Home / GDPR Compliance

GDPR Compliance

Last updated: March 2026

1. Our Commitment

Cornaciu Cătălin Law Office is fully committed to complying with Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data (GDPR) and applicable national legislation.

2. Data Controller

The data controller is Cornaciu Cătălin Law Office, headquartered at Strada Trandafirilor nr. 3, Floor 3, Giurgiu, Romania.

3. Processing Principles

We process your personal data in accordance with the following principles:

  • Lawfulness, fairness and transparency — processing is carried out lawfully, fairly and transparently
  • Purpose limitation — data is collected for specified, explicit and legitimate purposes
  • Data minimisation — we collect only the strictly necessary data
  • Accuracy — we take steps to update inaccurate data
  • Storage limitation — data is kept only for the necessary duration
  • Integrity and confidentiality — we ensure data security

4. Legal Basis for Processing

Data processing is based on one or more of the following legal grounds:

  • Your explicit consent
  • Necessity for the performance of a contract or pre-contractual measures
  • Compliance with the controller's legal obligations
  • Legitimate interest of the controller, respecting fundamental rights

5. Data Subject Rights

In accordance with GDPR, you have the following rights:

5.1. Right of Access

You have the right to obtain confirmation of data processing and a copy of your data.

5.2. Right to Rectification

You may request the correction of inaccurate data or completion of incomplete data.

5.3. Right to Erasure

You may request the deletion of personal data under certain conditions provided by GDPR.

5.4. Right to Restriction of Processing

You may request the restriction of processing in specific cases.

5.5. Right to Data Portability

You have the right to receive your data in a structured, commonly used and machine-readable format.

5.6. Right to Object

You may object to data processing based on the legitimate interest of the controller.

6. Filing a Complaint

If you believe that the processing of your personal data infringes on GDPR, you have the right to file a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP):

Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Bucharest Phone: +40.318.059.211 E-mail: [email protected]

7. Security Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction or damage.

8. Data Protection Contact

For any request regarding personal data protection:

E-mail: [email protected] Phone: +40 723 370 737 Address: Strada Trandafirilor nr. 3, Floor 3, Giurgiu, Romania