TERMS AND CONDITIONS OF USE, PRIVACY POLICY AND PERSONAL DATA PROTECTION

1. Who we are?
The website https://www.nrs.rocks/ is the official website of NRS – NO ROCKET SCIENCE SRL (hereinafter referred to as NRS) and is, together with all its contents and materials included therein, the property of the aforementioned entity.
NRS – NO ROCKET SCIENCE SRL has its headquarters in Cluj-Napoca, 4 Crisan Mircioiu Alley, Cluj County, unique identification code (CUI) 36315514, Trade Registry no. J12/2687/2016, phone no: +40741181201, email: getintouch@nrs.rocks

2. Terms and conditions
The hereby terms and conditions define the terms of use of this website, hereinafter referred to as the website, by potential visitors or customers. By accessing or browsing this website, you agree to the terms of use described below. We kindly ask you to carefully read the following terms and conditions.
The NRS website is a web portal with the aim of presenting the company’s services and informing its users. NRS owns all intellectual property rights over the materials included on the website as well as the trademarks, logos or slogans contained therein. These rights are protected under the Romanian and European legislation on copyright and intellectual property. Any reproduction, copying, distribution, publication or unauthorized use, regardless of the form in which it occurs and regardless of the person who does it, without the prior consent of the company, is strictly forbidden and punishable under the provisions of law.
In order to understand how your personal data is dealt with, please read carefully the company’s privacy policy regarding the protection and processing of personal data. This policy is the way our company understands and complies with the principles of personal data protection, as well as your rights in relation to the way your information is used within our business processes.

3. Privacy policy
Data protection in the course of personal data processing is a major NRS concern therefore all data collected during the visits on our website are processed according to existing legal provisions.
The hereby privacy policy refers to NRS customers and all other NRS website users. Personal data means any information about an identified or identifiable individual collected through this website.
GDPR is the Regulation on the protection of individuals with regard to personal data processing
and the free movement of such data (2016/679 of the European Parliament and of the Council of 27 April 2016) and repealing Directive 95/46 / EC General Data Protection). GDPR was published in the Official Journal of the European Union L119 / May 4th 2016, entered into force on May 25th 2016 and is applicable from May 25th 2018 throughout the European Union. The GDPR contains a set of rules designed to give citizens more control over the data they are able to identify.
Our website may include links to other websites whose content is not under our control, therefore the company does not assume or accept any responsibility for the content of these websites, nor is responsible for the information protection strategies of other web pages or their content.
The company undertakes not to disclose any information regarding your visits to this website excepting legal situations.
In accordance with the legal provisions in force, the company has the obligation to manage the personal data you provide to us safely and only for the specified purposes.

4. What kind of website user personal data does NRS process?
Through its website NRS may collect and process the following personal data: name, surname, e-mail address, IP address, and other data provided by users.
NRS may collect other data from the website visitors such as the types and browser versions used, the used operating system, the website from where an access system reaches our website, the sub-websites, the website accessing date and time, the internet protocol address (IP address), the Internet access provider of the access system, and any other data and similar information. This information is needed to deliver the content of the website properly, optimize the content of the website and its adds, ensure the long-term viability of the information technology and technology of the website, and provide the law authorities with the necessary information for criminal prosecution in case of cyber-attack. Therefore, the company statistically analyzes anonymously collected data and information in order to increase data protection and data security for our company and to ensure an optimal level of protection of the personal data we process.
NRS collects information from its users in the following ways: directly from the user, from the traffic reports recorded by the servers hosting the site, as well as through cookies.
The information provided directly by the user may be the first and last name, the e-mail address, as well as other personal data included in the CVs uploaded on the web page or provided by the sent messages.The information in the server traffic report are the IP address, website visit time, where from you visited our website. Cookie information may be information you have expressed on your previous visits, internet traffic data.

5. Direct company contact via the website
The website users have direct contact by website means. This way we process information that allows us to have a short electronic contact with our company as well as direct communication with us by including an email address. If a targeted person contacts the operator via e-mail or the contact form, the personal data sent by him or her is automatically stored. Such personal data, voluntarily transmitted by a person to the operator, are stored for processing and contacting the data subject. There is no transfer of this personal data to third parties.

6. CV submission – providing data in order to collaborate
People who are interested in working within or for NRS have the option to apply for a job via website by uploading their CV. The personal data contained in the CV or in the attached message will be stored in order to contact the person interested in a potential collaboration.

7. The purpose of users and website visitors’ personal data processing
The personal data of users and website visitors are used by NRS for the following purposes: to present and provide you with our services, to inform you of our activities and offers, to personalize the services offered, to process your requests through this page, to respond to various customer requests, to recruit employees and collaborators, to contact you for updating your collected and processed data, for marketing and advertising purposes by sending newsletters, for statistical analysis that does not involve creating individual profiles.
Personal data collected for these purposes will not be processed for any other purposes except with the express consent of the subject person.

8. Legal grounds for processing
The legal ground for personal data processing for the above purposes is based on the legal obligations of NRS as a result of the operations conducted through this website, the legitimate interest of the company in promoting its products and / or services; your consent to marketing / advertising, recruitment, and other processing for which the legislation in question requires consent.

9. Data storage time-span
The time-span personal data will be stored is the legal retention period. After the expiry of that period, the corresponding data is deleted on a regular basis as long as it is no longer required for the purpose for which it was collected. In cases where there is no legal obligation to keep collected personal data, they will be retained for a maximum of 3 years. If you contact us with a question, we keep your personal data for the time needed to process your questions, but no longer than 3 years after the last sent correspondence.
If you have given your consent for marketing activities, we keep your personal data until you unsubscribe or ask us to delete it. In this regard, please note that the data stored in our databases for the purposes of direct marketing communications are deleted from the records of these databases after 3 years from the last interaction with you.
If the cookie module is stored on your computer, keep it as long as it is needed to achieve goals no more than 3 years.
In case you submit your resume for a potential collaboration, these are processed under your consent and will be retained for up to 3 years, unless you ask us to delete this data sooner.
Your data processing period is also limited by your option to terminate your processing or to delete your data by e-mail request sent to: getintouch@nrs.rocks or by post to: Cluj-Napoca, 4 Crisan Mircioiu Alley, Cluj County. Once you ask us to delete the data, it will not be processed further.

10. Principles of personal data processing
NRS is committed to comply with all the principles of personal data protection set out in Article 5 of GDPR, so the company undertakes to ensure that personal data is:
• Processed correctly, legally and transparently;
• Collected for specified, explicit and legitimate purposes;
• Adequate, relevant and limited in relation to the purposes for which it is processed;
• Correct and up-to-date;
• Kept in a way that does not allow identification of the data subjects longer than necessary for the purpose of the processing;
• Processed in accordance with the rights of the data subject in a way that ensures adequate processing security so that the data is complete, confidential and available.

11. Website cookie usage
In principle the website uses cookies that are required to run the web page. The purpose for using this information collected through cookies is to present the content in a relevant way, customized according to the user’s preferences (language, format, etc.) and to remember the user’s options every time they come back to the website. At the same time, cookies can be used to generate statistics and to display the user’s relevant content for advertising.
When you access the website, you are informed about the use of these cookies, which can collect and process certain personal data, such as IP address, name, email address, etc.
Via cookies one can identify the user’s terminal, type of browser used, relevant browser settings when it comes to cookies (like Do not Track), and other information such as the IP address (if applicable), the area and country content is being accessed from, frequency of access, as well as others. You have the option of giving or refusing consent to the use of these cookies apart from those required for the website functioning.
Cookies are text files that are stored in a computer through the Internet Browser. Many sites and servers use cookies. Many cookies contain a so-called cookie code. A cookie ID is a unique cookie identifier. It consists of a string of characters by means of which the pages and Internet servers can be assigned to the Internet browser where the cookie was stored. This allows websites and servers visited to distinguish individual data browser from other Internet browsers that contain other cookies. A certain Internet browser can be recognized and identified using a unique cookie code. By using cookies, the company can provide users with more user-friendly services that would not be possible without setting cookies. By means of a cookie, information and offers on our website can be optimized according to the user. Cookies allow us to recognize the users of our website. The purpose of this recognition is to make it easier for visitors to use our website. The website visitor who uses cookies must not enter access data each time the site is accessed as it is retrieved from the website and the cookie is thus stored in the user’s computer system.
The concerned individual may at any time prevent cookies from being enabled by means of a proper Internet browser setting, so he/she may permanently refuse cookies. In addition, cookies already set can be deleted at any time via an Internet browser or other software. This is possible on all popular Internet browsers. If the concerned individual disables the cookie setting in the Internet browser he/she uses, not all of our website’s features can be fully utilized. During use, we may automatically collect information such as the IP addresses from which you access the website and the browser you are using, and you agree to store certain information on your computer (“cookies”), all for the purpose providing you with optimal access to and use of your website. The cookies we use on this website have a variable lifespan but this does not exceed 3 years. All cookies are “first-party”, which means they are not transmitted to other companies. Accepting all cookies on our website significantly increases the quality of the content you see. Without these cookies, parts of our website will not be available to you. Cookies allow us to store your settings and preferences.
From a necessity point of view, cookies are divided into two categories: essential and nonessential.
• Essential cookies are those that ensure the proper functioning of the website, without them the website cannot properly function. These cookies have to be accepted in order to browse the website, related pages and subdomains.
• Nonessential cookies are cookies with major impact on the functioning and the website content optimization by processing and customizing the information according to the user. These cookies are not mandatory for website functioning.
Cookies may be classified in various ways according to their origin. For instance:
• A first-party cookie is a cookie generated and used only by the visited website. Most of the times these are essential cookies.
Third-party cookies are cookies that originate from outside the website whose information we cannot control. Most of the time such cookies are non-essential. An example of a third-party cookie is the Google Analytics cookie. The data collected through these cookies and the purpose for which this data may be used is not controlled by the website. The Google Analytics Privacy Policy can be reviewed here http://www.consilium. europa.eu/ro/about-site/ cookies/
According to the lifespan cookies are:
• Session cookies – cookies that have a short lifespan and that expire when you close the browser.
• Persistent cookies are files that remain stored on your terminal for a longer period of time. They automatically expire when they reach the validity limit term or when they are manually deleted.
According to the purpose they serve cookies are:
• Necessary for the website functioning – cookies without which one cannot navigate the website. Among others they ensure the security and integrity of your session.
• For preference storage – cookies that enable storing your options when it comes to language, region etc. They are also used for autofill functions, for instance filling your user once you come back to the page.
• Statistics – cookies that collect anonymous data typically used to optimize the website and content.
• Marketing – cookies that are used to identify visitors while navigating through different websites. They are designed to provide relevant advertising for each user, according to his/her preferences in the past.

What kind of cookies do we use?
This website uses session cookies as well persistent cookies. This website uses first-party cookies. Upon accessing our website, you may come in contact with various cookies according to your browser’s settings.
The chart below displays the cookies, tags and other similar instruments that this website uses along with information about their purpose and duration.

Cookie type Stored value Domain Expiry date Purpose
_ga GA1.2.1873840378… .nrs.rocks 2 years Used to distinguish users / Can be set
pll_language en www.nrs.rocks 1 year Used to store the last visited language
_gat 1 .nrs.rocks 1 minute Used to throttle request rate
_gid GA1.2.327706756… .nrs.rocks 24 hours Used to distinguish users / cannot be set / expires in 24 h by default
PHPSESSID g7ecu6g3v4kpqu9ru6dt3i… www.nrs.rocks Expires when browser is closed Maintained logged in state for a particular user / maintain session / Used specifically in php applications
viewed_cookie_policy yes www.nrs.rocks 2 years Set to yes when the cookie law bar has been viewed and accepted
NID 130=k38IOI7BDNu6GT… .gstatic.com 6 month Google cookie used to remember certain preferences
CONSENT WP.26d5d4 .gstatic.com Expires when user deletes cookie Google cookie according to EU GDPR cookie law for user consent

This data chart may be updated as the services offered on this website may be submitted to changes. Nevertheless, the data chart may temporarily not include a cookie, a tag or a similar instrument as a consequence of updating.
You have access to various methods for opt-out, out of which:
• You may modify your web-browser cookie management settings limiting that way usage of future cookies for each individual browser
• You may delete all the cookies stored within your web-browser
• You may delete selective cookies stored within your browser
• You may install a cookie management plug-in within your browser (there are various options according to your browser type)
You may also choose to completely unsubscribe from third-party tracking that Google does through Google Analytics. Additional details can be found here https://tools.google.com/ dlpage/gaoptout.
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how pages are used. The information generated by cookies about the use of the website will be transmitted and stored by Google on servers in the United States of America. By using IP anonymity, Google will truncate the IP address for the EU Member States as well as for other parties from the European Economic Area Agreement before transmitting to and storing in the US. Only in exceptional cases can the complete IP address be sent and shortened by Google’s US servers.
In the name of the operator of this website, Google will use this information to analyse your use of the website, compile reports on website activities for website operators and provide additional services to the operator of this website in connection with the use of the website and the Internet. For this purpose, Google uses pseudonyms. The IP address sent by your browser through Google Analytics will not be associated with any other data owned by Google.
Web analysis is the collection and analysis of visitors’ behaviour on web-sites. A web analytics service collects, among other things, data about the website from which a person came (the so-called “referrer”), which sub-pages were visited or how often and for how long a sub-page was viewed. Web analytics are primarily used to optimize a website and to conduct a cost-benefit analysis of Internet advertising. The Google Analytics component operator is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, United States.
For web analysis through Google Analytics, the controller uses the application “_gat. _anonymizeIp “. Through this application, the IP address of the person’s Internet connection is abbreviated by Google and anonymized when accessing our websites from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area. The goal of Google Analytics component is to analyze traffic on our website. Google uses the data and information gathered, among others, to assess the use of our website and to provide online reports showing activities on our website and to provide other services regarding the use of our website for us.
Google Analytics places a cookie in the concerned person’s information technology system. With the cookie setting, Google has the ability to analyse the use of our website. During this technical process, Google acquires knowledge of personal information, such as the person’s IP address, which serves Google, among others, to understand the origin of visitors and clicks, and then create discounts, commissions. The cookie is used to store personal information such as access time, the location from which it was accessed, and the frequency of visits to our website by the concerned person.
With the occasion of every visit to our website, such personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected through the technical procedure to third parties. The concerned person may, as mentioned above, prevent the cookies from being set through our website at any time through a proper adjustment of the web browser used and hence permanently refuse the cookie setting. Such an adjustment of the used Internet browser would prevent Google Analytics from establishing a cookie in the data technology system of the concerned person. In addition, cookies already used by Google Analytics can be deleted at any time through a web browser or other software. In addition, the concerned person has the option of contesting a collection of data generated by Google Analytics that is related to the use of this website, as well as the processing of such data by Google and the possibility of excluding such data. To do so, the concerned person must download and install a browser add-on by following the link https://tools.google.com/dlpage/gaoptout link and install it.
This browser add-on tells Google Analytics through a JavaScript that any data and information about webpage visits might not be passed to Google Analytics. Installing browser add-ons is considered an objection by Google. If the person’s IT system is subsequently deleted, formatted, or newly installed, then the concerned person must reinstall the add-ons to disable Google Analytics. If the browser add-on program has been uninstalled by the concerned person or by any other person who may be attributed to its scope or disabled, it is possible to perform the reinstallation or reactivation of the browser add-ons. Additional information and applicable Google data protection provisions can be found here https://www.google.com/intl/en/policies/privacy/ and here http://www.google.com/analytics/terms/us.html. Google Analytics is further explained at the following link https://www.google.com/analytics/.

12. Website users’ rights in connection with personal data processing
Users of the website https://www.nrs.rocks/ are guaranteed all rights under the European Regulation on the Protection of Individuals with regard to the Processing of Personal Data and National Legislation, such as the right to transparency and information, the right of access to the data processed, the right to amend and delete the data (the right to be forgotten), the right to restrict the processing, the right to data portability, the right to object, the right to withdraw consent at any time, the right to file a complaint with the competent, supervising authority.
Any person who accesses the https://www.nrs.rocks website and provides personal data and information through the forms available here or in any other way expresses their consent that their personal data be used by NRS for the purpose for which these data were provided. As long as you have expressed your consent to a particular processing, you have the right to withdraw your consent at any time and free of charge. In connection with this data processing, you have the right to request access to your personal data, respectively you have the right to obtain from the company a confirmation that personal data concerning you are processed or not and, if so, you have the right of access to those data in order to know what personal data is processed and the circumstances of this data processing. At the same time, you have the right to obtain from the company the amendment of inaccurate personal data that concerns you. Taking into account the purposes for which data was processed, you are entitled to obtain or update personal data that is incomplete or inaccurate, including by providing a supplementary statement. The right to delete data, also called the right to be forgotten, means that at any time you can oppose the processing of your personal data and request the deletion of your data.
Restriction of processing means marking stored personal data in order to limit their future processing. The right to restrict data processing implies that you have the right to obtain from the company a restriction on processing if one of the following applies: you are disputing the accuracy of the data for a period that allows us to verify the accuracy of the data; processing is illegal, and you oppose the deletion of your personal data and instead you ask for restrictions on its use; we no longer need personal data for processing, but you ask us to provide it in order to ascertain, exercise or defend a right in court; you opposed the processing in accordance with art. 21 (1) of the GDPR, for the period of time that it is ascertained whether the rights of the legitimate company outweigh your rights.
The right to data portability means you have the right to receive the personal data that concerns you and that you have provided us with, in a structured manner, currently used and that can be automatically read and you have the right to forward this data to another operator without any obstacles on our behalf.
At the same time, you have the right not to be the subject of a decision based solely on automatic processing, including profile creation, which produces legal effects that concern or affect you in a similar manner to a significant extent.
In addition, you have the right to submit complaints to the National Supervisory Authority for Personal Data Processing or to the courts of law if you believe that the company has violated any of your rights under the law. Any concerned person may request the exercise of these rights at any time by sending a written message at the following e-mail address: getintouch@nrs.rocks or by letter sent to our headquarters in Cluj-Napoca, 4 Crisan Mircioiu Alley, Cluj County. You will receive a reply within 30 days. Upon completion of processing and deletion of the data, you will be given a 30-day acknowledgment of termination of the processing and deletion of the processed data. For any additional questions about how personal data is processed, please contact our company by e-mail: getintouch@nrs.rocks or by sending a letter to our headquarters in 4 Crisan Mircioiu Alley, Cluj County.

13. Disclosing personal data
In order to fulfil the data processing goals, the company may disclose the data thus collected to its contractual partners, to authorized persons processing your personal data on behalf of NRS or to central / local public authorities in the following situations:
• for the management, maintenance, customization and improvement of this website and its services;
• in the event of promotional campaigns organized by the company together with various contractual partners;
• to perform data analysis, testing and research, monitoring usage and activity trends, development of safety features;
• in order to send advertising / promotional materials, under the conditions and limits stipulated by the law;
• when the disclosure of personal data is demanded by law provisions.

14. Personal data transfer
Your personal data is not transferred to third-party countries or international organizations.

15. Information regarding security measures for data processing
NRS will, in relation to the use of your personal data, apply the necessary technical and organizational measures to ensure their security, protection against accidental or unlawful destruction, alteration, disclosure or unauthorized access. NRS has invested in the adoption of technical and organizational data processing measures, updated in accordance with GDPR requirements, to protect your personal data from any unauthorized access, improper use or disclosure, unauthorized amendment, destruction, or accidental loss. All employees and NRS collaborators, as well as any third parties acting in the name and on behalf of the company, are required to respect the confidentiality of your information in accordance with the law and personal data processing policy. In the event of a personal data breach, the company shall notify the competent supervisory authority without unjustified delay and, if possible, no later than 72 hours from the date on which it became aware unless it is likely to create a risk to the rights and freedoms of individuals. Where the breach of personal data security is likely to create a high risk for the rights and freedoms of individuals, the company shall inform the data subject without unjustified delay of the breach.

The Terms and Conditions, as well as the Privacy Policy and the Protection of Personal Data may be updated and modified in accordance with applicable legal regulations or policies of the company.