Codenex Digital Company
 
About Us    |   Blog    |   Contact & Quotes    |   Request a free consultation    |     Client Area
Codenex Digital Company

Privacy Policy

This notice explains how Codenex International SRL processes personal data collected through the website, contact forms, newsletter and consultation booking tools.

Home / Privacy Policy
Published on 20 April 2026

1. Data controller

The data controller is Codenex International SRL, registered office at Strada Gabroveni 61, 030167 Bucharest, Romania, registration number J2025075824009, VAT RO52632905, e-mail hello@codenex.eu.

This notice reflects Regulation (EU) 2016/679 (GDPR), Romanian Law no. 190/2018 and, for electronic communications and cookies, Romanian Law no. 506/2004.

2. Categories of data

  • identity and contact details submitted through forms: name, surname, e-mail, phone number, company, message and project preferences;
  • data needed to manage quote or consultation requests;
  • newsletter data: e-mail address and consent/opt-in logs;
  • technical and security data: IP address, user agent, timestamp, anti-spam checks and Turnstile verification result;
  • any data voluntarily included by the user in the message body.

3. Purposes and legal bases

  • replying to contact, quote and consultation requests: Article 6(1)(b) GDPR, pre-contractual steps requested by the data subject;
  • managing the newsletter: Article 6(1)(a) GDPR, consent;
  • preventing abuse, spam and malicious traffic: Article 6(1)(f) GDPR, legitimate interest in site and service security;
  • complying with legal and tax obligations: Article 6(1)(c) GDPR;
  • managing contractual relationships: Article 6(1)(b) GDPR.

4. Mandatory or optional data

Data marked as required in forms are necessary to process the request. Failure to provide them may prevent us from replying or delivering the requested service. Newsletter subscription data are optional.

5. Recipients and processors

Data may be processed, on behalf of the controller and within the stated purposes, by technical and organisational service providers, including hosting and web infrastructure providers, e-mail systems, anti-spam/security services, the Brevo newsletter platform, the SimplyMeet booking/availability tool and, where enabled, Cloudflare Turnstile for form protection.

Data are not publicly disclosed.

6. International transfers

Some providers may process data outside the EEA. Where this happens, the controller adopts appropriate safeguards under GDPR, such as adequacy decisions or standard contractual clauses, where applicable.

7. Retention periods

  • contact, quote and consultation requests: up to 24 months from the last interaction, unless longer retention is required for contractual or defence purposes;
  • newsletter data: until consent is withdrawn or the user unsubscribes;
  • technical security and anti-spam data: normally up to 12 months, unless longer retention is required for protection purposes;
  • administrative, accounting or contractual data: for the period required by applicable law.

8. Data subject rights

Users may exercise the rights granted by Articles 15-22 GDPR at any time: access, rectification, erasure, restriction, objection, portability and withdrawal of consent where processing is based on consent.

Requests may be sent to hello@codenex.eu. Users also have the right to lodge a complaint with the competent supervisory authority, including ANSPDCP in Romania.

9. Supervisory authority

National Supervisory Authority for Personal Data Processing (ANSPDCP)
28-30 G-ral Gheorghe Magheru Blvd., District 1, 010336 Bucharest, Romania
E-mail: anspdcp@dataprotection.ro
Website: www.dataprotection.ro

10. Automated decision-making

The website does not use solely automated decision-making producing legal or similarly significant effects on users. Any anti-fraud or anti-spam tools are used only for security purposes.