SMART DIGITAL GROUP
|
EN

Go back

GDPR information for users

1. Who we are

SMART DIGITAL GROUP LTD

Address: Bulgaria, Sofia, Lozenets district, 35 N.Y. Vaptsarov Str., fl. 3, apt. 3A

Email: info@smartdigitalgr.com

Phone: +359889231703

We are personal data controller within the meaning of the General Data Protection Regulation (GDPR) and we are responsible for the lawful processing and protection of your personal data.

2. What data do we process?

We may collect and process the following categories of personal data:

  • Identification data: first name, last name, position.
  • Contact details: email, phone, company.
  • Communications: messages sent via feedback forms or email.
  • Technical data: IP address, browser type, language, operating system, cookies.
  • Website usage data: pages visited, time spent, interaction with content (through analytical systems, e.g. Google Analytics with anonymization of IP addresses).

3. Purposes of data processing

We use your personal data to:

  • We respond to inquiries and provide information about our products and services.
  • We prepare and conclude contracts , we fulfill pre-contractual obligations.
  • We fulfill contractual obligations and we provide services.
  • Website administration and improvement (including traffic and functionality analysis).
  • Marketing communications (only with your consent).
  • Compliance with legal requirements (financial and tax reporting).

4. Legal basis for processing

Data processing is based on:

  • Article 6(1)(a) of the GDPR — your consent (e.g. when subscribing to a newsletter or submitting a request form).
  • Article 6(1)(b) of the GDPR — performance of a contract or pre-contractual actions.
  • Article 6(1)(с) of the GDPR — compliance with legal obligations.
  • Article 6(1)(f) of the GDPR — the legitimate interests of the company (improving service, ensuring security, protecting against fraud).

5. Transfer of data to third parties

We may transfer personal data only when necessary and in accordance with the law:

  • Hosting and IT service providers (ensuring the operation of the website, data storage).
  • Analytical services (Google Analytics, with IP anonymization).
  • Courier and postal services (if necessary for the delivery of documents or samples).
  • Legal consultants and auditors (if necessary).

Data transfer outside the EU is only possible if the requirements of Chapter V of the GDPR (adequate level of protection, standard contractual clauses).

6. Data retention period

Contact details — 12 months after last interaction.

Contract and invoice data - 5 years (according to accounting data).

Cookies - from 1 day to 12 months (depending on the purpose).

7. Your rights under GDPR

You have the right to:

  • You request access to your data (Article 15 of the GDPR).
  • You correct inaccuracies (Article 16 of the GDPR).
  • Delete data – "right to be forgotten" (Article 17 of the GDPR).
  • Restrict processing (Article 18 of the GDPR).
  • Objections to processing (Article 21 of the GDPR).
  • Transfer data in a machine-readable format (Article 20 of the GDPR).
  • Withdraw consent your data processing rights (Article 7(3) of the GDPR).

8. How to exercise your rights

Email: info@smartdigitalgr.com

We are committed to responding within 30 calendar days from the date of receipt of the request.

9. Automated decision-making

We don't use automated decisions or profiling that could significantly affect your rights and freedoms.

10. Data security

We use technical and organizational measures to protect data:

  • SSL Encryption
  • Access Control
  • Archiving
  • Protection against unauthorized access

11. Supervisory authority

If you believe your rights have been violated, you can file a complaint with:

Bulgarian Commission for Personal Data Protection

Address: Sofia 1592, 2 Prof. Tsvetan Lazarov Blvd.

Website: https://www.cpdp.bg

Smart Digital Group - GDPR information for users