I. Initial information.
II. Administrator of personal data.
Our full data is Intellysi [LIMITED RESPONSIBILITY COMPANY] with its registered office in Bulgaria, str. Shesti Yanuari 30B, 4230 Asenovgrad, entered in the Registry Agency, under number 205210875, using the Tax ID number: BG205210875 Contact details: [email protected]
IV. Collection of personal data.
Intellysi [Ltd.] collects data for designated, legitimate purposes, processes it in accordance with the law and does not subject further processing incompatible with these purposes. Data is collected only in an adequate, necessary and necessary range in relation to the purposes for which they are processed. Intellysi [Ltd.] it does not process specific categories of data. Intellysi [Ltd.] makes all possible efforts to protect data against unauthorized access by third parties and in this respect apply organizational and technical security measures at a high level, which will be described further in this Policy. Intellysi [Ltd.] makes the data available to any unauthorized persons in accordance with the applicable legal provisions in this regard.
V. Purposes of personal data processing.
Your data will be processed in order to provide services and sales of products by Intellysi, in particular, to place orders and to conclude a sales agreement in the online store located on our website. With your consent, the data can be processed for marketing purposes, including profiling and analytical purposes. Also, your data can also be processed to match the content of websites to your interests, as well as the detection of bots and fraud, statistical measurement and improvement of services for Intellysi.
VI. Basics of personal data processing.
In the case of processing personal data in connection with the use of the Website by the users, we may have different types of legal grounds for the processing, depending on the category of personal data that we process and the purpose of processing. We process data, among others:
We request that information about specific categories of personal data (such as information on race or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, physical or mental health information, data) not be provided via websites and e-mails, genetic, biometric data, information about sexual life or sexual orientation and the criminal past. If you provide such information for any reason, it will be your express consent to collect and use such information as set out herein or as specified in the place where the information was disclosed.
At the same time, we would like to inform you that the “Consent” on the background of the GDP is a voluntary, concrete, conscious and unambiguous representation of the will, which the data subject, in the form of a statement or explicit confirmation action, allows for the processing of personal data concerning him. The GDPR uses the concept of “show of will”, such a determination is of key importance, especially in the context of recital 32 of the preamble of GDPR, where it is indicated that consent may consist in: (1) selecting a selection window while browsing the website, (2) selecting technical settings for the use of information society services, and (3) another statement or behavior that clearly indicates in the context that the data subject has accepted the proposed processing of his personal data. Thus, when you voluntarily provide us with your personal information, for example, in the form of an inquiry sent via e-mail, we obtain your consent to the processing of personal data provided to us.
VII. Period for which your personal data will be processed.
The period during which we process personal data depends on the legal basis that constitutes a legal condition for the processing of personal data. We never process personal data more than a longer period than the above-mentioned legal grounds and the purpose for which they were collected. Accordingly, we inform you that:
a. in the case of data processing on the basis of consent, the processing period continues until the user withdraws the consent;
b. in the case when Intellysi [Ltd.] processes personal data based on the legitimate interest of the data controller, the processing period lasts until the cessation of the abovementioned interest (for example, the period of limitation of civil claims) or the moment of opposition of the data subject, further such processing – in situations where such objection in accordance with the provisions of the law;
c. in the case of collecting your personal data for the purpose of performing the contract, we process such personal data for a period necessary to perform and, in justified cases, after its implementation, but only if it is allowed or required in the light of applicable law, eg processing for statistical purposes, billing or to pursue claims. In this case, the data will be processed only for the time necessary to achieve the relevant goals;
d. in the case where we process personal data because it is necessary due to the applicable law, the periods of data processing for this purpose are determined by these provisions.
“Cookies” should be understood as IT data, in particular, text files, stored in end-user devices intended for the use of websites. These files allow to recognize the user’s device and properly display the website adapted to his individual preferences. “Cookies” usually contain the name of the website from which they originate, their storage time on the end device, and a unique number. “Cookies” are used to customize the content of websites to user preferences and to optimize the use of websites. They are also used to create anonymous, aggregated statistics that help to understand how the user uses websites, which allows improving their structure and content, excluding personal user identification. There are two types of “cookie” files – “session” and “permanent”. The first of these are temporary files that remain on the user’s device until you log out of the website, or disable the software (web browser). “Persistent” files remain on the user’s device for the time specified in the “cookie” file parameters or until they are manually removed by the user. Personal data collected using “cookies” can be collected only to perform specific functions for the user. Such data is encrypted in a way that prevents access to unauthorized persons.
By default, the software used for browsing websites allows by default to place “cookies” on the end device. These settings can be changed in such a way as to block the automatic handling of “cookies” in the settings of the web browser or inform them each time they are sent to the user’s device. The restriction on the use of “cookies” may affect some of the functionalities available on the Website.
IX. Requirement to provide personal data.
Providing personal data for marketing purposes (including profiling) is voluntary. If you do not consent to the processing of personal data left by you as part of the use of websites, websites and other functionalities, including those saved in cookie files – your personal data will not be processed for this purpose.
Providing data in order to conclude a sales or service agreement is necessary for its implementation. If this data is not provided, the order can not be processed.
Data processing in order to – match the content of websites, websites, applications and other functionalities to your interests, detect bots and fraud, statistical measurements and improve our – is necessary to ensure the provision of high-quality services. Not collecting your personal data for these purposes may prevent the correct provision of services and orders.
Data processing in order to participate in studies of the Internet is necessary to collect statistical information about the recipients of websites, the Website and other functionalities and to provide statistics on them and understand how they are used by Internet users and help to adapt their operation to the preferences of users of the Website. It is necessary to ensure the high quality of our services. Not collecting your personal data for these purposes may prevent the correct provision of services and orders.
X. Recipients of your personal data.
Your data may be transferred to entities that process personal data at the request of an administrator such as IT service providers, marketing agencies, accounting or legal services provider, and in the case of orders in our store also to payment operators (such as PayPal) and other entities providing delivery services for ordered products – where such entities process data on the basis of a contract with the administrator and only in accordance with the administrator’s instructions. Your data may also be transferred to entities authorized to obtain it on the basis of applicable law.
XI. Transfer of your personal data outside of the European Economic Area.
We do not transfer or plan to transfer your data outside of the European Economic Area.
XII. Your rights related to the processing of personal data.
All data subjects have the following rights:
In order to implement the aforementioned rights, it is necessary to send the appropriate application to the Administrator. Such a request may be submitted by traditional or electronic mail, by writing to the address (or e-mail address) of the Administrator, indicated in point II of this Policy.
If possible, the application should indicate precisely what the request is for, i.e. in particular who submits the application from which the applicant wants to use, what purposes of the request are being processed, or simply withdrawing consent. If the Administrator is not able to determine the content of the request or identify the person submitting the application based on the submitted application, he will ask the applicant for additional information. A response to the notification will be given immediately, no later than one month after its receipt. If it is necessary to extend this deadline, the Administrator will inform the applicant about the reasons for such extension. The reply will be sent to the sender’s address (be it traditional or electronic mail) unless the content of the request results in a request to reply in a different way (e.g. in the case of an application submitted by mail, you can request a reply in electronic form and vice versa).
XIII. Protection of your personal data.
Intellysi [Ltd.] apply appropriate technical, physical and administrative security measures to ensure adequate protection of the User’s Personal Data against loss, misuse, unauthorized access, disclosure and change. These safeguards cover your personal data are protected by multiple encryption methods, password-locked access to databases, and maintaining them in certified server rooms.
XIV. Automatic data collection.
The information that we collect in connection with the use of our Services may be processed in an automated manner (including in the form of profiling); however, it will not cause any legal effects to a natural person or substantially affect its situation.
XV. Personal Data of Children.
Intellysi [Ltd.] does not voluntarily or actively collect, use or disclose personal information of minors, in accordance with the requirements of the age of majority in a given jurisdiction, without the prior consent of the parents or legal guardians of such children. If you become aware that we have collected personal information about a minor without obtaining parental consent, we will take steps to remove this information without delay.
XVI. Information on the right to lodge a complaint to the supervisory body.
If you believe that your data is processed contrary to applicable law, you can complain to the President of the Office of Personal Data Protection.