Privacy Policy

Last updated: 22.12.2025

This Privacy Policy explains how limited personal data may be processed in connection with the technical operation and security of the website windhelmgroup.com.

1. Data controller

The data controller responsible for the processing of personal data on this website is:

WINDHELM GROUP SRL
CUI: RO 40301550
Trade Register No.: J2018003438227
Registered address: Strada Iancu Bacalu 3, Iași, Iași County, Romania
Email: office(a)windhelmgroup.com
Phone: +40 742 301 902

2. Personal data processing

This website does not intentionally collect personal data through contact forms, user accounts, or newsletter subscriptions.

Certain technical information may be processed automatically when accessing the website, as part of standard server and security operations. This information does not allow direct identification of visitors and is used exclusively to ensure the stability, security, and proper functioning of the website.

3. Purpose of data processing

Personal data may be processed solely for the following purposes:

– ensuring the security and proper functioning of the website
– server administration and technical maintenance
– preventing unauthorized access or abuse
– complying with applicable legal obligations

4. Legal basis for processing

The processing of personal data is based on the following legal grounds under the General Data Protection Regulation (GDPR):

– legitimate interest (Article 6(1)(f) GDPR) for technical operation and security
– legal obligation (Article 6(1)(c) GDPR), where applicable
– consent (Article 6(1)(a) GDPR), where applicable, if optional services are enabled in the future

5. Cookies and similar technologies

This website uses cookies and similar technologies. Detailed information about the use of cookies can be found in our Cookie Policy.

6. Third-party services

The website may rely on third-party technical service providers, such as hosting providers or security services, strictly for operational purposes.

Such providers may process personal data only to the extent necessary to deliver their services and are subject to contractual and legal data protection obligations.

7. Data retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was processed or as required by applicable law.

Technical and security-related data is stored for limited periods in accordance with operational and security requirements.

8. Data transfers

Personal data is primarily processed within the European Union. If personal data is transferred outside the EU/EEA, appropriate safeguards will be applied in accordance with GDPR requirements.

9. Data security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.

10. Your rights under the GDPR

Under the GDPR, you have the following rights:

– the right to access your personal data
– the right to rectification
– the right to erasure (“right to be forgotten”)
– the right to restriction of processing
– the right to data portability
– the right to object to processing
– the right to withdraw consent at any time
– the right to lodge a complaint with a supervisory authority

To exercise your rights, you may contact us using the contact details provided below.

11. Links to external websites

This website may contain links to external websites. We are not responsible for the privacy practices or content of those websites.

12. Changes to this Privacy Policy

This Privacy Policy may be updated periodically to reflect changes in legal requirements, technical configurations, or website functionality. Any updates will be published on this page.

13. Contact

If you have any questions regarding this Privacy Policy or the processing of personal data, you may contact us at:

WINDHELM GROUP SRL
Email: office(a)windhelmgroup.com
Phone: +40 742 301 902
Address: Strada Iancu Bacalu 3, Iași, Iași County, Romania