Thank you for visiting this website, and we hope you’ll be delighted to learn more about and the services it offers. The website is a presentation website, and its purpose is solely to provide information to individuals interested in our services. All rights are reserved, in accordance with Law no. 18/1996 on copyright. The entire content of the website, regardless of its nature (text, images, graphic elements, software, and similar elements), is the property of Uptrust CyberSec SRL. The content of the website may not be reproduced, modified, transferred, distributed, republished, copied, or transmitted in any other form without the written permission of Uptrust CyberSec SRL.

Through this ‘Privacy Policy,’ we are committed to providing users with clear and comprehensive information about the data we collect through the domain and how this data is stored and used by our company and our partners. The ‘Privacy Policy’ also explains how users can manage their preferences related to internet browsing and cookie policies. We also inform you about your rights regarding the processing of your personal data. Uptrust CyberSec SRL respects the privacy rights of individuals who visit our website and communicate with us electronically. We have developed this ‘Privacy Policy’ to inform you about how collects, uses, and processes personal information. By using this site, you agree to the practices described in this ‘Privacy Policy.’ If you do not agree with this privacy policy, please do not use this site. We reserve the right to make changes to this privacy policy at any time. Any changes will be posted in this privacy policy, and the changes will apply to activities and information collected after the publication. We encourage you to periodically review this privacy policy to ensure you are informed about any changes and how information may be used.

Privacy Policy

When you visit the website or use our services, you entrust us with your information, some of which may be personal or sensitive. The purpose of this Privacy Policy is to show you what data we process, why we process it, and what we do with it. Fully aware that your personal information belongs to you, we do our best to store it securely. We do not provide information to third parties without informing you. By browsing the website or contacting us (using the form provided on the website), you declare that you have been adequately informed about the personal data processing policy by reviewing this document called the Privacy Policy. It is also essential and mandatory for users to read these Terms and Conditions and the Privacy Policy existing on the website Definitions Terms The website is owned and operated by UPTRUST CYBERSEC SRL, a Romanian legal entity, with its registered office at Str. Oasului 86-90, Cluj-Napoca, Cluj County, registered with the Trade Register under no. J12/3760/2015, VAT ID: 35327235.

According to Regulation (EU) 679/2016 (applicable within the EU from May 25, 2018), known as GDPR, it refers to the protection of individuals regarding the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC. Personal data, as defined by GDPR, means any information relating to an identified or identifiable natural person (data subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. Uptrust CyberSec SRL may change this Privacy Policy at any time. All updates and modifications to this Policy are valid immediately upon notifying users, which we will do by displaying it on the website and/or sending an email notification. Questions and Requests If you have questions or concerns about the processing of your data or wish to exercise your legal rights regarding the data we hold, or if you have concerns about how we handle any privacy issue, you can contact the data protection officer at Uptrust CyberSec SRL; at the email address: [email protected]. Personal or sensitive data collected Information You Voluntarily Provide When you use the contact/reservation form or contact us by phone, email, or any other means, you voluntarily provide us with the information we process. This information may include your full name, email address, first and last name, and phone number. By providing us with this information, we store it securely and confidentially in our database. We do not disclose or transfer information to third parties. Information We Automatically Collect When You Browse Our Site, we may collect information about your visit to the site. This information may include your IP address, operating system, browser, browsing activity, and other information about how you interacted with the site. We may collect this information through the use of cookies or similar technologies.

Processing of personal data

Regarding the data you offer us voluntarily by filling in and sending the forms or by contacting us in any way, the legal basis is to take measures at the request of the data subject before concluding a contract ( art. 5, para. 2 lit. ( a ) of Law no. 677/2001 ) and to take steps at the request of the data subject before concluding a contract ( art. 6, para. ( 1 ) letter b of Regulation ( EU ) 679/2016 ). Both according to current legislation and according to GDPR ( applicable from May 25, 2018 ), your consent is not required in case the processing is necessary to carry out steps to conclude a contract, fulfillment of a legal obligation or legitimate interest. Regarding the data we collect automatically by using cookies or other similar technologies, the basis for processing is consent. Once you have accessed the site, you validly give your consent to the processing. We store personal data only for the period necessary to fulfill the purposes, but not more than 10 years from the last visit on the site or the last interaction with us, for the following purposes:

  • to take the necessary steps to conclude a contract;
  • to answer your questions and requests;
  • for marketing activities, but only in the situation in which you gave your prior consent;
  • to provide and improve the services we offer, both directly and through our collaborators, the disclosure and transmission of personal information will not disclose your information to unauthorized third parties, to be used for their own marketing or commercial purposes.

However, it is possible to disclose your information to the following entities:

Service providers. We may disclose your information to other partner companies Uptrust CyberSec SRL, or to third parties that provide us with services and act as proxies, such as companies that help us with billing or send emails on our behalf. These entities are selected with special care to ensure that they meet specific requirements for the protection of personal data. These entities have a limited ability to use your information for purposes other than providing us with services; Courts of judgment, prosecutor’s offices or other public authorities to comply with the law or in response to a mandatory legal procedure ( such as a search warrant or a court decision ); To other parties with your consent or instructions. In addition to the disclosures described in this Privacy Policy, it is possible to transmit the information to third parties to whom you consent or request to make such a disclosure. We do NOT currently transfer your data to countries outside the European Union. If we change the policy, we will inform you accordingly, we will present you with related guarantees and we will ask for your consent.

Data subject rights

Right to withdraw consent. If the processing is based on consent, you can withdraw your consent at any time and free of charge by sending an e-mail to [email protected] The right to file a complaint with a supervisory authority. According to the GDPR Regulation, the data subject has the right to file a complaint ( art.77 ) to the National Authority for the Supervision of Personal Data Processing, at its headquarters in G-dul G- ral Gheorghe Magheru no. 28 -30, sector1, Bucharest, postal code 0103336, email: [email protected] or to address the justice ( art.79 ).

The right to go to court

The right of access. You have the right to obtain confirmation from us whether or not personal data concerning you is being processed, and, where that is the case, you have the right of access to that personal data.

The right to rectification. You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. In some cases, we may not be able to search for your personal data due to the identifiers you provide in your request. An example of personal data that we cannot look up when you provide your name and email address is data collected through cookies by your browser. In such cases, if we cannot identify you as the data subject, we will not be able to comply with your request unless you provide additional information to facilitate identification.

Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

The right to erasure (the right to be forgotten). In situations where data is no longer necessary for the purposes for which it was collected, consent has been withdrawn, and there is no other legal basis for processing, you object to the processing, and there are no overriding legitimate grounds for the processing, or the personal data has been unlawfully processed, you have the right to obtain the erasure of personal data concerning you without undue delay.

The right to restriction of processing. You have the right to obtain from us restriction of processing in the following situations: you contest the accuracy of the personal data for a period enabling us to verify the accuracy of the personal data; the processing is unlawful, and you oppose the erasure of the personal data and request the restriction of their use instead; we no longer need the personal data for the purposes of the processing, but you require them for the establishment, exercise, or defense of legal claims; you have objected to processing pursuant to Article 21(1) of the GDPR pending the verification whether our legitimate grounds override yours.

The right to data portability. You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another controller without hindrance from us if the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) or on a contract pursuant to Article 6(1)(b) and the processing is carried out by automated means.

The right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. You do not have this right if the decision is necessary for the conclusion or performance of a contract between you and a data controller, is authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests, or is based on your explicit consent.

For all rights or any questions related to these rights, please contact us via email at [email protected] for all necessary information.


We have implemented the following technical and organizational measures to ensure the security of personal data:

  • Dedicated Policies: We adopt and regularly review data processing practices and policies for the protection of our clients’ and other individuals’ data, including physical and electronic security measures, to protect our systems from unauthorized access and other potential security threats. We continually monitor the application of our own personal data protection policies and ensure compliance with data protection laws.

  • Data Minimization: We ensure that the personal data we process is limited to what is necessary, adequate, and relevant for the purposes stated in this notice.

  • Access Restriction: We strictly limit access to the personal data we process to employees, collaborators, and other individuals who require access to process it for us. All these companies and individuals are subject to strict confidentiality obligations, and we will not hesitate to hold them accountable and terminate the collaboration if they do not comply with data protection policies.

  • Specific Technical Measures: We employ technologies to ensure that our clients and other individuals are confident that their data security is protected. To safeguard your data security, we recommend not using unsecured public workstations or shared access workstations and not handing over paper documents containing your data or passwords to others.

  • Backups and Security Audits: We maintain regular backups of data, securely stored. All technical equipment used for processing your personal data is secure and updated to protect the data. We also conduct regular security audits of the information systems used for processing personal data of our clients and other individuals.

  • Ensuring Data Accuracy: From time to time, we may ask you to confirm the accuracy and/or currency of the personal data we process about you.

  • Employee Training: We provide continuous training and testing to our employees and collaborators regarding data protection legislation and best practices.

  • Data Anonymization: In compliance with the law, we anonymize/pseudonymize personal data that we process, ensuring that individuals to whom the data refers cannot be identified.

  • Supplier Control: We include clauses in contracts with those who process data on our behalf (data processors) or jointly with us (other controllers – associated controllers) to ensure the protection of the data we process, in accordance with legal requirements.


If we consider that a change in the rules of confidentiality is necessary, we will publish those changes and this page to inform you about the types of information we collect and how we use them. If you have questions about our privacy policy, please write to us [email protected].