Legal
Privacy Policy
ITYES IT FACTORY S.R.L. · Last updated: July 6, 2026
This policy explains how ITYES handles personal data on this website, in contact and booking workflows, through the website assistant, and during early project discussions. Project-specific processing may be governed by a separate contract or Data Processing Agreement.
1. Controller
ITYES IT FACTORY S.R.L., Crevedia, Strada Dârzei 3 A3, Dâmbovița, Romania, 137180, is the controller for personal data collected through this website and direct business communications, unless a specific contract states otherwise.
2. Data We May Collect
- Contact details: name, email address, phone number, company and role.
- Messages and requests sent through forms, email, WhatsApp or the website assistant.
- Technical data such as IP address, browser type, device information and basic security logs.
- Analytics data about website use, pages viewed and interactions with public content.
- Project discovery data that a client voluntarily shares to scope software, automation or AI work.
3. Why We Process Data
- To respond to inquiries and prepare proposals.
- To operate and secure the website and website assistant.
- To understand website performance and improve public content.
- To scope and deliver custom software, automation, integration and AI projects.
- To comply with legal, accounting and contractual obligations.
4. Legal Bases
Depending on the context, processing may be based on contract or pre-contractual steps, legitimate interests, consent, or legal obligation. Where consent is used, it can be withdrawn for future processing.
5. AI Assistant and Conversation Data
The website assistant is intended for general information and initial routing. Do not send passwords, payment information, sensitive personal data, medical data, trade secrets or production credentials through the public assistant. For enterprise AI work, client data handling is defined in project scope, security documentation and, where needed, a Data Processing Agreement.
6. Processors and Third Parties
We may use service providers for hosting, analytics, communication, form handling, scheduling, AI tooling, email, development operations and security. These providers process data only for the relevant service purpose and under applicable contractual terms.
7. International Transfers
Some tools or providers may process data outside Romania or the European Economic Area. When relevant, ITYES assesses the transfer mechanism, project requirements and client constraints before using those services for client project data.
8. Retention
We keep personal data only for as long as needed for the purpose collected, legal obligations, dispute handling, security review or ongoing business relationship. Project data retention is defined by contract, project scope or client instructions.
9. Your Rights
Depending on the applicable law and context, you may request access, rectification, deletion, restriction, portability or objection to processing. You may also contact the Romanian supervisory authority if you believe your rights have not been respected.
10. Security
We use reasonable technical and organisational measures appropriate to the nature of the data and project. More detail is available on the Security & Data Handling page.
11. Contact
For privacy requests, contact contact@ityes.eu. Please include enough information for us to identify the relevant interaction or project.