Privacy policy

Last updated: 16 June 2026

This policy explains, briefly and in plain language, what data we may process when you visit the site or contact us for a quote.

Data controller

The data controller is BLACKOUT MEDIA S.R.L., CUI 49937322, Trade Register no. J2024007871409, registered at Șos. Nicolae Titulescu no. 163, Bl. 20, Sc. B, Floor 1, Apt. 40, Sector 1, Bucharest, Romania. You can contact us at [email protected] or at 0722 682 988.

Data we may process

• Contact data: name, email, phone, company, if you provide them voluntarily.
• Project data: work type, general location, surface, deadline, message and attachments later sent by email.
• Technical data: IP address, browser type, security data and technical logs generated by hosting/CDN services.

Purposes and legal bases

• Replying to requests and preparing quotes: pre-contractual steps and legitimate interest.
• Communications related to the submitted project: legitimate interest and, where applicable, performance of a contractual relationship.
• Site security, abuse prevention and technical operation: legitimate interest.
• Tax, accounting or legal obligations, if a commercial relationship is created: legal obligation.

Who we may share data with

We may use technical providers for hosting, CDN, security, anti-spam verification, email and contact form processing. The site currently uses Cloudflare for delivery, protection and anti-spam verification through Turnstile. These providers process data only as needed to provide technical services. We do not sell personal data.

When you submit the form, we may verify the request using an anti-spam token together with technical data such as IP address, browser and information strictly needed to prevent abuse. The message content is used only to answer your request.

Transfers outside the EEA

Some technical providers may have infrastructure or support outside the European Economic Area. In such cases, transfers are made through mechanisms recognized by applicable law, such as standard contractual clauses or other appropriate safeguards.

Retention period

• Requests and commercial correspondence: as long as needed to answer and follow up, usually up to 3 years from the last communication.
• Contractual/tax data: according to the periods required by applicable law.
• Technical and security logs: for limited periods, according to technical provider settings.

Your rights

Under GDPR, you may request:

• Access to your data, correction of inaccurate data or deletion of data.
• Restriction of processing, objection to processing and data portability, where applicable.
• Withdrawal of consent, if processing is based on consent.
• Not to be subject to a decision based solely on automated processing. We do not use such decisions on the site.

To exercise your rights, write to [email protected]. You also have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing: dataprotection.ro.

Security

The site is delivered through HTTPS and protection/CDN services. We use reasonable technical measures to reduce the risk of unauthorized access, loss or misuse of data.

Updates

We may update this policy if we change providers, the contact form or the way we process data. The version published on the site applies when you consult it.