Privacy statement

Introduction

We (“PwC”, “us”, or “our”) are strongly committed to protecting personal data. This transparency notice describes why and how we collect and use personal data and provides information about individuals’ rights. We may use personal data provided to us for any of the purposes described in this transparency notice or as otherwise stated at the point of collection.
Personal data is any information relating to an identified or identifiable living person. PwC processes personal data for numerous purposes, and the means of collection, lawful basis of processing, use, disclosure, and retention periods for each purpose may differ.
When collecting and using personal data, our policy is to be transparent about why and how we process personal data.

Security

We take the security of all the data we hold very seriously. We adhere to internationally recognised security standards and our information security management system relating to client confidential data is independently certified as complying with the requirements of ISO/IEC 27001: 2013. We have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.

Legal basis for processing

Legal bases for each processing activity are specified in the relevant sections above. When we process personal information for our legitimate interests, we make sure to consider and balance any potential impact on a data subject (both positive and negative), and the data subject’s rights under data protection laws. Our legitimate business interests do not automatically override interests of the data subjects - we will not process personal data for activities where our interests are overridden by the impact on the data subject (unless we have the consent or are otherwise required or permitted to by law).

Changes to this privacy statement

We recognise that transparency is an ongoing responsibility so we will keep this privacy statement under regular review.
This privacy statement was last updated on 24 April 2018.

Data controller and contact information

The data controller is PricewaterhouseCoopers Audit S.R.L. or such PwC member firm, listed under this link, that is a contracting party for the purposes of providing or receiving services or the entity you have contacted.

If you have any questions about this privacy statement or how and why we process personal data, please contact us at the address:
301 – 311 Barbu Văcărescu Street, Lakeview building, floor 8, 2nd district, Bucharest, Romania
Email: privacyro@ro.pwc.com
Phone: +40 21 225 3500