Close

POLITICA DE CONFIDENTIALITATE

privind prelucrarea datelor cu caracter personal

Soleil Beauty Hub acorda o importanta deosebita protectiei datelor cu caracter personal ale utilizatorilor si clientilor sai. Prezenta Politica de Confidentialitate descrie, in mod transparent si complet, modul in care colectam, prelucram, stocam si protejam datele dumneavoastra personale, in conformitate cu:

  •       Regulamentul (UE) 2016/679 al Parlamentului European si al Consiliului din 27 aprilie 2016 (GDPR)
  •       Legea nr. 506/2004 privind prelucrarea datelor cu caracter personal si protectia vietii private in sectorul comunicatiilor electronice
  •       Legea nr. 190/2018 privind masuri de punere in aplicare a GDPR la nivel national
  •       Orice alte reglementari nationale si europene aplicabile

 

1. Cine este operatorul de date cu caracter personal

Operatorul de date cu caracter personal, in sensul GDPR, este:

Denumire: SALON SOLEIL S.R.L. (CUI 41430943)

Adresa: Marghita, Str. Ion Luca Caragiale, Nr. 1, Jud. Bihor.

E-mail de contact: hello@soleilbeautyhub.ro

Telefon: 0771 438 992

 

Soleil Beauty Hub este responsabil de modul in care sunt colectate si prelucrate datele dumneavoastra personale si se obliga sa asigure un nivel adecvat de protectie a acestora.

 

2. Ce date cu caracter personal colectam

2.1. Prin formularul de programare online

Atunci cand utilizati functionalitatea de programare online, colectam urmatoarele categorii de date:

  •       Nume si prenume
  •       Numar de telefon
  •       Adresa de e-mail (daca este solicitata)
  •       Data si ora programarii solicitate
  •       Serviciul solicitat
  •       Observatii sau solicitari speciale mentionate de utilizator

 

2.2. Prin formularul de contact

Prin utilizarea formularului de contact, colectam:

  •       Nume si prenume (daca sunt furnizate)
  •       Adresa de e-mail
  •       Continutul mesajului transmis
  •       Orice alte date pe care le furnizati in mod voluntar in corpul mesajului

 

2.3. Date colectate automat (tehnice)

Ca urmare a simpluui acces pe site, pot fi colectate automat date tehnice, prin intermediul cookie-urilor sau al jurnalelor serverului:

  •       Adresa IP
  •       Tipul si versiunea browser-ului
  •       Sistemul de operare utilizat
  •       Paginile accesate si durata vizitei
  •       Sursa de provenienta (URL de referinta)

Aceste date tehnice sunt colectate in scop de securitate si analiza a traficului. In masura in care constituie date cu caracter personal, sunt tratate in conformitate cu prezenta politica.

 

3. Scopurile si temeiul legal al prelucrarii

Prelucram datele dumneavoastra cu caracter personal in urmatoarele scopuri si in baza urmatoarelor temeiuri legale:

 

  1. a) Gestionarea programarilor online

◦       Scop: procesarea si confirmarea rezervarilor pentru serviciile oferite la sediu

◦       Temei legal: Art. 6 alin. (1) lit. b) GDPR — executarea unui contract (prestarea serviciului solicitat) sau masuri precontractuale la cererea persoanei vizate

 

  1. b) Raspuns la solicitarile transmise prin formularul de contact

◦       Scop: comunicarea cu utilizatorul care a transmis o intrebare sau o solicitare

◦       Temei legal: Art. 6 alin. (1) lit. b) GDPR sau lit. f) GDPR — interesul legitim al operatorului de a raspunde solicitarilor de informatii

 

  1. c) Obligatii legale

◦       Scop: respectarea obligatiilor legale care incumba operatorului (fiscale, contabile etc.)

◦       Temei legal: Art. 6 alin. (1) lit. c) GDPR — respectarea unei obligatii legale

 

  1. d) Asigurarea securitatii site-ului

◦       Scop: prevenirea atacurilor informatice, detectarea accesului neautorizat, mentinerea integritatii sistemelor informatice

◦       Temei legal: Art. 6 alin. (1) lit. f) GDPR — interesul legitim al operatorului de a-si proteja sistemele

 

  1. e) Marketing direct (numai cu consimtamantul dumneavoastra)

◦       Scop: transmiterea de oferte, noutati sau informatii promotionale, exclusiv daca v-ati exprimat consimtamantul expres in acest sens

◦       Temei legal: Art. 6 alin. (1) lit. a) GDPR — consimtamantul persoanei vizate

◦       Nota: aveti dreptul de a va retrage consimtamantul oricand, fara ca aceasta sa afecteze legalitatea prelucrarii anterioare retragerii

 

4. Durata stocarii datelor

Pastram datele dumneavoastra personale numai pe perioada necesara indeplinirii scopului pentru care au fost colectate, dupa cum urmeaza:

  •       Date din formularul de programare: pe durata derularii relatiei contractuale si maxim 3 ani de la ultima interactiune, in scopuri de evidenta interna
  •       Date din formularul de contact: maxim 12 luni de la data transmiterii mesajului, dupa care sunt sterse sau anonimizate
  •       Date tehnice / log-uri: maxim 12 luni, cu exceptia situatiilor in care sunt necesare pentru solutionarea unui incident de securitate
  •       Date necesare pentru obligatii legale (fiscale, contabile): conform termenelor prevazute de legislatia romana in vigoare (10 ani pentru documente financiar-contabile, conform Legii nr. 82/1991)
  •       Date prelucrate pe baza de consimtamant (marketing): pana la retragerea consimtamantului sau la cererea de stergere

 

5. Destinatarii datelor cu caracter personal

Datele dumneavoastra pot fi transmise exclusiv urmatoarelor categorii de destinatari, in masura in care este strict necesar:

  •       Personalul intern autorizat al Soleil Beauty Hub, cu atributii in gestionarea programarilor si comunicarea cu clientii
  •       Furnizori de servicii de gazduire web si/sau platforme de programare online, care actioneaza in calitate de operatori asociati sau imputerniciti ai operatorului, in baza unor contracte de prelucrare conform Art. 28 GDPR
  •       Furnizori de servicii de e-mail sau SMS folosite pentru confirmarea programarilor
  •       Autoritati publice (ANAF, politie, instante judecatoresti), exclusiv in cazurile prevazute de lege sau in urma unei solicitari legale

 

Soleil Beauty Hub nu vinde, nu inchiriaza si nu transmite datele dumneavoastra catre terti in scopuri comerciale proprii.

 

6. Transferul datelor in afara Uniunii Europene

In principiu, datele dumneavoastra sunt prelucrate pe teritoriul Romaniei sau al Uniunii Europene / Spatiului Economic European. In situatia in care un furnizor de servicii tehnice (ex. platforma de programare, serviciu de e-mail) prelucreaza datele in afara SEE, ne asiguram ca transferul se realizeaza cu respectarea garantiilor prevazute de Capitolul V din GDPR (decizii de adecvare, clauze contractuale standard etc.).

 

7. Drepturile dumneavoastra

In calitate de persoana vizata, beneficiati de urmatoarele drepturi, in conformitate cu GDPR:

 

Dreptul de acces (Art. 15 GDPR)

Aveti dreptul de a obtine o confirmare cu privire la faptul ca datele dumneavoastra sunt sau nu prelucrate si, daca da, de a obtine o copie a acestor date.

 

Dreptul la rectificare (Art. 16 GDPR)

Puteti solicita corectarea datelor inexacte sau completarea datelor incomplete.

 

Dreptul la stergere („dreptul de a fi uitat”) (Art. 17 GDPR)

Puteti solicita stergerea datelor dumneavoastra atunci cand: nu mai sunt necesare scopului initial, va retrageti consimtamantul (daca prelucrarea se baza pe acesta), datele au fost prelucrate ilegal sau ati formulat o opozitie valida. Dreptul nu se aplica daca prelucrarea este necesara pentru indeplinirea unei obligatii legale sau pentru constatarea, exercitarea ori apararea unui drept in instanta.

 

Dreptul la restrictionarea prelucrarii (Art. 18 GDPR)

In anumite situatii prevazute de GDPR, puteti solicita restrictionarea prelucrarii datelor dumneavoastra.

 

Dreptul la portabilitatea datelor (Art. 20 GDPR)

Aveti dreptul de a primi datele furnizate intr-un format structurat, utilizat frecvent si care poate fi citit automat (ex. CSV), si de a le transmite altui operator, atunci cand prelucrarea se bazeaza pe consimtamant sau pe contract.

 

Dreptul la opozitie (Art. 21 GDPR)

Va puteti opune prelucrarii datelor dumneavoastra in scop de marketing direct, in orice moment si fara nicio justificare. In cazul prelucrarii bazate pe interes legitim, puteti formula o opozitie motivata.

 

Dreptul de a nu fi supus unei decizii exclusiv automate (Art. 22 GDPR)

Soleil Beauty Hub nu utilizeaza procese de luare a deciziei bazate exclusiv pe prelucrare automata, inclusiv profilare, care sa produca efecte juridice sau efecte semnificative similare asupra dumneavoastra.

 

Dreptul de a depune o plangere la autoritatea de supraveghere

Daca considerati ca drepturile dumneavoastra au fost incalcate, aveti dreptul de a depune o plangere la Autoritatea Nationala de Supraveghere a Prelucrarii Datelor cu Caracter Personal (ANSPDCP):

  •       Adresa: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Bucuresti
  •       E-mail: anspdcp@dataprotection.ro
  •       Site: www.dataprotection.ro

 

8. Modalitatea de exercitare a drepturilor

Pentru exercitarea oricaruia dintre drepturile mentionate, va rugam sa transmiteti o solicitare scrisa la:

  •       E-mail: [adresa@soleilbeautyhub.ro]
  •       Adresa postala: Marghita, judetul Bihor, Romania, cu mentiunea „Solicitare GDPR”

 

Vom raspunde solicitarii dumneavoastra in termen de maximum 30 de zile calendaristice de la primire. In cazuri complexe sau in situatia unui numar mare de cereri, termenul poate fi prelungit cu inca 60 de zile, cu notificarea prealabila a solicitantului.

Identificarea solicitantului: pentru a preveni accesul neautorizat la datele dumneavoastra, este posibil sa va solicitam informatii suplimentare de identificare. Aceste informatii vor fi utilizate exclusiv pentru procesarea cererii.

 

9. Securitatea datelor cu caracter personal

Soleil Beauty Hub implementeaza masuri tehnice si organizatorice adecvate pentru a asigura un nivel de securitate corespunzator riscului asociat prelucrarii datelor, inclusiv:

  •       Utilizarea conexiunilor securizate (HTTPS/SSL) pentru transmiterea datelor prin site
  •       Accesul la datele cu caracter personal este limitat la personalul autorizat, pe principiul „need-to-know”
  •       Contractele cu furnizorii externi de servicii tehnice includ clauze de prelucrare conform Art. 28 GDPR
  •       Proceduri interne de gestionare a incidentelor de securitate (breaches)

 

In caz de incident de securitate care poate genera un risc ridicat pentru drepturile si libertatile dumneavoastra, veti fi notificat fara intarzieri nejustificate, conform obligatiilor legale.

 

10. Cookie-uri

Site-ul Soleil Beauty Hub poate utiliza cookie-uri si tehnologii similare. Prin cookie-uri esentiale (necesare functionarii tehnice a site-ului) nu este necesara obtinerea consimtamantului. Cookie-urile optionale (analitice, de performanta, de marketing) sunt utilizate exclusiv cu acordul dumneavoastra prealabil si expres.

Puteti gestiona sau dezactiva cookie-urile din setarile browser-ului pe care il utilizati sau prin banner-ul de consimtamant afisat la prima vizita pe site. Dezactivarea cookie-urilor esentiale poate afecta functionarea corecta a site-ului.

Informatii detaliate despre tipurile de cookie-uri utilizate, durata lor de viata si furnizorii implicati sunt disponibile in Politica de Cookie-uri, accesibila de pe site.

 

11. Modificarea prezentei politici

Soleil Beauty Hub isi rezerva dreptul de a modifica si actualiza prezenta Politica de Confidentialitate ori de cate ori este necesar, inclusiv ca urmare a modificarilor legislative sau a schimbarilor in practicile de prelucrare a datelor. Versiunea actualizata va fi publicata pe site, cu indicarea datei ultimei revizuiri.

Va recomandam sa consultati periodic aceasta politica pentru a fi la curent cu eventualele modificari. Continuarea utilizarii site-ului dupa publicarea unei versiuni modificate constituie acceptul implicit al noii versiuni.

Ultima actualizare: 11.05.2026

 

12. Contact privind protectia datelor

Pentru orice intrebari, solicitari sau ingrijorari legate de protectia datelor dumneavoastra cu caracter personal, ne puteti contacta la:

  • E-mail: hello@soleilbeautyhub.ro
  • Telefon: 0771 438 992 
  • Adresa: Marghita, judetul Bihor, Romania 
3. Embedded Content
Pages on this site may include embedded content, like YouTube videos, for example. Embedded content from other websites behaves in the exact same way as if you visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website. Below you can find a list of the services we use:
Facebook
The Facebook page plugin is used to display our Facebook timeline on our site. Facebook has its own cookie and privacy policies over which we have no control. There is no installation of cookies from Facebook and your IP is not sent to a Facebook server until you consent to it. See their privacy policy here: Facebook Privacy Policy .
Twitter
We use the Twitter API to display our tweets timeline on our site. Twitter has its own cookie and privacy policies over which we have no control. Your IP is not sent to a Twitter server until you consent to it. See their privacy policy here: Twitter Privacy Policy .
Youtube
We use YouTube videos embedded on our site. YouTube has its own cookie and privacy policies over which we have no control. There is no installation of cookies from YouTube and your IP is not sent to a YouTube server until you consent to it. See their privacy policy here: YouTube Privacy Policy.
4. Cookies
This site uses cookies – small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymised tracking data to third party applications like Google Analytics. Cookies generally exist to make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the help section of your browser.
Necessary Cookies (all site visitors)
  • cfduid: Is used for our CDN CloudFlare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. See more information on privacy here: CloudFlare Privacy Policy.
  • PHPSESSID: To identify your unique session on the website.
Necessary Cookies (Additional for Logged in Customers)
  • wp-auth: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_logged_in_{hash}: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_test_cookie Used by WordPress to ensure cookies are working correctly.
  • wp-settings-[UID]: WordPress sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
  • wp-settings-[UID]:WordPress also sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
5. Who Has Access To Your Data
If you are not a registered client for our site, there is no personal information we can retain or view regarding yourself. If you are a client with a registered account, your personal information can be accessed by:
  • Our system administrators.
  • Our supporters when they (in order to provide support) need to get the information about the client accounts and access.
6. Third Party Access to Your Data
We don’t share your data with third-parties in a way as to reveal any of your personal information like email, name, etc. The only exceptions to that rule are for partners we have to share limited data with in order to provide the services you expect from us. Please see below:
Envato Pty Ltd
For the purpose of validating and getting your purchase information regarding licenses for this theme, we send your provided tokens and purchase keys to Envato Pty Ltd and use the response from their API to register your validated support data. See the Envato privacy policy here: Envato Privacy Policy.
Ticksy
Ticksy provides the support ticketing platform we use to handle support requests. The data they receive is limited to the data you explicitly provide and consent to being set when you create a support ticket. Ticksy adheres to the EU/US “Privacy Shield” and you can see their privacy policy here: Ticksy Privacy Policy.
7. How Long We Retain Your Data For
When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation. If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit that information.
8. Security Measures
We use the SSL/HTTPS protocol throughout our site. This encrypts our user communications with the servers so that personally identifiable information is not captured/hijacked by third parties without authorization. In case of a data breach, system administrators will immediately take all needed steps to ensure system integrity, will contact affected users and will attempt to reset passwords if needed.
9. Your Data Rights
General Rights

If you have a registered account on this website or have left comments, you can request an exported file of the personal data we retain, including any additional data you have provided to us.

You can also request that we erase any of the personal data we have stored. This does not include any data we are obliged to keep for administrative, legal, or security purposes. In short, we cannot erase data that is vital to you being an active customer (i.e. basic account information like an email address).
If you wish that all of your data is erased, we will no longer be able to offer any support or other product-related services to you.

GDPR Rights

Your privacy is critically important to us. Going forward with the GDPR we aim to support the GDPR standard. AxiomThemes permits residents of the European Union to use its Service. Therefore, it is the intent of AxiomThemes to comply with the European General Data Protection Regulation. For more details please see here: EU GDPR Information Portal.

10. Third Party Websites

AxiomThemes may post links to third party websites on this website. These third party websites are not screened for privacy or security compliance by AxiomThemes, and you release us from any liability for the conduct of these third party websites.
All social media sharing links, either displayed as text links or social media icons do not connect you to any of the associated third parties unless you explicitly click on them.

Please be aware that this Privacy Policy, and any other policies in place, in addition to any amendments, does not create rights enforceable by third parties or require disclosure of any personal information relating to members of the Service or Site. AxiomThemes bears no responsibility for the information collected or used by any advertiser or third party website. Please review the privacy policy and terms of service for each site you visit through third party links.

11. Release of Your Data for Legal Purposes

At times it may become necessary or desirable to AxiomThemes, for legal purposes, to release your information in response to a request from a government agency or a private litigant. You agree that we may disclose your information to a third party where we believe, in good faith, that it is desirable to do so for the purposes of a civil action, criminal investigation, or other legal matter. In the event that we receive a subpoena affecting your privacy, we may elect to notify you to give you an opportunity to file a motion to quash the subpoena, or we may attempt to quash it ourselves, but we are not obligated to do either. We may also proactively report you, and release your information to, third parties where we believe that it is prudent to do so for legal reasons, such as our belief that you have engaged in fraudulent activities. You release us from any damages that may arise from or relate to the release of your information to a request from law enforcement agencies or private litigants.

Any passing on of personal data for legal purposes will only be done in compliance with laws of the country you reside in.