FREE DELIVERY OVER 99.99LV
INFORMATIVE TEXT
INFORMATIVE TEXT 2
Language
English
Search
Storelocator
Wish List
My Cart items item

Personal Data Processing Policy

Information about the data controller:

"Desiso Moni Retail" AD, is a company registered in the Commercial Register of the Registry Agency with UIC 204244826, registered office and registered address. registered office and registered address: . registered office and registered address: 6 Grivisko shose. "Desiso Moni Retail" S.A. operates through the website "https://desizomonni.com/ " and all its subpages, hereinafter referred to as the "Site".

Contact details:

Phone number: +359877521710; 
E-mail address: [email protected]

What is personal data?

Personal data is any information or set of information that identifies you or could be used to identify you (together with other information you provide on the contact form).

The processing of personal data includes the collection, storage, transmission, correction, updating, erasure, destruction and any other action that is carried out with your personal data.

In the following paragraphs you will find detailed information about the processing of your personal data depending on the basis on which we process it.

I. The grounds and purposes for which we use your personal data

1) For the purposes of entering into contracts and providing services through the Platforms, we process your personal data that you provide by filling in our product order forms, sending enquiries and messages through the Platforms, and when you make subsequent contact with us in the course of dealing with your enquiries and messages. The data you provide is used to enable us to provide you with information and send you notifications about anything related to the services you use with us.

Data we process on this basis

On this basis, we process information about the type and content of the contractual relationship as well as any other information related to the contractual relationship, including:

  • personal contact details - name, email, phone number;
  • other information such as: address;
  • Correspondence relating to the overall service - emails, letters, information about your requests for troubleshooting, complaints, requests, complaints, feedback we receive from you;
  • Created a unique user number;
  • Information from your actions on the site;
  • IP address;
  • Demographics;

When we delete data collected on this basis

We delete the data collected on this basis 2 years after the termination of the contractual relationship, whether due to expiry of the contract, termination or any other reason. 

2) Direct Marketing - if you have provided consent to receive marketing communications, we will collect and process your personal data for the purpose of sending you offers for the products/services you are interested in. In this regard, we may send you commercial messages through the following electronic messaging channels (e-mail, SMS, etc.), which contain general and thematic information; information about products, complementary services used and other business communications.

Data we process on this basis

On this basis, we only process the data for which you have given us your explicit consent. The specific data is determined on a case-by-case basis. Typically, these data are email address, telephone number and name. 

Provision of data to 3rd parties

On this basis we may provide your data to marketing agencies, Facebook, Google or similar.

When we delete data collected on this basis

We delete data collected on this basis at your request or 12 months after its initial collection.

Withdrawal of consent

Consents given may be withdrawn at any time by paying an email to us at the contact email addresses provided. Withdrawal of consent has no impact on the performance of contractual obligations. If you withdraw your consent to the processing of personal data for any or all of the ways described above, we will not use your personal data and information for the purposes set out above. Withdrawal of consent does not affect the lawfulness of processing based on consent given prior to withdrawal.

3) Legitimate interest - processing your data is necessary to comply with our obligations under applicable law. There may be occasions when we use or transfer information to protect our rights and our business. These may include:

  • measures to protect the Platforms and users of the Platforms against cyber-attacks;
  • measures to prevent and detect fraud attempts, including the transmission of information to competent public authorities;
  • measures to manage various other risks;
  • legal provisions;
  • contractual interest - we process your data for the purposes of providing the services under the contracts entered into on the Platforms.
  • Your consent - we rely on your consent to send you commercial communications, to inform and involve you in our projects and programmes, to share your data with our partners, and to notify you of changes to our organisation and activities.

II. How do we protect your personal data?

To ensure adequate protection of the company's and its customers' data, we apply all necessary organizational and technical measures provided for in the Personal Data Protection Act.

The Company has established rules to prevent misuse and security breaches and has appointed a Data Protection Officer to assist in the processes of protecting and securing your data.

In order to maximize the security of the processing, transmission and storage of your data, we may use additional security mechanisms such as encryption, pseudonymization, etc.

III. Who will we share your information with?

Our service providers (third parties) who perform certain tasks on our behalf and under our instructions may also have access to information relating to visitors to our website to the extent necessary to provide their services to us. These third parties include our IT service providers who perform tasks in the areas of hosting, database management, website management, support services, alerting services, web analytics, and inbound query processing and data analytics.

Our website uses analytics tools provided by specialist third parties to help us diagnose technical problems, analyse traffic to our website, analyse trends, monitor and measure how our visitors engage with our website.

Our (third party) service providers and the analytics tool providers we use may have access to information relating to your device, your browser and how you navigate our content in accordance with this statement from various countries, including countries outside the European Union.

IV. Rights of Users

Each User of the Site enjoys all the rights for the protection of personal data under Bulgarian and European Union law. 
The user can exercise their rights via the contact form or by sending a message to our email. 
Each User is entitled to:

  • Awareness (in relation to the processing of his personal data by the controller);
  • Access to your own personal data;
  • Correction (if data is inaccurate);
  • Erasure of personal data (right to be forgotten);
  • Restriction of processing by the controller or processor;
  • Portability of personal data between controllers;
  • Objection to processing of personal data;
  • The data subject shall also have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her;
  • The right to a judicial or administrative remedy in the event that the data subject's rights have been violated.

The user may request deletion if one of the following conditions applies:

  • The personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
  • The user withdraws their consent on which the data processing is based and there is no other legal basis for the processing;
  • The data user objects to the processing and there are no legitimate grounds for the processing that override;
  • Personal data have been unlawfully processed;
  • The personal data must be erased in order to comply with a legal obligation under Union or Member State law to which the controller is subject;
  • The personal data was collected in connection with the provision of information society services to children and consent was given by the person with parental responsibility for the child.

If the User wishes to have his personal data deleted, he should send his request to the Data Controller via the email address indicated above.

The user has the right to restrict the processing of his/her personal data by the controller when:

  • Challenge the accuracy of the personal data. In this case, the restriction of processing shall be for a period which allows the controller to verify the accuracy of the personal data;
  • The processing is unlawful, but the User does not wish the personal data to be deleted, but requests instead that their use be restricted;
  • The controller no longer needs the personal data for the purposes of the processing, but the User requires them for the establishment, exercise or defence of legal claims;
  • Object to processing pending verification whether the legitimate grounds of the controller override the interests of the User.
     

Right to portability

The data subject shall have the right to obtain the personal data concerning him or her which he or she has provided to a controller in a structured, commonly used and machine-readable format and shall have the right to transfer those data to another controller without hindrance from the controller to whom the personal data have been provided, where the processing is based on consent or a contractual obligation and the processing is carried out by automated means. When exercising his or her right to data portability, the data subject shall also have the right to obtain a direct transfer of the personal data from one controller to another where this is technically feasible.

Right to object

Users have the right to object to the controller to the processing of their personal data. The data controller shall be obliged to terminate the processing unless it demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims. If you object to the processing of personal data for direct marketing purposes, the processing shall cease immediately.

Complaint to the supervisory authority

Each User has the right to lodge a complaint against unlawful processing of his/her personal data with the Personal Data Protection Commission or the competent court.