PRIVACY POLICY

Thank you for choosing to be part of our community at RUE RA (“Vendor”, “we”, “us”, or “our”). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about our policy, or our practices with regards to your personal information, please contact us at contact@ruerastudio.com.

When you visit our website www.ruerastudio.com (“Site”) and use our services, you trust us with your personal information. We take your privacy very seriously. In this privacy notice, we describe our privacy policy. We seek to explain to you in the clearest way possible what information we collect, how we use it and what rights you have in relation to it. We hope you take some time to read through it carefully, as it is important. If there are any terms in this privacy policy that you do not agree with, please do not use our site and our services.

This Site is under the General Data Protection Regulations (GDPR), Regulation (EU) 2016/679.

We shall provide the data subject with all of the following information:

  • The identity and the contact details of the Data Controller; 
  • The nature of the personal data we process;
  • The purposes of the processing for which the personal data are intended;
  • The contact details of the Data Protection Officer;
  • Information on any third parties involved in the processing activities;
  • The period we retain the personal information;
  • Security measures adopted to protect personal information;
  • The Privacy rights of Users.

Users with fewer than 16 years of age are not allowed to consent to the processing of personal information. 

  1. PERSONAL DATA CONTROLLER
    • 1.1. Under the GDPR, ‘Controller’ is the subject which, alone or jointly with others, determines the purposes and means of the processing of personal data;
    • 1.2. The Controller for the data processing related to the activities on the Site is S.C. RUERA DESIGN S.R.L., with registered office in Romania at Str. Aleea Elevilor, Nr. 1, Bloc 55G, Scara A, Etaj PARTER, Apt. 2, Ploiești.

We are always open to your ideas, as well as to provide you with any additional information you may need regarding the processing of your data. We encourage you to contact us at email contact@ruerastudio.com.

  1. PERSONAL DATA WE PROCESS
    • 2.1. We generally collect your personal data directly from you, so you have control over the type of information you provide to us. By way of example, we receive information from you as follows:
      • 2.1.1. When you subscribe to our newsletter: email address;
      • 2.1.2. When you create an account: name, username and email address; in your account you can also fill the billing and shipping address sections for your future orders;
      • 2.1.3. When you place an order, you provide us with information such as: the product, name and surname, delivery address, billing details, payment method, phone number, bank card details, email address, etc.
    • 2.2. We may also collect and process information about your online behavior while visiting our website or using your smartphone to personalize your online experience and provide you with personalized offers. We invite you to find out more details by consulting the section on the Purposes of Processing below.
    • 2.3. On our website and in the smartphone application we can store and collect information in cookies and similar technologies, according to the Cookies Policy.
    • 2.4. We do not collect or process sensitive data, included in the General Data Protection Regulation in special categories of personal data.
  1. PERSONAL INFORMATION AND PURPOSES OF PROCESSING

    “Personal data” means any information relating to an user who can be identified, directly or indirectly, in particular by reference to an identifier (e.g. name, an identification number, location data, email address etc.).

    Personal information is collected automatically by the Site or received via other sources such as: contact forms, order forms, return forms, email, social media and other means. The Site processes personal data for the following purposes:
    • 3.1. BROWSING DATA
      The Site collects non-sensitive browsing data automatically for enabling and improving user navigation. This type of data refers to IP addresses, the pages visited on the site, date/time of the visit and its length, the device used, etc.

      Processing this type of information allows users to access the Site and have a wonderful RUE RA experience. Browsing data may also be used to verify and manage Site functionalities.

      Browsing data is unlikely to allow identification of the data subject. Please note that, by their very nature, browsing data may allow identification of users if they are associated with other parts of information. Also, from time to time, we process browsing data anonymously for statistical purposes. 

      Browsing data described in this section are stored only temporarily in compliance with the GDPR.
    • 3.2. ORDERS
      Personal data related to orders will only be stored as long as required to comply with contractual obligations and with the tax and financial reporting obligations.

      To provide RUE RA services, the general purposes of processing your data may include, the following:
      • Order processing, including check out process, validating, payment, shipping and invoicing.
        Contractual data: The Site asks users to fill in personal information for fulfilling their purchase orders and comply with contractual obligations (e.g. first name, last name, email, delivery address, billing address, phone number etc.)
        Payment data: The Site verifies the payment instruments used by the customers to purchase on www.ruerastudio.com (credit/debit card details) for the main purpose of preventing frauds. Payment verification is processed by the third party payment processors, as the Controller does not process or store any financial data belonging to users.
      • Solving problems of any kind related to an order, the goods or services purchased;
      • Returning the products according to the legal provisions;
      • Reimbursement of the value of the products according to the legal provisions;
      • Providing support services, including providing answers to your questions about your orders or the goods and services of RUE RA.

        Users may be prevented from completing an order if they fail to provide the required personal information.
    • 3.3. SITE REGISTRATION
      • When users create a personal Site account, they are asked to provide personal data (e.g. first name, last name, date of birth, email etc.). The Site indicates which personal information is necessary and which is optional to set up a Site account.
      • Users have the responsibility to submit personal information that is accurate at the moment of registration. We recommend users to update information by logging into their personal account and make all changes.
      • Site may send newsletters with product suggestions, discounts, promo codes, feedback requests or other updates, because it is in our legitimate interest to improve our relationship with customers. Customers have the right to unsubscribe anytime from such email communications by clicking the “Unsubscribe” button at the footer of each mail or by contacting us via email contact@ruerastudio.com.
    • 3.4. NEWSLETTER AND MARKETING COMMUNICATIONS
      • 3.4.1. Users can choose to receive newsletters by filling in the Newsletter box.
      • 3.4.2. The site collects the explicit consent of users to submitting newsletters and marketing communications before undertaking electronic marketing campaigns dedicated to them.
      • 3.4.3. Users can withdraw their consent for receiving newsletter anytime in the following ways:
      • By clicking the “Unsubscribe” box at the bottom of such email
      • By contacting us at contact@ruerastudio.com
      • 3.4.4. This policy applies also in the case of non-registered users that opted only for newsletter.
    • 3.5. COOKIES

      Information relating to the cookies used on the Site can be found at the Cookies Policy section. 
    • 3.6. DEFENDING OUR LEGITIMATE INTERESTS 

      There may be situations in which we use or transmit data to protect our rights and business. These may include measures to manage various other risks or measures to prevent and detect fraudulent attempts, including the transmission of information to the competent public authorities.
  1. RETENTION OF PERSONAL INFORMATION

    The Controller stores personal data for as long as it is needed to provide Consumers and Users with the required services or to meet legal or tax obligations or for the minimum period prescribed by the law.

    To determine the retention period for personal data stored by the Site, the Controller will consider the following factors to ensure that personal data is not stored for longer than the necessary period:
    • Tax, Legal and regulatory obligations regarding personal data processing;
    • The purpose for which the Site stores personal data;
    • The type of ongoing relationship with the Consumer or User (whether the users continue to receive marketing communications, how often the user logs into their Site account, how often they buy or browse on the Site, etc.);
    • Legitimate business interests;
    • Any specific User request in relation to the deletion of personal data.

      The Site will immediately delete or anonymize personal data that is no longer needed or retained according to the law. 
  1. SHARING AND TRANSFER OF PERSONAL INFORMATION
    • 5.1. The Controller may transfer personal information of Users to third-party suppliers, acting as “data processors”, for the purpose of performing business operations in order to fulfill their contractual obligations.
    • 5.2. Controller uses only processors providing sufficient guarantees to implement appropriate technical and organizational measures in such a manner that processing will meet the requirements of GDPR Regulations and ensure the protection of the rights of the user. Therefore, Processors will not use personal information for any other purposes than those agreed with the Controller.
    • 5.3. The Controller may share personal data with the following types of Processors:
      • Payment service providers;
      • Courier and postal operators;
      • IT service providers;
      • Marketing, advertising and social media agencies;
      • Subject, bodies of authorities to whom it is mandatory to provide personal data for purposes of abuse, fraud or compliance, or by order of the Authorities.

        In the cases above, sharing personal data with Processors is mandatory for the Controller to fulfill contractual obligations and to improve the experience of Users.
    • 5.4. It is the right of the User to request an updated list of all the Processors involved in the processing of personal data collected from the Site by email at: contact@ruerastudio.com.
    • 5.5. Controllers have the right to disclose personal data about Users if required by law (e.g. in response to law enforcement requests), and in case of protecting the rights of the Controller or their third parties.
  1. PROCESSING METHODS AND SECURITY MEASURES
    • 6.1. In accordance with the GDPR, specific security measures have been implemented to prevent data loss, improper or unlawful use and unauthorized access. Therefore, the Controllers process personal data using IT, electronic and automated tools.
    • 6.2. We assure you that only authorized employees of Controllers and authorized employees of third-party suppliers, acting as Processors on behalf of the Controllers, have access to personal data collected from the Site. Therefore, Controllers have data processing agreements with the Processors that ensure a level of security according to GDPR requirements.
    • 6.3. Please note the Site adopts security measures to prevent loss, dissemination or destruction of personal data, but it cannot exclude the risks that are involved by online transmission of data. The user accepts the risks of providing personal data over the internet and will not hold the Site responsible for any security breach, unless the breach is a result of the Site’s negligence.
  1. CONNECTIONS TO THIRD-PARTY WEBSITES OR PLATFORMS

    The Site may contain banners, advertising messages and other links to third-party websites or platforms. The Controllers can not control or be held responsible for any damages caused by third-party websites or platforms regarding the privacy law. Users are encouraged to read their privacy policies to verify how they collect and process personal information. 

  2. THE RIGHTS OF USERS

    Users have the right to receive confirmation as to whether the Controller holds any personal information about them. S.C. RUERA DESIGN S.R.L. guarantees fair and lawful processing of User’s personal data. 

    If this is the case, under the GDPR, users also hold the rights:
    • Right to be informed: individuals have the right to be informed about the collection and use of their personal data. This is a key transparency requirement under the GDPR.
    • Right of access: individuals have the right to access their personal data. Users can make a subject access request verbally or in writing and the Vendor will respond within 30 days. Also, individuals have the right to obtain a copy of their personal data as well as other supplementary information.
    • Right to rectification: individuals have the right to have inaccurate personal data rectified. An individual may also be able to have incomplete personal data completed – although this will depend on the purposes for the processing. This may involve providing a supplementary statement to the incomplete data.
    • Right to erasure: individuals have the right to have personal data erased. This is also known as the ‘right to be forgotten’. The right is not absolute and only applies in certain circumstances. The data necessary for tax, legal and regulatory obligations will be erased only when law permits it.
    • Right to restrict processing: individuals have the right to restrict the processing of their personal data in certain circumstances. This means that an individual can limit the way that an organization uses their data. This is an alternative to requesting the erasure of their data.
    • Right to data portability: gives individuals the right to receive personal data they have provided to a controller in a structured, commonly used and machine readable format. It also gives them the right to request that a controller transmits this data directly to another controller.
    • Right to object: gives individuals the right to object to the processing of their personal data at any time. This effectively allows individuals to stop or prevent the controller from processing their personal data. The right to object only applies in certain circumstances. Whether it applies depends on your purposes for processing and your lawful basis for processing.
    • Rights related to automated decision making including profiling: you have the right to refuse automated profiling.
    • The right to lodge a complaint regarding the processing of personal data by the competent authority.

      The User can exercise the privacy rights listed above, by email to the address: contact@ruerastudio.com

  3. RESPONSE TIME

    We intend to respond to any valid requests within 30 days, unless this is particularly complicated or if you have made several requests, in which case we will respond within a maximum of two months. We will let you know if we need more than 30 days. We may ask you some details about what you want to receive or what worries you. This will help respond faster to your request.

  4. CHANGES TO THIS PRIVACY POLICY

    Any further changes to this Privacy Policy will be posted on the Site and, where applicable, notified to users by email. Users are encouraged to read this Privacy Policy frequently to check for updates and changes.

Shopping Cart