PRIVACY POLICY

Privacy Policy of “TEHNOVIT” OOD

Last updated: 21.01.2025

This Privacy Policy is established by “TEHNOVIT” OOD (hereinafter referred to as the “Data Controller,” “Supplier,” “Merchant,” “we,” “us,” or “our”).

This Privacy Policy outlines how your personal data is collected and processed and follows the applicable legislation of the Republic of Bulgaria, including the Personal Data Protection Act (PDPA) and the relevant European Union regulations and directives, including Regulation (EU) 2016/679 (GDPR).

1. DEFINITIONS

1.1. “Data Controller”

A natural or legal person, public authority, agency, or other entity that, alone or jointly with others, determines the purposes and means of processing personal data.

1.2. “Personal Data”

Any information relating to an identified or identifiable natural person, as defined by applicable legislation.

1.3. “Data Subject”

A natural person whose personal data is processed by the Data Controller within the activities of “TEHNOVIT” OOD.

1.4. “Supervisory Authority”

An independent public authority responsible for monitoring the application of the Regulation to protect the fundamental rights and freedoms of individuals in relation to processing and to facilitate the free flow of personal data within the EU. In Bulgaria, the Commission for Personal Data Protection (CPDP) is the competent authority.

1.5. “Processing of Personal Data”

Any operation or set of operations performed on personal data (e.g., collection, recording, storage, use, deletion, etc.).

1.6. “Deletion of Personal Data”

The irreversible removal of information from the relevant data storage.

1.7. “Correction of Personal Data”

Amendment of processed personal data related to you when it is inaccurate.

1.8. “Destruction of Personal Data”

The irreversible physical destruction of the medium contains the information.

1.9. “Restriction of Processing of Personal Data”

A right that allows a data subject to request that the Data Controller processes their personal data only under limited circumstances, including with the subject’s consent.

1.10. “Cookies”

Text files containing small amounts of information that are downloaded to your computer or mobile device when you visit a website, allowing the website to recognize your device.

1.11. “Data Portability”

The right of the data subject to receive personal data concerning them, which they have provided to a Data Controller, in a structured, commonly used, and machine-readable format, and the right to transfer these data to another Data Controller without hindrance from the original Data Controller, where:

• processing is based on consent or contractual obligations, and
• the data is processed by automated means.

1.12. “Website” or “Site”

A designated space on the global Internet, accessible via a unique address (URL) using HTTP or HTTPS protocols, containing various materials and resources such as files, programs, text, images, hyperlinks, and others.

2. PERSONAL DATA PROTECTION (PRIVACY POLICY)

2.1. Applicable Regulations

The processing of Users’ personal data is carried out in accordance with the General Data Protection Regulation (Regulation (EU) 2016/679, GDPR), the Personal Data Protection Act, and other applicable regulatory acts of Bulgaria and the EU.

2.2. Types of Collected Data

• Contact data (communication details such as name, email, phone number, company details, etc.) voluntarily provided by the User when filling out the contact form on the Website.
• Technical data (IP address, browser type, operating system, cookies, and similar technologies) used to improve our services, analyze traffic, and optimize content display.

2.3. Methods of Collecting Your Personal Data

• Directly provided by you (e.g., through order forms, contact forms on our website, or email correspondence).
• Automatically collected data when you use our website, through cookies and other similar technologies.

2.4. Purposes of Processing

• Communication regarding our products, services, inquiries, and requests.
• Traffic analysis, user experience optimization, and content display.
• Compliance with legal requirements and protection of the legitimate interests of “TEHNOVIT” OOD.

2.5. Legal Basis for Processing

• Explicit consent provided by the User when submitting personal data through the contact form or other functionalities.
• Performance of contractual obligations or legitimate interest of “TEHNOVIT” OOD.
• Compliance with legal obligations.

2.6. Data Retention Period

We store your personal data only for the period necessary to fulfill the purposes for which it was collected unless a longer retention period is required by law.

2.7. User Rights

• Right of access to your personal data and to receive a copy of it.
• Right to correct personal data.
• Right to delete personal data (“right to be forgotten”), where applicable.
• Right to restrict processing of personal data.
• Right to data portability.
• Right to object to the processing of your data.
• Right to withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.
• Right to file a complaint with the Supervisory Authority (CPDP) in case of a violation of your rights.

3. DISCLOSURE OF INFORMATION TO THIRD PARTIES

3.1. The Supplier does not provide personal data to third parties except in the following cases:

• To comply with legal obligations.
• When necessary, for the provision of a specific service (e.g., courier services, hosting providers, IT services, accounting services).
• To protect the legitimate interests of the Supplier, provided this does not violate the fundamental rights and freedoms of data subjects.

4. CHANGESTO THE PRIVACY POLICY

4.1. “TEHNOVIT” OOD reserves the right to update or modify the Privacy Policy in response to legislative changes, changes in the scope of services provided, or other factors.

4.2. All modifications will be published on the Website, and the last updated date will be indicated at the beginning of the document.

4.3. By continuing to use the Website after the changes take effect, you agree to the updated terms.

5. CONTACT INFORMATION. DATA CONTROLLER DETAILS. SUPERVISORY AUTHORITY IN BULGARIA

5.1. If you have any questions or wish to exercise your rights as a data subject, you can contact us:

📍 Data Controller Name: “TEHNOVIT” OOD

📍 Address: Sofia, Bulgaria, Blvd. Bulgaria 111, Embassy Suites, Building A, Floor 2, Office 3

📧 Email: tehnovit.cs.sc@tehnovit.com

📞 Phone: +359 879 601 514

5.2. Supervisory Authority in Bulgaria:

Commission for Personal Data Protection (CPDP)

📍 Address: Sofia, Bulgaria, 1592, 2 Prof. Tsvetan Lazarov Blvd.

🌐 Website: www.cpdp.bg

This Privacy Policy is adopted and comes into force from the date of its publication on the Website.

Prepared for:

📍 “TEHNOVIT” OOD