This website uses cookies to improve your user experience. By continuing, you accept the policy.
Privacy

Introduction and GDPR

Administrator

Legal entity

Overseeing body

Grounds

Aims and principles

Types of personal data

Duration

Transfer of data

Withdrawal of consent

Access and correction

Deletion and limitation

Portability and objections

Breaches in security

Third parties accessibility

Other terms

Security measures

Introduction and GDPR

From mid-2018, the current Data Protection Regulation adopted by the European Union is in force. The regulation aims to ensure the protection of data of individuals from all EU Member States and to harmonize the regulations for their processing.

As a Personal Data Administrator, ABIS Ltd meets all the requirements of the new regulation by collecting only individuals' data insofar as they are necessary for the provision of the service and keeping them responsibly and legally.

Administrator

Website administrator
ABIS ltd

Corporate Address
22A Botio Petkov str.
1517 Sofia, Bulgaria

Administration address
60 Nishava str.
1680 Sofia, Bulgaria

Corporate registration Number 175280599
VAT registration number BG175280599

Legal entity

Website administrator
ABIS ltd

Corporate Address
22A Botio Petkov str.
1517 Sofia, Bulgaria

Administration address
60 Nishava str.
1680 Sofia, Bulgaria

Corporate registration Number 175280599
VAT registration number BG175280599

Overseeing body

Commission for Personal Data Protection

Headquarters and management address

Ch. Sofia 1592, 2 Prof. Tsvetan Lazarov Blvd.

Correspondence information

Ch. Sofia 1592, 2 Prof. Tsvetan Lazarov Blvd.

Phone: +359 2 915 3 518

kzld@government.bg

kzld@cpdp.bg

www.cpdp.bg

 

ABIS Ltd. operates in accordance with the Personal Data Protection Act and Regulation (EC) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of persons such data.

Grounds

We collect and process your personal data in connection with the provision of the services listed incompletely on the Services page of this website and the conclusion of contracts with the company pursuant to Art. 6, para. 1, Regulation (EC) 2016/679, and in particular on the basis of the following:

  • Explicitly received consent from you as a customer;
  • Implementation of the obligations of ABIS Ltd. under contract with you;
  • Compliance with a legal obligation that applies to ABIS EOOD;
  • For the purpose of the legitimate interest of ABIS Ltd.

ABIS Ltd is the administrator of personal data regarding your data as users of our services. With respect to the personal data you provide, using our services, ABIS Ltd. acts in its capacity as a processor of personal data.

Aims and principles

ABIS Ltd collects and processes the personal data you provide us in connection with the use of our services and for the conclusion of a contract with the company as well as for subscribing to our events, including for the following purposes:

  • Creating an account and providing full functionality in providing our services;
  • Individualisation of a party to the contract;
  • Registration of a participant in an event organized by ABIS Ltd;
  • Accounting purposes;
  • Statistical purposes;
  • Protection of information security;
  • Ensuring the performance of the service provision contract;
  • Sending information messages, changes to the service, recommendations to improve the use of the Web site, new and updated subscription plans, etc.
  • Improve and personalize your service by offering renewal offers, events, and other products and services that may be of interest to you;
  • Providing technical support;
  • Subscribe to our articles published in the Blog of ABIS Ltd;
  • Leave comments under our articles published in the Blog of ABIS Ltd.

ABIS Ltd. complies with the following principles when processing your personal data:

  • Legitimacy, good faith and transparency;
  • Limitation of processing goals;
  • Relevance to processing goals and minimization of collected data;
  • Accuracy and timeliness of the data;
  • Restriction of storage in order to achieve the objectives;
  • Integrity and confidentiality of processing and ensuring an appropriate level of security of personal data.

In the processing and storage of personal data, ABIS Ltd. can process and store personal data in order to protect its following legitimate interests:

  • Implementation of its obligations to the National Revenue Agency, the Ministry of Interior and other state and municipal authorities.

Types of personal data

ABIS Ltd. performs the following personal data operations for the following purposes:

  • Registration of a user on the Website and performance of a service delivery or performance contract - the purpose of this operation is to create an account that is linked to the service used or assigned, and to manage the content of the service or monitor its performance through the established administrative panel, according to a contract with you. On the basis of the aforementioned impact assessment, the Data Protection Officer considers the operation to be permissible and provides sufficient safeguards to protect the rights and legitimate interests of the data subject in accordance with the GDPR requirements.
  • Conclusion and execution of a commercial transaction with a client or a partner - the purpose of this operation is to conclude and execute a contract with a commercial partner or client and its administration;
  • Sending Information Messages - The purpose of this activity is to administer the process of sending messages to customers regarding improvements or changes in services, overriding parameters and expiring services under a service delivery or service contract.
  • Sending a newsletter - the purpose of this operation is to administer the process of sending newsletters to clients who have declared they wish to receive;
  • Subscription to receive articles from the Website Blog - the purpose of this operation is to send articles and materials posted to our blog at your request;
  • Administer comments on articles in the Website Blog - the purpose of this operation is to provide users with the opportunity to express their opinion on a published piece or article.

ABIS Ltd. processes the following personal data for the following purposes and on the grounds:

Your personalizing data - name and surname, email, country, phone.

Purpose, for which data is collected:

  • User registration
  • Making contact with the user and sending information to him/her;
  • Sending newsletters and advertising messages.

Reason for processing personal data:

  • By accepting the Terms of Use between ABIS Ltd. and you, a contractual relationship is created, on which basis we process your personal data - art. 6, para. 1, b. (b) GDPR.

Additional details - Address and contact details.

Purpose, for which data is collected:

  • Add user information to his / her account.

Grounds for data processing:

By accepting the Terms of Use between ABIS Ltd. and you, a contractual relationship is created, on which basis we process your personal data - art. 6, para. 1, b. (b) GDPR.

Other processed data - data of the IP used by each visitor.

Purpose, for which data is collected:

  • Enhance website security, localization, statistical and marketing research.

Grounds for data processing:

By accepting the Terms of Use between ABIS Ltd. and you, a contractual relationship is created, on which basis we process your personal data - art. 6, para. 1, b. (b, f) GDPR.

Data for issuing an invoice to an individual - a personal identification number.

Purpose, for which data is collected:

  • Issuance of an invoice for making payments under a contract for the provision or performance of a service or services.

Reason for data processing:

By accepting the Terms of Use between ABIS Ltd. and you, a contractual relationship is created, on which basis we process your personal data - art. 6, para. 1, b. (b) GDPR.

Personal Information for Website Blog Users - Names, Email.

Purpose, for which data is collected:

  • Subscribe to receive articles and materials from the Website Blog;
  • Leave comments on articles and materials from the Blog on the Website.

Reason for data processing:

Your personal data is processed on the basis of your consent - Art. 6, para. 1, b. (s) GDPR.

ABIS Ltd does not collect or process personal data that relate to the following:

  • They reveal racial or ethnic origin;
  • Disclose political, religious or philosophical beliefs or membership of trade unions;
  • Genetic and biometric data, health data, or data on sexual life or sexual orientation.
  • Personal data are collected by ABIS Ltd solely from the persons to whom they refer.

The company does not make automated decisions in regards to personal data.

The Company does not process data for persons under 14 years except with the explicit consent of their parents or custodians.

Duration

ABIS Ltd. keeps your personal data for a period no longer than the existence of your profile on the Website. Upon expiration of this period, ABIS Ltd takes the necessary care to erase and destroy all your data without undue delay.

ABIS Ltd notifies you in case the data retention period is to be extended in order to meet the objectives, performance of a contract, in view of the legitimate interests of ABIS Ltd.

ABIS Ltd. keeps your data given by consent to its explicit withdrawal, and this does not affect any publications and comments made in order to preserve the meaningful integrity of the comments.

ABIS Ltd. keeps the personal data that it is required to keep under the applicable law for the envisaged term, which may exceed the duration of your registration on the Website.

Transfer of data

ABIS may at its own discretion transmit all or part of your personal data to processors for the purposes of processing, subject to the requirements of Regulation (EC) 2016/679.

In case of intent and necessity of transferring part or all of your personal data to third countries or international organizations, ABIS Ltd will notify you in advance of this action.

Withdrawal of consent

If you do not wish all or any of your personal data to continue to be processed by ABIS Ltd. for a particular purpose or for all processing purposes, you may at any time withdraw your consent to processing by filling in the form in your account or by requesting it free text.

To withdraw your consent, you must verify your identity and identity with the person to whom the data relate.

By withdrawing the consent to the processing of personal data that is required to create and maintain your service use registration, your account will become inactive.

Access and correction

You have the right to request and obtain from ABIS Ltd a confirmation that personal data relating to you are processed, as well as the right to access the data relating to you, as well as the information related to the collection, processing and storage of your personal data.

Upon request, ABIS Ltd provides you with a copy of the processed personal data relating to you in electronic or other appropriate forms.

Providing access to the data is free of charge, but ABIS Ltd reserves the right to impose an administrative fee in case of repeatability or excessive demand.

You may correct or fill in the incorrect or incomplete personal data relating to you directly through your Website or by requesting to ABIS Ltd.

Deletion and limitation

Every user has the right to request from ABIS Ltd the deletion of the personal data related to it, and we have the obligation to remove them without undue delay when any of the following reasons exists:

  • Personal data are no longer necessary for the purposes for which they were collected or processed;
  • Withdraw your consent on which processing is based and no other legal basis for the action;
  • The objections to the processing of personal data relating to you, including for the purposes of direct marketing, and there are no legitimate grounds for the processing that will take precedence;
  • Personal data is being processed unlawfully;
  • Personal data must be deleted to comply with a legal obligation under EU law or the law of a Member State that applies to ABIS Ltd;
  • Personal data are collected in connection with the provision of information society services.

ABIS Ltd. has no obligation to delete personal data if it keeps and processes it:

  • For the exercise of the right to freedom of expression and the right to information;
  • Compliance with a legal obligation that requires treatment provided for under EU law or the law of the Member State that applies to the Administrator or for the performance of a public interest task or the exercise of official authority;
  • For reasons of public interest in the field of public health;
  • For purposes of archiving in the public interest, for scientific or historical research or for statistical purposes;
  • For the establishment, exercise or protection of legal claims.

In order to exercise your right to completely erase your personal data, you should file a request through your account or in writing sent to ABIS Ltd. as well as to certify your identity and identity with the person to whom the data relate by presenting your ID card for identification purposes and, if necessary, enter your login details of the person to whom the data relate to an employee of ABIS Ltd.

We will not delete the data we have a legal obligation to store, including for protection against claims made by a person or proof of his or her rights.

Each user has the right to request from ABIS Ltd to limit the processing of related data when:

  • You dispute the accuracy of personal data for a period that allows ABIS Ltd. to verify the accuracy of personal data;
  • Processing is illegal, but you do not want your personal data to be erased, but only to limit their use;
  • ABIS Ltd. no longer requires personal data for the purposes of processing, but you require them to establish, exercise or protect your legal claims;
  • You have reproached the proceedings pending verification that the legal grounds of ABIS Ltd have an advantage over your interests.

Portability and objections

Any user may at any time download the data that is stored and processed in connection with the use of the services of ABIS Ltd. directly through his account or by e-mail request.

You have the option to ask ABIS Ltd to directly transfer your personal data to an administrator you specify, but only if it is technically feasible.

You may at any time object to the processing of personal data by ABIS Ltd. that apply to you, including whether processed for profiling or direct marketing purposes.

Breaches in security

If ABIS Ltd. detects a violation of the security of your personal data, which may pose a high risk to your rights and freedoms, we notify you without unnecessary delay of the occurrence of the incident as well as of the measures taken or to be taken.

We are not required to notify you, provided that:

  • We have taken appropriate technical and organizational protection measures with respect to the data affected by the security breach;
  • We have subsequently taken measures to ensure that the violation will not lead to a high risk for your personal data;
  • A notification would require disproportionate efforts.

Third parties accessibility

Your personal data could be passed on to third parties for registration of a domain in or outside of the .BG domain and upon request, ABIS Ltd shall transmit the necessary information to the respective domain registrar processing your data as an administrator for the purposes of registering the requested domain.

The administrator does not transfer your data to third countries.

Other terms

In case of violation of your rights under the applicable data protection laws, you have the right to file a complaint with the Personal Data Protection Commission.

Any user may exercise their rights to protect their personal data through the forms enclosed on this Website. These forms are not mandatory and you can make your claim in any other form that contains a statement about it and identifies you as the holder of the relevant data.

If the consent relates to a transfer, the Administrator shall describe the possible risks for the transfer of data to third countries in the absence of a decision on adequate protection and appropriate remedies.

When assigning to ABIS Ltd to process personal data to a third party for the purpose of using the service, we act as a personal data processor.

In the cases above, ABIS Ltd only acts on your instruction as the user of the service and only to the extent that it may have control over the personal data you are processing. ABIS Ltd has no control over the content and data that you as the user of the service you choose to upload to the service (including whether or not this data includes personal data). In this case, ABSIS Ltd has no role in the decision-making process whether the user uses the personal data processing service, for what purposes and whether they are protected. Our responsibility, in this case, is limited to complying with the service user's instructions under the contract and the terms and conditions and providing information about the service and the functionality through its interface.

Security measures

The security of any type of information, including personal data, on our servers is very high priority for ABIS Ltd. Security is that part of the process that we can not and will not allow any kind of compromise.

In addition to trying to fully comply with the current Privacy Policy, we only use servers with an installed SH Protect security system. It works on several levels, and has the ability to block multiple attempts to compromise client sites and customer information, including personal data.

Your data, regardless of the type, is relying also on DDoS attack protection. The system detects 95% of the known types of DDoS attacks and is constantly updated against the newly registered ones, with all these measures malicious attempts by third parties to access your information are reduced to a minimum.