Privacy Policy

Thank you for your interest in NextERP Romania and our website.  Despite careful control of the content, we cannot accept any liability for external links to third-party content. The protection of your personal data when collecting, storing, processing and using it when you visit or register on our website. Your data is protected in accordance with legal regulations.  Below you will find information about what data is collected during your visit to the website and how it is used. 
This data protection information applies to data processing by:

Responsible: NextERP Romania SRL, Sat Peciu Nou Nr 600B jud Timis Romania (hereinafter: NextERP).
The operational data protection officer of NextERP Romania SRL can be reached at the above address and at privacy@nexterp.ro.


Basic information on data processing

a) For the terms , such as "personal data" or their processing, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).
b) The personal data of the users include inventory data (e.g. names, addresses and email addresses), contract data, usage data (e.g. the websites visited on our website) and content data (e.g. entries in the contact form).
c) The term "user" covers all categories of data subjects. They include our business partners, customers, interested parties and other visitors to our online offer. The terms used, such as "user", are to be understood as gender-neutral.
d) We only process users' personal data in compliance with the relevant data protection regulations. This means that the data of the users are only processed if there is a legal permission or on the basis of their consent.


Legal basis for data processing

We would like to point out that the legal basis for consent is Art. 6 Para. 1 lit. a. and Art. 7 GDPR, the legal basis for processing for the performance of our services and implementation of contractual measures Art. 6 Para. 1 lit. b. GDPR, the legal basis for processing to fulfill our legal obligations Art. 6 para. 1 lit. c. GDPR, and the legal basis for processing to safeguard our legitimate interests Art. 6 para. 1 lit. f. GDPR is. The legal basis for the processing of applicant data is Art. 88 GDPR.


Processing of personal data and the type and purpose of their use

a) When visiting the website

When you access our website nexterp.ro, the browser used on your device automatically sends information to the server on our website. This information is temporarily stored in a so-called log file. The storage serves internal system-related and statistical purposes. In addition, the transmitted data serve to supply information. The following information is recorded without your intervention and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the file accessed,
  • amount of data transferred,
  • Notification of successful access,
  • Website from which access is made (referrer URL),
  • Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
The data mentioned are processed by us for the following purposes:
  • Ensuring a smooth connection to the website,
  • Ensuring comfortable use of our website,
  • Evaluation of system security and stability as well
  • for further administrative purposes.

The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.

The information provided by users can be saved in our ERP system (Enterprise Resource Planning).

In addition, we use cookies and analysis services when you visit our website. You can find more detailed explanations under section 4 and 5 of this data protection declaration.

b) When using our contact form

If you have any questions, we offer you the opportunity to contact us using the form provided on the website. It is necessary to provide a valid e-mail address and other personal data so that we know who the request comes from and to be able to answer it.

Data processing for the purpose of contacting us is carried out in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR based on your voluntarily given consent.

The personal data collected by us for the use of the contact form will be deleted within one year after your request has been dealt with.

c) When using our applicant page

Personal data that we only need to process your application will only be saved if you voluntarily provide it to us as part of your application. Your personal information and data are collected, stored and used only with the greatest care and integrity.

You consent to the processing and transmission of your data exclusively for the application process.

Your data will be hosted by a provider (Fastbit SRL) by order data processing in accordance with Art.28 EU GDPR. We process applicant data in accordance with Art. 88 GDPR in conjunction with Section 26 BDSG (new).


Participate in surveys

We use Odoo,  Avenue Van Nieuwenhuyse, 6 1160 Brussels, Belgium to conduct surveys on our website. This is also our legitimate interest in the processing of the data mentioned, which is based on Art. 6 Para. 1 lit. f) GDPR.

If you participate in this survey voluntarily, we collect information about the device and application you use to participate in the survey. This includes the IP address, the version of your operating system, the device type as well as information about the system and performance and the browser type. If you participate in the survey using a mobile device, we will also collect the device's UUID (Universally Unique Identifier).

You can prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all functions of our website to their full extent.


Disclosure of data

a) transfer of data to third parties only takes place in accordance with the law. We only pass on user data to third parties if:

  • You have given your consent pursuant to Art. 6 Para. a GDPR have given express consent to this the disclosure according to Art. 6 Para. 1 S. 1 lit. f GDPR is required to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data, in the event that for the transfer according to Art. 6 Para. 1 S. 1 lit. c GDPR there is a legal obligation, as well this is legally permissible and according to Art. 6 para. 1 sentence 1 lit. b GDPR is required for the processing of contractual relationships with you.

b)  Your data can also be transferred  to companies that work for NextERP as processors in  accordance with Article 28 of the GDPR (including hosting and IT development service providers). This means that NextERP remains responsible for all of your data, has the right to issue instructions and is convinced of the diligence of the company commissioned with data processing in handling personal data, and carries out random checks in accordance with the statutory provisions. If we use subcontractors to provide our services, we take appropriate legal precautions as well as appropriate technical and organizational measures to ensure the protection of personal data in accordance with the relevant legal regulations.

c) Insofar as content, tools or other means from other providers (hereinafter collectively referred to as "third party providers") are used within the scope of this data protection declaration and their registered office is located in a third country, it can be assumed that data will be transferred to the home countries of the third party providers . Third countries are countries in which the GDPR is not an immediately applicable law, i.e. basically countries outside the EU or the European Economic Area. The transmission of data to third countries takes place either if an appropriate level of data protection, user consent or other legal permission is available.This Website is provided “as is,” with all faults, and NextERP express no representations or warranties, of any kind related to this Website or the materials contained on this Website. Also, nothing contained on this Website shall be interpreted as advising you.


Cookies

We use cookies on our website. These are small files that your browser automatically creates and that are saved on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain viruses, Trojans or other malware.
Information is stored in the cookie, which results in connection with the specific device used. However, this does not mean that we are immediately aware of your identity.
The use of cookies serves on the one hand to make the use of our offer more pleasant for you. We use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our site.
In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your device for a specific period of time. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again.
On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you (see Section 5). These cookies enable us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined time.
The data processed by cookies are for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR required.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or that a message always appears before a new cookie is created. However, the complete deactivation of cookies can mean that you cannot use all functions of our website.


Analysis tools

The tracking measures listed below and used by us are based on Art. 6 Para. 1 S. 1 lit.  f GDPR carried out.  With the tracking measures used, we want to ensure a needs-based design and the continuous optimization of our website.  On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer.  These interests are to be regarded as legitimate within the meaning of the aforementioned regulation.
The respective data processing purposes and data categories can be found in the corresponding tracking tools.
Google Analytics
We use Google Analytics, a web analytics service provided by Google Inc.  (https://marketingplatform.google.com/about/analytics/) (1600 Amphitheater Parkway, Mountain View, CA 94043), for the purpose of designing and continuously optimizing our pages . USA; hereinafter "Google"). In this context, pseudonime usage profiles are created and cookies (see under point 4) are used. The information generated by the cookie about your use of this website such as

  • Browser type / version,
    operating system used,
    Referrer URL (the page previously visited),
    Host name of the accessing computer (IP address),
    Time of the server request,
are transferred to a Google server in the USA and stored there.  The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage for the purposes of market research and the needs-based design of this website.  This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf.  Under no circumstances will your IP address be merged with other Google data.  The IP addresses are anonymized so that an assignment is not possible (IP masking).
You can prevent the installation of cookies by setting your browser software accordingly;  however, we would like to point out that in this case not all functions of this website can be used to their full extent.
You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout ).
As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on this link. An opt-out cookie is set that prevents the future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.
We would like to point out that the "anonymizeIp" code has been added to Google Analytics on this website in order to guarantee anonymous collection of IP addresses (so-called IP masking).
Further information on data protection in connection with Google Analytics can be found in the Google Analytics help ( 
https://support.google.com/analytics#topic=3544906  ).


Integration of third party content

We have included third-party content on our website. These are, for example, videos, map services, images, fonts or, for example, a reCAPTCHA to prevent spam. In connection with the integration of this content, it is technically necessary for us to provide your third parties with your IP address so that they can display the content to you. We do not store your IP address to integrate third-party content. The third-party providers may be able to track your surfing behavior with your IP address, the use of cookies and other technologies (e.g. pixel tags, ie invisible graphics) and, in addition to your IP address, further technical information (e.g. browser type / - Version, operating system used, the page you previously visited,
The legal basis for the processing of your data is Article 6 paragraph 1 sentence 1 letter f) GDPR. We have a legitimate interest in optimizing our website and improving our offer to you by including third-party content and in protecting this website from bots and spam.
A more detailed description of who we embed content and
how your data is processed can be found below in the respective description of the embedded content.


Use of marketing services

We collect and process data on our website so that we can display more suitable advertising on this and other websites (re-marketing / re-targeting) and to measure the success of our advertising measures.  We work with providers who help us in particular to understand whether the users come to us through certain advertising measures (so-called conversion tracking).  In this context, pseudonime usage profiles are also created.  The legal basis for the processing of your data is Article 6 paragraph 1 sentence 1 letter f) GDPR.  We have a legitimate economic interest in being able to present interest-based advertisements to our website users and to be able to measure the success of advertisements placed.

You can object to the use of these services by opting out.  Please note, however, that you may then not be able to use all functions of our website

a) Google Marketing Services

We use marketing services from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA on these websites.
The services used include:

  • Google Ads : We also use Google Conversion Tracking to statistically record the use of our website and to evaluate it for the purpose of optimizing our website for you.  Google Ads sets a cookie on your computer if you have reached our website via a Google ad.
  • Google re-marketing : The use of Google's re-marketing function allows us to show the user interest-based advertisements within the Google advertising network that relate to content that the user has previously accessed on our website.  This can also be done across devices.
  • Google Optimize : In order to optimize the use of our website, we also use Google Optimize.  Google Optimize analyzes the use of different variants of our website and helps us to improve the user-friendliness according to the behavior of our users on the website. 
  • Google Tag Manager : The use of the Google Tag Manager service only allows us to integrate the listed services by implementing the other cookies / tags.
  • Google Data Studio: The use of the Google tool Data Studio only allows us to display informative dashboards and reports.  The information for reports comes from data sources such as Google Analytics, Google Ads and Google Search Console.  No personal data is uploaded to the tool.

As part of the aforementioned services, Google uses cookies and cookie-like technologies such as pixel tags (ie small transparent graphics, also called web beacons) and processes personal data from you, in particular information about the browser type / version Operating system, the page you visited previously, the host name of the accessing device, IP address and the time of the request, as well as offers, search terms and content that you were interested in.  This data is transferred to Google.  User profiles are created on a pseudonymized basis.  This means that we cannot identify you on this basis.  You can find more information on this at  https://policies.google.com/technologies/types

The cookies are automatically deleted after 30 days. You can object to or adjust the use of interest-based advertising here:  https://adssettings.google.com/authenticated?hl=ro

Insofar as data is processed outside the EEA, where there is no data protection level corresponding to the European standard, this is done on the basis of the EU-US Privacy Shield:  https://www.privacyshield.gov/participant?id=a2zt000000001L5AA

You can find further information and the applicable data protection regulations of Google at https://policies.google.com/privacy . The functioning of the Google marketing services is explained in more detail under this link: https://policies.google.com/technologies/ads 

b) Facebook Custom Audience

We use the so-called “Facebook pixel” of the provider Facebook on this website (for EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland; International: Facebook Inc., 1601 S. California Ave. , Palo Alto, CA 94304, USA).  This is a small, invisible pixel that connects to Facebook servers when you visit our website.  Personal data such as the IP address and other information such as browser type / version, operating system used, the page you previously visited, the host name of the accessing device, IP address and the time of the request can also be transmitted.  In this way, Facebook is able to identify the users of our website and specifically display advertisements to those who are interested in our website.

Insofar as data is processed outside the EEA, where there is no data protection level corresponding to the European standard, this is done on the basis of the EU-US Privacy Shield:  https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC

Facebook's privacy policy can be found here:   https://www.facebook.com/policy.php  -

You can object to the collection by the Facebook pixel and the use of your data here:  https://www.facebook.com/settings?tab=ad


Data subject rights

You have the right:

  • - to request information about your personal data processed by us in accordance with Art. 15 GDPR.  In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or opposition, the existence of a Right to lodge a complaint, the origin of your data, unless it was collected by us, and the existence of automated decision-making, including profiling and, if necessary, meaningful information about its details;
  • - to request the correction of incorrect or incomplete personal data stored by us without delay in accordance with Art. 16 GDPR;
    - to request the deletion of your personal data stored by us According to Art. 17 GDPR, unless the processing to exercise the right to freedom of expression and information, to fulfill a legal or contractual obligation, for reasons of public interest or to assert, exercise or defend of legal claims is required;
  • - to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR, provided that the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or need to defend legal claims or you have objected to processing in accordance with Art. 21 GDPR;
  • - to receive your personal data, which you have provided to us according to Art. 20 GDPR, in a structured, common and machine-readable format or to request the transmission to another responsible person;
  • - to revoke your consent given to us at any time in accordance with Art. 7 Para. 3 GDPR. As a result, we may no longer continue the data processing based on this consent in the future and
  • - to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

Right to object

If your personal data is based on legitimate interests in accordance with Art. 6 Para. 1 S. 1 lit.  f GDPR are processed, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided there are reasons for this that arise from your particular situation or the objection is directed against direct advertising.  In the latter case, you have a general right to object, which we will implement without giving reasons.

If you would like to exercise your right of withdrawal or objection, an email to privacy@nexterp.ro   is sufficient .


Data security

We use the common SSL (Secure Socket Layer) method in connection with the highest encryption level supported by your browser when visiting the website.   As a rule, this is a 256 bit encryption.   If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead.   You can tell whether a single page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties.   Our security measures are continuously improved in line with technological developments.

We only store personal data for as long as is necessary for the purposes for which it was obtained or to meet legal requirements for reporting or storing documents.

We only use employees and subcontractors who are committed to data secrecy.


Update of this data protection declaration

This data protection declaration is currently valid and has the status of May 2020.
Due to the further development of our website and offers about it or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection declaration at any time on the website at https://nexterp.ro .