Last update: 4 June 2025

This Privacy Policy explains what personal data our website processes, the purposes of processing, categories of recipients of the personal data, the period for which the personal data will be stored and other mandatory elements according to the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (‘GDPR’ or ‘Regulation (EU) 2016/679’). This website, mihaiadam.com (‘the website’, ‘the site’ or ‘mihaiadam.com’), is intended, to the fullest extent permitted by law, solely for personal use and is not affiliated with any legal entity owned by the site’s controller.

I. THE IDENTITY AND THE CONTACT DETAILS OF THE CONTROLLER

Identity: Mihai Adam

Contact details:

Phone: 0724287903

E-mail: contact@mihaiadam.com

II. OTHER SERVICES OR APPLICATIONS

This Privacy Policy does not cover third-party applications or websites you may reach by following links on our site. Those destinations are beyond our control. We encourage you to review the privacy policy of any such website and/or application before providing personal data.

III. CHANGES

We may amend this Privacy Policy at any time. All updates and revisions take effect immediately upon notice, which we will provide by posting on the site..

IV. PERSONAL DATA. PURPOSES. LEGAL BASES. PERIOD OF STORAGE.

We may collect personal data when your device automatically supplies technical metadata such as IP address, browser headers, server-access logs and strictly-necessary cookies each time you visit mihaiadam.com.

The website may process the following personal data about you.

The following table explains the personal data the website processes, the purposes of the processing, and the legal bases behind the processing according to the GDPR.

The personal data

Purposes

Legal Basis

Period of storage

IP address

Ensuring traffic routing; prevent, detect and block cyberattacks

Legitimate interest – ensuring security and integrity of the service (Art. 6 (1)(f) GDPR)

3 months

Technical metadata (Server access logs, browser headers, Strictly-necessary cookies)

Ensuring the website is functioning correctly; diagnosing technical issues; detecting errors, abusive or illegal behaviour;

Legitimate interest – ensuring security and integrity of the service; improving stability and performance (Art. 6 (1)(f) GDPR)

3 months

After the end of the storage period, personal data will be destroyed or deleted from information technology systems or transformed into anonymous data to be used for scientific, historical or statistical research purposes. Please note that in certain expressly regulated situations, we store data for the period required by law.

V. RECIPIENTS AND INTERNATIONAL TRANSFERS

Your personal data is safe with us. We do not sell personal data or share it for commercial or marketing purposes. However, we may disclose your data, in compliance with applicable law, to business partners or other third parties (e.g., public authorities), only for legitimate reasons. For example, we may provide your personal data to other companies, such as IT service providers (e.g. cloud, hosting) or telecommunications, accounting, legal services, and to other third parties with whom we have a contractual relationship. We make reasonable efforts at all times to ensure that these third parties have implemented adequate measures to protect and secure personal data. With these third parties, we have contractual clauses so that your personal data will be protected. In these situations, we will ensure that any transfer is legitimate under the law.

We may transmit data to other recipients with your consent or according to your instructions, such as if you exercise a request for portability. We may also provide your personal data to the prosecutor's office, police, courts and other public authorities, based on and within the limits of the legal provisions and as a result of expressly formulated requests.

As a matter of principle, we keep all personal data within the European Economic Area (‘EEA’). If an international transfer to a non-EEA country becomes necessary, it will be carried out strictly in line with the GDPR, using a valid transfer mechanism such as an adequacy decision, Standard Contractual Clauses, or Binding Corporate Rules.

The following table explains how personal data is transferred outside the EAA.

Recipient	Destination Country	Mecanism of transfer according to the GDPR
Bluehost Inc.	U.S.A	Standard Contractual Clauses (Article 46 (2) c) GDPR)
Google	U.S.A	EU-US Data Privacy Framework
Salesforce, Tableau Software, LLC	U.S.A	EU-US Data Privacy Framework Binding Corporate Rules for processors (Article 46 (2) b) GDPR) Standard Contractual Clauses (Article 46 (2) c) GDPR)
PrintFriendly	U.S.A	Standard Contractual Clauses (Article 46 (2) c) GDPR)
JetBrains	U.S.A	Standard Contractual Clauses (Article 46 (2) c) GDPR)
Amazon.com, Inc., Amazon Web Services, Inc.	U.S.A	EU-U.S. Data Privacy Framework Standard Contractual Clauses (Article 46 (2) c) GDPR)

VI. AUTOMATED DECISION-MAKING, INCLUSING PROFILING

The website does not use automated decision-making, including profiling which produces legal effects or similarly significantly affects the user.

VII. YOUR RIGHTS

Your rights according to GDPR are as follows:

(a) The right to be informed about the processing of your data.

(b) Right of access to data. You have the right to obtain from us a confirmation as to whether or not personal data concerning you is processed and, if so, access to those data and the information referred to in Art. 15 para. (1) GDPR.

(c) The right to rectify inaccurate or incomplete data. You have the right to obtain from us, without undue delay, the rectification of inaccurate personal data concerning you.

(d) Right to erasure ("right to be forgotten"). In the situations provided in Art. 17 GDPR, you have the right to request and obtain the deletion of personal data.

e) The right to restrict processing. In the cases provided for in Art. 18 GDPR, you have the right to request and obtain restriction of processing.

f) The right to transmit the data we have about you to another operator ('right to portability').

g) The right to object to data processing. In the cases provided for in Art. 21 GDPR, you have the right to object to data processing.

h) The right not to be subject to a decision based solely on automatic processing, including creating profiles with legal effects or similar significant effects on you.

i) The right to go to court to defend your rights and interests.

j) The right to lodge a complaint with a Supervisory Authority (‘DPA’).

Romanian DPA’s contact details:

Name	National Supervisory Authority for Personal Data Processing
Address	Blvd. G-ral. Gheorghe Magheru nr. 28-30, Sector 1, postal code 010336, Bucharest, Romania
Telephone:	+40.318.059.211 or +40.318.059.212
Email	anspdcp@dataprotection.ro

Please note that:

(1) If you wish to exercise your rights, you may do so by sending a written, signed and dated request to the e-mail address: contact@mihaiadam.com.

(2) The rights listed above are not absolute. There are exceptions, so each request received will be analysed so that we can decide whether it is justified or not. Insofar as the request is well-founded, we will facilitate exercising your rights. If the request is unfounded, we will reject it, but we will inform you of the reasons for the refusal and of your right to file a complaint with the Supervisory Authority and to go to court.

(3) We will try to respond to your request within one month. However, the deadline may be extended depending on various aspects, such as the complexity of the request, the large number of requests received or the impossibility of identifying you in a timely manner.

(4) If, despite our best efforts, we fail to identify you and you do not provide us with additional information to succeed in identifying you, we are not obliged to comply with the request.

For any other information, you can contact us at contact@mihaiadam.com.