The following policies are designed to help you understand what information we collect as a Data Privacy Administrator, how we use it, and what rights you have in relation to it.
DATA CONCERNING THE DATA ADMINISTRATOR
Name of the Personal Data Administrator: DEDRAX JSC, UIC: 201412044
Headquarters and management address: 1000 Sofia, Triaditsa district, 1 Bulgaria square, National Palace of Culture, ent. AI4;
Phone: +35929166101
Email: office@dedrax.com; Website: https://dedrax.com/
DATA PROTECTION OFFICER CONTACT INFORMATION
Email: gdpr@dedrax.com
Phone number: +359882344057
I. We collect information about you in several different ways:
1. When you provide us with information with your explicit consent, or you give us permission to receive it.
When using our website or when sending us an enquiry through our website form, you give us a certain information voluntarily. This includes information when completing a Customer Price Request – name and surname, email address, phone number, and any other information you choose to provide us with.
When during the use of our website you voluntarily provide us with personal data (including sensitive personal data, such as by sending sensitive personal data in a comment on our website), we will erase this personal data from our system, without your request, if we consider that processing it is not necessary for a legitimate purpose.
2. When using our website we also receive technical information.
Each time a website or another Internet service is used, a certain information is created and saved automatically.
3. The same applies when you use our website. Here are some of the categories of information we collect:
3.1 Data in log files
When using the webpage, our servers record information (“log files”) which your browser automatically sends when you visit the website. This log data includes the Internet address (IP) of your device, the browser type, browser language, the date and time of your request, the requested resource (URL), and one or more “cookies” which can identify your browser or profile.
3.2 Data for the “Cookies”
We also use “cookies” (small text files which are sent to your computer each time you visit our website, they are unique for your account or your browser). When we use „cookies” or other similar technologies, we use two types of cookies:
– Temporary cookies for the session (which last until closing your browser);
– Permanent cookies (which continue to run until you or your browser delete them). For example, we use “cookies” to store your language preferences or other settings, so you don’t need to set them up every time you visit our website. We do not store personal data in our “cookies”. For more detailed information on how we use “cookies”, please refer to our Cookies Policy.
3.3. Device information
In addition to logbook data, we collect information about the device on which you are using our website, including device type, operating system, settings, unique device identifiers and crash data to help us understand when something is broken. Whether we collect only partial or all of the information, often depends on the type of device you are using and its settings. For example, there are different types of information depending on whether you are using a computer with Mac, Windows or Linux installed. The same applies to a phone with iOS, Android, etc.. To learn more about what information your device provides, please check also your device manufacturer or software provider’s policy.
II. What do we do with the information we collect /OBJECTIVES OF DATA PROCESSING/
5. We use the information to provide you with the services on our website.
To do so, we need to use your information to:
– perform obligations relative to a contract signed with you;
– answer your questions or comments
In addition to the above mentioned and for similar reasons, we have a legitimate interest in using your information in this way. It is essential for the nature of the services we provide. Also, if necessary, we work with law enforcement authorities and institutions to protect and preserve our website as a safe space, detect and prevent fraud or provide IT security.
6. We process your personal information for a variety of technical, administrative and operational reasons: to improve the website and its functionality, for troubleshooting and technical issues, for data analysis, tests, research, statistical purposes and research to provide you with services and information that may be of a greater interest to you and keep our website safe and secure.
7. In some cases, we will process your personal data only with your consent. In these cases, when you submit your personal information, we will specifically request your explicit consent. You have the right and can withdraw your consent at any time at the following e-mail address: gdpr@dedrax.com Withdrawal of your consent will not affect the lawfulness of data processing before it is withdrawn.
8. We will also rely on your consent for the use of “cookies” to monitor the way visitors use our website and its performance. This allows us to quickly identify and fix various problems.
III. Transmission of personal data:
9. All data collected and stored on our website is also stored on a shared hosting at host.bg.
IV. Rights you can exercise in relation with your personal information:
10. You can request a confirmation that your personal data is being processed by us or not, request a copy of your personal data and / or request a correction. Under certain circumstances, you have the right to require from us to delete your personal data or on the basis of the data portability right, to request that we transmit some of your personal data to you or others. In addition, you have the right to object to the processing of your personal data (example: when using and processing data for direct marketing purposes, or if some decisions are made only by automatic data processing (including profiling).) When we ask for your consent about the processing of your personal data you have the right to withdraw this consent without adverse consequences. You also have the right to object when we process your personal data based on our legitimate interest (as explained above). You are also entitled, under certain circumstances to limiting the processing of your personal data.
Requests for access must be written/electronic and addressed to the administrator or directly to the Data Protection Officer with the above indicated contact details.
11. The administrator has the right to refuse access to your personal data in the following cases: when the realization of your right adversely affects the rights or freedoms of others, including trade secrets or intellectual property, and in particular copyright on software protection. These considerations, however, do not constitute grounds for refusing to provide all the information to the data subject but only – the possibility for the information provided to be limited.
12. Please note that your rights described above may be limited in certain cases and are subject to the applicable data protection legislation; for example your right to object to the processing of your personal data may be limited if we prove that we have undisputed legal grounds for the processing of your personal data that takes precedence over your interests. You will need to confirm/verify your identity and provide us with additional details to help us respond to your request. No fee is due to meet your request, unless permitted by law, and in the case of a fee, it will be reasonable and proportionate to your request.
13. As a subject of personal data, you have the right of appeal against the processing of your personal data or the non-compliance with your rights in relation to the protection of your personal data to competent supervisory authority. Personal Data Protection Commission, address: Sofia 1592, “Prof. Tzvetan Lazarov “№ 2 (www.cpdp.bg).
14. When a risk of violating the security of your personal information exists, the administrator is required to notify you about the nature of the violation and what steps have been taken to resolve it, and whether the supervisory authority has been notified about the violation.
15. In case your personal rights have been violated, you have the right for protection by judicial or administrative procedure.
16. All of the above listed requests will be forwarded if there is a third party (recipients, including outside the EU and international organizations) in the processing of your personal data.
V. How and when do we share information:
17. Only a restricted number of employees of Dedrax JSC have access to your personal data. These employees have the obligation to keep this personal data confidential. Technical and organizational measures for the protection of personal data have also been taken. Personal data may be provided to government and / or law enforcement authorities if required by applicable legislation or if necessary to exercise our rights, incl. rights under General Terms or to protect our legitimate interests (including legitimate interests of third parties) in accordance with the applicable legislation.
18. Your personal data may also be disclosed to third parties, such as:
18.1. Suppliers delivering administrative, professional or technical services to provide information technology (IT), security and maintenance of business resources;
18.2. Business partners, suppliers and sub-contractors we use in order to perform our obligations in relation to a signed contract with you;
18.3. Analytical services providers and search engines that help us improve and optimize our website.
18.4. Prosecutors, police, judicial institutions or other public authorities, on the basis of and within the framework of the legal provisions and as a result of an explicit request from them.
18.5. Our wholly-owned subsidiaries, branches, divisions. In the event that we decide to perform a conversion, proceed to a termination and a liquidation, bankruptcy, reorganization or similar activity or any procedure involving the transfer of the information described in this Policy, we will share your information with a party involved in such a processes (for example, potential buyer, successor).
VI. How long do we store your information:
19. We store your information only as long as we need it to provide you with services through our website and to fulfill the objectives described in this policy. This is also the case for any third party with whom we share your information and who performs services on our behalf. When we no longer need to use your information and we do not need to maintain it in accordance with our legal or regulatory obligations we will either remove it from our systems or depersonalize it so that we can no longer identify you.
20. When processing your personal data by consent, such personal data will only be processed for the period of time for which your consent was given unless you have withdrawn or restricted your consent before the expiration of this period. In such cases, we will cease the processing of the concerned personal data for the relevant purposes, subject to the legal obligations regarding the processing of personal data and / or obligations arising from the need to process such personal data in order to fulfill our legitimate rights (including those of third parties).
VII. Our policy on child information:
21. We do not consciously collect personal data on our website from people under the age of 16. If a parent or legal representative knows his child has provided us with personal information, he / she must immediately inform us. If we find out that a person under the age of 16 has provided us with personal data, we will destroy this information from our servers immediately unless explicit consent is given by the parent or guardian to process the child’s personal data for certain purposes.
VIII. Contact information
If you have questions or uncertainties about the processing of your personal information or wish to exercise any of your rights, you can contact our Data Protection Officer at gdpr@dedrax.com or write to us at: Sofia, Bulgaria 1 Square, National Palace of Culture, level -2.
Please do not disclose any sensitive personal information when you contact us (example: information related to racial or ethnic origin, political opinions, religion or other beliefs, health or membership of trade unions, criminal information, etc.).
Last updated: May 21, 2018
We may update this Privacy Policy from time to time in which case we will notify you by publishing the new policies on our website. If you have provided us with your contact details and have given us the right to contact you, we may notify you in case of a substantial change.
POLICY FOR THE USE OF “COOKIES”
“Cookies” are small text files that the website stores on your device, we use them to provide you with a better, personalized internet service.
“Cookies” allow a safer and quicker use of our website by remembering your preferences (such as your login and language) by sending the information you store back to the initial website the (first-party cookie) or to another website, who has set them up (third-party cookie).
Our website uses analytical cookies which allow us to monitor how visitors use our website. This helps us improve the performance of our website.
Changing your settings
You have the right to withdraw your consent to the use of cookies at any time, please see the conditions below to do so.
If you wish to delete “cookies” stored on your device and set up your browser to refuse “cookies”, you can do so from your browser’s preferences settings. Usually the settings associated with “cookies“are located in the following menus: “Options”, “Tools” or “Preferences” of the browser you use to access the Internet. Depending on the browser, “cookies” can be disabled differently, but you can visit your browser’s website for more information. However, if your browser does not accept “cookies” from this website, you may not be able to access all the websites features.