PRIVACY POLICY Of “INOUT TRADE” EOOD

Accepted on 25.05.2018, amended on 07.02.2022

 

PREAMBLE

INOUT TRADE EOOD, with UIC 202023672, with mailing address: Ruse Town, PC 7013, 106 Lipnik Blvd., hereinafter referred to as “the Company”, is an administrator of personal data regarding the data of its employees, clients and visitors of the Company’s Website and a processor of personal data regarding the data of its clients-individuals, and it is also responsible for compliance with the provisions of the General Regulation for Personal Data Protection 2016/679.

This Privacy Policy is intended to inform you what personal data the Company processes and for what purposes, to whom it is provided, what are your rights regarding your processed personal data and how you may exercise them. “INOUT TRADE” EOOD strives to provide you with accessible and useful information on its website.

 

PROCESSED PERSONAL DATA

 

For Clients, including Individuals:

  • name of the Company / names according to the identity document of the individual;
  • contact details (telephone, mailing address, email);
  • address;
  • email ( email address );
  • any other information containing personal data and necessary for making a contract and / or performing service, or collected in connection with the performance of a contract or service;

 

For Clients – Individuals of the Clients of the Company:

  • name;
  • delivery address;
  • contact phone number;
  • email ( email address );

 

Personal data of the visitors of the Company’s Website:

  • date and time of access to the Website;
  • IP address from which the connection is made;
  • server and system logs (for identifying technical problems and / or identifying malicious actions);
  • where applicable, logs for making legal statements (such as confirmation of familiarity with the Privacy Policy, newsletter subscription, etc.);
  • in case of sending an inquiry – names, organization it represents, telephone and contact email;

 

PURPOSES FOR PERSONAL DATA PROCESSING

The Company, as a Personal Data Administrator, performs the following operations and processes only the necessary personal data for the following purposes:

  • For making, implementing and terminating employment and civil contracts and calculating the salaries and compensations of the employees;
  • For making and implementing contracts with clients;
  • For protecting the legitimate interests of the Company;
  • For the purposes of direct marketing to clients;

 

The Company as a Personal Data Processor performs the following operations and processes only the necessary personal data for the following purposes:

  • for implementing contracts made with clients for integration of courier services;

 

COOKIES

In order to make your visits to the Company’s website as functional as possible, we use so-called cookies. Cookies are small text files that are stored on your hard disk.

 

Our website uses the following cookies to improve your user experience:

 

  • cookielawinfo-checkbox-non-necessary

Service cookie needed for advanced features. Expiration period: 2 years

  • _ga

Registers a unique identification number that is used to generate statistic data about the way the visitor uses the website. Expiration period: 2 years

  • pll_language

Used to specify the language in which the Website will be displayed. Expiration period: 1 year

  • viewed_cookie_policy

Used to retain your consent and to have warned you about the use of cookies on our site. Expiration period: 1 year

wp-settings-xxxxx, wp-settings-time-xxxxx

Used to customize your appearance for the admin interface, as well as for the main interface of the Website. Expiration period: 1 year

  • _fbp

Used by Facebook to deliver a series of advertising products for real-time bidding by advertisers. Expiration period: 3 months

You can always set your browser to turn off cookies, in which case the functionality of the site may be impaired.

In addition to the above, when using the Website, information is collected that may help to identify the individual, as follows:

– date and time of access to the Website;

– IP address from which the connection was made;

– server and system logs (for identifying technical problems and / or identifying malicious actions);

– where applicable, logs for making legal statements (such as confirmation of familiarity with the Privacy Policy, newsletter subscription, etc.).

 

Such described information may be disclosed by the Company to third parties only in cases where this is necessary for the purposes of fulfilling a legal obligation of the Company.

 

SOCIAL MEDIA

This website uses Google Analytics – a web analytics service offered by Google, as well as Facebook PixelAds offered by Facebook. These services use “cookies” to help us analyze how you, as our users, utilize our site, as well as to offer you the most relevant advertisements for your interests.

 

RECIPIENTS AND CATEGORIES OF RECIPIENTS

Related to the implementation of the objectives set out above, the Company provides personal data of individuals to the following recipients:

  • National Revenue Agency – related to: employment contracts made; income taxes due, social and health insurance; compensation due; inspections and audits;
  • National Social Insurance Institute – related to: social and health insurance; compensation due; inspections and audits;
  • Banks, according to a banking service contract with the Company – related to the payment of remuneration;
  • Occupational Medicine Service, according to a contract with the Company – related to the fulfillment of legal liabilities of the Company under the Health and Safety Working Conditions Act;
  • Insurers, according to a contract with the Company or its employees – related to health, rent or other insurance;
  • Providers of social services, under a contract with the Company – related to provided food vouchers or similar ones, according to CITA and LC for social costs provided in kind;
  • General Labor Inspectorate, NSSI and Ministry of Interior – related to occupational accidents;
  • Other state and municipal bodies and / or institutions – related to legal liabilities to them or to legal requests from them, for information containing personal data.
  • Subcontractors for fulfillment of contractual obligations;
  •  

    CONTACT INFORMATION ABOUT THE COMPANY

    If you have any questions or concerns about the processing of your personal data or you wish to exercise any of your rights, you can get in touch on:

     

     

    PRINCIPLES AT PERSONAL DATA PROCESSING

    Compliance with the provisions of the Regulation
    The policy of the Company is to ensure compliance with the provisions of the Regulation.

     
    Personal data is collected and processed lawfully and conscientiously
    The Company collects and processes personal data lawfully, conscientiously and in accordance with the principles and rights of individuals, related to the processing of their personal data.

     
    Personal data is processed transparently
    The company provides transparency in communication regarding the collected and processed personal data and the information about it is in a short, transparent, understandable and easily accessible form, and clear and unambiguous wording is used.

     
    Personal data is collected and processed only for certain purposes
    The Company processes personal data of individuals only in the following cases:

    1. The processing is necessary for compliance with a legal liability of the Company;
    2. The processing is necessary for implementing a contract (including an order) with the Company to which the individual is a party, or for taking actions at the request of an individual before making a contract, when its identification is required;
    3. An individual has given his / her unambiguous consent for an understandable and transparently defined purpose on behalf of the Company, for which the processing of his / her personal data is required;
    4. The processing is necessary in order to protect the vital interests of the individual, whose personal data or another individual’s data is processed;
    5. The processing is necessary for the purposes of the legitimate interests of the Company or of a third party, in accordance with the provisions of the Regulation;
    6. The other cases laid down in the Regulation;

     
    Personal data unnecessary for the activity is not collected and processed
    The Company does not collect or process personal data of individuals that exceed its legal liabilities or its business needs.

     
    Collected personal data is processed for other purposes only with the consent of the individuals
    In all cases where it is necessary to collect and process personal data of individuals for purposes other than the original ones, the Company notifies the relevant individuals, seeks their consent and proceeds to process their personal data for other purposes only after their explicit consent.

     
    The minimum necessary personal data is collected for processing
    The Company collects and processes only the minimum necessary personal data of individuals, that:

    1. are provided by law;
    2. are necessary for the implementation of a contract;
    3. are necessary for the fulfillment of the purposes for which it is collected;

     
    The processed personal data is accurate and up-to-date
    The Company ensures that the processing of personal data of individuals is done with maximum accuracy and, if possible, always up-to-date.

     
    The personal data is processed by the minimum required number of people
    The Company ensures that the access and processing of personal data of individuals is performed by the minimum necessary number of people (operators) who have the necessary competence for its processing and the necessary commitment to its protection.

     
    Personal data is stored for the minimum necessary time
    The Company stores personal data for the minimum necessary time:

    1. required by law;
    2. required in order to implement a contract (including an order) and the responsibility under it;
    3. required to fulfill the purpose for which the data has been collected and processed, or
    4. at the request of the individual for its deletion,

    after which it is destroyed without undue delay.

     
    In all cases, the Company ensures that at least once a year a review of the collected and processed personal data is made and that fallen into any of the above hypotheses, is deleted without undue delay.

     

    RULES FOR PROCESSING PERSONAL DATA

     
    The personal data is processed with the necessary levels and measures of protection
    The Company provides the necessary levels of physical, organizational and technological protection with regard to:

    1. the nature, scope, context and purpose of the processed personal data;
    2. the probability, the levels of impact and the severity of the risk for the rights and freedom of the individuals, in case of violation of the security of the processed personal data;
    3. its financial and organizational capabilities;

    The Company also provides all necessary measures for timely recovery of collected and processed personal data in case of loss as a result of accidental, malicious or force majeure events.

     
    The personal data is processed with controlled and traceable access
    The Company provides the necessary and appropriate technical, organizational and technological measures for controlled and traceable access to the personal data of individuals.

     
    The personal data is processed with the necessary reporting for compliance with the Regulation 
    The Company provides the necessary reporting and registers, in order to prove that the provisions of the Regulation have been complied with.

     
    Observing the rights of individuals whose personal data is processed
    The Company ensures compliance with the rights of individuals whose personal data is collected and processed, which includes:

    1. right to be informed about personal data processing;
    2. right of access to personal data – what data is available;
    3. right to correct inaccurate personal data;
    4. right to delete personal data – the right to be “forgotten”;
    5. right to limit the processed personal data;
    6. the right to be informed about actions as a result of a request for correction, deletion or restriction of the personal data processing;
    7. right to data portability;
    8. right of objection against the personal data processing;
    9. right not to be subject to automatic decision-making, including profiling;

     

    COMPETENT SUPERVISORY BODY

     
    The Commission for Personal Data Protection (CPDP) is the independent state body that protects individuals in their personal data processing and in accessing such data, as well as control over compliance with the Personal Data Protection Act in the Republic of Bulgaria.
    In case of suspicion that your rights related to your personal data protection, have been violated, you can report to the CPDP on the following:

    • Address: Sofia 1592, 2 “Prof. Tsvetan Lazarov ” Blvd.
    • E-mail: kzld@cpdp.bg
    • Website: www.cpdp.bg.
    • Phone: 02 / 91-53-518

We deliver your online business

Send inquiry
Have a question?