en_GB EN
en_GB EN ro_RO RO

Privacy policy

We generally collect your personal data directly from you, so you have control over the type of information you provide to us. For example, we receive information from you as follows:

  • When you create an account on www.jetav.ro, you send us: your email address, first and last name, mobile phone number, delivery addresses, alternative email address, bank card details, etc.;
  • When you place an order, you provide us with information such as: the desired product, first and last name, delivery address, billing details, payment method, phone number, bank card details, etc.
  • We do not collect or otherwise process sensitive data, which are included in the General Data Protection Regulation as special categories of personal data. We also do not wish to collect or process data from minors under the age of 16.

What are the purposes and grounds of processing?

We will use your personal data for the following purposes:

1.To provide JETAV FLIGHT TRAINING COMPANY SRL services for your benefit.

This general purpose may include, as appropriate, the following:

a) Creation and administration of the account within the JETAV FLIGHT TRAINING COMPANY SRL website;
b) Processing orders, including their receipt, validation, shipping and invoicing;
c) Resolving cancellations or problems of any kind relating to an order, goods or services purchased;
d) Providing support services, including providing answers to your questions regarding your orders or the goods and services of JETAV FLIGHT TRAINING COMPANY SRL

The processing of your data for these purposes is in most cases necessary for the conclusion and execution of a contract between JETAV FLIGHT TRAINING COMPANY SRL and you. Also, certain processing subsumed under these purposes is required by applicable law, including tax and accounting law.

2.To protect our legitimate interests

There may be situations where we will use or share information to protect our rights and business. These may include:

  •  Measures to protect the website and users of the JETAV FLIGHT TRAINING COMPANY SRL platform from cyber attacks:
  • Measures to prevent and detect fraud attempts, including the transmission of information to the competent public authorities;
  • Measures to manage various other risks.

The general basis for these types of processing is our legitimate interest in defending our commercial activity, it being understood that we ensure that all measures we take guarantee a balance between our interests and your fundamental rights and freedoms.

3. Also, in certain cases we base our processing on legal provisions such as the obligation to ensure the security of goods and values provided for by the applicable legislation in this matter.

How long do we keep your personal data?

As a general rule, we will store your personal data as long as you have an account on the JETAV FLIGHT TRAINING COMPANY SRL platform. You can ask us to delete certain information or close your account at any time and we will comply with these requests, subject to retaining certain information including after the account is closed, in situations where applicable law or our legitimate interests require it.

To whom do we share your personal data?

Where appropriate, we may transmit or provide access to certain of your personal data to the following categories of recipients:

  • courier service providers;
  • payment/banking service providers;
  • marketing/telemarketing service providers;
  • market research service providers;
  • insurance companies;
  • IT service providers;
  • other companies with whom we can develop joint programs to offer our goods and services on the market.

If we are subject to a legal obligation or if it is necessary to defend a legitimate interest, we may also disclose certain personal data to public authorities.

We ensure that access to your data by third parties, legal entities under private law, is carried out in accordance with the legal provisions regarding data protection and confidentiality of information, based on contracts concluded with them.

How we protect the security of your personal data

We are committed to ensuring the security of personal data by implementing appropriate technical and organizational measures, according to industry standards.

The transmission of your personal data is done using state-of-the-art encryption algorithms and we store it on secure servers, while ensuring data redundancy.

We use the services of the payment processor PayU to make payments. Any payment information is encrypted using HTTPS technology with TSL 1.2 encryption.

Despite the measures taken to protect your personal data, we draw your attention to the fact that the transmission of information over the Internet in general, or via other public networks, is not completely secure, and there is a risk that the data may be viewed and used by unauthorized third parties. We cannot be responsible for such vulnerabilities of systems that are not under our control.

What rights do you have?

The General Data Protection Regulation recognises a number of rights in relation to your personal data. You can request access to your data, correction of any errors in our files and/or object to the processing of your personal data. You can also exercise your right to complain to the competent supervisory authority or to seek legal action. Where applicable, you may also benefit from the right to request the erasure of your personal data, the right to restriction of the processing of your data and the right to data portability.

To exercise your rights, you can contact us using the contact details set out above. Please note the following if you wish to exercise these rights:

  • Identity. We take the confidentiality of all records containing personal data seriously. For this reason, please send us your requests regarding such records using the e-mail address [email protected]. Otherwise, we reserve the right to verify your identity by requesting additional information aimed at confirming your identity.
  • Fees. We will not charge you a fee to exercise any of your rights in relation to your personal data, unless your request for access to information is unfounded, repetitive or excessive, in which case we will charge a reasonable fee in such circumstances. We will inform you of any fees applied before we deal with your request.
  • Response time. We aim to respond to any valid requests within a maximum of one month, unless this is particularly complicated or if you have made multiple requests, in which case we will respond within a maximum of two months. We will let you know if we need more than one month. We may ask you if you can tell us exactly what you want to receive or what concerns you have. This will help us act more quickly and shorten the time it takes to respond to your request.

Third party rights.

We do not have to comply with a request if it would adversely affect the rights and freedoms of other data subjects.

Complaints.

You have the right to lodge a complaint with the supervisory authority regarding the processing of your personal data. In Romania, the contact details of the supervisory authority for data protection are as follows:

National Supervisory Authority for Personal Data Processing

B-dul G-ral. Gheorghe Magheru no. 28-30, Sector 1, postal code 010336, Bucharest, Romania

Phone: +40.318.059.211 or +40.318.059.212;

Email: [email protected]