ro Support 24/24

PERSONAL DATA PROTECTION POLICY

Dita Estfarm S.R.L., headquartered in Chișinău, Burebista Street 23, IDNO 1002600046359, hereinafter referred to as the Operator or Dita Estfarm, is a Personal Data Operator.

Please read our website’s Privacy Policy carefully, as it explains how we collect and use information about users.

By using the website dita.md, the user agrees that the Operator may use their personal data in accordance with the requirements of Law No. 133/2011 on Personal Data Protection, regarding the processing of personal data and the free movement of such data, and other related legal regulations.

This Policy aims to inform you about how we process personal data that we collect from you or that you provide to us via the website dita.md.

If you require more information that is not included in this Policy, you can contact us via email at office@dita.md or call us at +373 22 405 419.

We reserve the right to periodically update this Policy. The updated version will be displayed on the dita.md website. Please check its content periodically.

1. DEFINITIONS

  • Personal Data – any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, particularly by reference to an identifier such as a name, identification number, location data, online identifier, or to one or more elements specific to their physical, physiological, genetic, psychological, economic, cultural, or social identity.
  • Special Categories of Personal Data – any information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data for uniquely identifying a natural person, health data, or data concerning a person’s sex life or sexual orientation.
  • Processing of Personal Data (Processing) – any operation or set of operations performed on personal data or on sets of personal data, whether by automated means or not, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.
  • Restriction of Processing – marking stored personal data to limit its future processing.
  • Personal Data Records System – any structured set of personal data accessible according to specific criteria, whether centralized, decentralized, or distributed functionally or geographically.
  • Authorized Person for Data Processing (Authorized Person) – the Operator or their representative, or individuals authorized under the direct authority of the Operator to process data.
  • Consent – any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they agree to the processing of their personal data, either by a declaration or a clear affirmative action.

2. OBJECTIVES

The objectives of the Personal Data Protection Policy are:

a) To ensure that data subjects are informed about how their personal data is processed and about their rights and how to exercise them.
b) To ensure compliance with personal data protection legislation.
c) To minimize risks by preventing data protection incidents and reducing their potential impact.
d) To increase users’ trust in the services provided by the Operator.

The Operator processes personal data collected for:

  • Recording personal data for employment purposes.
  • Recording personal data for pharmacovigilance reporting.
  • Responding to user communications.
  • Other situations based on the user’s consent.

3. CATEGORIES OF PERSONAL DATA AND PROCESSING PURPOSES

We are committed to collecting only the personal data necessary for each processing purpose.

The personal data we collect depends on our interaction with you, specifically when you choose to contact us directly via the dita.md website in the following sections:

  • “Careers”, where the Operator requests the following personal data: name, surname, CV, for the purpose of processing your job application. This interaction does not require a user account, and any interested individual can submit their data for recruitment purposes.
  • “Pharmacovigilance”, where the Operator requests the following personal data: name, surname, email, phone number, for handling reports of adverse reactions. If the user mentions medical conditions or physical characteristics when reporting an adverse reaction, special categories of personal data may also be processed.
  • “Contact”, where the Operator requests the following personal data: name, surname, email, phone number, to handle user requests. This interaction does not require a user account.

Personal data is processed solely for the stated purposes, and only authorized personnel have access to this data.

By using these sections, the user consents to the Operator using their personal data for the purposes described above.

Additionally, we do not intend to collect or process data from minors under 18 years old. If minor-related data is provided, it will be deleted.

Dita Estfarm will not disclose any personally identifiable information to third parties without the user’s explicit consent, except when required by law or in the case of legal proceedings.

The website dita.md may process cookies and similar technologies, in accordance with our Cookie Policy.

4. DATA SUBJECTS’ RIGHTS

By reading this Personal Data Protection Policy, you acknowledge that you have the following rights:

  • The right to transparency regarding the processing of your data.
  • The right to information and access to your personal data.
  • The right to rectification.
  • The right to erasure (“right to be forgotten”).
  • The right to restriction of processing.
  • The right to data portability.
  • The right to object to data processing.
  • The right not to be subject to automated decision-making.
  • The right to file a complaint with the Personal Data Protection Authority if your rights have been violated.

To exercise any of these rights or inquire about the processing of your personal data, you can submit a written, dated, and signed request to:

Dita Estfarm S.R.L., Chișinău, Burebista Street 23.

Please specify if you wish to receive a response via postal mail, email, or courier service. Before processing your request, we may verify your identity to ensure the request comes from you.

5. DATA RETENTION PERIOD

Your personal data will be processed and stored only for as long as necessary for the specified purposes. Some data may be archived for legal reasons or to comply with statutory retention periods.

The Operator ensures that personal data is appropriate, relevant, and limited to its processing purpose and that data is deleted once it is no longer needed.

6. DATA SECURITY

The Operator implements technical and organizational measures to protect personal data from:

  • Unauthorized access, modification, disclosure, deletion, or destruction.
  • Accidental or illegal data loss.
  • Cyber threats such as malware, hacking, or data breaches.

If a data breach occurs, the Operator will take immediate mitigation measures and notify the relevant authority.

Operator,
Dita Estfarm S.R.L.

Last updated: 25.02.2025