completion of incomplete data, or the erasure of your personal data in case:
(i) the data are no longer necessary for the initial purpose (and there is no new legal purpose);
(ii) the legal basis for processing is the data subject’s consent, and the data subject withdraws consent, and there is no other legal basis;
(iii) the data subject exercises the right to object, and the data controller has no legitimate grounds to continue processing;
(iv) the data have been processed unlawfully;
(v) erasure is necessary for compliance with EU or Romanian law.
o Right to request restriction of processing: You have the right to obtain restriction of processing in cases where:
(i) you consider that the processed personal data is inaccurate, for a period that allows the controller to verify the accuracy of the personal data;
(ii) processing is unlawful, but you do not want your personal data to be deleted but rather to restrict the use of this data;
(iii) if the data controller no longer needs your personal data for the purposes mentioned above, but you need the data to establish, exercise, or defend a legal claim, or you have objected to processing, for the period during which we verify whether the legitimate grounds of the data controller prevail over the data subject’s rights.
o Right to withdraw consent for processing: When processing is based on consent, without affecting the legality of processing activities carried out until that moment.
o Right to object to processing for reasons related to your particular situation: When processing is based on legitimate interests, as well as the right to object at any time to the processing of data for direct marketing purposes, including profiling.
o Right not to be subject to a decision based solely on automated processing: Including profiling, which produces legal effects concerning the data subject or similarly significantly affects them.
o Right to data portability: Meaning the right to receive the personal data you provided to the data controller in a structured, commonly used, and machine-readable format, as well as the right to transfer this data to another controller when processing is based on your consent or the performance of a contract and is carried out by automated means.
o Right to lodge a complaint with the Data Protection Authority (ANSPDCP): And the right to address competent courts.
These rights can be exercised at any time. To exercise these rights, we encourage you to submit a written request, dated and signed or in electronic format, to the following address: Str. Anastasie Panu, Nr. 13, Bl. Ghica Voda, mezzanine, Iasi, Romania, or by email at firstname.lastname@example.org.
Additionally, if you wish to withdraw your consent for direct marketing purposes, you can use the unsubscribe option included in each marketing communication.
14. CHANGES TO THIS POLICY
You can address any questions regarding this document. You can write to us using the following contact details: email@example.com.
How We Collect Personal Data
Eventer.Net collects your personal data in the following ways:
o Directly from you when:
o You register or purchase services through our website, email, phone, or mail.
o You meet with one of our representatives or correspond with us through our website, mail, email, or phone regarding organized events, when you fill out feedback forms and questionnaires.
o From third parties, such as:
o Organizations providing or ordering tickets on your behalf.
o Hospitals, universities, or other organizations that may purchase tickets on your behalf or register your data with us.
o Our website.
o Our bank to which payment details are provided for processing.
o Our payment provider who confirms payment details.
Categories of Personal Data We Collect?
Depending on the event, we collect the following personal information:
o Identification and contact information:
o Name, position, date of birth, gender, age, and personal identification number (CNP).
o Contact details, including address, email, and phone number.
o Professional information:
o Your qualifications, professional experience, and Unique Registration Code (CUIM).
o The institution to which you are affiliated.
o Online and transactional:
o When you visit our website or use our applications, we collect details such as IP address, location (including institution), browser type and version, operating system.
o Information provided during communication with us.
o Details about how you use our website and applications, including accessed content, searches, visit duration, login details, date and time of access, and exit methods from our site or application.
o Eventer.Net events, past events you have participated in or future events you wish to attend.:
o Payment details and financial transactions related to your purchases.
o Special categories of data:
o If you or your organization provide health-related data, we process this information to make appropriate adaptations to our event, such as meeting access requirements or catering needs.
Details about your membership in organizations (such as CMR membership), if relevant for the event where CMR members benefit from preferential rates.
How We Use Your Data, Processing Basis, and Access to Information:
As part of a contractual relationship, we may process your personal data because it is necessary for the performance of a contract. For example, to deliver the event you have engaged us for or to take actions at your request before entering into a contract. In this regard, we use your personal data for the following:
o To administer the event and your payment.
o To correspond with you about the event, including sending pre-event information.
In this context, we may provide your data to the following (but only for contract-related purposes):
o Third-party contractors and service providers we may engage to assist in delivering the event, such as conference providers and speakers.
o Our bank where payment details are provided for processing.
o Our website provider if event participation may also involve an online account.
Your personal data will also be processed because they are necessary for the legitimate interests of Eventer.Net or a third party. Examples of cases where we process data for legitimate interests include:
Creating a list of delegates or speakers and distributing the list to speakers and participants.
Sharing details with co-organizers, collaborators, and sponsors of an event (except where necessary to obtain your consent).
Online marketing via email.
Recording our events for promotional and educational purposes (e.g., when interviewing participants and recording speakers).
Processing technical information about your use of Eventer.Net sites to ensure that our site’s content is presented most effectively and to allow you to use interactive features.
Providing data to a buyer or potential buyer of our entire business or part of it (except where necessary for the execution of a contract to which you are a party).
Processing requests, complaints, surveys, feedback forms, and analyzing our services.
In this regard, and in addition to those parties mentioned above, we will provide your data to:
Direct marketing providers.
Google Analytics, which receives technical information about how you use our site.
CMR for marketing purposes and to update you on products you might be interested in (except where it is necessary to obtain your consent before allowing access to your information in this way).
Legal Obligations of Eventer.Net
Your personal data will also be processed by Eventer.Net in compliance with its legal obligations. For example:
Detecting and preventing crimes and assisting the police and other competent authorities with investigations.
In this regard, under specific circumstances, we may share personal data with third parties who have legitimate requests under data protection legislation, including the police and other law enforcement agencies, and external auditors of Eventer.Net.
Special Categories of Personal Data
If we process special categories of personal data, our processing bases are:
To protect your vital interests, e.g., to inform the specified emergency contact or emergency services in case of illness or another emergency.
Your explicit consent, e.g., if we need information about CMR membership or dietary or access requirements that we must process regarding the event.
When processing is necessary for the establishment, exercise, or defense of a legal claim.
Profiling and Automated Decision-Making
We may use personal features such as age, gender, address, position, expressed interests, previous interactions with Eventer.Net, or geographical location to target our communications to a specific audience.
Eventer.Net also uses various advertising technologies such as keywords, cookies, and mobile identifiers, as well as specific services used by certain websites and social media networks, to present Eventer.Net ads when you are on other sites and applications. These ads will be based on the information we hold about your previous use of Eventer.Net sites (e.g., Eventer.Net search history, accessed content, and ads you clicked on).