NexiBook complies with European data protection legislation (Regulation (EU) 2016/679 — GDPR). Here are your rights as a user:
We process identification data (name, email, phone), platform usage data (bookings, purchases, session history) and, for online payments, transaction data transmitted to the payment processor.
Data is processed under: art. 6(1)(b) GDPR — performance of the booking contract; art. 6(1)(c) — legal obligations (accounting, tax); art. 6(1)(a) — consent (marketing, cookies); art. 6(1)(f) — legitimate interest (security, fraud prevention).
Billing and transaction data is retained for 5 years in accordance with Romanian tax law. Account data is deleted on request or after 2 years of inactivity (with prior notice).
Personal information (name, email, phone) is stored securely and used exclusively for booking management and communication with Heiko Ryu SRL.
For each purchase, the platform automatically records proof of your consent (IP address, date/time, browser) as required by law.
On your first visit, you'll see a message about cookies. You can accept or decline - the platform works without optional cookies.
You have the right to: access, rectification, erasure, restriction of processing, data portability and objection. You may lodge a complaint with the ANSPDCP (www.dataprotection.ro).
You can request permanent deletion of your account directly from the platform:
For any questions about your personal data, contact Heiko Ryu SRL administrator or the NexiBook team.