Privacy Policy
BULGARIAN FINANCIAL GROUP is a leading company and as such makes special efforts to preserve and protect the rights of its customers, counterparties and employees.
The purpose of this policy is to determine the measures that BULGARIAN FINANCIAL GROUP will take in connection with the protection of the personal data of all natural persons with whom it interacts.
Administrator of personal data, within the meaning of Regulation EU 2016/679 of the European Parliament and of the Council of April 27, 2016, hereinafter referred to as the Regulation and the Personal Data Protection Act, is:
Administrator:
BULGARIAN FINANCIAL GROUP LTD, EIK: 200067887
Headquarters and management address: Kardzhali, 75 “Bulgaria” Blvd
Correspondence address: Kardzhali, 9 Tsar Kaloyan Street, Savarona Shopping Center
Legal representative: Mariana Yaneva Dimova – Manager
Phone: 0361 64401
Fax: 0361 64402
Email: m.dimova@bfgroup.eu
Website: www.kardjali-bg.com
hereinafter referred to as: BULGARIAN FINANCIAL GROUP
BULGARIAN FINANCIAL GROUP processes personal data for the following purposes:
1. Holding the seminars and events that BULGARIAN FINANCIAL GROUP is the organizer of
2. Implementation of marketing activities
3. Conclusion of contracts with customers, suppliers and employees
4. Providing access to videos to its customers
The subject of processing by BULGARIAN FINANCIAL GROUP are the following types and categories of personal data:
1. Names of individuals and legal entities
2. Personal and/or business e-mails and telephones
The processing of personal data is expressed in (essence of the processing):
1. Entering the names and e-mails of individuals and legal entities in a list of participants for a certain seminar or other event
2. Entering the names, e-mails and telephone numbers of individuals and legal entities in customer lists
3. Entering the names, e-mails and telephone numbers of individuals and legal entities in contracts with customers, suppliers and employees
BULGARIAN FINANCIAL GROUP takes the following technical and organizational measures to protect the personal data it administers:
– Physical access control – protection against unauthorized access to premises, equipment and devices for processing personal data
– Electronic access control – protection against unauthorized use of personal data processing and personal data storage systems
– Control when entering personal data – implementation of control by BULGARIAN FINANCIAL GROUP by whom personal data is entered, changed or deleted in a data processing system
– Prevention of unauthorized reading, copying, modification or deletion of personal data within the overall activity of BULGARIAN FINANCIAL GROUP
– Prevent accidental or intentional destruction or loss of personal data
– Quick recovery (Article 32, Paragraph 1, Point “c” of the Regulation) – ability to promptly restore availability and access to personal data in the event of a physical or technical incident, including by creating back-up files containing personal data
BULGARIAN FINANCIAL GROUP processes personal data in compliance with the following principles (Article 5, Paragraph 1 of the Regulation):
a) Processing in a lawful, fair and transparent manner with respect to the subject of the personal data
b) Collection of personal data for specific, explicitly indicated and legitimate purposes
c) Data minimization
d) Accuracy of personal data and maintenance in an up-to-date form
e) Storage in a form that allows the identification of the data subject for a period no longer than is necessary for the purposes for which the personal data are processed
f) Processing in a way that guarantees an appropriate level of security of personal data
BULGARIAN FINANCIAL GROUP guarantees that persons under its management having access to personal data are obliged to respect the confidentiality of personal data and have an obligation of confidentiality. The confidentiality obligation of these persons continues even after termination of the relevant legal relationship with BULGARIAN FINANCIAL GROUP.
The documentation certifying the processing of personal data in accordance with the provisions of the Regulation and the Law on the Protection of Personal Data is stored, after the termination of the relationship with the subject of the personal data, until the expiration of the relevant terms in which BULGAR FINANCIAL GROUP has the right to store the information.
Subjects of personal data administered by BULGARIAN FINANCIAL GROUP have the following basic rights (Chapter III of the Regulation):
– Right to information about personal data subject to processing – principle of transparency
– Right of access to personal data
– Right to correct personal data
– Right to erasure of personal data (“the right to be forgotten”)
– Right to restrict the processing of personal data
– Right to be notified when personal data is corrected or deleted or processing restricted
– Right to data portability
– Right to object to data processing
– Right not to be subject to a decision based solely on automated processing, including profiling
The national control authority for compliance with the provisions of Regulation EU 2016/679 of the European Parliament and of the Council of April 27, 2016 and the Personal Data Protection Act is:
COMMISSION FOR THE PROTECTION OF PERSONAL DATA
Address: Sofia 1592, Prof. Blvd. Tsvetan Lazarov” No. 2
Phone: 02/91-53-518
Email: kzld@cpdp.bg
Website: www.cpdp.bg
Any subject of personal data who considers that his rights have been violated in the processing of personal data by BULGARIAN FINANCIAL GROUP, has the right to file a complaint with the Commission for the Protection of Personal Data.
Affirmed:
Mariana Dimova – Manager
Date of last revision: 01.02.2023