Last updated and effective: February 26, 2021
We at Webdesh Ltd. consider the right to the protection of personal data our main priority, in view of which we will apply all legal means and make all necessary efforts to collect, store and process your data in full compliance with the Regulation (EU) 2016/679 (the “EU General Data Protection Regulation” or “the CPD”), and in accordance to the legislation in force in the Republic of Bulgaria.
The following policy aims to introduce you to the way we collect, process and store your personal information when you interact with us in connection to receiving products and services through our website.
Webdesh Ltd. is registered in the Commercial Register with UIC 204986610 and VAT № BG204986610, with its office being: Sofia, zh.k. Banishora, bl. 27, ent. G, fl. 6, ap. 64, represented by Administrator Pavlina Desheva, hereinafter referred to as “the Company” or “We”. For the purposes of the legislation in the field of personal data protection of individuals, we are the administrator in the processing of your personal data.
We collect your personal information directly from you, so you have control over the type of information you provide us with. In general, it is possible to browse our site without providing us with personal information. However, there are specific situations that may require you to provide us with personal information.
You provide us with personal information by filling out our contact forms, purchasing a service through our website and sending in messages through our site. Another cases include:
- When you take part in a study, questionnaire, discussion in order to be able to go through with them and analyze the results;
- When you asked to receive information or help by filling out our contact form to send you a personalized reply;
- When you comment or provide information in a part of our website that allows it;
- When you subscribe to our Blog;
- In connection with any section of the Website where you knowingly and voluntarily provide personal information and data;
- When you place a service request through our website;
- When you make a direct purchase for any of our services through our website.
Data we collect, store and process when you contact us through our contact form:
- Your name;
- Your email address.
Data we collect, store and process when purchasing one of our services directly on our website:
- First Name;
- Last Name;
- Company Name (Optional);
- Email address;
- Company billing details (Optional, if you have requested an invoice).
Data we collect, store and process when subscribing to our newsletter:
- Email address.
When using your social media profiles in Google, LinkedIn, Twitter, Facebook etc. we process your personal information and data for the following reasons:
- To answer your questions;
- To process your requests;
- To inform you about updates and news in connection to an installed software, plugin etc. on your site;
- To present you with your requested services and products.
Furthermore, we may collect and subsequently process certain information regarding how you use our website, in order to to improve its effectiveness and personalize your experience. You can learn more about this in the section below.
In our website we may store and collect information through “cookies”. The “cookie” is a small text file, which is stored on the user’s device and is used to identify the browser when interacting with a website. Every website can send a “cookie” to the browser if the settings of the latter allow it. The browser allows only the site, which has collected the “cookies”, to have access to them. The website www.webdesh.com uses “cookies” in order to store information about the users’ preferences, as well as to analyze visitations by “remembering” your computer, but no personal information about you.
We do not collect sensitive personal data, child-related data, and do not perform automated decision-making and profiling.
We are going to use your personal data for the following purposes:
3.1. Providing services offered through the Company’s website, including:
- processing orders, including acceptance, validation and invoicing;
- solving any problems related to orders, purchased goods or services;
- providing support, including answering your questions regarding the orders you have made through the website of Webdesh Ltd.;
- processing a website design request made through our online form.
The processing of your personal data for these purposes is necessary in order to conclude and fulfill a contract between you and the Company. In addition, the fulfillment of these objectives requires processing in accordance with the applicable legal provisions in the territory of the Republic of Bulgaria, including tax and accounting legislation.
It is our wish that you will always be informed about any upcoming events, as well as about the best products and services offered or organized by the Company. In this regard, in case you have granted your clear consent, we can send you our newsletter about news and promotions via email, which include general and thematic information.
The processing of your personal data for these purposes is subject to your consent.
You can withdraw your consent at any time by clicking the “unsubscribe” button at the end of each email you receive.
Please note that the subsequent withdrawal of a consent does not affect the lawfulness of the processing of personal data carried out so far based on that consent prior to its withdrawal.
We will store your personal data for service requests and inquiries made for a period of 5 years, starting from the date of the last interaction between us.
We will store your personal data to send you newsletters until you withdraw your consent to do so.
You can always make a request for us to delete certain information related to you and we will fulfill that request but retain certain information if applicable law or legitimate interests require us to.
The Company is committed to applying the highest standards of ethical and legal practice in all its activities, including the protection of personal data of all users of the website. We will not disclose, nor will we allow anyone outside the company to access or use your personal information, except for the cases listed below.
Depending on the specifics of each case, we may transmit or make available some of your personal data to IT service providers. We have contracts for the protection of personal data with these companies and they process it following our instructions.
We guarantee that access to your data by our employees is carried out in accordance with legal provisions in the field of personal data protection and confidentiality of information, based on the last obligations to protect the confidentiality and security of your personal information and data. They are not authorized to use, disclose or alter this information in any way except for the purpose of providing the services assigned by the Company.
If it is required by law or if we have to protect our legitimate interests, we have a right to disclose some of your personal information to public authorities.
We take it upon us to ensure the safety of your personal data by implementing appropriate technical and organizational measures.
All the information we receive from you is stored on secured servers and we are constantly applying technical and organizational measures, which are appropriate and necessary in order to protect your personal information. The Company is constantly reevaluating our net’s security and the suitability of its internal information security system, which is designed to:
- help protect your personal information from unauthorized access or disclosure;
- identify reasonable foreseeable network security risks on our website;
- minimize security risks, including through risk assessment and regular testing.
We have established procedures to deal with any alleged personal data breach and will notify you and the competent authorities of the breach when we are legally obliged to do so.
We store and process your personal data on the territory of the Republic of Bulgaria.
The General Data Protection Regulation recognizes a number of rights in relation to your personal data. You may request a correction of data in our files, access to your data, and / or raise objections to the processing of your personal data. You may also exercise your right of appeal to the competent supervisory authority or to the courts. In addition, you have the right to request the deletion of all your personal data available to us, the right to limit the processing of your data and the right to data portability.
You can use rights stated above by sending an email to: [email protected]. Please note that we may request you to provide additional information necessary to verify your identity.
If you are not satisfied with the way we handle your personal data, please let us know and we will address your concerns using the above means of communication. We will try to answer you within one month. It can sometimes take us more than a month, in which case we will notify you properly.
You should consider the following circumstances if you wish to exercise these rights:
The right to request access to your personal data (commonly referred to as a “data subject’s request”) gives you the opportunity to obtain a copy of your personal data that we receive and store and to verify that it has been lawfully processed.
You may ask us to correct or supplement your inaccurate or incomplete personal information. We may contact you to verify the inaccuracy of your data before we correct it.
You may ask us to delete your personal information, but only in one of the following circumstances:
- they are no longer necessary for the purposes for which they were collected;
- You have withdrawn your consent (if data processing is based on consent);
- exercise a legal right to object;
- they were illegally processed;
- there is a legal obligation in this regard.
We have no obligation to comply with your request for deletion of your personal data in the event that the processing of such data is required:
- to fulfill a legal obligation;
- to establish, exercise or defend a legal claim.
Limiting data processing
You may ask us to restrict the processing of your personal information, but only if one of the following conditions is true:
- you question their accuracy;
- processing is illegal, but you do not request your data to be deleted;
- the data is no longer needed for the purposes for which they were collected but should be stored as you require it to establish, pursue or defend legal claims;
- You have already exercised your right of objection and are checking whether the domination of our rights is still present.
You may request us to provide your personal information in a structured, widely used, machine-readable format, or you may request that it be “directly” transferred to another data controller, only if:
- processing is based on your consent or the conclusion of a contract with you;
- processing is carried out automatically.
Right to object
You may object at any time to the processing of your personal data based on our legitimate interests, if you believe that your fundamental rights and freedoms dominate our legitimate interests.
Furthermore, you may object at any time to the processing of your data for direct marketing purposes without giving any reason whatsoever.
You have the legal right to file a complaint with your local supervisor about the processing of your personal data. On the territory of the Republic of Bulgaria the contact details of the data protection supervisor are as follows:
Personal Data Protection Commission
Address: Sofia, bul. “Tsvetan Lazarov” № 2
Email: [email protected]
Internet page: https://www.cpdp.bg
Without limiting in any way your legal right to contact the supervisory authority at any time, we ask that you contact us in advance and promise that we will do our best to resolve any issues that may arise by mutual agreement.