Privacy Policy
This Privacy Policy /PP/ is intended to explain what information we collect about you, why and how we do it, what your rights are under the Personal Data Protection Act /PDPA/ and the General Data Protection Regulation /Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 – GDPR – referred to in this policy as the “GDPR”/.
This PDPA is up to date as of 01.02.2023.
Sibiel Ltd. reserves the right to change and/or amend the PDPA at any time, with the changes coming into force immediately after their publication at: www.kashtadobrotitsa.com/the Website/.
Within the meaning of the PDPA:
Personal data’ means any information relating to an identified natural person or to a natural person who can be identified by reference to that natural person, whether directly or indirectly, by name, unique number, address and other location data, online identifier or by one or more factors specific to the physical, physiological, genetic, mental and psychological, economic, cultural or social identity of that natural person.
“Controller” means a body which, alone or jointly with other bodies, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by European Union law or Bulgarian law, the controller or the specific criteria for its determination may be laid down in European Union law or Bulgarian law. In the present case, the controller is Sibiel Ltd. With registered office
and management address in. Dobrotitsa Str. “Sibiel” № 3, municipality. Sitovo, region. Silistra
Processor of personal data’ means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
“Processing” means any operation or set of operations which is performed upon personal data or a set of personal data, whether or not by automatic means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making the data available, alignment or combination, restriction, erasure or destruction.
“Supervisory authority” means an independent public authority of a Member State of the European Union responsible for monitoring the application of the rules on the protection of personal data. For the Republic of Bulgaria, the supervisory authority is the Commission for Personal Data Protection.
Purpose of the policy
This Privacy Policy aims to ensure that the Controller:
- complies with applicable data protection legislation and follows good practice
- protects its users, employees, customers and partners;
- ensures transparency about how the personal data of subjects is stored and processed;
- provides protection from the risks associated with data breaches.
How do we collect information about you?
We may collect information about you in a number of ways:
By filling in and submitting forms /requests; orders, alerts and other notifications/ related to the services you use on the Site – by submitting them, you knowingly share personal data and consent to it being processed for the purpose for which you provided it in accordance with Art. 6, para. 1 (a) GDPR. The amount of data is in relation to the stated purposes
Data collected through observations
We sometimes collect information about you by observing your behavior on the Site. To do this, we use standard Internet approaches to track user behavior, e.g., using network equipment to track your IP address, analyzing information available as part of the communication in the protocols we use to record and exchange identifiers about you and your device, e.g., HTTP GET/POST requests, using the functionality of JavaScript and other standard and widely used WEB programming languages to retrieve data and information about your browser context, operating system, screen resolution, language, etc. By visiting our website, you knowingly share this personal data and consent to its processing for the purpose for which you provided it pursuant to Art. 6 para. 1 (a) GDPR.
Data received from third parties
Sometimes we may receive data from third parties, e.g. data from your profile on social networks such as Facebook. This data may be combined with other personal data about you that we already hold. We only receive this data if you have previously expressed on the basis of Art. 6 para. 1 lit. a GDPR, you explicitly consent, via the partner tools, to your data being collected and processed for this purpose and provided to third parties.
Cookies
Sibiel Ltd. uses cookies on its Site to store settings and identifiers necessary to provide the services specified on the Site. Some of these cookies are technically necessary for the normal functioning of the Site, while others are intended to facilitate its use by making it more functional and enjoyable for you. By visiting our Site, you knowingly share the personal data about you collected through cookies and consent to their processing for the purpose for which you have provided them pursuant to Art. 6 para. 1 (a) GDPR. More information about Sibelius Ltd’s cookie policy can be found in the Cookie Policy available on the Site
What information do we collect and process when you use our services?
We collect personal data about you only on the basis of your explicit consent given through the tools and functionalities of the Site. The legal basis for collecting this data is Art. 6 para. 1 (a) GDPR. We do not collect your personal data where one of the hypotheses of Art. 6 para. 1 of the GDPR. When you use our services, we may collect the following personal data about you:
When you fill in and submit forms, we collect personal data necessary according to the purposes of the form. Typically, this is your name; mobile phone number; e-mail address; city and physical delivery address, data necessary for the purpose of payment delivery of your requested orders. In this case, the collection of your personal data is necessary for us to fulfil our contractual obligations to you by processing and delivering your order. In the event that you refuse to provide us with your personal data, we would not be able to fulfil your order.
Data collected through observations
For all visitors to the site, we typically collect the following data: the IP address from which you visit; your browser identifier; your mobile device identifier; your non-personal identifier; your behavioural history – pages visited, time spent, etc.; behaviour in relation to the content of the site/mobile app – navigation, interface elements used, dwell time; your searches; behaviour in relation to the ads served to you – what and how many ads are served; where they are served; ads seen; reac In this case, the collection of your personal data is necessary in order for you to access the Site and use its functionalities in the most optimal way according to your preferences. If you refuse to provide us with your personal data, it will not be possible for you to access or use the full functionality of the Site.
Data obtained from third parties
Depending on the data source, this includes: basic account information such as name, email address, date of birth; details you choose to share according to specific social media account settings; your contacts and how you are connected to them. In this case, the collection of your personal data is necessary for you to use the Site’s features in the manner most optimal to your preferences. If you refuse to provide us with your personal data, it will not be possible for you to use the full functionality of the Site.
For what purposes do we process the information?
The information we collect and process about you may be used for the following purposes:
Normal operation of the Site
This data is strictly necessary for the normal operation of the Site. Through them, we can show you the content better, load the Site faster, protect the Site and you from harm. Such data are, for example, your session data – cached content, etc. This also includes data related to your identification in connection with the use of our service.
For contractual performance of our services
We use your personal data to complete the process of selling and delivering your chosen goods.
To retain and access information
This purpose is ancillary to the fulfilment of other purposes – through the use of various technical mechanisms, we will be able to fulfil any of the other purposes described. Includes storing and accessing information stored on your device, e.g. device identifiers, user identifiers, advertising identifiers, cookies and other technologies.
To process your personal data, including to provide it to competent authorities in the cases provided for by law and for the performance of legal obligations of Sibelius Ltd, and for purposes related to the performance of the parties’ obligations under a contract.
Who else has access to this information?
We sometimes disclose your personal information to third parties – partners ofSybiel Ltd. or bodies authorised by law to inspect and/or control our activities, such as:
Industry-recognized solution providers that have publicly declared compliance with GDPR and e-privacy policies, such as Google and Facebook. Consent also includes the placement and use of marking unique depersonalized identifiers, including with the use of cookies, local Storage or other appropriate generally accepted web technology;
Third parties providing services to Sibiel Ltd. such as Accountants and Accounting firms; Auditors and Auditing firms; Lawyers – Lawyers, law firms and legal advisors; Notaries; Advertising and PR agencies; Companies engaged in data system administration;
Competent authorities in the cases provided for by law and for the performance of legal obligations of Sibiel Ltd.
For how long do we store your data?
We keep the personal data you provide to us only until the purpose for which you provided it is achieved. We may only store personal data you have provided to us beyond this period if the storage is related to the performance of our statutory obligations.
What are your rights in relation to personal data?
You have the following rights when we process your personal data:
The right to withdraw your consent to the processing of your personal data at any time. Withdrawal of consent to the processing of your personal data does not affect the lawfulness of the processing based on your consent given before it was withdrawn;
Request the rectification or completion of your data in case of inaccuracy by written request to us;
Right of access to your personal data;
The right to restrict the processing of your personal data;
Right to object to the processing of your personal data;
The right to data portability;
The right to request the erasure of your personal data that is being processed unlawfully or on a no longer valid legal basis (consent withdrawn, original purpose for which it was collected fulfilled, etc.);
The right to request the Data Controller to notify the third parties to whom the Data Controller has provided your data regarding the rectification, erasure or restriction of the processing of personal data.
You have the right to complain to the Data Protection Commission where you believe that your rights under this Policy or applicable laws have been violated.
How can I obtain, update and manage my personal data?
You can obtain further information about the processing of your personal data by the controller Sibel Ltd by making an explicit request to this effect. You can address your request to Dobrotitsa str. “Sibiel” № 3, municipality, Sitovo district, region Silistra, on spot, by letter or at the following e-mail address: t_oprev@abv.bg
You can easily update and manage your information collected through the features of the Site. Additional information on how to do this can be found in the Privacy Policy posted on the Site.
COOKIE POLICY
This information about the use of cookies is intended to inform you about the specifics and appropriateness of the use of cookies on the Dobrotitsa Guest House website / https://kashtadobrotitsa.com/ /
WHAT ARE COOKIES?
Cookies are small text files containing a limited set of textual information that are loaded into your browser and temporarily stored on your end device (computer, smartphone or other end device) for the duration of your visit, or for a longer period, depending on the type of cookie. Each cookie is unique to your browser and contains anonymous information. Cookies usually contain the name of the website they belong to, the length of time they are stored on the user’s computer and a unique number.
WHAT COOKIES DO WE USE AND WHY?
MANDATORY COOKIES
These cookies allow you to use the full functionality of our site. You can set your browser to block or warn you about these cookies, but some parts of our site will not work without them. These cookies do not store any personal information about you.
THIRD PARTY COOKIES
We also use some third party cookies as part of our services. These cookies are managed by their respective authorities and are not controlled by us. Listed below are the third party cookies we use, some of which can be turned off using your browser’s general settings. For others, you need to visit the relevant websites and follow the instructions described there.
GOOGLE ANALYTICS
Our website uses Google Analytics. Thanks to the cookies used by this tool, we monitor the traffic on our site and can analyse how easy it is for our users to work with it. They show us which pages of our site users view, from what devices, how much time they spend on our page and other anonymous data. These cookies do not give us any information about your personal data. The period we keep analytics data in Google Analytics is 26 months.
Details of how data is collected and processed by Google can be found at the following link: https://goo.gl/mVozWw
FACEBOOK-PIXEL
Our page uses Facebook-pixel. The Facebook-Pixel is HTML code that allows us to set, measure and optimize audiences when running marketing campaigns. The Facebook-Pixel measures conversions across devices, allows for automatic targeting of site visitors, as well as retargeting and creating dynamic ads. The data collected in this way is anonymous to us and we do not receive information about the identity of users.
More information on how Facebook collects and processes data can be found at the following link: https://goo.gl/5oS5dj
COOKIE MANAGEMENT
Most browsers allow cookies to be placed on the user’s end device by default. If you choose, you can change your browser settings and delete the cookies that are currently attached to you, as well as automatically block future cookie placement (including those from third parties).
Information about browsers and how to set your cookie preferences can be found on the following web pages or other documentation on the internet browsers you use:
Chrome
Firefox
Internet Explorer
Android
iPhone и iPad