Data Protection &
Privacy Policy
How AllSteelPlus processes personal data when you visit our website, submit a request, or contact us.
Data Controller
Commercial brand
AllSteelPlus
Legal entity
UNIC MARKETING PLUS SRL
Website
allsteelplus.com
Privacy contact
business@allsteelplus.com
Registered office
[INSERT FULL REGISTERED ADDRESS]
Registration / VAT
[INSERT REG. NUMBER] / [INSERT CUI]
This Privacy Policy explains how we process personal data when you visit our Website, submit a request (RFQ / Site Visit / Partnership Inquiry), or contact us.
Scope and Important Context (B2B)
AllSteelPlus operates exclusively as an industrial steel fabrication and execution partner, working strictly to client-provided drawings and technical specifications.
The Website is intended primarily for business users (EPC contractors, general contractors, industrial clients).
If you submit information on behalf of a company, you confirm you are authorized to do so.
Categories of Personal Data We Collect
A. Data you provide via forms
RFQ ("Request a Quote"): name, company, role/position, email, phone, country, industry/vertical, project context/status, scope description, urgency/timeframe, and attachments (e.g., drawings, specifications, BOQs).
Site Visit Request: company name, VAT, country, company website (optional), contact person details (name, role, email, phone), project status, purpose of visit, preferred timeframe (optional), comments.
Partnership Inquiry: name, role/background, email, phone (optional), description of background/network, geographic focus (optional), comments (optional).
B. Data collected automatically
Device and usage data (IP address, browser type, pages visited, approximate location derived from IP, timestamps). Cookie/identifier data (see Cookies Policy).
C. Communications
Emails and messages you send to us, including any data included in your message.
Purposes of Processing and Legal Bases (GDPR)
We process personal data only where we have a lawful basis under GDPR, including:
(i) Responding to your RFQ / technical quote request
Art. 6(1)(b) GDPR โ steps prior to entering a contract
To review your technical documentation, clarify scope, and prepare a structured technical/commercial response.
(ii) Reviewing and coordinating Site Visit requests
Art. 6(1)(f) โ legitimate interests; and where applicable Art. 6(1)(b)
To validate project relevance, plan a visit, and communicate scheduling/requirements.
(iii) Evaluating partnership inquiries
Art. 6(1)(f) โ legitimate interests
To assess strategic alignment and contact you if relevant.
(iv) Website security, fraud prevention, and service integrity
Art. 6(1)(f)
To protect our systems, detect abuse, and ensure availability.
(v) Analytics and improvement (optional, consent-based where required)
Art. 6(1)(a) โ consent
Only if you consent to non-essential cookies/trackers.
(vi) Legal compliance and claims
Art. 6(1)(c) and/or Art. 6(1)(f)
To comply with legal obligations or establish/exercise/defend legal claims.
Attachments, Drawings, and Technical Documents
If you upload files (e.g., .pdf, .dwg, .step, .xls/.xlsx, .zip), we process them to evaluate and respond to your RFQ and related project discussions.
You are responsible for ensuring you have the right to share the materials (including any third-party/IP content) and that the files do not contain unnecessary personal data.
We store attachments securely and restrict access internally to relevant teams.
Recipients of Data
We may share personal data with:
- Internal teams involved in technical/commercial review (e.g., commercial department) for handling RFQs and requests.
- Service providers acting as processors (e.g., hosting, email delivery, secure file storage, IT/security vendors), under data processing agreements.
- Professional advisers (lawyers, auditors) where necessary.
- Authorities where legally required.
We do not sell personal data.
International Transfers
We may serve clients across the EU and the United Kingdom.
Where your data is processed outside the EEA, we implement appropriate safeguards (e.g., adequacy decisions, Standard Contractual Clauses) as required by GDPR.
Data Retention
We keep personal data only as long as necessary for the purposes above:
- RFQ submissions and related communications: retained for the duration of evaluation and follow-up, then archived for legitimate business needs and potential legal claims.
- Site visit requests: retained for coordination and audit trail, then archived as necessary.
- Partnership inquiries: retained for selective review and follow-up, then deleted or archived where justified.
- Technical attachments: retained as needed to support the RFQ process and project documentation trail.
Note: Specific retention periods may vary depending on contractual discussions, regulatory requirements, and limitation periods for claims.
Security Measures
We implement technical and organizational measures appropriate to the risk, including access controls, secure storage of submissions/attachments, and monitoring for unauthorized access.
No system is 100% secure; however, we take reasonable steps to protect data.
Your Rights Under GDPR
Subject to conditions and exceptions, you may have the right to:
To exercise rights, contact us at business@allsteelplus.com.
We may request information to verify identity and authority (especially for B2B submissions).
Children
Our Website and services are not directed to children, and we do not knowingly collect data from minors.
Third-Party Links
The Website may include links to third-party sites. We are not responsible for their privacy practices. Please review their policies.
Updates to This Privacy Policy
We may update this Policy from time to time. The "Last updated" date will reflect changes. Material changes may be highlighted on the Website where appropriate.
Questions About Your Data?
If you have any questions about this Privacy Policy or wish to exercise your data rights, do not hesitate to contact our team.
Contact Privacy Team