Skip to content
info@incorpore.ro

Privacy Policy

Last updated: 2026-05-02

This Privacy Policy explains how Incorpore ("Incorpore", "we", "us") collects and processes personal data of website visitors and clients in accordance with Regulation (EU) 2016/679 (GDPR) and Romanian Law 190/2018.

Data we collect

We collect personal data you submit through contact forms (name, email, current jurisdiction, the substance of your enquiry) and, only if you accept the consent banner, anonymised analytics via Hotjar (session recordings, heatmaps, device class, country derived from IP).

Sub-processors

We rely on the following processors. Each is bound by a written DPA, processes data on our instructions only, and (for non-EU processors) is covered by Standard Contractual Clauses or equivalent transfer mechanisms.

  • Vercel Inc. (USA) — site hosting and CDN. Receives request metadata necessary to serve pages.
  • Sanity.io (Norway / EU) — content management for the blog. Receives published content only; no visitor data.
  • Hotjar Ltd (Malta, EU) — session recording and heatmaps. Loads only after explicit consent. Stores data in the EU. See the Cookie Policy for details.

Lawful basis

Pre-contractual enquiries: Article 6(1)(b). Engaged clients: Article 6(1)(b) for service delivery and Article 6(1)(c) for AML/KYC obligations under Romanian law. Marketing communications: Article 6(1)(a) consent only.

Retention

Enquiry data: 12 months from last contact. Client files: 10 years from engagement end (Romanian commercial and AML retention requirements).

Your rights

Access, rectification, erasure (subject to retention obligations), restriction, portability, and objection. Contact info@incorpore.ro. You may also lodge a complaint with ANSPDCP, Romania's data protection authority.

Contact

Incorpore, Str. Victoriei 12, Sector 1, 010061 Bucharest, Romania · info@incorpore.ro