Send It Motorsport
HomeServicesCartProfile
Shop

Legal Documents

Privacy Policy

English version - Send It Motorsport.

Last updated: February 14, 2026

Privacy Policy

Last updated: February 19, 2026

Revive and Drive S.R.L., operating as Send It Motorsport (“we”, “us”, “our”), is committed to protecting your privacy and processing your personal data responsibly, lawfully, and transparently in full compliance with the General Data Protection Regulation (Regulation (EU) 2016/679- “GDPR”), Romanian national legislation (including Law no. 190/2018 on the implementation of GDPR measures, Law no. 365/2002 on electronic commerce, and other applicable rules) and all relevant data protection requirements.

We value your trust and take the protection of your personal information very seriously. This Privacy Policy explains in detail how we collect, use, disclose, store, protect, and delete your personal data when you interact with us, whether as a customer, website visitor, newsletter subscriber, contact person, or in any other capacity.

Please read this notice carefully. It is quite detailed because we want you to be fully informed about your personal data and your rights. If anything is unclear or you have questions, please contact us using the details in section 15 below.

1. Who we are: the data controller

Data controller Revive and Drive S.R.L. Registered office: Bucharest, Romania

Company registration number (J): J2025088677009

Unique Tax Registration Code (CUI): RO52922305

Email: contact@senditmotorsport.com

Phone: +40 742 220 088

We act as the data controller for the personal data we collect and process through:

  • Our website senditmotorsport.com
  • Any mobile applications (if applicable)
  • Email communications
  • Customer support interactions
  • Order processing, delivery, returns, and warranty services
  • Marketing and promotional activities

This means we determine the purposes and means of processing your personal data.

2. Definitions used in this policy

  • “Personal data” means any information relating to an identified or identifiable natural person (“data subject”).
  • “Processing” means any operation or set of operations performed on personal data, whether automated or not (collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure, dissemination, alignment, combination, restriction, erasure, destruction).
  • “Controller” means the natural or legal person that determines the purposes and means of processing personal data, in this case, Revive and Drive S.R.L.
  • “Processor” means a third party that processes personal data on our behalf (e.g. payment processors, couriers, hosting providers).
  • “ANSPDCP” means the Romanian National Supervisory Authority for Personal Data Processing.
  • “GDPR” means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
  • “Data owner” means the person within the Company who holds a managerial or supervisory role and is responsible for ensuring that the principles of storage, archiving and destruction of personal data are applied within their area of activity.
  • “DPO” (Data Protection Officer) means the individual appointed by Revive and Drive SRL to oversee compliance with applicable personal data protection legislation.
  • “Storage” means the retention of personal data for a defined period of time necessary to fulfil the purposes for which it is processed (also referred to as the retention period).
  • “Destruction” means the permanent deletion or disposal of personal data once the retention period has expired, through methods such as irreversible erasure or destruction of the storage medium.3. Your duty to inform us of changes

It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes during your relationship with us (e.g. change of delivery address, email, or phone number).

4. What personal information do we collect?

Depending on how you interact with us, we may collect and process the following categories of personal data:

A. Identification and contact data

  • First name and last name
  • Delivery address and billing address
  • Email address
  • Telephone number

These details are required to create your account, process orders, deliver products and communicate with you.

B. Order and transaction data

  • Products ordered
  • Order history and details
  • Delivery tracking information
  • Payment status (confirmation only, we do not store full card numbers)
  • Returns, refunds, and warranty claims

C. Account and customer service data

  • Messages and communications sent via contact forms, email, or phone
  • Customer support tickets and complaint records
  • Account login credentials (if you create an account)

D. Technical and usage data

  • IP address
  • Browser type and version
  • Device information (mobile/desktop, operating system)
  • Pages visited, time spent, clickstream behaviour
  • Cookies, pixels and similar technologies (see our Cookie Policy)

E. Marketing and promotional data

  • Subscription status for newsletters and promotions
  • Consent/withdrawal records
  • Interaction with marketing emails (opens, clicks)

F. Fraud prevention and security data

  • Limited transaction patterns
  • Device fingerprinting (anonymised)
  • IP logs for security purposes

We do not collect or process special categories of personal data (sensitive data such as health information, racial/ethnic origin, political opinions, religious beliefs, biometric data, etc.) unless strictly required by law and with an appropriate legal basis.

5. How do we collect your personal information?

Directly from you

  • When you place an order
  • When you create or update an account
  • When you contact us (email, phone, contact form etc.)
  • When you subscribe to newsletters or participate in promotions
  • When you browse our website (automatic technical data)

Indirectly

  • From payment providers (e.g. Stripe: transaction metadata only)
  • From delivery partners (e.g. courier delivery status updates)
  • From public authorities (when required by law)

6. Legal basis for processing your personal data

We process personal data only when we have a lawful basis under GDPR Article 6. The main bases we rely on are:

  • Performance of a contract (Art. 6(1)(b))- to process and fulfil your orders, deliver products, handle payments/refunds, provide customer support
  • Legal obligation (Art. 6(1)(c))- to comply with accounting, tax, invoicing, consumer protection, warranty, and other mandatory legal requirements
  • Legitimate interests (Art. 6(1)(f))- fraud prevention, website/platform security, service improvement, direct marketing to existing customers (soft opt-in), analytics (where your rights do not override ours)
  • Consent (Art. 6(1)(a))- for marketing communications (newsletters, promotions), you can withdraw consent at any time

We rarely rely solely on consent. Most processing is based on contract or legitimate interests.

7. Purposes for which we process your personal data

We use your personal data only for specific, explicit and legitimate purposes, including:

  • Processing and fulfilling your orders (including payment, packaging, shipping and delivery)
  • Managing customer accounts and communications
  • Providing customer support, answering inquiries and handling complaints
  • Issuing fiscal invoices and complying with accounting, tax and legal obligations
  • Processing returns, refunds, warranty claims and after-sales service
  • Detecting and preventing fraud, unauthorised access and security incidents
  • Improving our website, products, services, and user experience (e.g. through anonymised analytics)
  • Sending transactional emails (order confirmations, shipping updates, etc.)
  • Sending marketing communications (only with consent or where permitted by law)
  • Responding to lawful requests from public authorities or courts

8. Marketing communications and changing preferences

We may send you marketing communications (newsletters, product offers, tuning tips, event invitations) only if:

  • You have given explicit consent, or
  • You are an existing customer and we are relying on soft opt-in (permitted under Romanian e-commerce law)

You can opt out or change your marketing preferences at any time by:

  • Clicking the “unsubscribe” link in any marketing email
  • Updating your preferences in your account (if available)
  • Contacting us at contact@senditmotorsport.com

Opting out applies only to promotional/marketing messages. It does not affect essential service communications (order confirmations, shipping updates, payment receipts, returns/warranty notifications, etc.).

9. Change of purpose

We will only use your personal data for the purposes for which it was collected unless we reasonably consider we need to use it for another compatible purpose. If we need to use it for an unrelated purpose, we will notify you and, where required, obtain fresh consent or rely on another lawful basis.

We may process personal data without your knowledge or consent where this is required or permitted by law (e.g. legal obligations, fraud prevention, public interest).

10. How long we keep your personal information (Data Retention)

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, in accordance with GDPR Article 5(1)(e) (storage limitation principle).

Typical retention periods:

  • Order and transaction data - 10 years (accounting, tax, and fiscal obligations under Romanian law)
  • Customer account data - duration of active account + 3 years after last interaction (for potential re-activation or dispute resolution)
  • Marketing consent / newsletter data - until you withdraw consent or unsubscribe
  • Website analytics (anonymised) - up to 26 months (Google Analytics default)
  • Customer support tickets / complaints - 3 years (proof of communication and resolution)
  • Fraud prevention logs (IP, device info) - 90 days (unless fraud is confirmed, then longer for investigation)
  • Warranty / return claims - duration of legal warranty (2 years) + 1 year

After the retention period, personal data is securely deleted, irreversibly anonymised, or destroyed. We may retain data longer if required by law (e.g. ongoing disputes, tax audits) or for legitimate interests (e.g. evidence of lawful processing).

11. How we protect your personal information

We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of data in transit (HTTPS) and at rest where appropriate
  • Access controls and authentication (limited to authorised personnel)
  • Regular security monitoring, vulnerability scanning, and penetration testing
  • Secure third-party processors bound by GDPR-compliant contracts
  • Backup and disaster recovery procedures
  • Staff training on data protection and confidentiality
  • Incident response plan for data breaches

No system is 100% secure, but we take all reasonable steps to protect your data.

12. Sharing your personal data with third parties

We share personal data only when necessary and always under strict conditions:

  • Payment processors (e.g. Stripe) - transaction metadata only (we do not store card details)
  • Delivery/courier partners - name, phone, delivery address, order number
  • Hosting/IT providers - secure storage and operation of the website
  • Marketing/email tools (if used) - email address and name (with consent)
  • Analytics providers (e.g. Google Analytics) - anonymised usage data
  • Legal / tax / accounting advisors - when required by law
  • Public authorities - in response to lawful requests

All third parties are bound by GDPR-compliant data processing agreements.

13. International transfers of personal data

Some processors (e.g. Stripe, Google Analytics, certain email/marketing tools) are located outside the EEA (mainly USA).

We ensure adequate protection through:

  • EU–US Data Privacy Framework (DPF) certification (where applicable)
  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Anonymisation of data where possible

You can request a copy of the safeguards used for international transfers by emailing contact@senditmotorsport.com.

14. Your rights under GDPR

You have the following rights regarding your personal data:

  • Right of access - obtain confirmation whether we process your data and receive a copy
  • Right to rectification - correct inaccurate or incomplete data
  • Right to erasure (“right to be forgotten”) - delete your data (subject to legal retention obligations)
  • Right to restriction of processing - limit processing in certain cases
  • Right to data portability - receive your data in a structured, commonly used format
  • Right to object - object to processing based on legitimate interests or direct marketing
  • Right to withdraw consent - at any time (does not affect prior processing)
  • Right not to be subject to automated decision-making- we do not currently use automated decisions with legal or similarly significant effects
  • Right to lodge a complaint - with ANSPDCP (www.dataprotection.ro)

To exercise any right, contact us at contact@senditmotorsport.com. We usually respond within 30 days (free of charge in most cases). We may request proof of identity to protect your data.

15. Complaints

If you are unhappy with how we handle your personal data, please contact us first at contact@senditmotorsport.com so we can resolve the issue.

You also have the right to lodge a complaint with the Romanian supervisory authority: ANSPDCP - Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal Website: www.dataprotection.ro Address: B-dul G-ral Gheorghe Magheru 28-30, Sector 1, București

16. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, our practices, or services. The current version is always available on this page. Significant changes will be notified via email (if you have an account) or prominent notice on the Site.

17. Contact us

For any questions, concerns, or to exercise your rights:

Email: contact@senditmotorsport.com

Phone: +40 742 220 088

Postal address: Bucharest, Romania

Thank you for trusting Send It Motorsport with your personal data. We are committed to protecting your privacy and upholding your rights under GDPR and Romanian law.