Privacy Policy

Last updated: February 2026

Data controller

• Name: Ciobanu Rodica, Persoană Fizică Autorizată (PFA)
• CUI: 53338518
• Trade Register: F2026002466008
• EUID: ROONCR.F2026002466008
• Address: Str. Astrilor 17, Et. 1, Ap. 6, Giroc, Jud. Timiș, Romania
• Email: [email protected]
• Phone: +40 752 829 242

What data we collect

When you make a purchase, you are redirected to Stripe to complete your payment. Stripe collects and processes your personal data (name, email, shipping address, phone number, payment information) as an independent data controller for payment processing purposes, and as our data processor for order fulfillment purposes. For details on how Stripe handles your data, see Stripe’s Privacy Policy .

We access your name, email address, and shipping address through Stripe solely to fulfill and ship your order.

We do not collect or store any personal data on our website. This site is a static website with no database, no user accounts, and no server-side processing.

How your data is used

Your information is used solely to:

• Process your payment (by Stripe)
• Ship your purchase to you
• Contact you about your order if needed

We do not use your data for marketing unless you explicitly consent.

Legal basis for processing

We process your personal data on the following legal bases (GDPR Article 6):

• Performance of a contract (Art. 6(1)(b)) — processing your order, payment, and shipping
• Legal obligation (Art. 6(1)(c)) — retaining transaction records as required by Romanian tax and accounting law
• Consent (Art. 6(1)(a)) — only if you opt in to marketing communications
• Legitimate interest (Art. 6(1)(f)) — responding to inquiries you send us via email

Third-party services

• Stripe — payment processing (Stripe Privacy Policy )
• Cloudflare — website hosting and security (Cloudflare Privacy Policy )
• GitHub — website source code hosting

Cookies and analytics

This website does not use cookies or tracking technologies. We do not track individual users.

We use Cloudflare Web Analytics, a privacy-focused analytics service that collects aggregated, anonymous usage data (such as page views and country of origin). It does not use cookies, does not collect personal data, and does not track individual visitors. See Cloudflare Web Analytics privacy .

Your rights (GDPR)

Under EU law, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to processing of your data
• Request restriction of processing
• Data portability
• Withdraw your consent at any time (where processing is based on consent)
• Lodge a complaint with a supervisory authority

To exercise any of these rights, contact us at [email protected] .

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Romanian data protection authority:

ANSPDCP (Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal) Website: www.dataprotection.ro Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, 010336 București, Romania Email: [email protected]

Data retention

We retain order and transaction records for 10 years from the date of the transaction, as required by Romanian fiscal and accounting legislation (Law 82/1991 on Accounting; Fiscal Code). This includes your name, shipping address, and transaction details.

You may request deletion of data that is not subject to a legal retention obligation at any time by contacting us at [email protected] .

International data transfers

Some of our third-party service providers (Stripe, Cloudflare) are based in the United States. These providers transfer data outside the European Economic Area under appropriate safeguards, including the EU-US Data Privacy Framework and/or Standard Contractual Clauses (SCCs). For details, see each provider’s privacy policy linked above.

Changes to this policy

We may update this policy from time to time. Changes will be posted on this page.