Iusora GDPR Position
Status: Pre-launch draft. Last updated 2026-05-20.
Iusora is a Romanian (EU-domiciled) patent intelligence service operated by Floor No. 8 SRL. We process EU personal data under the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679).
Our GDPR commitments
1. Controller of record: Floor No. 8 SRL (Romania) — see [Privacy Policy](/legal/privacy) §1. 2. Subprocessor transparency: every third-party processor is listed verbatim with data category, residency, and legal basis at [/subprocessors](/subprocessors). Materially stronger than the GDPR baseline. 3. Lawful basis: per Privacy Policy §4 — contract, legitimate interest, or explicit consent. 4. Cross-border transfers: EU SCCs Module 2 where subprocessors are outside the EEA, per Art. 46(2)(c). 5. Data subject rights: full Art. 15–22 rights with 30-day response SLA. Email privacy@iusora.com. 6. Data protection by design: Magic.link passwordless auth, no third-party tracking, EU-residency option for sensitive matters. 7. Breach notification: 72-hour SLA to Romanian DPA + affected users per Art. 33–34.
DPA template
If you need a custom Data Processing Agreement (DPA) for your firm, request one at [/legal/dpa](/legal/dpa) or email legal@iusora.com. Most Tier I customers can rely on this published GDPR position + the standard Terms.
Romanian supervisory authority
National Supervisory Authority for Personal Data Processing (ANSPDCP): B-dul G-ral Gheorghe Magheru 28-30, Sector 1, București, Romania https://www.dataprotection.ro
---
Phase 2 commitment: signed DPA template + records of processing (Art. 30) summary will be linked from this page before paid plans go live.