Privacy and GDPR Policy

 

The protection of your personal data is important to us. Therefore, we pay special attention to safeguarding the privacy of visitors accessing the website www.puntouo.com, as well as those whose personal data has been provided to us by a third party or to which we have had access from another source, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data (hereinafter referred to as “GDPR”).

Please read this Privacy Policy carefully to understand how your information (“personal data”) will be treated.

This Policy explains the practices of PUNTOUP (TALENTIN HR SRL) regarding the application of the GDPR provisions, as well as the rights you have regarding the way your information is processed by us.

The processing of personal data by  PUNTOUP  will always be carried out in accordance with the GDPR, as well as with the data protection regulations specific to each country where PUNTOUP operates.

Through this policy, PUNTOUP aims to inform data subjects about the nature of the personal data we collect and process, as well as the purposes of the processing. Additionally, this policy also informs data subjects about their rights.

WHAT IS PERSONAL DATA?

“Personal data” means any information that can directly (e.g., your name) or indirectly (e.g., through pseudonymized data such as a unique ID number) identify you. This includes things like your email address, home address, mobile number, username, profile pictures, personal preferences, shopping habits, user-generated content, financial data, and economic status. It may also include unique numerical identifiers like your computer’s IP address or your mobile device’s MAC address, as well as cookies.

WHAT DOES PERSONAL DATA PROCESSING MEAN?

“Processing” means any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

DATA CONTROLLER

The Data Controller (hereinafter referred to as “Controller”) is PUNTOUP( TALENTIN HR SRL.)

PRINCIPLES OF DATA PROCESSING

PUNTOUP commits to respecting the principles of personal data protection as outlined in the GDPR:

  • Processed lawfully, fairly, and transparently;

     

  • Collected for specified, explicit, and legitimate purposes;

     

  • Adequate, relevant, and limited to what is necessary;

     

  • Accurate and kept up to date;

     

  • Stored in a form which permits identification for no longer than necessary;

     

  • Processed in a manner that ensures appropriate security, integrity, and confidentiality.

     

LEGAL BASIS AND PURPOSES OF DATA PROCESSING

  • For contract conclusion and execution (Article 6(1)(b) GDPR): Processing is necessary to provide our products and services.

     

  • To comply with legal obligations (Article 6(1)(c) GDPR): Including obligations related to billing and reporting to tax authorities.

     

  • For marketing purposes (Article 6(1)(a) GDPR): With your explicit consent, we may send marketing messages, offers, news, or invitations.

     

  • For business purposes (Article 6(1)(a) GDPR): We may contact you or share your data to achieve our business goals.

     

CONTACT FORM PROCESSING

Data submitted via our website’s contact form will be used exclusively to process your request.

By providing any personal data via thePUNTOUP website, you acknowledge and agree to the terms of this Privacy Policy.

We have implemented appropriate technical and organizational measures to ensure data security and GDPR compliance.

We will not process personal data for purposes other than those stated, unless we have your explicit consent.

DISCLOSURE OF PERSONAL DATA TO THIRD PARTIES

Your personal data may only be shared or transferred to third parties with your explicit consent, unless a legal/contractual obligation requires us to do so.

We may share data with:

  • Local authorities in countries where contractual activities take place;

     

  • Romanian authorities or church institutions for contractual purposes;

     

  • Our service providers and partners, as necessary.

     

AUTOMATED DATA PROCESSING & COOKIES

www.puntoup.com uses cookies and similar tracking technologies.

DATA RETENTION PERIOD

We retain your data only as long as necessary for the purpose for which it was collected, or as required by law. Specific cases include:

  • Job applicants: Data retained for the contract period with the client, or up to 2 years with consent if not selected.

     

  • General applications: Stored for a maximum of 2 years.

     

  • Clients: Data kept for the duration of the contractual relationship.

     

  • Promotions: Stored for the duration of the campaign.

     

  • Inquiries: Stored for up to 2 years after the last message.

     

  • Accounts: Retained until deletion request or 2 years of inactivity.

     

  • Marketing consent: Data kept until withdrawal or after 2 years of inactivity.

     

  • Cookies: Retained as long as necessary, usually no more than 2 years.

     

RIGHTS OF DATA SUBJECTS

Under GDPR, you have the following rights:

  • Access to your personal data;

     

  • Rectification of inaccurate or outdated data;

     

  • Erasure (“right to be forgotten”);

     

  • Restriction of processing under certain conditions;

     

  • Data portability;

     

  • Objection to processing based on legitimate interest;

     

  • Withdrawal of consent at any time;

     

  • Lodging a complaint with the supervisory authority;

     

  • Opt-out from marketing communications;

     

  • Deactivation of cookies through your browser settings.

     

To exercise your rights, please contact: data.protection@puntoup.com. We may request proof of identity.

LEGAL REQUESTS

We may access, preserve, and share your data with authorities if legally required or for:

  • Fraud detection/prevention,

     

  • Unauthorized use,

     

  • Investigations or harm prevention,

     

  • Or legal compliance under applicable laws.

     

RELATIONSHIPS WITH OTHER CONTROLLERS

Data may be shared globally with partners and third parties in accordance with GDPR, using approved safeguards (e.g., Standard Contractual Clauses or adequacy decisions). Transfers may also occur to public authorities in countries without adequate protection levels—with your consent and only for contract fulfillment.

DATA SECURITY

We apply updated technical and organizational measures to ensure data security and confidentiality. All employees, partners, and third parties are required to comply with this policy and GDPR.

POLICY UPDATES

This policy may be updated periodically.
 We will notify you of significant changes and give you the opportunity to review them before continuing to use our services.

We recommend checking this page regularly. Continued use of www.puntoup.com constitutes your agreement to any updates.

Privacy Agreement – Job Applications

By uploading your CV or applying to a job posted on the PuntoUp website, you expressly agree to the processing of your personal data by TALENTIN HR S.R.L., in accordance with the Privacy and GDPR Policy available on our website.

CONTACT

For questions, concerns, or to exercise your rights regarding your personal data, please email us at data.protection@puntoup.com

Subscribe to our newsletter for hints, tips and the latest news.

Quick Links

Contact

Splaiul Independentei 202H Sector 6, Bucharest, Romania
office@puntoup.com
Copyright © 2025 PuntoUP All Rights Reserved.

Your message has been sent.

Thank you for reaching out to us. We will contact you within 24 hours. If we’re unable to connect by phone, we will follow up via email.