Processing of personal data.

The data controller is Sigilia SRL, with its registered office in Romania. Contact for any data-processing question: dpo@sigilia.ro. The Data Protection Officer is appointed and communicates in Romanian.

We collect strictly the data needed to perform the payment and generate the proof. Payer identification: first and last name, CNP (Romanian personal code) or CUI (legal entity tax ID). Case data: the court, the case number, the action type, the claim value. Payment data: the amount, the transaction reference, the date and time. Audit-trail technical data: the IP at the time of payment, the device fingerprint, the session identifier.

We process data to fulfil the legal obligation of recording the tax with the court (Emergency Ordinance 80/2013). We also process data to perform the contract between the user and Sigilia. Legitimate interest covers the audit trail and fraud prevention. Explicit consent is used only for marketing communications, where the user opts in.

The audit trail is kept for 10 years, aligned with the general judicial limitation and tax requirements. Identification data is kept for the legally necessary period and then anonymised. Proofs of payment stay available for the lifetime of the case, with a copy filed with the court for permanent record.

LibraPay — authorised payment processor, receives the data needed for the bank transaction. OneSpan — qualified electronic signature provider, receives the proof content for signing. The competent court — receives the proof of payment recorded on the case file. Fiscal authorities — on legally justified request. Sigilia does not sell or rent data.

Under Regulation (EU) 2016/679, art. 12–22, the following rights apply: access to processed data, rectification, erasure (with legal limits), restriction, portability, objection and non-automation. Requests go to dpo@sigilia.ro, in Romanian, and are handled within 30 calendar days at most.

We use strictly session cookies and a language preference. No tracking cookies, no social network pixels, no advertising scripts. The full policy is on the dedicated cookies page.

Data stays in the European Economic Area. Our processors (LibraPay and OneSpan) operate from the European Union. Any further transfer to a third country would be preceded by a standard contractual agreement approved by the European Commission and by an impact assessment.

In the event of a security incident affecting personal data, we notify the Romanian Data Protection Authority within 72 hours. Affected users are informed directly, via the email associated with the account, without undue delay.

You have the right to address the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP), at B-dul G-ral. Gheorghe Magheru 28-30, sector 1, postal code 010336, Bucharest. Contact: anspdcp@dataprotection.ro, www.dataprotection.ro.

Processing is carried out under Regulation (EU) 2016/679 (GDPR) and Romanian Law 190/2018 on implementing measures. Romanian law applies in addition for matters not covered by the regulation.