Privacy Policy

 

I. INTRODUCTION

Welcome to https://www.opsystems.bg (the „Website“ or the „Website“), which has been developed for the benefit of and on behalf of OP SYSTEMS Ltd, UIC: 204112283, with registered office and registered address: Sofia, g.k. „SYSTEMS“, registered office and address: Sofia, Mladost 3, blvd. 384, inc. 2, app. 1, contact telephone: 02/4442626.

BY USING THIS WEBSITE YOU AGREE TO THE TERMS AND CONDITIONS REGARDING THE COLLECTION, USE AND DISCLOSURE OF YOUR PERSONAL INFORMATION IN ACCORDANCE WITH THIS PRIVACY POLICY.

PLEASE READ THIS PRIVACY POLICY CAREFULLY BEFORE USING THIS WEBSITE AND IF YOU HAVE ANY QUESTIONS ABOUT THIS PRIVACY POLICY, PLEASE CONTACT US AT 02/4442626 OR TO office@opsystems.bg. IF YOU DO NOT AGREE TO ANY OF THE TERMS CONTAINED IN THIS PRIVACY POLICY, YOU SHOULD NOT USE THIS WEBSITE.

PERSONAL DATA CONTROLLER

„OP SYSTEMS“ Ltd (hereinafter referred to as „Administrator“) is a limited liability company, UIC: 204112283, with registered office and registered address. Registered office and registered address: Sofia, Mladost 3, bl. 384, entry. 2, app. 1, telephone: 02/4442626, website: https://www.opsystems.bg.

SUPERVISORY AUTHORITY

Data Protection Commission
Address. Address. 1592, Sofia Blvd. „1592, Proff. 2, 1592, 1592, 1592, 1592, 2, 1592, 1592, 2, 1592, 1592, 2.
Contact details: 02/915 35 18; 02/915 35 15; 02/915 35 19; kzld@cpdp.bg, www.cpdp.bg

II. OBJECTIVES AND SCOPE OF THE PRIVACY POLICY

1.1 The controller understands the considerations of visitors... and applies all data protection standards under Regulation (EU) 2016/679...

1.2 With this Policy... the Controller provides information on: purposes and scope; personal data; purposes of processing; time limits; mandatory/voluntary nature; processing; protection; recipients; rights; exercise procedure; right to object; buttons/tools of other companies; changes.

III. DEFINITIONS

2.1 Within the meaning of Regulation (EU) 2016/679...

  • Personal data - any information...
  • Processing - every operation...
  • Restriction of processing...
  • Profiling...
  • Administrator...
  • Processor of personal data...
  • Recipient...
  • Third country...
  • Consent...
  • Security breach...

IV. PRINCIPLES FOR THE PROCESSING OF PERSONAL DATA

  • Legality, fairness and transparency;
  • Collection for specific and legitimate purposes;
  • Data minimization;
  • Accuracy and timeliness;
  • Storage limitation;
  • Integrity and confidentiality.

V. PERSONAL DATA COLLECTED AND PROCESSED

А. Special categories („sensitive data“)

4.1 The controller does not collect or process special categories of personal data... If provided intentionally - they are deleted immediately.

Б. Data collected directly - by telephone

5.1 Name and telephone (sometimes e-mail) are collected for communication and pre-contractual actions...

Data via the contact form

5.2 Name, e-mail and information from the message using the form: https://www.opsystems.bg/contact...

Data by e-mail

5.3 E-mail address and data contained in the letter...

Data via Facebook

5.4 Messages via Facebook... US server storage; applicable Article 46 GDPR safeguards; policy: facebook.com/policy.php.

Data via Instagram

5.5 Messages via Instagram... politics: help.instagram.com/519522125107875.

Data via Linkedin

5.6 Messages via Linkedin... politics: linkedin.com/legal/privacy-policy.

В. Data from third parties

6.1 Exceptionally - from public registers (Trade Register, Patent Office, etc.) to protect rights and legitimate interests.

Г. Data collected automatically

7.1 IP address, device, OS, browser, pages visited, frequency/duration and date/time.

VI. BISCUITS

8.1 Details in the Cookie Policy: https://www.opsystems.bg/cookies/

VII. PURPOSES OF PROCESSING

9.1 Data provided directly - for the provision of services and sales; identification; contact; performance of contract and legal obligations; accounting and statistical purposes.

9.2 Automatically collected data - for improving functionality and anonymous statistics.

9.3 The data shall not be used for other incompatible purposes.

VIII. STORAGE PERIOD

10.1 Correspondence via e-mail/Facebook/Instagram/Linkedin - until the request is answered and granted + 1 year.

10.2 Customer data (goods/services) - 10 years (accounting requirements).

10.3 Other cases - according to criteria: legal obligations; purpose and legal basis; contractual relationship; future contact, etc.

IX. MANDATORY AND VOLUNTARY NATURE

11.1 Provision is voluntary but necessary for contact and provision of services; in the event of refusal, the request may not be processed.

X. PROCESSING OF PERSONAL DATA

12.1 Processing by automatic/non-automatic means.

12.2 Processing by the Controller or by a processor - an accountant in the RB.

XI. DATA PROTECTION

13.1 Technical and organisational measures: secure servers/folders; identity verification on access, etc.

13.2 For details: office@opsystems.bg or 02/4442626.

XII. BENEFICIARIES

14.1 Data may be disclosed: to the subject; to public authorities as required by law; to processors (e.g. an accountant) with a duty of confidentiality and appropriate measures.

14.2 Data is not sold to third parties.

XIII. RIGHTS OF NATURAL PERSONS

  • Right of access (15.1)
  • Right of rectification (15.2)
  • Right to erasure („being forgotten“) (15.3)
  • Right to restriction (15.4)
  • Right to portability (15.5)
  • Right to object (15.6)
  • Profiling rights (15.7)
  • Notification in case of breach (15.8)
  • Complaint to a supervisory authority (15.9)
  • Effective judicial protection against a supervisor/administrator (15.10-15.11)
  • Right to compensation (15.12)

XIV. PROCEDURE FOR THE EXERCISE OF RIGHTS

16.1 Written request to the Administrator (by post or e-mail) with: name/address/identifying details; description of the request; signature/date/email.

16.2 The request shall be made in person and recorded in a register.

16.3 Verification of identity; if necessary, request for a document.

16.4-16.6 Response time: up to 2 months (possible extension of 1 month); notification in case of no action.

16.7 Notification of recipients upon correction/deletion/restriction unless impossible or disproportionate.

XV. RIGHT TO OBJECT

17.1-17.2 Objection on grounds relating to a particular situation - against processing on grounds of public interest/official authority/legitimate interest; in the event of an objection, termination, except on compelling legitimate grounds.

17.3 In the case of direct marketing - the right to object at any time; after objection, processing for these purposes shall cease.

XVI. LINKS, TOOLS AND CONTENT FROM OTHER COMPANIES

18.1 Facebook, Linkedin, Instagram, etc.-these sites are independent; it is recommended to read their policies.

XVII. CHANGES TO THE PRIVACY POLICY

19.1 The Policy may be updated; publication with a new „Last Modified“ date; use after changes implies consent.

XVIII. CONTACT

20.1 Questions: office@opsystems.bg or 02/4442626.