This policy is intended to inform you of the manner in which EN-TY-ZET-Transport Ltd (hereinafter referred to as the Controller or NTZ Transport) processes your personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (“GDPR”) and in accordance with applicable national law. NTZ Transport is concerned to ensure a high level of protection for your personal data and to process it in accordance with the provisions of applicable law.
I GENERAL PROVISIONS
1.1 Who we are:
The main activity of EN-TI-ZET-Transport Ltd. is international transport and logistics, warehousing and brokerage.
Registered office and registered address. Varna, p.k. 9010, Primorski district, 9010 Primorski str. 103882134
1.2 Bodies that supervise and provide consumer protection:
Data Protection Commission:
Address. “Prof. Tsvetan Lazarov” № 2,
tel.: (02) 940 20 46
Fax: (02) 940 36 40
Email: firstname.lastname@example.org, email@example.com
Consumer Protection Commission:
Address: 1000 gr. Sofia, Slaveykov Square №4A, floors 3, 4 and 6,
Tel: 02 / 980 25 24
Fax: 02 / 988 42 18
Hotline: 0700 111 22
If you have a dispute related to an online purchase, you can use the ORS website.
The COMPANY or the ADMINISTRATOR: EN-TI-ZET-TRANSPORT Ltd, UIC 103882134, with registered office and registered address. No. 9010, Primorski district, 9010 Primorski str. NO. 8 PLISKA STR.
PERSONAL DATA: Any information relating to an individual who is identified or identifiable, directly or indirectly, by an identification number or by one or more specific attributes.
PROCESSING OF PERSONAL DATA: Any act or set of acts that may be performed with respect to Personal Data, whether or not by automatic means, such as collecting, recording, organizing, storing, adapting or altering, recovering, consulting, using, disclosing or transmitting, disseminating, updating or combining, blocking, erasing or destroying the data.
PERSONAL DATA SUBJECT: Any natural person whose Personal Data is processed.
THE PLATFORM: The term refers to a virtual platform owned by the Company, which comprises a website served by technical infrastructure and programming code: www.ntz.bg – Information platform for introducing users to the services and products provided by NTZ Transport, as well as useful information in the field of transport and logistics.
III. PROCESSING OF PERSONAL DATA
NTZ Transport, processes voluntarily provided or automatically submitted data in any of the following ways: verbally, in writing, by visiting the website www.ntz.bg, by email or otherwise, in accordance with the GDPR and Bulgarian legislation relevant to the purposes for which the personal data was originally collected.
Depending on how individuals use our Platform and the services it provides, they fall into several divisions, listed below. Depending on them, the data of the Subjects are processed in separate Personal Data Registers, and in each of them the processing may include different categories of data, purposes and grounds, storage periods, protection measures, etc.
The same person may fall under more than one of the listed subdivisions at the same time.
A visitor is any person who loads a page that is part of the Platform into their web browser, or visits various sections and pages of the Platform (whether by directly entering the email address into the browser or by linking from another website or resource).
Categories of data that may be processed: Online identifiers stored in local cookies on the visitor’s device/browser; Location data provided by the visitor; Country/city data based on the IP address of the user’s device, an integral part of the information received by each website; Information about actions performed by the subject on the Platform; Subject preferences regarding specific aspects and settings of the Platform’s functionalities; Information about the type of browser/device used.
Purposes of the processing: provision of basic and auxiliary functions necessary for the correct and full functioning of the Platform; counting the attendance of the Platform; provision of the necessary conditions for the implementation of services on marketing platforms.
Storage period: until the expiration of each cookie (up to 1 year from the moment of its storage) that carries the relevant information, or until it is deleted by the subject on whose device/browser it is stored
Legal basis for processing: consent to this Policy.
3.2 E-mail subscribers
An e-mail subscriber is any Visitor who has subscribed to the Platform’s automatic electronic e-mail newsletter to receive e-mails containing various items of information from the Platform, commercial offers, etc. The e-mail newsletter is sent directly by the Administrator without the use of external intermediary services.
Categories of data that may be processed: Names, E-mail address, Location data integral to the provision of the service, Subscriber preferences on the subject of their subscription ( product categories, etc.; days of receipt of letters and other settings), Information on the browser/device used.
Purposes of processing: to enable and service electronic subscriptions (e-mail newsletters) for which visitors subscribe (subscribe) – to receive by e-mail various items of information from the Platform, commercial offers, etc.
Retention period: up to 6 months after termination of the subscription by the subscriber or by the Administrator.
Legal basis for processing: consent to be included in a mailing list (subscription to an e-mail newsletter, enquiry sent via a contact form).
3.3 Shelf life
NTZ Transport processes personal data no more than is necessary for the purpose for which it was collected. In some cases, data needs to be kept for a longer period of time due to various legal obligations. The data will also be kept longer in the event of a dispute that requires them. In this case, the data will be deleted when it is no longer needed.
3.4. Provision of Personal Data to Third Parties
NTZ Transport does not provide data to third parties, except in the following cases:
- If we have a legal obligation to disclose or share data;
- If we have obtained consent from the Data Subject concerned;
- Digitally pseudonymised data about Visitors, Users and Subscribers of the Platform may be provided in an automated manner to external services of our providers integrated into the Platform for the purpose of counting our traffic or for advertising purposes. Opt-out can also be done via external tools (for Google Analytics – here for Google advertising platforms – here, for Facebook and other platforms – here
- Use of Google Maps
3.5. Data security
We have taken the necessary technical and organisational measures to ensure that your Personal Data is protected against unauthorised access or disclosure, accidental or unlawful destruction or alteration.
The information in electronic form is stored on secure servers within the European Union, installed in a professionally equipped and technically maintained telecommunications equipment colocation facility. The data transfer between the servers and the client device/browser is encrypted, via HTTPS.
IV. YOUR RIGHTS
If we process your Personal Data, you have the following rights, which you can exercise by sending a request to the Company’s address quoted above, or electronically – to the e-mail address: firstname.lastname@example.org, or via the Contact page:
Right of access to your personal data: you have the right to obtain confirmation from us as to whether personal data about you is being processed and, if so, access to your personal data and information.
Right to rectification of personal data: if you find that the personal data we process about you is inaccurate, you have the right to request that we rectify that personal data.
Right to erasure of personal data (right to be forgotten): In certain circumstances, such as if your personal data has been unlawfully processed or you have withdrawn your consent (if the processing of your personal data is based on consent) and there is no basis for continuing to process it, you have the right to request the erasure of your personal data by us.
Right to restrict processing: in certain circumstances, such as if you doubt the accuracy of your personal data or have objected to our legitimate purpose for processing your personal data, you have the right to request that we restrict the processing of your personal data until a solution is found.
Right to object to processing: In certain circumstances, such as if you doubt our legitimate interest in processing your personal data, you have the right to object on grounds relating to your particular situation to such processing.
Right to data portability: if your personal data is processed by automated means with your consent or for the performance of our contractual relationship, you have the right to request that we provide your personal data in a machine-readable format for transfer to another data controller.
Right to lodge a complaint with a supervisory authority: you have the right to lodge a complaint regarding the processing of your personal data by us with the relevant supervisory authority – the Personal Data Protection Commission, or with the court.
An HTTP cookie, commonly referred to simply as “cookie(s)”, is a packet of information, in the form of a small text file, that is sent from a web server to your Internet browser, and then returned by the browser each time it accesses that same server/website. Cookies are useful because they allow the website to recognise the visitor when they revisit the website and store their preferences for that site.
Where a cookie has no expiry date or period, then it is session/temporary. The browser recognizes a cookie as a session cookie if it is missing the Expires and Max-Age attributes. Once the visitor closes their browser, the session cookie is deleted. The site may remove session cookies from the browser, for example when the user logs out of the site or remains inactive for a period of time.
Where a cookie has an expiry date and/or period, then it can be defined as ‘persistent’. This means that the cookie is not deleted when you close the browser.
Persistent cookies can also serve sites to remember and distinguish their visitors. Most often for personalization, collecting access statistics, improving site usability and user experience. As well as for other purposes that do not require users to be specifically identified by their personal or authentication information (user, password).
For example, Google Analytics uses such cookies to distinguish between new (unique visitor) and returning (returning visitor) users of a website.
Third Party Cookies
A type of cookie is a ‘third party’ cookie. The more aggressive third-party cookies are those of advertising companies, which use them to collect information and track visitor behaviour and activity in order to display relevant ads and offers.
When a web page downloads and loads resources from external sites, while the browser is loading that page, it makes separate requests to those external sites in the background.
VI. FINAL PROVISIONS
Any future changes to this Policy will be posted on this page.