Privacy Policy | Colibri – How We Protect Your Personal Data

Last updated: June 4, 2026

Colibri Group SRL respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, share, and protect your personal data when you use our services or visit our website, and what rights you have. We process personal data in accordance with Law No. 133/2011 of the Republic of Moldova on the protection of personal data and, where applicable, Regulation (EU) 2016/679 (GDPR). By using our services, you acknowledge that you have read and understood this Policy.

Who We Are (Data Controller)

The controller of your personal data is Colibri Group SRL, a company registered in the Republic of Moldova, with its registered office at 11/5 Moscova Blvd., Chișinău, MD-2068. As controller, we determine the purposes and means of processing your data and are responsible for ensuring that it is handled lawfully. You can contact us by email at [email protected], by phone at +373 62 001 589, or in writing at the address above. If we have appointed a Data Protection Officer, you may reach them at [email protected].

Personal Data We Collect

Depending on the services you use, we may collect: identification data (such as name, surname, date of birth, and personal identification number); contact data (address, telephone number, email address); financial and transactional data; data you provide when you contact us or use our services; and technical data (IP address, device and browser information, and data collected through cookies). We collect only the data necessary for the purposes described in this Policy, and we ask that you do not provide us with personal data that we have not requested.

Purposes and Legal Grounds for Processing

We process your personal data to provide the products and services you request, to conclude and perform contracts, to comply with our legal and regulatory obligations, to prevent fraud and ensure the security of our services, to respond to your enquiries, and — where you have given your consent — to send you marketing communications. Depending on the situation, our legal grounds for processing are: the performance of a contract with you; compliance with a legal obligation; our legitimate interests, provided these do not override your rights; or your consent. Where processing is based on consent, you may withdraw it at any time.

Sharing of Data and International Transfers

We may share your personal data with authorized service providers who process data on our behalf and under our instructions, with public authorities where required by law, and with other parties involved in providing the services you request. We require all such recipients to protect your data and to process it only in accordance with the law. We do not sell your personal data. If we transfer your data outside the Republic of Moldova or the European Economic Area, we ensure that an adequate level of protection is in place in accordance with applicable law.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to comply with legal, accounting, or reporting requirements. Retention periods vary depending on the type of data and the applicable legal obligations; for example, certain financial records must be kept for the periods required by law. When your data is no longer needed, we securely delete or anonymize it.

Your Rights

Subject to applicable law, you have the right to be informed about how your data is processed; to access your data and obtain a copy of it; to request the rectification of inaccurate or incomplete data; to request erasure of your data; to request restriction of processing; to object to processing in certain circumstances; and to data portability. Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing. To exercise any of these rights, please contact us at [email protected]. We will respond within the time limits set by law.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, loss, or destruction. These measures include, among others, encryption, access controls, staff confidentiality obligations, and regular monitoring of our systems. While we take reasonable steps to safeguard your information, no method of transmission or storage can be guaranteed to be completely secure, and we continuously work to improve our protections.

Cookies and Similar Technologies

Our website uses cookies and similar technologies to ensure its proper functioning, to remember your preferences, to analyze traffic, and to improve your experience. Some cookies are essential for the website to work, while others are used only with your consent. You can manage or withdraw your consent and control cookies through your browser settings or our cookie banner, where available. Disabling certain cookies may affect the functionality of the website.

Complaints and Supervisory Authority

If you believe that the processing of your personal data infringes the law, we encourage you to contact us first so that we can address your concerns. You also have the right to lodge a complaint with the supervisory authority, the National Center for Personal Data Protection of the Republic of Moldova (CNPDCP), and, where applicable, with the competent data protection authority in your country of residence.

Changes to This Policy and Contact

We may update this Privacy Policy from time to time to reflect changes in our practices or in applicable legislation. The current version is always available on this page, with the date of the latest update shown at the top. We encourage you to review it periodically. If you have any questions, requests, or complaints regarding the processing of your personal data or this Policy, please contact us at [email protected], by phone at +373 62 001 589, or in writing at 11/5 Moscova Blvd., Chișinău, MD-2068.