Notice of confidentiality regarding the process of personal data

General information

​

We at AVANT-POSTE Ltd. as a personal data аdministrator, have an obligation to take care of the security of your personal data by applying the Company's rules and procedures for the implementation of the security.

 

The purpose of this communication is to explain clearly what personal data the Company collects from you, by law or by consent, and how we use that information. All activities are  according to the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals regarding to the process of personal data and repealing Directive 95 / 46 / EC (General Data Protection Regulation).

​

 

Personal Data Administrator

​

AVANT-POSTE Ltd, hereinafter referred to as "The Company".

Management address: Sofia, 21 Leshnikova gora Str., Fl.3

Website: www.ko-op.bg

Protection of your personal data, contacts: avantposte@abv.bg - Elka Sotirova

​

 

Principles of data protection that we adhere to

 

™ to process the personal data of the entities in a lawful,  conscientious and transparent manner;

 

™ The personal data of the subjects should only be collected for valid purposes, which we have clearly explained, and not be used in any other way that is incompatible with those purposes;

 

™ The personal data of the subjects do not exceed the information required for the purposes we have specified;

 

™ Subjects should be informed when personal data are processed outside the statutory processing requirements.

 

™ Keep the personal data of the subjects for a period not longer than is necessary for the purposes we have specified;

 

™ Subjects' personal data should be properly protected.

 

Data subject is an individual who is identified or can be identified based on certain information.

​

 

Purposes for the process of the personal data and storage time

 

We collect, process or store the collected personal data on the basis of employment or civil relations with employees, contractual relations with suppliers, customers and contractors, legal provisions, etc. We use the information collected from all of our services to provide, maintain, protect and improve it, to develop new information, and to protect our employees and our customers.

 

™ Services  - shared space for work, events and art.

 

In order to carry out our activities, we may process personal data of individuals for the performance of contracts concluded under the terms of the Commercial Law, the Obligations and Contracts Act or other laws. Insofar as personal data of individuals are processed in connection with the performance of these contracts, information is processed for them in a minimal amount sufficient only for the exact fulfilment of the obligations under the respective contract (According to the Accountancy Act with a retention period of 10 + 1 years). Access to this information is only provided to third parties when required by law (Example: National Revenue Agency).

 

™ Meeting the requirements of the labor and social legislation regarding employees.

 

We process personal data of job applicants, current and former employees. The data collected are used only for the purposes of administering employment and social security relations (Examples: under the Labor Code; under the Ordinance on the employment book; under the Social Security Code; under the Personal Income Tax Act; under the Ordinance on cash benefits and allowances, etc.), are stored within the time limits specified by the labor and social security legislation (Examples: 50 + 1 years under the Payroll Accounting Act; 5 + 1 years under the Ordinance on cash benefits and benefits from the SSO for declarations under the Ordinance a; 3 + 1 years under the Ordinance on medical expertise and others), are provided to third parties in cases where it is provided for in a normative act (Examples: National Revenue Agency, National Social Security Institute; Labor Inspectorate; Occupational Health Service banks and others). In the course of human resource management activities, data on physical, psychological, social, family and economic identities, data on convictions and violations, health data and more are processed.

 

™ Ensure the security of customers, employees and property

 

It is performed through video surveillance (31 days – 1 month), registration and access control.

 

™ Fulfillment of the legal obligations of the company and other lawful purposes

 

For accounting services, maintenance and security of the company's website and IT systems, protection of the legitimate interests of the company, including in court, etc.

​

 

Your rights as a data subject

​

™ Right to be informed (regarding the processing of your personal data by the Company).

 

™ Right to access your own personal information.

 

™ Right of correction (if data is incorrect).

​

™ Right to delete personal data (right to be forgotten) - in cases where the law does not prohibit it. If the processing of personal data is based on your consent, you have the right at any time to withdraw your consent for future processing.

 

™ Right to restrict the processing by the controller or the processor - in cases where the law does not prohibit it.

 

™ Right to object to the processing of personal data.

 

™ You have the right to a legal or administrative defence in the event that your privacy rights have been violated.

​

 

Applying of data subjects' rights

 

You have the right to exercise your rights under Art. 15-22 of the General Data Protection Regulation. As with claims, you will be asked to identify yourself - by providing an identity document or other identification methods and means. The personal data processed in connection with the processing of individual requests will only be used for the purpose of exercising those rights.

 

When we process your personal information, we do so with your consent to provide you with products or services you use, to manage our Company, to meet our contractual and legal obligations, to protect our systems and customers, or to fulfil our other legitimate interests.

​

 

Transfer of personal data

​

The personal data collected are not disclosed to third parties outside the European Union.

​

 

Automated solutions and profiling

We do not use systems that make automated decisions for you, we do not profile your personal data.

 

 

Data security

​

We have put in place appropriate organizational and technical actions to prevent the accidental loss, use or unauthorized access, alteration or disclosure of your personal information. In addition, we restrict access to your personal data only to certain employees and third parties for whom it is necessary to obtain this information. They will only process personal data based on our policies and procedures according to their confidentiality.

​

 

Protection of the rights of data subjects

​

 According to the Personal Data Protection Act and the General Data Protection Regulation, any individual who considers that his or her right to the protection of his or her personal data has been infringed may file a complaint with the Commission for Personal Data Protection at: 1592, Prof. Tsvetan Lazarov ”2, website: www.cpdp.bg.

 

For more information, please contact us!

​

​

  05/25/2018

Avantposte Ltd.

​

​

​

​