GDPR Policy – SIMLEX TESTING SRL
Last updated: December 2025
SIMLEX TESTING SRL
VAT no.: 33167529
1. Introduction
This Policy describes how SIMLEX TESTING SRL collects, processes and protects personal data, in accordance with Regulation (EU) 2016/679 (GDPR).
2. Types of data collected
The Company may collect the following types of data:
identification data (first name, last name, position);
contact data (e-mail, telephone, address);
data required for invoicing (VAT no., fiscal code, headquarters address);
information regarding the samples and services requested.
SIMLEX TESTING SRL does not collect special categories of data unless they are necessary for the performance of services and are provided voluntarily by the client.
3. Purpose of processing
Data is processed for:
order registration;
provision of laboratory services;
operational communications;
issuing reports and invoices;
legal obligations and archiving.
4. Legal basis of processing
performance of a contract;
consent of the data subject (where necessary);
legal obligations;
legitimate interest (security, fraud prevention).
5. Data storage
Data is kept for the period necessary for the performance of services and in accordance with regulations on the retention of accounting and technical documents.
6. Data disclosure
The Company may transmit data to:
public authorities, based on the law;
external providers strictly for order processing (courier, accounting).
SIMLEX TESTING SRL does not sell and does not transfer data outside the EU.
7. Rights of the data subject
Data subjects have the right to:
access to data;
rectification;
erasure ("the right to be forgotten");
restriction;
portability;
objection;
withdrawal of consent.
Requests should be sent to: simlextesting@gmail.com.
8. Data security
The Operator applies technical and organizational measures for data protection:
restricted access;
secure IT systems;
staff confidentiality.
9. Policy updates
The policy may be modified periodically. Updated versions will be published and available upon request.
