Privacy Policy

Last updated: May 1, 2026

1. Data controller

The personal data controller is GROWLY S.R.L., a company registered in Romania, which operates the Growly.ro website and provides web design, development, digital marketing and related digital services.

• Company name: GROWLY S.R.L.
• CUI: 53250890
• Trade Registry No.: J2026001820005
• Registered office: Str. Trandafirilor nr. 193, Comuna Gologanu, Județul Vrancea, România
• Email: office@growly.ro
• Phone: 0730 341 225

2. What personal data we collect

Depending on how you interact with us, we may collect the following categories of personal data:

• identification data: name, company name, role or position;
• contact data: email address, phone number, website, social media profile or business contact details;
• project information: project type, budget range, message, technical requirements, deadlines and business goals;
• contractual and billing data: data required for offers, invoices, contracts and accounting documents;
• technical data: IP address, browser, device type, user agent, approximate access time, pages visited and basic security logs;
• communication data: emails, form submissions, support requests and messages exchanged with Growly.ro.

3. How we collect data

We collect data directly from you when you fill in the contact form, send us an email, call us, request an offer, sign a contract or use our services. We may also collect limited technical data automatically when you visit the website, mainly for security, functionality and analytics purposes.

4. Purposes of processing

We process personal data for the following purposes:

• to respond to contact requests, questions and offer requests;
• to prepare proposals, estimates, contracts, invoices and project documents;
• to provide web design, development, marketing, accessibility, hosting, support and related services;
• to communicate about active projects, support requests or service updates;
• to maintain website security, prevent abuse, spam, fraud or unauthorized access;
• to comply with legal, tax, accounting and regulatory obligations;
• to improve our website, services, communication and user experience.

5. Legal bases for processing

Depending on the context, we process personal data based on one or more of the following legal bases:

• contract or pre-contractual steps, when you request an offer or contract our services;
• legal obligation, for accounting, tax, invoicing or regulatory requirements;
• legitimate interest, for security, business communication, fraud prevention, service improvement and proof of communication;
• consent, where required, for optional communications, non-essential cookies or specific marketing actions.

6. Contact form

When you submit the contact form, we process the data you provide in order to understand your request and reply to you. The form may collect your name, email, phone number, project type, estimated budget, message, IP address and basic technical details needed for security and anti-spam protection.

7. Email and communication

If you contact us by email or phone, we may store and use the communication history to reply, prepare offers, provide support, manage projects, document decisions and protect our legal interests.

8. Analytics, cookies and similar technologies

Growly.ro may use cookies or similar technologies for essential functionality, language preference, performance measurement, analytics or security. Non-essential cookies should be used only according to the Cookie Policy and, where required, based on your consent.

Read the Cookie Policy

9. Who may receive your data

We do not sell your personal data. We may share data only when necessary with:

• hosting, email and infrastructure providers;
• IT, development, maintenance or security providers;
• analytics, advertising or tracking platforms, where used and legally permitted;
• accountants, legal advisors or consultants;
• public authorities, courts or institutions, when required by law.

10. International transfers

Some third-party services used for hosting, email, analytics, advertising, security or project management may process data outside the European Economic Area. Where such transfers occur, we aim to rely on appropriate safeguards, such as adequacy decisions, standard contractual clauses or equivalent legal mechanisms.

11. How long we store data

We keep personal data only as long as necessary for the purposes described in this policy, unless a longer retention period is required by law or is necessary to protect our legitimate interests.

• contact requests: normally up to 24 months from the last interaction, unless a project or legal reason requires longer storage;
• contract and billing documents: according to applicable accounting and tax retention rules;
• technical and security logs: for a limited period necessary for security, debugging and abuse prevention;
• marketing consent records: until withdrawal of consent or until they are no longer necessary.

12. Security measures

We use reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration or disclosure. These may include secure hosting, access limitation, HTTPS, server-side validation, anti-spam measures, secure email configuration and restricted access to sensitive files.

13. Your rights

Under the GDPR, you may have the following rights, depending on the applicable context:

• the right to be informed about how your data is processed;
• the right of access to your personal data;
• the right to rectification of inaccurate or incomplete data;
• the right to erasure, where legal conditions are met;
• the right to restriction of processing;
• the right to data portability;
• the right to object to processing based on legitimate interest;
• the right to withdraw consent, where processing is based on consent;
• the right to lodge a complaint with the competent data protection authority.

14. How to exercise your rights

To exercise your rights, you can contact us at office@growly.ro. We may request additional information to verify your identity before responding to your request. We aim to respond within the legal timeframe.

office@growly.ro

15. Complaints

If you believe that your personal data has been processed unlawfully, you may contact us first so we can try to resolve the issue. You also have the right to contact the Romanian data protection authority.

ANSPDCP
www.dataprotection.ro

16. Children’s data

Growly.ro services are intended for businesses and adults. We do not knowingly collect personal data from children. If you believe that a minor has provided us with personal data, please contact us so we can review and delete the data where appropriate.

17. Automated decision-making

We do not use your personal data for solely automated decisions that produce legal effects concerning you or similarly significantly affect you.

18. Updates to this policy

We may update this Privacy Policy when our services, website, tools or legal obligations change. The updated version will be published on this page and will apply from the date of publication.

19. Contact

For questions about this Privacy Policy or how we process personal data, contact us using the details below:

• office@growly.ro
• 0730 341 225