VERSION 1.0 – LAST UPDATED – 30 JUNE 2026 – GDPR-COMPLIANT (EU) 2016/679

Privacy Policy

This site documents an artistic practice, not a data-harvesting enterprise. We gather as little as possible — only what is needed for a message to reach the artist and for the page to function. The rest is yours.

01

Data controller

The controller of personal data collected through this site is Cosmin Haiaș, visual artist and automation engineer, with his practice based in Timișoara, Romania. For any request concerning your data, you can reach us at the email address published in the Contact section.

02

What we collect

We collect only the data you provide directly and voluntarily, plus the minimal technical data required to operate:
  • CONTACT FORM: Name, email address and the content of your message — used solely to reply to you.
  • TECHNICAL DATA: IP address, browser type and server logs — generated automatically, kept briefly for security.
  • WE DO NOT COLLECT: Sensitive data, behavioural profiles, advertising trackers or any form of data resale.

03

Purpose & legal basis

We process data on the basis of your consent (when you fill in the contact form) and our legitimate interest in keeping the site functional and secure. We do not use data for automated decision-making and we do not build marketing profiles.

04

Cookies

The site uses only cookies strictly necessary for operation and for remembering display preferences (such as language or the interface accent colour). We use no third-party tracking cookies and integrate no advertising networks. You can block cookies in your browser settings without affecting the artistic content.

05

Who data is disclosed to

Your data is not sold, rented or handed over. It may be accessed only by the web hosting provider, strictly for the technical operation of the server, under a GDPR-compliant processing agreement. We may disclose data only where required by law — and, in keeping with the values of this practice, only within the strict limits of such an obligation.

06

How long we keep data

Contact messages are kept only as long as needed to carry on the correspondence and any possible continuation of the collaboration, after which they are deleted. Technical server logs are rotated and deleted automatically within a short window.

07

Your rights

Under the GDPR you have, at any time, the right to request:
  • ACCESS
  • RECTIFICATION
  • ERASURE
  • RESTRICTION
  • PORTABILITY
  • OBJECTION
  • WITHDRAWAL OF CONSENT
To exercise these rights, write to us at the address in the Contact section. You also have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) or your local data protection authority.
PRINCIPLE
“Surveillance is raw material for tyrants. Here we collect little, keep it briefly, and betray no one.”
C.H. — MINIMAL DATA POLICY