TTS

Privacy policy.

I. SUBJECT

This Privacy Policy, hereinafter referred to as the "Personal Data Protection Policy" , presents information on how “TomovTech Solutions” EOOD , hereinafter referred to as "Supplier", "Administrator" , "we" and/or "us" , owner/operator of the website: https://tomovtechsolutions.com , hereinafter referred to as "Website" for short , processes (including but not limited to collecting and storing) personal data of subjects of personal data, such as the users of the Internet page and of the Provider's services, referred to below for short as "User/s" and/or "You" , as well as regarding the rights of the latter in this connection. The term "personal data" used in the Personal Data Protection Policy has the meaning given to it in Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data data and on the free movement of such data and for the repeal of Directive 95/46/EC, hereinafter referred to for short as "General Data Protection Regulation" and/or "GDPR" , namely: "any information related to an identified or an identifiable natural person ("data subject"); an identifiable natural person is a person who can be identified directly or indirectly, in particular by specifying an identifier such as a name, an identification number, location data, an online identifier or one or more factors specific to the physical, the physiological, genetic, mental, economic, cultural or social identity of that natural person." Below you can find brief information on:

II. PROVIDER INFORMATION

1. Name: “TomovTech Solutions” EOOD , EIK 207508715

2. Headquarters and management address: Sofia, 68 Petar parchevich St., floor 3, apartment 6 ; Aleksandar Tomov

3. Phone: +359877995722 , e-mail: alexander_t@tomovtechsolutions.com

4. Entry in public registers: Commercial Register at the Registration Agency of the Ministry of Justice of the Republic of Bulgaria.

Name: Commission for the Protection of Personal Data of the Republic of Bulgaria

Address: Sofia 1592, "Prof. Tsvetan Lazarov" No. 2

Phone: 02 915 3 518

E-mail: kzld@cpdp.bg

Website: https://www.cpdp.bg/

We process (including, but not limited to: collecting and storing) your personal data solely in connection with our activity and in accordance with the requirements of applicable legislation, including the Personal Data Protection Act of the Republic of Bulgaria and the General Data Protection Regulation . We process your personal data based on at least one of the following grounds:

III. PURPOSES FOR COLLECTION, PROCESSING AND STORAGE OF PERSONAL DATA

We collect, process and store personal data of the Users in connection with the implementation of the services provided by us and communication in connection with the use of the Internet page, as well as for the following purposes:

If a data subject refuses to provide us with some or all of the personal data that is necessary for the relevant purpose stated above, we may not be able to provide the relevant service (for example, to fulfill a contract entered into with the relevant User) or we fulfill the relevant legal requirements (for example, to enable the data subject to exercise his rights under the GDPR).

We observe the following principles when collecting, processing and storing your personal data:

IV. PERSONAL DATA

We collect the following categories of Users' personal data for the following purposes and on the following grounds:

We use "cookies" on the website, which are small files that are downloaded to your computer to improve your experience as users of the site. You can find more information on this link on our dedicated cookie policy page here. We do not process, or collect from Users, special categories of personal data (for example: data revealing racial or ethnic origin, political views, genetic or biometric data, as well as data about the sex life and sexual orientation of the data subject). We do not make decisions based solely on automatic data processing, including profiling. We usually receive the personal data directly from the personal data subject. However, it is not excluded that we may also receive personal data from other persons, such as: other employees, in the company in which the relevant subject of personal data works, as well as from publicly available sources such as the Commercial Register and the register of non-profit legal entities at the Agency for entries to the Ministry of Justice of the Republic of Bulgaria.

We store the Users' personal data for a period no longer than is necessary to fulfill the relevant purpose of processing or the legally established period, when applicable. For example:

The storage period depends, among other things, on the duration of the legal relationship between us and the respective User, as well as on the purposes for which the personal data is processed. Where there is indication(s) of potential legal claim(s) or liability, these terms will be extended accordingly. When the processing is based on the User's consent (for example: in the case of personal data provided by third parties for direct marketing), we store this personal data until we have a valid consent for its processing. After the expiry of the above periods, we take the necessary care to delete and/or destroy your relevant personal data without undue delay.

In principle, the personal data of the Users that we process are accessible to our employees, representatives and partners who need them to fulfill legal obligations and/or to fulfill contractual obligations (for example: providing a given service under a contract with a User ). In this regard, it is possible, at our own discretion and in compliance with the requirements of the GDPR, to transfer all or part of your personal data to third parties such as accountants, professional consultants, including lawyers (for the purposes of financial, accounting and administrative service of our activity ), cloud platforms for processing/storing data (for the purposes of organizational service of our activity, for example: storing and processing the contracts with the Users of cloud platforms for the purpose of greater security), companies providing postal services (for the purposes of organizational service of our activity, for example: sending contracts on paper to the Users), IT service providers, system administration, marketing services (for the purpose of providing a more reliable and high-quality operation of the Website and more secure data processing) , service providers for storing third-party information (i.e. hosting companies) (for the purpose of fulfilling contracts with Users). Based on applicable law or at the request of public authorities, all or part of your personal data may also be made available to public authorities. We do not intend to transfer your personal data to countries outside the European Economic Community or to international organizations.

At any time while we are processing your personal data, and subject to the limitations set out in applicable legislation, you, the data subject, have the following rights:

  • Right of access – you have the right to request information about whether we are processing your personal data, as well as to obtain access to and a copy of such personal data of yours; in the event that you request more than one copy of such personal data of yours, you may be liable to pay an appropriate fee for each additional copy;

  • Right to rectification/rectification – you have the right to request that your personal data be rectified if you believe that it is inaccurate or incomplete. We will make such corrections/corrections without undue delay;

  • Right to deletion/to be forgotten - in certain circumstances (for example: the relevant personal data are no longer necessary for the purposes for which they were collected; you have withdrawn your consent to the processing of certain of your personal data for which there is no other legal basis for processing) you may request that your personal data that we process be deleted from our records/our database without undue delay. In certain cases, We may refuse to delete such Your personal data (for example: the processing of the personal data is necessary to comply with a certain legal obligation or to establish, exercise or defend legal claims);

  • Right to restriction of processing – when certain conditions are present (for example: the processing of certain of your personal data is unlawful, but you do not want this data to be deleted), you have the right to request a restriction of the way in which your personal data is processed;

  • Right to portability – where your personal data is provided to us by you and is processed in an automated way, you have the right to request that your personal data be transmitted to you in a structured, widely used and machine-readable format, as well as transferred to another controller of personal data, if technically feasible;

  • Right to object - you have the right, at any time, to object to the processing of your personal data for certain purposes, in which case we will stop using the personal data for the specific purpose, unless we have overriding legitimate grounds for doing so (for example: you have the right , at any time, to object to the processing of your personal data for direct marketing purposes, in which case we will stop processing your personal data for these purposes without undue delay);

  • Right to object to automated processing, including profiling – you have the right not to be the subject of a decision based solely on automated processing of your personal data, including profiling, and you also have all the rights that accrue to you in the event that you are subject to the legal consequences of such processing;

  • Right to withdraw your consent to processing – in case we process your personal data on the basis of consent provided, at any moment, you have the right to withdraw your consent. Withdrawal will not affect the lawfulness of processing based on consent prior to its withdrawal.

In the event that, at the request of a User, we delete his/her personal data from our database, we will only retain the information that may be necessary to protect our legitimate interests or for public authorities. You have the right to request that we inform you about all recipients to whom the personal data for which correction, erasure or restriction of processing is requested has been disclosed. We may refuse to provide this information if it would be impossible or require a disproportionate effort. In the event that we are required to transfer personal data to another controller, to correct or delete personal data, to restrict the processing of personal data or to terminate such processing, to provide information about the recipients to whom the personal data has been provided, for for which rectification, erasure or restriction of processing is requested, or to provide access to personal data, and in case of concerns regarding the identity of the User making the corresponding request, we may first request additional information to confirm the identity of the data subject in question . In the event that in the processing of your personal data there is a third party to whom all or part of your personal data is transferred (as set out in Part IX above), all the above requests will be forwarded to that third party. The exercise of the above-mentioned rights is free of charge for the Users, except when the requests made are clearly unfounded or excessive. In such event, we may either charge a reasonable fee to comply with the request or refuse to act on the request. Users can exercise the above rights by contacting us by email at: alexander_t@tomovtechsolutions.com

In the event that you consider that your personal data is not being processed lawfully or that any of your rights related to the protection of personal data has been violated, you have the right to lodge a complaint with the competent supervisory authority for the protection of personal data specified in Part III of - above the Privacy Policy. You also have the right to seek legal protection of your rights. In the event that the website contains links to other websites, we recommend that you carefully familiarize yourself with the personal data protection/privacy policies of these other websites, because when you visit these pages, your personal data may be processed by the websites in question, which processing is not covered by the Personal Data Protection Policy. We reserve the right to change the Privacy Policy at our discretion as and when we see fit.