Customers from around the world trust Diabetoline with improving their well-being through the use of products. It’s our privilege and duty to protect our customers data and yours.

We collect and process personal information of our website visitors, business contacts, and customers.

We use your personal data to provide you with information about our products, to process your transactions, to provide our products and services, to promote our business, and to keep in touch.

We respect your rights regarding your personal information. If you have any questions regarding your personal data, or want to unsubscribe from any direct marketing, please contact us at contact@diabetoline.com We're here to help: privacy@diabetoline.com

Now in more detail, please read our entire Privacy Policy:

INFORMATION NOTE REGARDING THE PROCESSING OF PERSONAL DATA

BY DIABETOLINE WEBSITE:

RIGHT TO INFORMATION

You have the right as a user of our website to demand information about the personal data or data concerning your pseudonym which we have stored. Such information may be issued electronically on request.

SECURITY NOTICE

We endeavour to take all the necessary technical and organisational measures to store your personal data in a way which makes them inaccessible for third parties. It is not, however, possible to guarantee complete data security when communicating by email.

1. ABOUT THIS NOTICE

Curalife Pharma Distribution SRL is the company that has direct control over the website www.diabetoline.com

In this informational note we explain how Diabetoline website processes customers, visitors, business contacts personal data in accordance with the legislation of the protection of your personal data. For the purposes of this informational note, Diabetoline  is a personal data operator. You can find below information about our identity and contact details. 

Diabetoline and our partners take privacy of personal data very seriously with respect for your data. In compliance with data protection of personal data legislation and good practices in the field, as well as ensuring a climate of transparency, safety and trust for our customers, is a priority for us, for which our employees, collaborators, partners and management firmly declare support.

This note contains important information. So we encourage you to tune in, take the time to read it completely and carefully and make sure you fully understand it. To make the document easier to navigate, DIABETOLINE COMPANY has included at the end of this note a glossary explaining the main terms used (e.g. "personal data", "processing", etc.).

Do not hesitate to let us know any concerns you may have. We want to be clear for you how we use your data and how we protect it.

The content of this notice is purely informative and does not affect the rights provided to you by legislation. We will do our best to facilitate your exercise of them. Thank you for trusting our services and the way we work with your data.

2. WHO IS DIABETOLINE?

Curalife Pharma Distribution is the company that owns all the rights on Diabetoline and is the sole distributor for the Diabetoline products, produced by S.C. Curalife Pharma Distribution S.R.L. If you have any comments, suggestions, questions or concerns about any information from this note or regarding any other aspects related to the processing of your data that we do, please do not hesitate to contact us at any time or our data protection officer. Depending on your preferences, you can contact through any of the communication channels below. Our whole team will use all reasonable efforts to ensure that we respond to you as quickly as possible and completely.

Full company contact details: 

Full name: S.C Curalife Pharma Distribution S.R.L. 

Address registered office: Timonierului road no. 12, bl. 113 d, sc.1, apartment 98, Sector 6, Bucharest. 

Phone number: 0758.460.860 (available between 8am and 8pm Monday - Friday) 

Email address: contact@diabetoline.com

Contact details of our Data Protection Officer: (this is the person you should contact regarding any issues relating to privacy and protection of your personal data) 

First and Last Name: Zavate Dan Alexandru 

Mailing address: Drumul Timonierului no. 12, bl. 113 d, sc.1, apartment 98, District 6, Bucharest. 

Email address: privacy@diabetoline.com

3. THE BASIS ON WHICH WE PROCESS YOUR DATA

We are processing your personal data, in order to facilitate the sale of Diabetoline products through www.diabetoline.com website. Regarding our marketing communications, we process your data on your consent of processing for this specific purpose. We are processing your data for the fulfilment of our archiving obligations, the obligations to  communicate to public authorities, upon request, certain information or other legal  obligations.

4. THE PURPOSES FOR WHICH WE PROCESS PERSONAL DATA

The purposes for which we process personal data of the customers, visitors and business partners are the following: 

Marketing of Diabetoline products; offering products promotions or information about our promotions; marketing communications- communicating with our customers by any means (for example, email, mobile phone or landline, phone messages -SMS, mail, messages sent on social media platforms or in person)

  5. WHAT PERSONAL DATA OF YOURS WE PROCESS?

Personal data that we will process is the data obtained directly from our visitors, customers and business contacts and include the following categories of data: 

-name; first name; sex; date of birth/age; nationality; 

-contact details such as: address of domicile / residence; mobile/landline number; fax number; email address. 

-details of payment such as: billing address;the date from which the bank card is valid; bank card expiry date.

-in case of a refund customers must provide: bank account; the name and surname of the holder of the bank account or bank card (it can be different than yours if someone else paid an invoice on behalf of you or for your);

-data related to your purchases and interaction with us, such as: interaction records you with us; details about the history of your purchases from us;

We will consider all this information as personal data and we will grant them necessary protection. However, we will strictly observe the obligation of confidentiality.

6. THE SOURCE FROM WHICH WE RECEIVE PRIVATE DATA?

All the information we have from you in case you are our customers or visitors to our website is the information entered on the website WWW.DIABETOLINE.COM when you place an order or a pre-order for our products.

We constantly try to keep our customers' data as accurate and up-to-date as possible. For this we are continuously developing data collection, checking  and updating our servers:

-financial management, issuance of vouchers, invoices and receipts sent to customers, receiving payments from customers, including recording payments carried out by another person on your behalf, recovery of debts from our customers, the return of money to our customers, sending notifications, preparation of financial/operational reports, activity reports and issuance financial statements/ regarding contracts; surveys- carrying out surveys and addressing questions to our customers  in order to get their opinion on our services, product improvement, identifying potential unseen problems to our existing services in order to improve them for everybody (including audits), testing improvements to our old and new services, solving customers complaints.

7. BASIS ON WHICH WE PROCESS ALL DATA RECEIVED FROM THE WEBSITE WWW.DIABETOLINE.COM?

We are processing yours, and all our customers' personal data, to be able to conclude a contract with you/customer/user, at your request, or to execute a contract concluded with you/customer/user (by which we undertake to provide our services to you- the customer or user of the website Diabetoline). 

Regarding our marketing communications, we process your data based on your consent to process it for this specific purpose. We can also process your personal data for the fulfilment of our archiving obligations, the obligations to communicate to public authorities, upon request, certain information or other legal obligations.

8. TO WHOM WE WILL DISCLOSE YOUR CUSTOMER DATA?

As a rule, we do not disclose your data to other companies, organisations or individuals from any country.

We do not currently transfer and do not intend to transfer customers personal data or a part thereof to other companies, organisations or persons from third countries or to international organisations. If it will be necessary to transfer any personal data of the clients, to any of the above destinations, we will send in advance an information note on this, by email or we will contact you- the customer by phone.

We may share your personal information with our staff, subsidiaries, affiliates, contractors, consultants, resellers, distributors, carriers, and other third-party business partners, to the extent needed for the provision of our services and our operations. We process your personal data on our servers and computers, but also third-party services, such as cloud hosting services, support systems and services, payment gateways, billing systems, SMS gateways, Email and SMS notification and communication services, and backup systems. 

We may need to share your information with law enforcement agencies, courts of law, and other governmental organisations, if ordered to do so by competent bodies and according to applicable law.

If we are involved with a merger, asset sale, financing, liquidation, bankruptcy, or the acquisition of all or part of our business to another company, we may share your information with that company and its advisors before and after the transaction date.

10. HOW LONG WE WILL STORE CUSTOMERS DATA?

We will store customers' data for a period between 6-12 months, we use our own servers or those of other companies specialised in electronic archiving.

11. PRIVACY AND SECURITY OF YOUR PERSONAL DATA AS A CUSTOMER:

We work hard to protect all our customers, other people whose data we process and also ourselves from access of authorised and the unauthorised modification, disclosure or destruction of the data that we process. In particular, we have implemented the following technical and organisational measures, ensuring the security of personal data. 

Please be aware that third parties with whom we’ve shared your information (other than our data processors), based on the legal bases detailed in this policy, may retain your information even after we deleted or anonymized any data related to you on our platforms. Such data retention by third parties is subject to their privacy policies, purposes, legal bases, agreements with you, and any applicable law. We take no responsibility over third parties’ use of personal data outside of Diabetoline’s control.

Dedicated policies:

We adopt and revise the data processing practices and policies of our customers and others, including physical and electronic security measures to protect our systems from unauthorised access and other possible threats to their security. We are constantly reviewing how we apply our own personal data protection policies and in which we comply with the legislation of data protection. 

Data minimization:

We have ensured that all our customer’s personal data that we process are limited to what is necessary, appropriate and relevant for the purposes stated in this notice.

Restricting access to data:

All companies and individuals that we collaborate with, are subject to strict confidentiality obligations and we will not hesitate to hold them accountable and stop working with them if they don't treat the privacy policy, your data and that of others with utmost seriousness. Technical measures:

We have acquired and used technologies to ensure our customers and others people and companies that we collaborate with, their data security is protected. We work hard to protect our systems, unauthorised or accidental access or modification of your data and

of other possible threats to their security. For this reason, after you delete information from your accounts, we may not immediately delete the copies we have created or the back-ups we have made. We make daily archives (back-ups), on which we keep securely for a minimum of six (6) months. All the technical equipment that we use to process our customer’s data are secured and updated. We also conduct security audits at regular intervals on the IT systems. 

We may ask all of our customers from time to time to confirm the accuracy and/or

the timeliness of the personal data about them provided on our website Diabetoline.

Staff training: 

We constantly train and test our employees and collaborators on legislation and best practices in the field of personal data processing.

Anonymization of data:

Where possible and appropriate for our work, we anonymize /we pseudo-anonymize the personal data we process, so that no longer we can identify the people to whom we refer. 

Control of our service providers:

We include in the contracts with those who process for us (authorised persons) or

together with us (other operators - associated operators) clauses to ensure protection of 

the data we process; this protection goes at least up to the minimum imposed by

European legislation EDPS. Although S.C. Curalife Pharma Distribution S.R.L. cannot guarantee the absence of any infringement of security or the impossibility of penetrating security systems, in the unfortunate case and in the unlikely event that such a breach will occur, we will follow legal procedures for limiting the effects and informing the persons concerned.

Links to Other Websites

The website www.diabetoline.com contains links to other websites on the Internet that are owned and operated by third-parties. We do not control the information, products or services available on these third-party websites. The inclusion of any link does not imply our endorsement of the applicable website or any association with the website’s operators. We have no control over such websites and third-parties, so you agree that the owner and the Company is not responsible or liable for the availability or the operation of such external websites, for any material located on or available from any such websites or for the protection of your data privacy by third-parties. Any dealings with, or participation in promotions offered by, advertisers on the Website, including the payment and delivery of related goods or services, and any other terms, conditions, warranties or representations associated with such dealings or promotions, are solely between you and the applicable advertiser or other third-party. You further agree that we shall not be responsible or liable, directly or indirectly, for any loss or damage caused by the use of or reliance on any such material available on or through any such site or any such dealings or promotions.

12. WHAT ARE YOUR RIGHTS REGARDING OUR WEBSITE AND HOW YOU CAN USE THEM?

We respect all the legal rights of all our customers and we carry out all of your data with utmost seriousness. We will continue to take all reasonable steps to ensure that they are complied with European law rights.

The customers have the right to access their data given to us and have the right to obtain access copies of data given by the customer that we process.

The right to rectify the data- customers have the right to obtain the rectification of inaccuracies in their data that  we process or control. 

The right to data deletion ("the right to be forgotten") - customers have the right to obtain from us the deletion of their data that we process or we control 

The right to restrict data processing- customers have the right to restrict the processing of their data that we process or control. 

The right to object- customers have the right to object to the processing of their data by us or in our name. 

The right to data portability- customers have the right to obtain the transfer to a another operator of their data that we process or control. 

The right to withdrawal of consent- In situations where we process your data under your consent, you have the right to withdraw your consent; you can do this at any time, at least as easily as you originally gave us consent; withdrawal of consent will not affect the legality of processing your data on which we achieved before the retreat. 

The right to file a complaint at the authority of surveillance - customers have the right to file a complaint at the  surveillance authority regarding the processing of personal data by us or on our behalf.

HOW YOU CAN EXERCISE YOUR RIGHTS?

To exercise one or more of these rights (including the right to withdraw a consent, when we process your data based on it) or to address any question about any of these rights or about any other aspects of the processing of your data by us, please use the contact details in section 2 above (our contact details data). 

We will try to answer all questions as quickly and completely as possible to your concerns and facilitate the exercise of your rights. You can also exercise any of these rights (including the right to withdraw consent, when we process your data based on it) by completing the form available on our website at www.diabetoline.com

13. WHAT CAN HAPPEN IF YOU DON'T PROVIDE US WITH DATA WE REQUEST?

You do not have an obligation to provide us with your personal data that we have mentioned in this document.

14. NO AUTOMATED DECISION-MAKING PROCESS!

Our respect for your personal data includes giving it human attention necessary, through our staff. Under current conditions, as a user of our Services, you will not be subject to a decision by us based solely on automatic processing of your data (including profiling) to produce legal effects on you or affecting you in a similar way in a significant measure.

15. WHEN THIS POLICY NOTE APPLIES?

This information notice applies in relation to the products you purchase from us.

16. POLICY NOTE CHANGE:

We may change this policy notice from time to time. In such cases, we will inform you in advance and we will not reduce the rights you have in relation to your data by the changes we could make to this note. We will also keep all previous versions of this policy note in an archive on our website for you, so you can consult them at any time.

17. WHAT ARE THE TERMS USED IN THIS POLICY NOTICE  AND WHAT THEY REFER?

Personal data processing supervisory authority- a public authority independent body which, according to the law, has duties related to the supervision of compliance of personal data protection legislation. The EDPS is an independent supervisory authority responsible for ensuring that EU institutions and bodies comply with data protection law when processing personal data.

Data categories- personal data about you as a customer or visitor, that we process are listed above.

Operator - natural or legal person who decides why (for what purpose) and how (through what means) customers’ personal data is processed. 

According to the law, liability for compliance with the EU - EPDS legislation regarding personal data comes first to the operator. In relation to you, we are the operator and you are the operator for the person concerned.

“User” „Customer” or “you” in all forms - we refer to the people visiting or shopping on our website.  

Note: The Company is not and will not be legally responsible in any case and for any inadvertence or erroneous description of the information presented on the site. To find out detailed and complete information about the services offered by the Company, you can address our representatives either by phone or in writing, using the contact data available in the dedicated contact sections. This information may contain typographical errors or other errors or inaccuracies. We assume no responsibility for such errors and omissions, and reserve the right to correct them when it is brought to our attention.