en
  • Featured
  • Services
  • Industries
  • Pages
  • Posts
Looking for something else?
0 Results
Hero Image Hero Image

Privacy policy

MOORE ROMANIA & R.MOLDOVA – EXTERNAL PRIVACY POLICY


Last updated: 19.12.2025

Purpose

Purpose of this Policy

This Privacy Policy describes how each member firm of the Moore Assurance & Advisory Group, including Moore Stephens KSC Assurance SRL and the other legally independent entities established in Romania and the Republic of Moldova, (collectively referred to in this notice as “Moore Assurance & Advisory Group”, “we”, “us” or “our”) collects and uses Personal Data, in accordance with the Regulation (EU) 2016/679 – General Data Protection Regulation (GDPR), Law No. 190/2018 (Romania), Law No. 133/2011 (Republic of Moldova) and any other applicable data protection laws in these jurisdictions (collectively “Data Protection Law”).

Each Moore Assurance & Advisory Group entity acts as a separate and independent data controller in respect of the Personal Data it processes. This privacy notice applies solely to the processing activities carried out by the Moore Assurance & Advisory Group entities in connection with your access to and use of this Website.

It applies to Personal Data provided to us, both by individuals or by others. ”Personal Data” means any information relating to an identified or identifiable natural person. Capitalised terms used in this Policy, unless otherwise defined, have the same definition and meaning as under Data Protection Law.

If you do not agree to this Privacy Policy, you must not use or submit information to us through or in connection with your use of the website www.moore.ro (the “Website”).

Please note that this Privacy Policy applies only to access to our Websites. It does not apply to any client engagement, professional services relationship, or operational activity of any Moore Assurance & Advisory Group member firm, which are subject to the separate privacy notices issued by each relevant member firm acting as an independent data controller.

About

About us

The member entities of the Moore Assurance & Advisory Group are:

  • Moore Stephens KSC Assurance SRL, a company incorporated under Romanian law;
  • Moore Stephens KSC Advisory SRL, a company incorporated under Romanian law;
  • Moore Audit & Advisory SRL, a company incorporated under Romanian law;
  • Moore Stephens KSC SRL, a company incorporated under the laws of the Republic of Moldova;
  • Moore Stephens KSC Advisory SRL, a company incorporated under the laws of the Republic of Moldova.

These entities form part of the wider Moore Global Network, an international network of independent professional services firms.

This Website is operated on behalf of the Moore Assurance & Advisory Group, and this privacy notice applies solely to the processing carried out in connection with your use of this Website.

For clarity, each Moore Assurance & Advisory Group member firm maintains its own privacy notice for processing activities relating to client engagements, recruitment, or professional services conducted in its respective jurisdiction.

Our role

Our role

Each member firm within the Moore Assurance & Advisory Group acts as a separate and independent data controller in respect of the Personal Data it processes. For the purposes of this Website, the Moore Assurance & Advisory Group entities that determine the purposes and means of processing your Personal Data act in the capacity of data controllers.

Personal Data

Types of Personal Data we may collect

You do not need to share personal data to access the Websites. However, you may choose to provide certain information if you contact us, subscribe to publications, register for events, or otherwise interact with the Website.

The categories of Personal Data we may collect from you are:

  • Contact and personal details (including name, address, date of birth, employer name, copy of CV, contact title, phone, email and other business contact details) and any information you submit as part of an enquiry or request for information about our services;
  • Communication and marketing preferences which you may give to us when you sign up to receive a newsletter, insight publication or other media alert on our Websites;
  • Information you share with us such as details of your requests for information on our offering or other general queries;
  • Photographs you may give to us if you are attending a conference or event and chose to upload a photograph onto our event platform;
  • information you may provide as part of a contribution to an event, conference or webinar (e.g., professional opinion, pictures, personal identification information etc.);
  • If you choose to provide information about dietary requirements or mobility information as part of the registration for an event, conference or webinar, which may constitute special category Personal Data such information will only be processed where you have provided your explicit consent; and
  • When you visit our Website, we may automatically collect the following information:
    • a. technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; and
    • b. information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs) and methods used to browse away from the page.

Data usage

How we will use your Personal Data

We will only process your Personal Data, in accordance with Data Protection Law, for the following purposes:

  • internal record keeping;
  • personalising your interaction with us;
  • creating and making available recordings of events. webinars and conferences to individuals who have signed up for events, webinars and conferences;
  • enabling our consultants, suppliers and service providers to carry out certain functions on our behalf, including payments processing, verification, technical, logistical or other functions;
  • ensuring the security of our organisation, including the preventing or detecting fraud or abuses of our Websites;
  • resolving any disputes, if you lawfully exercise your rights or if you wish to dispute the use of a video recording, for example, or any other part of our offering;
  • carrying out marketing campaigns and sending you personalised marketing communications, where you have agreed that we may do so, in order to keep you informed of our offering, which we consider may be of interest to you;
  • developing and improving our offering, for example, by reviewing visits to our website and its various subpages; and
  • to comply with applicable law, for example, in response to a request from a court or regulatory body, where such request is made in accordance with the law.

Processing

Grounds for Processing

Here we set out the basis upon which we process Personal Data. Please note that we may process Personal Data for more than one lawful basis, depending on the specific purpose for which we are using that information.

  1. Legitimate interests

    We may process Personal Data for the purposes of our own legitimate interests in the effective and lawful operation of our business, provided that those interests do not override the interests, fundamental rights and freedoms of a Data Subject which require the protection of that Personal Data, in accordance with Article 6 (1) letter f) of the GDPR.

    Examples of such processing activities are set out above.

  2. Compliance with a legal obligation

    We are subject to legal, regulatory and professional obligations. We process Personal Data where necessary to comply with such obligations, in accordance with Article 6 (1) letter c) of the GDPR.

    We may also keep certain records for the purpose of demonstrating that our services are provided in compliance with our legal, regulatory and professional obligations.

  3. Consent

    In limited circumstances, including where a Data Subject has agreed to receive marketing communications from us, we may process Personal Data on the basis of consent, in accordance with Article 6 (1) letter a) of the GDPR. Where consent is the only basis upon which Personal Data is processed the relevant Data Subject shall always have the right to withdraw their consent to processing for such specific purposes. Withdrawal of consent shall apply only to the specific processing activities for which consent was given.

    We only process Personal Data by consent where there is no other lawful basis for processing.

Retention

Data retention

Your Personal Data will be retained for as long as it is necessary to carry out the purposes set out in this Policy, unless a longer retention is required by the applicable law. However, we will not retain any of your Personal Data beyond this period and the retention of your Personal Data will be subject to periodic review. We may retain your Personal Data in an anonymized form, for statistical purposes without time limitation, to the extent that we have a legitimate and lawful interest in doing so.

Security

Data Security

We take the security of all the data we hold very seriously. We have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.

We have put in place appropriate security measures to prevent Personal Data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

We limit access to Personal Data to those employees, agents, contractors and other third parties who have a business need to know, and our IT systems operate on a ‘least privileged’ basis by default. Third parties will only process Personal Data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected data security breach and will notify any affected Data Subject and any applicable regulator of a suspected breach where we are legally required to do so.

Transfers

Data transfers

We may share your Personal Data with third parties only where permitted under applicable Data Protection Law, where it is necessary to administer our relationships between clients and Data Subjects, or where we have another legitimate interest in doing so.

Because the Moore Assurance & Advisory Group forms part of an international network of independent professional services firms, your Personal Data may, where necessary and appropriate, be transferred to other Moore Assurance & Advisory Group member firms or Moore Global Network member firms, including those located outside the European Union (EU) or the Republic of Moldova.

Where such transfers occur, we ensure that your Personal Data is afforded an adequate level of protection. If Personal Data is transferred to a jurisdiction that has not been recognised by the European Commission as providing an adequate level of data protection, we will ensure that appropriate safeguards are implemented in accordance with applicable Data Protection Law, such as the European Commission’s Standard Contractual Clauses or other lawful transfer mechanisms.

We may pass your Personal Data, where appropriate contractual arrangements and security mechanisms are in place, to:

  • employees and authorised personnel of the relevant Moore Assurance & Advisory Group member firm;
  • other Moore Assurance & Advisory Group or Moore Global Network member firms where needed to respond to your request or manage your participation in events, seminars, or webinars;
  • third party service providers that support us and help provide services:
    • our IT and cloud services, and to operate and manage these services;
    • professional advisory services;
    • administration services;
    • marketing services;
    • banking services.
    • Event services
  • to another legal entity, on a temporary or permanent basis, for the purposes of a joint venture, collaboration, merger, sale, reorganisation, change of legal form, dissolution or similar event. In the case of a merger or sale, your Personal Data will be permanently transferred to a successor;
  • to legal advisors who may need to advise us or manage or litigate a claim;
  • to any other third party (including our third party event sponsors) if we have your consent to do so.

All of our third-party service providers are required to take commercially reasonable and appropriate security measures to protect Personal Data. We only permit our third-party service providers to process Personal Data for specified purposes and only in accordance with our instructions.

Rights and responsibilities

Rights and responsibilities

  • A Data Subject’s duty to inform us of changes

    It is important that the Personal Data we hold about is accurate and current.  On an annual basis we will use reasonable endeavours to contact Data Subjects to verify whether the information we hold about them is correct.  However, at any time, please notify us of any changes in your personal information of which we need to be made aware by contacting us, either through your usual contact or by using one of the means set out at the end of this privacy notice.

  • A Data Subject’s rights in connection with Personal Data

    Under the applicable Data Protection Law, including the GDPR and relevant national legislation in Romania and the Republic of Moldova, Data Subjects may have certain rights in relation to the Personal Data held by us about them:

    – Right to access. Data Subjects may request access to their Personal Data. This enables a Data Subject to receive details of the Personal Data we hold about them and to check that we are processing it lawfully;

    – Right to rectification. Data Subjects may ask that we update the Personal Data we hold about them, or correct such Personal Data that they think is incorrect or incomplete;

    – Right to erasure. This enables a Data Subject to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. Data Subjects also have the right to ask us to delete or remove Personal Data where they have exercised their right to object to processing (see below). Please note that we may not always be able to comply with a request for deletion of Personal Data for legal reasons which will be notified, if applicable, after receiving such a request;

    – Right to object. Data Subjects may object to processing of their Personal Data where we are relying on a legitimate interest (or those of a third party) and there is something about their particular situation which makes them want to object to processing on this basis. They also have the right to object where we are processing their personal information for direct marketing purposes;

    – Right to restriction of processing. Data Subjects may object to the processing of Personal Data where such processing is based on our legitimate interests (or those of a third party). Data Subjects also have the right to object to the processing of Personal Data for direct marketing purposes;

    – Right to data portability. Data Subjects may request the transfer of their Personal Data to them or another Controller if the processing is based on consent, carried out by automated means and this is technically feasible. Please note that, at the time of the drafting of this Policy, we do not carry out any processing activities to which this right would apply; and

    – Right to lodge a complaint with a supervisory authority. We suggest that you contact us about any questions or if you have a complaint in relation to how we process your Personal Data. However, You have the right to file a complaint with the competent data protection authority:

    a) For residents of Romania: the National Supervisory Authority for Personal Data Processing (ANSPDCP).

    b) For residents of the Republic of Moldova: the National Centre for Personal Data Protection (NCPDP).

  • Withdrawal of consent

    Where we process Personal Data based on consent, individuals have a right to withdraw consent at any time.

    To withdraw consent please contact us using the details provided at the end of this Privacy Policy.

    To stop receiving an email from a marketing list, please click on the unsubscribe link in the relevant email received from us.

  • Contacting us to exercise a right

    If you wish to exercise any of the rights listed above, please contact us using the contact details provided at the end of this Privacy Notice. We may require additional information to verify your identity and ensure that Personal Data is not disclosed to anyone who is not entitled to receive it.

    When responding to access requests, our policy is to provide the requested Personal Data in a commonly used and intelligible format. We do not provide original documents, but the information supplied will be complete, accurate, and compliant with applicable Data Protection Law.

    We aim to respond to all legitimate requests within one month.

    Where your request is complex or we receive multiple requests, we may require additional time. In such cases, we will notify you accordingly.

    If a request is manifestly unfounded, excessive, or repetitive, we may refuse to act on it or charge a reasonable fee to process it, as permitted under Data Protection Law.

Contacts

Contacts

If you wish to exercise your rights or have any questions about how your Personal Data is processed, please contact:

  • Moore Stephens KSC Assurance SRL (Romania)

    (acting as the central contact point for the Moore Assurance & Advisory Group in Romania)

    Email: [email protected]
    Address: Bd. Dimitrie Pompeiu 9-9A, IRIDE Business Centre, Building 24, 1st Floor, Sector 2, 020335, Bucharest, Romania
    Telephone: [insert phone number]

    OR

  • Moore Stephens KSC Advisory SRL (Republic of Moldova)

    (acting as the central contact point for the Moore Assurance & Advisory Group in Republic of Moldova)

    Email: [email protected]
    Address: 63 Vlaicu Parcalab Street, Sky Tower, 6th floor, MD-2012, The Republic of Moldova
    Telephone: [insert phone number]

    Depending on the nature of your request, we may refer your enquiry to the relevant Moore Assurance & Advisory Group member firm that acts as the data controller for the processing activity concerned. We will inform you if your request has been forwarded.