Your trust is our most important asset. Just as we hold our journalism to the highest standard of source verification, we approach the protection of your personal data with utmost seriousness and transparency.
1. Who We Are (Data Controller)
ITMFA.com is owned and operated by Weryon Online Performance SRL, a company registered in Romania, dedicated to providing IT&C news and analysis.
- Data Controller: Weryon Online Performance SRL
- Address: Aleea Petrochimiศtilor, BL 21 A, Ploieศti, Prahova, Romania
- Contact Email: [contact@itmfa.com]
We are fully committed to complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Our Pledge: We never sell your personal data. We use it solely to deliver the premium intelligence and experience you expect from us.
2. Data We Collect and How We Use It
We collect information in the following instances and for the purposes detailed below:
| Source of Collection | Type of Data Collected | Purpose of Use | Legal Basis (GDPR) |
| Comments | Name, email address, IP address, browser user agent string, comment content. | Approving and publishing the comment; detecting and preventing spam. | Legitimate Interest (for spam prevention and site integrity); Consent (implied by submitting the comment). |
| Newsletter Subscription / Report Access | Email address. | Sending the requested newsletter and/or reports. | Consent (explicit opt-in). |
| User Account (if registered) | Information provided upon registration (name, email, encrypted password, etc.). | Account management and access to restricted functionalities (e.g., article editing). | Performance of a Contract (Terms of Service). |
| Cookies (see Section 4) | Session data, login preferences, and display choices. | Maintaining the logged-in session; remembering user preferences. | Legitimate Interest (for essential site functionality); Consent (for non-essential cookies). |
| Media Uploads (Images) | Image files. | Displaying content. Warning: Avoid uploading images with embedded location data (EXIF GPS), as this data can be extracted by website visitors. | Consent. |
| Password Reset | IP address. | Including the IP address in the reset email for security purposes. | Legitimate Interest (account security). |
3. Third-Party Services and Embedded Content
Gravatar
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service, operated by Automattic, to see if you are using it. After approval of your comment, your Gravatar profile picture is visible to the public in the context of your comment. The Gravatar service privacy policy is available here: https://automattic.com/privacy/.
Embedded Content from Other Websites
Articles on this site may include embedded content (e.g., videos, images, articles, etc.) from other websites. Embedded content behaves in the exact same way as if the visitor has visited the other website.
These external websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction if you have an account and are logged in to that website. We are not responsible for the privacy practices of these third-party sites.
Data Sharing (Spam Detection)
Visitor comments may be checked through an automated spam detection service.
4. Cookies (Small Text Files)
We use cookies to enhance your experience on our site. Here is how we use them:
| Cookie Purpose | Details | Retention Period |
| Commenting | If you leave a comment, you may opt-in to saving your name, email address, and website in cookies for convenience so you do not have to fill in your details again. | 1 year |
| Login | If you visit our login page, we set a temporary cookie to check if your browser accepts cookies (no personal data included, discarded upon browser close). Upon login, we set cookies to save your login information and screen display choices. | Login: 2 days; Screen Options: 1 year. |
| “Remember Me” Option | If you select “Remember Me,” your login will persist. | 2 weeks |
| Article Editing | If you edit or publish an article, an additional cookie is saved, which includes no personal data but indicates the post ID of the article you just edited. | 1 day |
You can manage and delete cookies through your browser settings.
5. Data Retention
We retain your data only for as long as necessary to fulfill the purposes for which it was collected:
- Comments: Comments and their metadata are retained indefinitely. This allows us to recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
- User Accounts (if any): We store the personal information users provide in their user profile. This information is kept as long as the account remains active.
- Subscriptions: Email addresses for the newsletter are kept until you unsubscribe.
6. Your GDPR Rights
As a user of ITMFA.com, you have the following rights under GDPR:
- Right to Access: You can request an exported file of the personal data we hold about you, including any data you have provided to us.
- Right to Rectification: You can request that we correct any personal data we hold that is incomplete or inaccurate.
- Right to Erasure (“Right to be Forgotten”): You can request that we erase any personal data we hold about you. This excludes any data we are obliged to keep for administrative, legal, or security purposes.
- Right to Restriction of Processing: You can request the restriction of the processing of your personal data.
- Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format (only for data based on consent or contract).
- Right to Object: You can object to the processing of your data where the legal basis is our legitimate interest.
- Right to Withdraw Consent: You have the right to withdraw your consent at any time (for processing based on consent, such as the newsletter).
- Right to Lodge a Complaint: You have the right to file a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP) in Romania.
How to Exercise Your Rights
To request access, erasure, or to exercise any other right, please contact us at the email address specified in Section 1. We will respond to your request within a maximum of 30 days.
