Let's talk

Privacy Policy

Privacy Policy

Last updated: [7.11.2025]

This Privacy Policy explains how Global Defense Logistics SRL collects, uses, stores, and protects personal data when visitors access and interact with the website www.plasfloor.eu, and when communicating with us for inquiries or service requests within the European Union.


1. Data Controller

The data controller responsible for processing personal data is:

Global Defense Logistics SRL
Address: Str. Belsugului nr. 7, Constanța, 900206, Romania

The company provides products and customer support services to clients located in Romania, France, and other EU member states.


2. Personal Data We Collect

We only collect personal data that you voluntarily provide when contacting us or placing an order.

This includes:

  • Name and surname

  • Phone number

  • Email address

  • Delivery address (if applicable)

  • Billing information (for invoicing)

  • Any information you include in your message

Technical data collected automatically (necessary for the website to function):

  • IP address

  • Browser/device type (anonymized / non-identifying)

We do not use tracking, advertising, or marketing cookies.


3. Purpose and Legal Basis of Processing (GDPR)

Purpose of ProcessingLegal Basis (GDPR)
Responding to inquiries and providing quotesLegitimate Interest (Art. 6(1)(f))
Preparing and fulfilling orders, deliveries and servicesContract Performance (Art. 6(1)(b))
Issuing invoices and meeting tax obligationsLegal Obligation (Art. 6(1)(c))
Ensuring website functionality and securityLegitimate Interest (Art. 6(1)(f))

We do not send newsletters or marketing communications without explicit consent.


4. Sharing of Personal Data

Personal data may be shared only when necessary to deliver a product or service:

  • Courier services (for shipping)
    The specific courier will be communicated before dispatch.

  • Online payment service providers (for card payments, if applicable)
    The payment processor will be displayed on the payment page.

  • Website hosting and security services

All third-party providers act as GDPR-compliant data processors and are contractually required to protect personal data.


5. Data Retention

Type of DataRetention Period
Contact inquiries / messagesUp to 12 months
Billing and contractual documents10 years (as required by law)
Delivery dataStored only as long as necessary for fulfillment

6. International Data Transfers

We do not transfer data outside the European Union unless required for payment processing.
If such a transfer occurs, it will only be done to processors certified under GDPR-compliant data transfer frameworks.


7. Your Rights Under GDPR

You have the right to:

  • Request access to your data

  • Request correction of inaccurate data

  • Request deletion of your data (where legally possible)

  • Restrict processing

  • Object to processing

  • Request data portability

To exercise any of these rights, contact us at:
info@gdlgroup.eu

If you believe your rights have been violated, you may lodge a complaint with:

CNIL (France): https://www.cnil.fr
or
ANSPDCP (Romania): https://www.dataprotection.ro
or the data protection authority in your EU country of residence.


8. Security Measures

We implement organizational and technical measures such as:

  • Encrypted communication (HTTPS)

  • Restricted internal access to personal data

  • Secure server hosting and backup procedures

We never sell or trade personal data for commercial purposes.


9. Policy Updates

We may update this Privacy Policy periodically.
The date of the latest revision will always appear at the top of the document.