Privacy

Privacy Policy

Effective Date: 01. December 2024

1. Introduction

This Privacy Policy explains how axiact Ltd. (“we,” “our,” or “the Company”) collects, uses, stores, and protects personal data in accordance with the Bulgarian Personal Data Protection Act (PDPA) and the EU General Data Protection Regulation (GDPR).

2. What Personal Data We Collect

We may collect the following types of personal data:

  1. Identity Information: Name, ID/Passport number, date of birth, gender.
  2. Contact Information: Email address, phone number, postal address.
  3. Financial Data: Bank account details, payment information.
  4. Technical Data: IP address, browser type, device information, cookies.
  5. Other Data: Any additional information you provide when contacting us or using our services.

3. How We Collect Personal Data

We collect personal data in the following ways:

  • Directly from you (e.g., when you fill out forms, contact us, or use our services).
  • Automatically (e.g., through cookies or analytics tools).
  • From third parties (e.g., public registries or business partners).

4. Purpose of Data Processing

We process personal data for the following purposes:

  • To provide our services and fulfill contractual obligations.
  • To communicate with you regarding our services, offers, or updates.
  • To comply with legal or regulatory requirements.
  • To analyze and improve our services.
  • For marketing purposes, if explicit consent is provided.

5. Legal Basis for Processing

We process personal data based on:

  1. Contractual Necessity: To perform a contract with you.
  2. Legal Obligation: To comply with Bulgarian and EU laws.
  3. Legitimate Interest: To enhance our services and protect our rights.
  4. Consent: For specific purposes, such as marketing.

6. Data Sharing

We may share personal data with:

  • Service Providers: For hosting, IT support, or payment processing.
  • Authorities: When required by law or in response to legal requests.
  • Third Parties: With your consent or as necessary for our legitimate business interests.

7. International Data Transfers

If personal data is transferred outside the EU/EEA, we ensure it is protected by:

  • Binding corporate rules.
  • Standard contractual clauses.
  • Other lawful mechanisms.

8. Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Retention periods may vary depending on the type of data and legal obligations.

9. Your Rights

Under GDPR, you have the following rights:

  1. Access: Request access to your personal data.
  2. Correction: Request correction of inaccurate data.
  3. Deletion: Request deletion of your personal data.
  4. Restriction: Request restriction of data processing.
  5. Objection: Object to processing based on legitimate interests.
  6. Data Portability: Request a copy of your data in a structured, machine-readable format.
  7. Withdrawal of Consent: Withdraw consent for processing at any time.

To exercise your rights, contact us at postmaster@axiact.eu.

10. Data Security

We implement technical and organizational measures to protect personal data from unauthorized access, loss, or misuse. These measures include encryption, secure storage, and regular security audits.

11. Cookies

Our website uses cookies to enhance user experience and collect analytical data. You can manage or disable cookies through your browser settings.

12. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy at any time. Updates will be posted on our website with the “Effective Date” of the revision.

13. Contact Information

If you have any questions or concerns about this Privacy Policy, please contact us:

axiact Ltd.
Triaditsa district , str. Angel Kanchev № 75, fl. 2
1000 Sofia
Bulgaria
UIC/PIC 203668035

Managing Director: Boris Ivanich