Privacy Policy (GDPR)

Last updated: October 28, 2025


Introduction

This Privacy Policy explains how TRI TECH SOFTWARE SRL collects, uses, and protects personal data when you access or use our website, platform, or services. It complies with the EU General Data Protection Regulation (GDPR) and Romanian legislation.

Data We Collect

We collect the following types of personal data:

  • Identification data (name, country, timezone, personal info).
  • Contact details (email address, billing or shipping details when applicable).
  • Account data (username, hashed password, user ID).
  • Transactional data (purchases, payments, subscription history).
  • Educational data (course enrollments, progress, test results, certificates - if available).
  • User-generated content (messages, reviews, comments, profile info).
  • Support and communications (emails, online chat messages).
  • Technical data - where applicable (IP address, device info, browser type, cookies, access logs).
  • Optional integrations (social login data).

Purposes and Legal Bases

We process your data for the following purposes under GDPR Article 6:

  • Contract performance – to provide services, manage your account, and process payments.
  • Legal obligations – to comply with tax, accounting, or regulatory requirements.
  • Legitimate interests – to maintain platform security, prevent fraud, and improve services.
  • Consent – for marketing communications and optional analytics/marketing cookies.

Sources of Data

We collect data directly from you (account creation, orders, course participation), from payment processors (transaction confirmations), and, if you use social login, from the chosen provider with your permission.

Recipients and Processors

We share data only with trusted service providers such as IT/hosting platforms, payment processors, email/SMS services, webinar or video tools, analytics providers, fraud-prevention services, and public authorities when required by law. All processors are bound by data protection agreements.

International Transfers

When data is transferred outside the European Economic Area, we rely on EU adequacy decisions or EU Standard Contractual Clauses (SCC 2021) with appropriate safeguards such as encryption and pseudonymisation.

Data Retention

We retain personal data only as long as necessary:

  • Account/course data: until your account is terminated or the platform closes.
  • Financial records: up to 10 years, as required by law.
  • Support email request: 3 years after resolution unless needed longer.
  • Marketing data: until you withdraw consent or after 2 years of inactivity.
  • Security logs: 12 months, or longer if an incident investigation is ongoing.
  • Course support chat messages: until your account is terminated or the platform closes.
  • Coaching session chat messages: 1-2 after the session was scheduled.

Your Rights

Under Articles 15–22 of the GDPR, you have the right to access, rectify, erase, restrict processing, object to processing, obtain data portability, and withdraw consent at any time without affecting prior lawful processing. Requests can be sent to contact@tritechsoftware.io. We will respond within one month.

Automated Decision-Making

We use limited profiling to recommend courses or personalize content. We do not make automated decisions that produce legal or similarly significant effects without human review.

Children

Our services are not directed to children under 18. For users aged 16–18, we may require parental or guardian consent. If we learn we have collected data from a child under 18 without valid consent, we will delete it promptly and terminate the respective account.

Data Security

We implement encryption (in transit and, where appropriate, at rest), pseudonymisation, access controls, multi-factor authentication, regular backups, network segmentation, and incident response measures to protect your data.

Cookies

We use essential cookies and, with your consent, analytics and marketing cookies. You can manage your preferences at any time via our cookie banner or browser settings.

Requirement to Provide Data

Some personal data are necessary to create an account or process payments. Without them, we may not be able to provide services.

Complaints

You may file a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP), Bd. Gheorghe Magheru 28–30, 010336 Bucharest, Romania.

Changes to This Policy

We may update this Privacy Policy to remain compliant with legal or operational requirements. All changes will announced 15 days in advance via email notification. Current version date: October 28, 2025.

Contact

For any privacy-related questions, please contact us at: contact@tritechsoftware.io

Company Details

Company: TRI TECH SOFTWARE SRL
VAT ID (RO): 43212031
Registration Number (RO): J2020002530222
Contact: contact@tritechsoftware.io