Privacy Policy

This Privacy Policy applies to the website thetaone.digital and related contact requests submitted through it.

Controller: Theta One Digiplex S.R.L. (“we”, “our”, “us”)
Location: Romania
Contact: hello@thetaone.digital

If you are in the EU/EEA, we act as a data controller for personal data processed in connection with this website.

Data you provide

• Name
• Email address
• Message content
• Anti-spam honeypot field (used only to detect bots)

Technical data collected automatically

Our infrastructure may process standard technical metadata, such as IP address, browser/user-agent details, timestamp, requested URL, and referral page, for security and operational reliability.

Browser storage preference

We store one essential preference in your browser local storage:
cookie-consent (accepted/declined). This is used only to remember your privacy banner choice.

We process personal data to:

• Respond to your inquiries and business requests
• Assess potential collaboration and manage pre-contractual steps
• Protect the website and prevent abuse or fraud
• Maintain essential preference settings (privacy banner choice)

We do not sell personal data, and we do not use this website for behavioral advertising or automated decision-making.

Where GDPR applies, we rely on Article 6 lawful bases:

We currently use only one essential browser-side preference:cookie-consent. It stores whether you accepted or declined the privacy banner.

We do not currently deploy advertising cookies, retargeting pixels, or third-party analytics trackers on this website.

You can clear this preference anytime through your browser storage controls.

We may share personal data only where necessary with:

• Hosting and infrastructure providers
• Email or business communication tools used to handle enquiries
• Legal/regulatory authorities when required by law

We require service providers to process data under confidentiality and data protection obligations. We do not sell personal data.

Some providers may process data outside the EEA. Where this happens, we apply appropriate safeguards (such as Standard Contractual Clauses) and assess transfer risks as required by GDPR.

We retain contact enquiries for up to 24 months from last meaningful contact, unless a longer retention period is required by law.

Security/operational logs are retained for up to 90 days, unless longer retention is necessary for incident investigation.

The cookie-consent preference is stored locally in your browser and is not persisted in our systems.

We implement appropriate technical and organizational safeguards to protect personal data against unauthorized access, disclosure, alteration, and loss. No internet transmission or storage method is completely secure, but we continuously review our controls.

If you are in the EU/EEA, you may request:

• Access — A copy of personal data we hold about you.
• Rectification — Correction of inaccurate or incomplete data.
• Erasure — Deletion of your data ("right to be forgotten"), where applicable.
• Restriction — Restriction of processing in specific circumstances.
• Portability — Data portability in a structured, machine-readable format.
• Objection — To processing based on our legitimate interests.
• Withdraw consent — Consent at any time where processing is consent-based.

You also have the right to lodge a complaint with your local data protection authority or with Romania’s supervisory authority, ANSPDCP (Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal).

This site is intended for business audiences and is not directed to children under 16. We do not knowingly collect personal data from children.

For privacy questions or to exercise your rights, contact:

We aim to respond to valid privacy requests within 30 days.