PRIVACY POLICY

RAMIS 93 EOOD

Last updated: March 30, 2025

Your privacy is important to us. This policy describes what personal data we process through our website and related communication channels, why we use it, and what your rights are. Any updates will be published here.

1) Data Controller

RAMIS 93 EOOD (RAMIS 93)
Company ID (EIK/PIC): 201874175
VAT Registration: BG201874175 (since 13.03.2018, Art. 96 of VAT Act)
Date of registration: 26.01.2012
Legal form: Single-Member Limited Liability Company (EOOD)
Registered office and address: Bulgaria, Razgrad, ul. “Zheravna” No. 11

Important: The website does not provide online sales and does not allow user registration. The displayed prices are for informational purposes only and do not constitute a binding offer for concluding a distance contract.

2) Scope and Definitions

This policy applies to the processing of personal data in connection with:

  • visiting and using the website (browsing pages, viewing prices, catalogues/information);

  • sending inquiries/correspondence through published contacts (email, phone, postal address).

“Personal data” means any information relating to an identified or identifiable individual.
“Processing” means any operation with personal data (collection, storage, use, etc.).

3) Categories of Data Subjects and Data We Process

3.1. When communicating with us directly (inquiries, offers, correspondence)

  • Name, email, phone, position and/or representation (if contacting us on behalf of a company);

  • Message content and any attached files (e.g. specifications).

3.2. Data collected automatically when visiting the website

  • IP address, date and time of access;

  • Browser/device/OS information, language settings;

  • Visited URLs (logs), referring address;

  • Cookies – for basic functionality/security and, if consent is given, for statistics/marketing (see Cookie Policy).

3.3. Job applicants (if applying via provided contacts)

  • Data from CV/cover letter (name, contacts, education, experience, etc.).

Note: We do not require or wish to receive special categories of data under Art. 9 and 10 GDPR (health, biometric, criminal records). Please do not send such data.

4) Purposes and Legal Bases

We process data only when we have a valid legal basis under Art. 6 GDPR:

  • Legitimate interest (Art. 6(1)(f)):

    • responding to inquiries and maintaining correspondence;

    • maintaining website security and functionality (logs, abuse prevention);

    • internal accountability and process management (e.g. traceability of communications).

  • Consent (Art. 6(1)(a)):

    • use of certain cookies (statistics/marketing), if a consent banner is implemented;

    • voluntary subscription to newsletters/marketing (if such option is introduced).
      Consent can be withdrawn at any time.

  • Legal obligation (Art. 6(1)(c)):

    • compliance with lawful requests from competent authorities;

    • accounting/tax obligations related to offline transactions.

There are no online payments or distance contracts via the website. Displayed prices are informative only and do not create contractual obligations.

5) Data Retention

  • Correspondence (emails/inquiries): up to 6 months after closure;

  • System logs (IP, date/time, URL, device info): up to 6 months (for security/diagnostics);

  • Cookies: depending on type – up to 6 months (see Cookie Policy);

  • Job applications: up to 6 months after recruitment process ends (unless consent for longer retention is given);

  • Accounting documents (offline transactions): up to 10 years under the Accounting Act.

In case of disputes/investigations – until their final resolution.

6) Sharing of Personal Data

We do not sell or disclose personal data for third-party marketing purposes without your consent. Data may be shared with:

  • our employees and professional advisers on a need-to-know basis;

  • service providers/subcontractors for hosting, IT support, web analytics, security (under contract and GDPR-compliant);

  • competent authorities as required by law.

If international data transfers are needed (e.g. non-EEA service provider), we use appropriate safeguards (e.g. Standard Contractual Clauses).

7) Data Security

We apply technical and organizational measures: access control, firewalls/WAF, logging and monitoring, system segmentation, principle of least privilege, periodic reviews.

8) Cookies and External Links

Details about cookies (types, purposes, duration) are available in our Cookie Policy.
The website may contain links to external websites/platforms — we have no control over their policies and accept no responsibility for them.

9) Your Rights (GDPR)

You have the right to:

  • Access your data and obtain a copy;

  • Rectification of inaccurate/incomplete data;

  • Erasure (“right to be forgotten”) under Art. 17 GDPR;

  • Restriction of processing under Art. 18 GDPR;

  • Data portability (for consent/contract-based and automated processing);

  • Object to processing based on legitimate interest or for direct marketing;

  • Withdraw consent at any time (without affecting past lawful processing).

How to exercise your rights: use the published contact details or send a written request to our registered office. We may request minimal additional data to verify your identity. If the request is manifestly unfounded/excessive/repetitive, we may charge a reasonable fee or refuse, in line with Art. 12(5) GDPR.

Supervisory Authority:
Commission for Personal Data Protection (CPDP)
1592 Sofia, 2 Prof. Tsvetan Lazarov Blvd.
www.cpdp.bg · tel. +359 2 915 35 18 · kzld@cpdp.bg

10) Accuracy of Provided Information

We are not responsible for the accuracy of data provided by you. You undertake not to infringe third-party rights when providing information. If you suspect fraud/abuse, please notify us immediately.

11) No Online Commerce or Binding Offers

The website is informational. Displayed prices are indicative only and do not constitute a binding promise or offer. Actual business transactions are agreed offline and documented separately.

12) Changes to this Policy

We may update this Policy to reflect legal changes, technological developments, or organizational needs. The new version takes effect upon publication on the website.