PRIVACY POLICY (GDPR)
Privacy Policy
Effective Date: 2026
Website: aliveflower.com
At Alive Flower, we respect your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable Romanian data protection laws.
This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit this website or contact us through our forms.
1. Data Controller
The data controller responsible for your personal data is:
S.C. Floristiq Art S.R.L.
EU VAT tax number: RO37018988 (for eligible intra-EU transactions)
Romanian Tax / VAT Registration Details: 30841307 (for domestic and other applicable transactions)
(The applicable invoicing structure, VAT treatment, and tax references may vary depending on the client’s billing country, customer tax status (individual or business), and the place of supply under applicable law.)
Registered Address: Str. Craiova no. 16, ap. 4, 400276, Cluj-Napoca, Cluj, Romania
Representative: Andreea Mirabela Stör
Email: office.aliveflowers@gmail.com
2. What Personal Data We Collect
Depending on how you interact with our website, we may collect:
Information you provide directly:
Full name
Email address
Phone number / WhatsApp number
Country of residence
Wedding date or event date
Event location / wedding location
Guest count (if applicable)
Service preferences / inquiry type
Message content / project details
Any other information you choose to provide
Information collected automatically:
IP address
Browser type
Device information
Pages visited
Referring website
Date/time of access
Cookies and similar technologies (if enabled)
3. How We Use Your Data
We use your personal data to:
respond to inquiries and contact requests;
evaluate service suitability and availability;
communicate about wedding, event, or certification-related services;
prepare proposals, consultations, or booking information;
process invoices or payments where applicable;
improve our website and client experience;
comply with legal, tax, accounting, and administrative obligations;
protect our legitimate business interests.
4. Legal Bases for Processing (GDPR)
Under GDPR, we rely on one or more of the following legal bases:
Article 6(1)(a) GDPR – Consent
when you voluntarily submit a contact or inquiry form;Article 6(1)(b) GDPR – Pre-contractual steps / Contract
when processing is necessary to respond to your request before entering into a service agreement;Article 6(1)(c) GDPR – Legal obligation
where we must retain accounting, invoicing, or tax-related records;Article 6(1)(f) GDPR – Legitimate interests
for business administration, website security, service management, and communication.
5. Contact Forms and Inquiries
When you submit a form on this website (including a Wedding Inquiry, Certification Inquiry, or general inquiry), we collect the information you enter in order to:
respond to your request,
assess your needs,
communicate next steps,
and, where relevant, prepare an offer or booking process.
Submitting a form does not automatically create a contract or booking.
6. Payments and Billing Data
If you proceed with a paid service, we may collect or process additional information necessary for:
issuing invoices,
confirming payments,
maintaining accounting records,
complying with tax and financial obligations.
Payments may be processed by third-party providers such as Stripe, PayPal, or other authorized platforms. We do not control how those providers process personal data beyond what is necessary for payment facilitation.
7. Data Sharing
We do not sell your personal data.
We may share your data only where necessary with trusted third parties, such as:
website hosting and website platform providers (e.g. Squarespace),
email service providers,
payment processors (e.g. Stripe, PayPal),
accounting or legal advisors,
technical support providers,
authorities where required by law.
All third-party providers are expected to process data securely and lawfully.
8. International Transfers
Some of the third-party services used through this website may process or store data outside the European Economic Area (EEA).
Where this occurs, we take reasonable steps to ensure that appropriate safeguards are in place, such as:
use of providers offering GDPR-compliant frameworks,
standard contractual clauses (where applicable),
or other lawful transfer mechanisms recognized under EU law.
9. Data Retention
We retain personal data only for as long as necessary for the purposes described in this Policy, including:
to respond to inquiries,
manage service discussions,
fulfill contractual obligations,
maintain tax/accounting records,
resolve disputes,
or comply with legal requirements.
Retention periods may vary depending on the nature of the inquiry, booking status, and applicable legal obligations.
10. Your GDPR Rights
Under GDPR, you may have the right to:
request access to your personal data;
request correction of inaccurate data;
request deletion of your data (“right to be forgotten”);
request restriction of processing;
object to processing in certain circumstances;
request data portability where applicable;
withdraw consent at any time, where processing is based on consent;
lodge a complaint with a competent data protection authority.
To exercise any of these rights, please contact us at:
office.aliveflowers@gmail.com
This website may use cookies and similar technologies for functionality, analytics, performance, and user experience.
If cookies are enabled, users may be presented with a cookie banner or consent tool depending on the website configuration and applicable legal requirements.
You can control cookies through your browser settings.
Important: If you use analytics, Facebook Pixel, Meta Pixel, Google Analytics, or similar tracking tools, you should also implement a proper cookie banner / consent manager before those scripts load.
12. Security
We take reasonable technical and organizational measures to protect personal data against:
unauthorized access,
accidental loss,
misuse,
alteration,
disclosure,
or destruction.
However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.
13. Third-Party Links
This website may contain links to third-party websites or services.
We are not responsible for the privacy practices, content, or policies of those third-party sites. We encourage you to review their privacy policies before providing personal data.
14. Third-Party Payment Providers
Payments are processed through secure third-party payment providers, including Stripe and/or PayPal. Alive Flower does not store full card details.
Payments made through Stripe and/or PayPal are subject to the privacy practices and terms of those providers. We encourage you to review their respective privacy policies before submitting payment.
15. Children’s Privacy
This website and our services are not intended for children under the age of 18.
We do not knowingly collect personal data from children. If we become aware that personal data from a child has been submitted, we will take reasonable steps to delete it.
16. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
Any updates will be posted on this page with a revised effective date. Continued use of the website after changes are posted constitutes acknowledgment of the updated Policy.
17. Contact
If you have any questions about this Privacy Policy or your personal data, please contact:
S.C. Floristiq Art S.R.L.
Str. Craiova nr. 16, ap. 4, 400276
Cluj-Napoca, Cluj, Romania
VAT: RO 37018988
Representative: Andreea Mirabela Stör
Email: office.aliveflowers@gmail.com
If you believe your rights have been violated, you may also contact the competent data protection authority in Romania.