Mortonfield SRL ("we", "the operator") operates the website mortonfield.eu. This policy explains what personal data is collected, how it is used, and the rights of individuals under Regulation (EU) 2016/679 (GDPR) and applicable Romanian law.
1. Data controller
Mortonfield SRL, Str. Victoriei 12, Bucharest, Romania. CUI RO45678901. Contact: contact@mortonfield.eu, +40 744 123 456.
2. Data collected
2.1 Contact form submissions
When a visitor submits the contact form on the homepage, the following data is collected: name, telephone number, email address, and the content of the message. This data is used solely to respond to the enquiry and is not shared with third parties.
2.2 Server logs
The web server automatically records standard access logs including IP address, browser type, referring URL, and pages accessed. These logs are retained for 30 days for security and diagnostic purposes and are not used for profiling or marketing.
2.3 Cookies
This website uses one functional cookie stored in browser localStorage: mf_cookie_consent, which records whether the visitor has accepted or rejected the cookie notice. This is a strictly necessary functional element and contains no personal data beyond the consent choice.
No tracking, advertising, or analytics cookies are used. No third-party scripts are loaded that set cookies.
3. Legal basis for processing
- Contact form data: legitimate interest (responding to a direct enquiry) and, where applicable, consent.
- Server logs: legitimate interest (security and site integrity).
- Cookie preference: legitimate interest (providing a functional cookie notice).
4. Data retention
Contact form submissions are retained for up to 12 months. Server logs are retained for 30 days. Cookie preference data is stored in the visitor's own browser and is not retained on our servers.
5. Data sharing
We do not sell, rent, or share personal data with third parties for commercial purposes. Data may be disclosed to competent authorities where required by Romanian or EU law.
6. Your rights
Under GDPR, you have the right to access, correct, delete, or restrict processing of your personal data, as well as the right to data portability and to object to processing. To exercise these rights, contact us at contact@mortonfield.eu. Requests are processed within 30 days.
You also have the right to lodge a complaint with the Romanian data protection authority: Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP), www.dataprotection.ro.
7. Security
The site is served over HTTPS. Contact form data is transmitted over encrypted connections. We do not store payment card data.
8. Changes to this policy
Changes to this privacy policy will be reflected by updating the "Last updated" date at the top of the page. Material changes will be announced on the homepage for 30 days following the change.