Legal document

Privacy Policy

This document explains how S.C. AGENTIA FORTIN S.R.L. collects, uses, stores and protects personal data through the website fortin.agency and its associated forms.

Updated: 12.03.2026 Controller: S.C. AGENTIA FORTIN S.R.L. Email: dpo@fortin.agency
Company S.C. AGENTIA FORTIN S.R.L.
Trade Registry J40/9752/07.08.2015
Tax ID RO34866436

1. Who we are

This Privacy Policy explains how S.C. AGENTIA FORTIN S.R.L., headquartered at Șos. Iancului no. 12, Sector 2, Bucharest, Romania, postal code 021725, registered at the Trade Registry under no. J40/9752/07.08.2015, tax ID RO34866436, processes the personal data of visitors, prospects, clients, partners and candidates who interact with the website fortin.agency or our communication channels.

Under applicable data protection legislation, Fortin Agency acts as data controller for the processing activities described in this document, unless explicitly stated otherwise.

2. Data we collect

Depending on how you interact with us, we may process the following categories of data:

  • identification and contact data: name, surname, company, position, phone number, email address;
  • data submitted through forms: message, project details, estimated budget, industry;
  • technical data: IP address, browser, device, operating system, pages visited, session duration, security logs;
  • commercial and contractual data: quotes, invoices, communication history, support requests;
  • data transmitted via email, phone, WhatsApp or social media;

3. Purposes and legal basis

Purpose Data involved Legal basis
Responding to enquiries via forms, phone or email name, company, email, phone, message pre-contractual steps / legitimate interest
Sending quotes and commercial communications name, email, company, commercial interest consent or legitimate interest, as applicable
Website administration and security IP, technical logs, sessions, device data legitimate interest
Traffic analysis and experience optimisation cookies, events, pages visited consent, where required
Performance and archiving of contractual relationships billing data, contracts, correspondence contract performance / legal obligation

4. Data sources

Data may originate from:

  • directly from you, through forms, email, phone or other contact channels;
  • automatically, through cookies, server logs and analytics tools implemented on the website;
  • from commercial and contractual interactions following an enquiry;
  • from public or professional sources, where there is a legitimate business interest and legislation permits.

5. Data disclosure

Data may be shared, strictly as necessary, with IT service providers, hosting, maintenance, email, CRM, analytics, accounting, payment processors, legal advisors and other partners involved in operating the website and delivering services.

If we use tools or providers outside the European Economic Area, transfers will only be made with appropriate safeguards in accordance with applicable legislation.

6. Data retention

We retain data only for the period necessary to fulfil the purposes for which it was collected or for the duration required by legal, tax, accounting or archiving obligations.

Commercial enquiries and correspondence may be retained for managing the relationship with potential clients. Data used for marketing purposes is retained until consent is withdrawn or an objection is raised.

7. Your rights

Under the conditions set out by the GDPR, you have the following rights:

  • the right to access the data processed;
  • the right to rectification;
  • the right to erasure, in the cases provided by law;
  • the right to restriction of processing;
  • the right to data portability;
  • the right to object;
  • the right to withdraw consent;
  • the right to lodge a complaint with the ANSPDCP (Romanian Data Protection Authority).

8. Cookies and tracking

The website may use cookies and similar technologies for functionality, traffic measurement, optimisation and marketing. The categories of cookies, purposes, storage duration and providers used should be described in a dedicated cookie policy or consent management platform.

If you use Google Analytics, Google Ads, Meta Pixel, Hotjar, Microsoft Clarity or similar tools, they must be explicitly mentioned in the final version of this document.

9. Security

We implement reasonable technical and organisational measures to protect data against unauthorised access, loss, alteration or accidental or unlawful disclosure.

No system can guarantee absolute security; however, we periodically review our internal procedures and infrastructure to maintain an adequate level of protection.

10. Contact

For questions regarding this policy or to exercise your rights, you can write to us at office@fortin.agency or contact us by phone at the numbers listed on our contact page.

This document must be updated whenever relevant changes occur in how we collect, use or store personal data.