Privacy Policy of Trusti.bg



We at Trusti.bg thank you for your interest in our services and for your trust in us. Aware of how important information security is in modern society and in order to justify your trust, we take the necessary measures to meet all applicable data protection requirements.
By this Privacy Policy (the Policy) , we inform you about the way we process and protect your personal data in the context of providing our services as an insurance broker, in the framework of the communication we make with you, as well as when you use our website http://www.trusti.bg/ (the Website) and the information resources and services available on it. Please read this Policy carefully to understand how we collect, store and otherwise process your personal data within this relationship and what your rights are in relation to this processing.
This Policy does not apply to the processing of personal data carried out by various third parties to whose websites/platforms/applications etc. you have been redirected from the Website. Such third parties should have their own privacy policies available on their websites/platforms/applications, etc., which policies we recommend that you familiarize yourself with before using the relevant service/resource.

  1. Who are we?

    We are 'TRUSTY.BG' Ltd - a company with registered office and registered address in. Our registered office and our registered company with registered office at 1360, Vrubnitsa str. '23, app. 13 and address for correspondence in the city of Sofia. 14, Stara Zagora Blvd. '112, floor 2, office 2, UIC 206137538, e-mail address (email) [email protected] (Trusti.bg/ we). Trusti.bg is an insurance broker registered in the Register of Insurance Brokers maintained by the Financial Supervision Commission (FSC), according to Certificate No. 20210203131045.
    As a personal data controller within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (the GDPR), Trusti.bg processes your personal data in accordance with applicable law and the rules and principles set out in this Policy.

  2. Persons whose data we process (data subjects)

    In connection with the provision of our services as an insurance broker (the Services) to natural and legal persons who have entered into an insurance brokerage contract with us and who enter into an insurance contract with an insurer of their choice (Clients), and in connection with the management and maintenance of our Website and the communication with anyone who comes into contact with us, we may process information about the following categories of natural persons (Data Subjects/You):
    1. Clients - natural persons who are parties to an insurance mediation contract and/or an insurance contract, as well as natural persons whose property and/or non-property assets are subject to insurance protection under an insurance contract concluded by a Client;
    2. Natural persons - legal/contractual representatives and contact persons of Clients - legal entities;
    3. Individuals - legal/contractual representatives and contact persons of our business partners, including insurers;
    4. Visitors to the Website and users of the information resources available on the Website (Users), including persons who have registered a profile on the Website (Account), as well as persons who have any interaction with our corporate profiles on various social networks;
    5. Persons making inquiries, requests, signals, complaints to us or otherwise communicating with us, as well as third parties whose information is contained in inquiries, requests, signals, complaints or other correspondence to us;
    6. Individuals who have subscribed to receive certain communications sent by us (marketing messages, newsletters, etc. below).

  3. Categories of personal data we process

    1. Data relating to the provision of the Services

      2. In order to be able to provide our Services to our Clients, we enter into an insurance agency agreement with each of them, pursuant to which the Client instructs and authorises us to enter into an insurance contract with an insurer of his choice on his behalf and for his account in accordance with the Client's application for an insurance contract (Order) submitted through the Website. In connection with the processing of Orders and with the conclusion and performance of insurance agency contracts and insurance contracts, we may, depending on the particular case, process some or all of the following categories of personal data relating to Data Subjects under II, (1) and (2):
      • ID: names; personal identification number; details of and from identity document; VAT number (for natural persons - registered under the VAT Act); BULSTAT number (for self-employed persons); any other information necessary to identify the Data Subject;
      • Contact details: telephone number; e-mail address (e-mail address); postal address; other contact details;
      • Additional information for sole traders: company, UIC, registered office and registered address;
      • Additional information for natural persons - representatives and contact persons of Clients - legal entities: information about the represented Client - name and identification data of the legal entity; information about the representative authority - type of legal/contractual representative, proxy, employee, partner in an unincorporated company; position/position;
      • Information pertaining to a motor vehicle (MV), including registration certificate number; category and make of the MV; registration number and frame number of the MV; type of registration - permanent, temporary, transit; period of validity of registration; colour of the MV; and any other information relating to the vehicle which we may obtain from Customers/ insured persons, from insurers or from registers or information systems of competent government authorities or insurers within the scope of our statutory rights and obligations as an insurance broker.
      • Contractual and financial information, including but not limited to:
        • Contract and contract number and date; subject matter of contract; information on and dates of contract modification and termination; term of contract;
        • Where applicable, information on the origination, nature and amount of obligations (including interest); information on payments due and made (amount, reason, date of payment, etc., etc.), including deferred payments and instalments due; information and history on amounts erroneously transferred;
        • Bank account information; if applicable, information on the origin of the funds.
      • Information about the insurance product:
        • Information on the risks covered and on the beginning and end of the insurance period and the period of insurance cover; sum insured or the manner of determining it; amount of the insurance premium or the manner of determining it and the time and manner of paying it; details of receipts for sums paid in respect of insurance premiums or instalments thereon;
        • If applicable, information relating to questions posed to the Customer and answers provided by the Customer in connection with the identification of insurance products appropriate to the Customer's needs and requirements and information contained in analyses, recommendations and advice provided to the Customer relating to such products;
        • Information contained in or relating to the written proposal or request to the insurer to enter into a contract of insurance or, if applicable, in the insured's and/or the insurer's written answers to questions asked about circumstances relevant to the nature and extent of the risk;
        • Information on bonuses on the price of insurance products and/or on other preferential conditions and/or services;
        • Information on the expiry date of current insurance;
        • In connection with the conclusion of compulsory motor third party liability insurance, a copy of Part One of the registration certificate of the motor vehicle in respect of which the insurance is concluded;
        • Details of the preferred method of obtaining insurance documents, including contracts, policies, stickers, certificates, etc., etc.
      • Other information and documents:
        • Where applicable, information and data contained in records of pre-contractual information, and of statements made by telephone, other means of distance voice communication, video link, or electronic mail as required by the Distance Financial Services Act (DFSA);
        • Reference number/unique identifier of an Order placed;
        • Information relating to handwritten and e-signatures;
        • Any other information and documentation which the Customer, its affiliates, insurers or competent government authorities provide to us or which is generated/obtained by us from the records and information systems of competent government authorities and insurers respectively in the course of providing the Services, including any information contained in insurance documents, including insurance contracts, premiums, certificates, stickers, declarations etc. relating to our provision of the Services;
        • If applicable, information relating to assistance provided by us in the event of an insured event.

    2. Data relating to correspondence or other interactions you have with us

      3. When you make enquiries, requests or other communications with us, and when you interact in any way with our corporate profile or various social media pages, we may process the following types of personal data relating to you:
      1. Data related to communication with us by e-mail (email), telephone, our contact address, etc. under.
        2. When you have any communication with us, we may process the following types of data relating to you (depending on what data you have provided to us as part of the relevant communication): names; telephone number; e-mail address (email address); postal address, city; occupation; organisation you represent/of which you are an employee; information about insurance products as well as about the insured person; information about a motor vehicle (motor vehicle); unstructured information contained in your message/inquiry.
      2. Data related to any interaction you have with our corporate profile or page on various social networks
        3. In order to promote our business and the services we provide, we may maintain corporate profiles/pages on various social networks (such as Facebook, Instagram, LinkedIn, Google+, etc., etc.). When you interact with such social networks (e.g., when using your profile on a particular social network to register on the Website, and when liking, sharing or otherwise interacting with content we post - depending on the functionality of the relevant social network), we may receive information about you in accordance with your privacy settings on the relevant social network, such as: names; username; information from your profile on the relevant social network (e.g., photo, gender, age or age The entities that maintain the relevant social networks have different rules and procedures for protecting your personal data, including the collection of information through tools such as cookies, so we recommend that you carefully read their rules and policies.
      3. Data related to receiving marketing messages, newsletters, etc. sent by us
        4. When you subscribe to receive any type of communication sent by us (e.g. marketing communications, newsletters, etc., etc.), we will process the data you provide to us in connection with that subscription. Such data could be: names; e-mail address (email address); your preferences in relation to the frequency of receipt of the relevant communication and its content (if applicable), etc. etc. The specific types of data we need in connection with sending such communications to you will always be clearly indicated on the relevant form through which you subscribe.

    3. Data relating to the use of the Website

      4. When you use the Website and the information resources and services available on the Website, including when you register your Account, we may process the following types of personal data relating to you:
      1. Data related to communication with us by e-mail (email), telephone, our contact address, etc. under.
        2. When you have any communication with us, we may process the following types of data relating to you (depending on what data you have provided to us as part of the relevant communication): names; telephone number; e-mail address (email address); postal address, city; occupation; organisation you represent/of which you are an employee; information about insurance products as well as about the insured person; information about a motor vehicle (motor vehicle); unstructured information contained in your message/inquiry.
      2. Data related to any interaction you have with our corporate profile or page on various social networks
        3. In order to promote our business and the services we provide, we may maintain corporate profiles/pages on various social networks (such as Facebook, Instagram, LinkedIn, Google+, etc., etc.). When you interact with such social networks (e.g., when using your profile on a particular social network to register on the Website, and when liking, sharing or otherwise interacting with content we post - depending on the functionality of the relevant social network), we may receive information about you in accordance with your privacy settings on the relevant social network, such as: names; username; information from your profile on the relevant social network (e.g., photo, gender, age or age The entities that maintain the relevant social networks have different rules and procedures for protecting your personal data, including the collection of information through tools such as cookies, so we recommend that you carefully read their rules and policies.

    4. Data related to the relationships we maintain with insurers and our trading partners
      5. Within the framework of the relationships we maintain with insurers and with our business partners, we might, depending on the specific case, process some or all of the following categories of personal data relating to representatives or contact persons of insurers or our business partners (Data Subjects under par. II, (3) of this Policy): identification data (names; data from identity document; company, UIC, registered office and management address - for sole traders); contact data (telephone number; e-mail address (email address); postal address; other contact details); representative authority information (information about the represented insurer/other legal entity - name and identification data; type of representation; position/position, etc. sub.); contractual and financial information (including but not limited to: contract number and date of contract; contents of contract; information on amendment and termination of contract; invoice numbers and contents; information on incurrence, nature and amount of fees and liabilities (incl. unstructured information contained in initial and subsequent correspondence/communication with us; other information and documentation created or received in the course of our business relationships with insurers and our business partners.

    5. Cookies and similar technologies
      6. In connection with operating and maintaining the Website, we use cookies and similar technologies, e.g. web beacons/ web bugs/ pixel tags/ clear GIF technologies, to ensure its reliable and efficient operation. You can find out more about the different types of cookies we use and your options for controlling cookies from our Trusty.bg Cookie Policy (Cookie Policy), published on the Website [here] and accessible from the footer menu of each of its webpages. The Cookie Policy forms an integral part of this Policy unless otherwise expressly stated.

  4. Source of personal data

    1. Personal data provided to us by you
      2. When we request the provision of personal data directly from you, we ask that you provide us with all categories of personal data that we have requested, as we may otherwise be unable to comply with our legal obligations, provide you with our Services, protect your rights and legitimate interests, respond to your enquiry, etc. If you provide us with information about persons other than yourself, you should take the necessary steps in accordance with the rules and principles set out in our Terms and Conditions to ensure that third parties understand how the information relating to them will be used and that they are properly informed of the possibility that you may disclose such information to us for use in connection with the Services we provide and the way in which we process personal data.

    2. Data from other sources
      3. In connection with the provision of our Services and entirely within the scope of our competence and our rights and obligations as an insurance broker, we may process personal data that is not directly provided to us by you (e.g. data from public registers, including the commercial register and the register of non-profit entities, or information systems of competent government authorities). You should refer to the privacy policies of the respective providers of such services for the manner in which such third parties process your data.

  5. Voluntary/mandatory nature of the provision of personal data

    In cases where we ask you to provide us with your personal data, we clearly indicate the mandatory or voluntary nature of the provision of personal data relating to you. The provision of your data is entirely at your discretion, but your refusal to provide data that is marked as mandatory to provide may result, as the case may be, in our inability to provide you with the requested service, to communicate with you, to process and respond to your inquiry, etc. below.

  6. Purposes and legal grounds for processing personal data

    Trusti.bg collects, stores and processes the information described in section III above for the purposes set out in this Policy and our Terms and Conditions, available [here]. Depending on the legal basis for the processing, these purposes may be:
    • Purposes necessary for the fulfilment of legal obligations of Trusti.bg;
    • Purposes related to steps you have taken before entering into a contract with us, and purposes necessary for the performance of a contract you enter into with us;
    • Purposes related to the legitimate interests of Trusti.bg or third parties;
    • Purposes for which you have given your consent.

    1. The purposes for the processing of personal data by Trusti.bg related to the performance of legal obligations include:
      • Compliance with the requirements and obligations applicable to the activities of insurance brokers and the insurance intermediation services provided by them, including the requirements of the Insurance Code, the Distance Financial Services Act, the Anti-Money Laundering Measures Act, the Accounting Act, etc., as well as subordinate legislation;
      • Activities relating to the accounting and reporting of payments received in accordance with the legislation in force (tax, accounting, etc. subordinate);
      • Where applicable, carrying out activities to comply with legal obligations relating to the provision of information to the competent governmental and judicial authorities and to assist in inspections by the competent authorities;
      • Handling enquiries, requests, including for the exercise of rights, and the like which are addressed to us, including the preparation of responses thereto;
      • Where applicable, documenting electronic statements directed to Trusti.bg and relating to the performance of our legal obligations, such as e.g. acceptance of the Terms and Conditions, acknowledgement of knowledge of privacy policies, cookie policies, etc. etc.
      For the purposes listed above, we may process some or all of the personal data set out in Section III of this Policy.

    2. The purposes relating to steps taken by you prior to entering into an insurance mediation contract with us and the purposes necessary for the performance of such a contract with us include:
      • Establishing relationships with new Clients - individuals, including handling enquiries about the provision of the Services etc. sub.
      • Concluding and executing insurance agency contracts with Clients - individuals, and communicating with such Clients regarding the conclusion, execution, amendment and termination of the contracts, as well as in relation to the Services provided by us;
      • Provision of the Services, including but not limited to:
        • To carry out an analysis of the insurance risks as well as the insurance coverage proposals;
        • If applicable, the provision of advisory services on behalf of and on behalf of Clients who are individuals;
        • Negotiating the terms and/or concluding the insurance contract;
        • Monitoring the renewal terms of insurance contracts and sending notifications in this respect;
        • Pproviding/sending insurance documents to Individual Customers;
        • If applicable, providing assistance to Individual Customers in settling claims in the event of an insured event
      • Processing of submitted Orders and conclusion of insurance contracts for insurance products selected by the Clients on the terms and conditions selected by the Clients;
      • Where applicable, providing information about our similar products and services within our established relationship, sending invitations for feedback and participating in surveys related to the Services provided.
        • For the purposes listed above, we may process some or all of the personal data set out in paragraphs III, 1, 2(a) and 3 of this Policy.

    3. The purposes for processing personal data related to the legitimate interest of Trusti.bg in providing the Services to Clients - legal entities include:
      • To carry out the activities referred to in item VI, 2 above where the Customer to whom we provide our Services is a legal entity.
      For these purposes we may process some or all of the personal data set out in clauses III, 1, 2(a) and 3 of this Policy.

    4. Personal data processing purposes related to Trusti.bg's legitimate interest in establishing and maintaining partnerships with our business partners, including insurers, include:
      • Establishing relationships with commercial partners, including insurers, and responding to enquiries, offers, invitations, etc. in connection with establishing and maintaining such relationships;
      • Entering into, amending and terminating (if applicable) contracts entered into with our business partners, including insurers;
      • Implementation of the activities - subject of contracts concluded with our business partners and with insurers;
      • Receiving and making payments due; receiving remuneration paid by insurers.
      • Making initial and subsequent communications in connection with the performance of such contracts.
      For the purposes listed above, we may process some or all of the personal data set out in section III, 4 of this Policy.

    5. Personal data processing purposes related to Trusti.bg's legitimate interest in maintaining and improving the quality of the Services provided, as well as to ensure internal accountability, include:
      • Analyzing and improving our services and communications;
      • Ensuring compliance with our rules, policies and performance standards;
      • Personalise and improve the quality of the Services and the communications we have with you;
      • Maintain and update a database of potential, current and former Clients;
      For the purposes listed above, we may process some or all of the personal data set out in Section III of this Policy.

    6. Personal data processing purposes related to Trusti.bg's legitimate interest in maintaining and improving the quality of the information services and resources provided on the Website include:
      • Administration, management, performance analysis and quality control of the information services and resources available on the Website;
      • Ensuring the proper functioning and use of the Website and the services and resources available on the Website;
      • Performing maintenance and administration activities on the Website, including but not limited to preventing cyber-attacks and other malicious activities;
      • Collect information about and analyze your preferences in order to personalize and improve your experience on the Website.
      For the purposes listed above, we may process some or all of the personal data set out in paragraphs III, 3 and 5 of this Policy.

    7. Personal data processing purposes related to Trusti.bg's legitimate interest in communicating with you include:
      • To enable you to correspond/communicate with us through various channels;
      • Providing you with the opportunity to interact and communicate with us via our corporate profiles/social media pages;
      • Timely processing and responding to initial and follow-up correspondence;
      • Ensuring internal accountability, organizing the work and assigning correspondence to the respective responsible persons at Trusti.bg.
      For the purposes listed above, we may process some or all of the personal data set out in sections III, 2 and 3 of this Policy.
      For the purposes listed above, we may process some or all of the personal data set out in paragraphs III, 3 and 5 of this Policy.

    8. Personal data processing purposes related to the legitimate interest of Trusti.bg and/or of third parties in the exercise and protection of legitimate rights and interests include:
      • Exercise and protection of the legitimate rights and interests of Trusti.bg, including the establishment, exercise or defence of legal claims, including in court (e.g. by filing and defending against complaints, signals, etc. filed with the competent state and judicial authorities);
      • Providing assistance in exercising and defending the legal rights and interests of third parties (employees of Trusti.bg, insurers, visitors to the Website processing personal data on behalf of Trusti.bg, etc.), including in court;
      • Collection of receivables due to Trusti.bg, including by assignment to third parties; assignment of receivables (cession) due to Trusti.bg to third parties; issuing notarial invitations.
      • Carrying out activities of administration and servicing of correspondence containing complaints, signals, etc.;
      • Carrying out due diligence activities by competent persons, within the limits allowed by law;
      For the purposes listed above, we may process some or all of the personal data set out in paragraphs III, 1, 2, 3 and 4 of this Policy

    9. The purposes for processing personal data based on consent given to us by you include:
      10. Where we process your personal data on the basis of consent, the purposes for which we carry out that processing are explicitly stated in the relevant forms by which you provide us with your consent to the relevant processing (e.g. when subscribing to a newsletter/newsletter etc. etc.). We will only process personal data that you have provided to us in the relevant consent form, and only for the purposes stated in that form.You can withdraw your consent at any time by clicking on the relevant electronic reference (link) at the end of any of our communications or by emailing us at: [email protected].

  7. Purposes and legal grounds for processing personal data

    Trusti.bg collects, stores and processes the information described in section III above for the purposes set out in this Policy and our Terms and Conditions, available [here]. Depending on the legal basis for the processing, these purposes may be:
    • Insurers, to the extent necessary to provide the Services - our relationship with insurers is governed by appropriate written contracts, with obligations and responsibilities relating to the protection of personal data;
    • Our other commercial partners and service providers - controllers of personal data (e.g. banks and companies providing remote payment services, providers of transport and courier services, postal operators, Google when using the Google Sign-In service and Facebook when using the Facebook Login service, etc. etc.). When dealing with such persons, we require them to strictly comply with applicable data protection laws and regulations;
    • Our subcontractors - processors of personal data to whom we have outsourced certain activities and who act on our behalf in providing their services (such as e.g. technical support of the Website, colocation services of server and network equipment, etc., etc.). We only disclose the data we provide to our subcontractors to the extent necessary to carry out the assigned work, and our subcontractors are obliged by virtue of a contract entered into with us to process such data in strict compliance with our instructions and only for the purposes set out in the relevant document.
    • Competent state, municipal and judicial authorities, where this is necessary for the performance of our legal obligation or for the protection of the rights or legitimate interests of Trusti.bg or third parties, as well as persons whose assistance is necessary for the exercise and protection of these interests (e.g. private and public bailiffs, lawyers, notaries, auditors, accountants, expert witnesses, etc. under).
    • In other cases provided by law.

  8. Transfers of personal data outside the European Union (EU)/European Economic Area (EEA)

    We do not currently transfer your personal data to persons outside the EU/EEA

    In the event of a potential transfer of data to third parties, including our business partners and service providers, your personal data may be transferred to countries outside the EU/EEA that do not provide the same level of protection as that guaranteed by applicable European law. In these cases, the transfer of data will take place in accordance with applicable law on the basis of a decision of the European Commission (EC) on the adequate level of data protection in the third country or, in the absence of such a decision, on the basis of standard EU contractual clauses in accordance with the relevant decisions of the European Commission. You may obtain a copy of these standard contractual clauses by making a request to us using the contact details set out in section I.

  9. Storage periods for personal data

    We undertake to retain your personal data only for a period limited to what is strictly necessary to achieve the purposes of the processing.
    1. Storage of personal data to comply with legal obligations
      2. We retain personal data relating to and/or contained in documents/information carriers/information systems for which there are statutory retention periods for the periods provided for in applicable law, unless a longer retention period is provided for in this Policy.
    2. Storage of personal data related to Account registration
      3. This data could identify you as a party to the contract under the general terms of the Services
      We store this data for the entire period of maintaining the Profile and for a period of up to 5 (five) years after a request by you to de-register your Profile in the manner described in our Terms and Conditions (in order to resolve any disputes that may arise or become known after termination of the contract).
    3. Storage of personal data contained in correspondence with us
      4. We store the personal data contained in a communication addressed to us, including information on the processing, status and final result of this communication, as well as subsequent correspondence, for a period of up to 5 (five) years from the end of the respective correspondence/processing.
    4. Storage of server and system logs and logs of actions performed on the Website
      5. We store server and system logs for a period of one (1) year
      We store the logs for electronic statements made on the Website, such as acceptance of the Terms and Conditions and acknowledgement of knowledge of this Policy, etc., for a period of up to 5 (five) years from:
      • From the execution of the insurance mediation contract - when the Electronic Order within the meaning of clause 2.5 of the General Terms and Conditions is submitted without prior registration on the Profile; or
      • From the termination of the registration (de-registration) of a Profile; or
      • From the completion of certain communication/correspondence and its processing - when communicating with us via the contact form on the Website.
      The logos of actions carried out on the Website, such as e.g. giving consent to receive marketing communications, newsletters (newsletter), etc., sent by us, are stored for a period of up to 5 (five) years from the withdrawal of the respective consent.
    5. Retention of personal data in consent-based processing
      6. Where the processing of your personal data is based on consent which is not time-bound, we may continue to process your personal data for the purposes for which you have given us that consent until you withdraw it.
      You may withdraw your consent at any time by clicking on the electronic reference (link) at the end of any email message from us, or by contacting us at the contact details set out in paragraph I. For example, we will process your data relating to your expressed wish and consent to receive marketing and other communications from us until such time as you withdraw your consent to receive them in any of the ways described above.
      Where the consent you have given us to process your personal data is time-bound, we may only process the relevant personal data for the period for which you have given us that consent.
      Storage of Cookies
      Detailed information on the retention periods of the various cookies used on the Website can be found in our Cookie Policy, available on the Website [here].
      In the event of a legal dispute or proceeding requiring retention of data and/or a request by a competent government authority, it is possible to retain data for a period longer than the above-mentioned periods, until the final conclusion of the dispute or proceeding before all instances and for a period of up to five (5) after its final conclusion. These time limits may be modified in the event that a different retention requirement is established under applicable law.

  10. Your rights

    As a Data Subject within the meaning of the Regulation, you have the following rights, which you can exercise by making a written request to us at the contact details set out in Section I of this Policy:
    Right to Information (Article 13 and Article 14 GDPR)
    The purpose of this Policy is to inform you in detail about the processing of your personal data in connection with your use of our Services and our Website, as well as your communication with us.
    Right of access (Art. 15 GDPR)
    You have the right to obtain confirmation as to whether your personal data is processed by Trusti.bg when using the Website, to obtain access to that data, as well as information about the processing and your rights in relation to that processing. In your Account (if you have registered one), you have access to and the possibility of viewing the data related to your registration.
    Right of rectification (Article 16 GDPR)
    You have the right to request correction or completion of your personal data in case it is incomplete or inaccurate. In connection with this right, you may correct/amend your personal data using the functionalities of your Profile, in case you have registered one.
    Right to erasure (Article 17 GDPR)
    If the grounds/conditions provided for this are met, you have the right to request the erasure of your personal data.Please note that, insofar as we have statutory and contractual obligations, as well as a legitimate interest, to keep certain information for certain periods, we will erase your personal data in accordance with the time limits set out in this Policy.
    Right to restriction of processing of personal data (Art. 18 GDPR)
    Applicable law provides for the possibility to restrict the processing of your personal data if the grounds for doing so set out in the Regulation are present.
    Right to notify third parties (Art. 19 GDPR)
    Where applicable, you have the right to require us to notify third parties to whom your personal data has been disclosed of any rectification, erasure or restriction of processing of your personal data, unless this is impossible or requires a disproportionate effort on our part.
    Right to data portability (Article 20 GDPR)
    You have the right to receive the personal data relating to you that you have provided to us in a structured, commonly used and machine-readable format and to provide that data to another controller without hindrance from us. The right to data portability applies where the following two conditions are met simultaneously: the processing is based on consent or a contractual obligation; and the processing is carried out by automated means.
    Right not to be the subject of a decision based solely on automated processing, including profiling (Art. 22 GDPR)
    You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, unless the grounds for doing so are provided for in the applicable data protection legislation and appropriate safeguards are provided to protect your rights, freedoms and legitimate interests. For each specific case of automated processing, Data Subjects have the right to obtain meaningful information about the logic used, the significance and intended consequences of such processing for them, as well as about how to exercise their rights.
    Right to withdraw consent to processing (Art. 7, par. 3 GDPR)
    You have the right, at any time, to withdraw your consent to the processing of personal data where the processing of your data is based on your consent. Such withdrawal shall not affect the lawfulness of the processing on the basis of the consent given up to the time of withdrawal.
    Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
    The Data Protection Authority is the Data Protection Authority with its registered office at 1592 Sofia Blvd. '1595 Prof'. 2.
    Right to object
    You have the right to object at any time and on grounds relating to the particular situation to the processing of your data processed on the basis of a legitimate interest. If we consider that there are compelling legitimate grounds for the processing or that it is necessary for the establishment, exercise or defence of legal claims, we will inform you of this.