Data Protection Policy

Privacy Policy

1. Introduction

1.1. This Privacy Policy governs how Logos Tatyana Georgieva Ltd. collects, processes, and stores personal data in accordance with the requirements of the General Data Protection Regulation (GDPR) – Regulation (EU) 2016/679, the Personal Data Protection Act of the Republic of Bulgaria, and other applicable Bulgarian or international regulations.

1.2. The privacy of our users’ information is a top priority for us. As a data controller, Logos Tatyana Georgieva Ltd. applies the necessary technical and organizational measures to protect individuals’ personal data in compliance with legal requirements and best practices.

1.3. This policy provides information on how and what types of personal data we collect, why we need them, to whom they may be disclosed, and how they are protected. Please read it carefully. By providing your personal data to Logos Tatyana Georgieva Ltd., whether electronically or in paper form, you accept and agree to the practices described in this Privacy Policy. If you have any questions regarding this policy, please contact the Manager. If you disagree with any of the terms contained in the policy, we advise against using the products and services provided by Logos Tatyana Georgieva Ltd. that require the submission of personal data.

2. Information About Logos Tatyana Georgieva Ltd. as a Data Controller

2.1. For inquiries regarding the processing of your personal data, you can contact us at:

Data Controller Identification:

• Name: Logos Tatyana Georgieva Ltd.
• Country: Bulgaria
• City: Sofia
• Postal Code: 1303
• Address: Zhk Zona B-5, Bl. 6, Ent. A, Fl. 3, Ap. 9
• Phone: +359 894 406 747
• Email: tatyana94@abv.bg
• Website: http://tgeorgieva.com/

If you believe that we are violating your rights related to the processing of your personal data, you have the right to file a complaint with the Manager, lodge a complaint with a supervisory authority, or seek judicial protection as follows:

Right to Lodge a Complaint with a Supervisory Authority
Under Article 14, paragraph 2, letter (d), if you wish to file a complaint regarding the processing of your personal data or how we have handled your complaint, you have the right to submit a complaint to the Commission for Personal Data Protection and the Data Protection Officer (if applicable). Complaints can be submitted in the following ways:

1. In person in written form at the CPDP office at 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592.
2. By mail to: 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592, Commission for Personal Data Protection.
3. By fax: 029153525.
4. Electronically via email (kzld@cpdp.bg) as an electronically signed document.
5. Through the CPDP website at https://cpdp.bg, following the submission guidelines.

Each complaint must include:

• Complainant’s details: full name, address, phone number, and email (if available)
• Nature of the complaint
• Any relevant documents and information
• Date and signature (electronic or handwritten, as applicable)

The CPDP provides a complaint form to assist individuals in cases of data misuse, available at: https://cpdp.bg/userfiles/file/Documents_2017/Forma_jalba_politicheski_subekti.doc.

3. Legal Basis

3.1. This Privacy Policy is issued based on the Bulgarian Personal Data Protection Act and its related regulations, as well as GDPR Regulation (EU) 2016/679.

3.2. Bulgarian legislation and GDPR establish rules for how Logos Tatyana Georgieva Ltd. must collect, process, and store personal data.

3.3. To ensure lawful data processing, we collect and use personal data in compliance with legal requirements, ensuring appropriate security measures and preventing unauthorized disclosure. According to the key principles followed by Logos Tatyana Georgieva Ltd., your personal data will be:

• Processed lawfully, fairly, and transparently (“lawfulness, fairness, and transparency”).
• Collected for specific, explicit, and legitimate purposes (“purpose limitation”).
• Relevant, limited to what is necessary for processing purposes (“data minimization”).
• Accurate and up-to-date, with measures in place to correct or erase inaccuracies (“accuracy”).
• Stored in a form that permits identification for no longer than necessary (“storage limitation”).
• Processed securely to prevent unauthorized or unlawful processing, accidental loss, destruction, or damage (“integrity and confidentiality”).
• Accountable, ensuring compliance with these principles (“accountability”).

4. Policy Objectives

4.1. By adopting and implementing this policy, Logos Tatyana Georgieva Ltd. establishes rules regarding the protection of individuals concerning the processing of personal data and the free movement of such data, in accordance with Bulgarian law and Regulation (EU) 2016/679.

4.2. This policy safeguards the fundamental rights and freedoms of individuals, particularly their right to personal data protection, in compliance with the Bulgarian Personal Data Protection Act and GDPR.

4.3. Logos Tatyana Georgieva Ltd. aims to ensure:

4.3.1. The legality of personal data processing carried out by Logos Tatyana Georgieva Ltd.

4.3.2. The rights of individuals who are data subjects under Regulation (EU) 2016/679.

4.3.3. Compliance with the regulation’s requirements as a Data Controller and/or Processor, including:

4.3.3.1. Data protection by design and by default.

4.3.3.2. Maintaining records of processing activities.

4.3.3.3. Implementing appropriate technical and organizational measures, reviewed and updated as necessary.

4.3.3.4. Conducting risk assessments related to personal data processing.

4.3.3.5. Ensuring compliance when delegating personal data processing to third parties (Processors).

4.3.3.6. Defining the responsibilities of data-processing personnel and those with access to personal data, as well as their liability in case of non-compliance.

4.3.4. Taking into account technological advancements, implementation costs, and the nature, scope, context, and purposes of processing, as well as the varying risks to individuals’ rights and freedoms, Logos Tatyana Georgieva Ltd., as a Data Controller and/or Processor, applies appropriate technical and organizational measures to ensure a level of security appropriate to the risks involved.

4.3.5. Ensuring compliance with fundamental principles when transferring personal data to third countries or international organizations outside the EU.

5. Scope

5.1. Definitions:

• Personal data: Any information related to an identified or identifiable natural person (“data subject”).
• Processing: Any operation performed on personal data, such as collection, recording, storage, modification, retrieval, transmission, restriction, or deletion.

5.2. This privacy policy applies to the processing of personal data of users, employees, partners, and suppliers, as described in the processing activity records maintained in compliance with Article 30 of GDPR.

6. Purposes of Data Processing

6.1. In accordance with GDPR’s transparency requirements, Logos Tatyana Georgieva Ltd. provides clear communication about data subjects’ rights and the conditions under which their personal data is processed.

6.2. The purposes and details of data processing by Logos Tatyana Georgieva Ltd. are provided in the procedures for transparent communication, data collection, and data receipt.

6.3. Detailed information is available in documents outlining the processing of personal data at collection and receipt stages.

7. Transparency and Data Subject Rights

Under GDPR Article 14(2)(c), individuals have the following rights regarding their personal data:

For further details, please contact Logos Tatyana Georgieva Ltd.

7.1. Rights of Data Subjects All data subjects (users, clients, or employees, where such data has become known to partners or suppliers in accordance with the registers of processing activities) have the right to exercise their rights as follows:

How to Exercise Your Rights In Person Address: Residential Complex Zona B-5, Building 6, Entrance A, Floor 3, Apartment 9 City: Sofia, 1303

8. Transfer of Personal Data to Third Countries or International Organizations

8.1. The transfer of personal data that is processed or intended for processing after being transferred to a third country or an international organization outside the EU is carried out by Logos Tatyana Georgieva Ltd. only under the conditions of the General Data Protection Regulation (GDPR) – Regulation (EU) 2016/679, complying with the conditions set out in Chapter V of the Regulation.

8.2. Logos Tatyana Georgieva Ltd. applies all provisions of the Regulation to ensure that the required level of personal data protection is not compromised.

8.3. If Logos Tatyana Georgieva Ltd. intends to transfer personal data to a third country or an international organization outside the EU, this transfer is conducted in accordance with the “Procedure for Data Transfer Outside the EU” (P_A44_BG). Data subjects are notified in advance through the “Information on Personal Data Processing at Collection” (D_A13_BG) and the “Information Provided Upon Receipt of Personal Data” (D_A14_BG), with their “Consent for Personal Data Transfer” (D_A49_BG) being required.

9. Data Breaches and Notification

9.1. A “personal data security breach” refers to a security breach that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data transmitted, stored, or otherwise processed by Logos Tatyana Georgieva Ltd.

9.2. In case of a personal data security breach, immediate notification should be sent to:

Name: Tatyana Georgieva Country: Bulgaria City/Village: Sofia Postal Code: 1303 Address: Residential Complex Zona B-5, Building 6, Entrance A, Floor 3, Apartment 9 E-mail: tatyana94@abv.bg

9.3. If a personal data security breach is likely to pose a risk to the rights and freedoms of individuals, Logos Tatyana Georgieva Ltd. will notify the Data Protection Commission without undue delay and, where feasible, no later than 72 hours after becoming aware of it.

9.4. If a specific breach poses a risk to the rights and freedoms of individuals, Logos Tatyana Georgieva Ltd. will take measures to inform affected individuals to minimize potential adverse effects.

9.5. Logos Tatyana Georgieva Ltd. follows the “Procedure for Handling Personal Data Security Breaches” (P_A33_BG).

10. Data Destruction

10.1. Logos Tatyana Georgieva Ltd. follows the “Procedure for the Destruction of Personal Data” (P_A17_BG_01).

11. Changes to the Privacy Policy

11.1. Logos Tatyana Georgieva Ltd. reserves the right to update, amend, and supplement the data protection policy at any time when necessary.

12. Document Ownership and Approval

12.1. The Manager is the owner of this document and is responsible for ensuring that this procedure is reviewed in accordance with the review and update requirements of Regulation (EU) 2016/679.

12.2. The current version of this document is available to all staff members in printed form at the company’s office.

12.3. This procedure was approved by the Manager on 02/08/2019 and is issued under their signature.

Cookie Policy

Logos Tatyana Georgieva Ltd. is committed to providing the best possible services on the Bulgarian market and maintaining the trust of our clients and partners. We believe it is important for you to understand how our website uses cookies and why they are stored on your computer.

Cookies are small text files stored on your computer or mobile device. Their function is to distinguish you from other users of the same website or to save certain information related to your preferences. Most websites use cookies to facilitate user browsing.

An HTTP cookie is a packet of information sent from a web server to an internet browser, which the browser then returns every time it accesses that server. The purpose of the cookies we use is to distinguish you from other users or to store information related to your preferences.

Each cookie is unique to your browser and contains anonymous information, including the domain name from which it originates, its “lifetime,” and a value, usually in the form of a randomly generated number.

Cookies may contain any information selected by the server and are used to maintain the state of HTTP transactions, which are otherwise “stateless.”

Types of Cookies We Use and Their Purpose

Security and Identification

The purpose of our cookies is:

• To recognize the user within a specific session
• To control security
• To ensure that the information entered by the user is visible only to them

Security and identification cookies are automatically deleted after your browser session ends or are stored for a limited time to ensure seamless website functionality. It is important to note that these and other cookies on the website do not store personal data. We typically use them for user authentication during login or initial site registration, preventing the need to re-enter credentials upon each visit.

Performance and Functionality Performance cookies collect statistical information and provide content based on individual user preferences. They help us anonymously measure the number of visits, pages viewed, visitor activity, and repeat visits. These cookies allow us to analyze traffic, improve the site, and provide relevant information.

Managing and Deleting Cookies Most of the cookies we use enhance your browsing experience on our website, while others are essential for your security and access to services.

Depending on your browser, you can:

• Allow or deny cookie storage from all sources
• Set notifications that prompt for acceptance or rejection of cookies upon each new occurrence

Most browsers are set to accept cookies by default. However, if you do not wish cookies to be stored on your computer, you can restrict them by adjusting your browser settings.