Art. 1 General provisions
Grain Processing EOOD assumes responsibility for the protection and confidentiality of your personal data, in our capacity as Controller of the personal data you provide to us.
This Policy explains when and why we collect personal information (“personal information” and “personal data” are used as identical terms in this Policy) for people who visit our website and use our services, how we use it, the terms and conditions under which we may disclose it to others and how we store it.
Art. 2 About us
We are Grain Processing EOOD and we provide services, products or general information about our business activity.
Our registered office is at 7060 Slivo Pole town, BULGARIA
Art. 3 How we collect your personal information
We receive information about you when you use our website, for example, when you send a request for an offer/ information, or in the process of requesting, ordering and using the services provided on the website.
Art. 4 What kind of personal information we collect
We only collect basic personal data about you, which does not include special categories of personal data (“sensitive data”). The personal information we collect may include the name, the address, the e-mail address, the telephone number or any other data required by the Accounting Act and other laws, as well as information about which pages have been visited and when.
Art. 5 Why we need your data
We need to know your personal data in order to provide you with the services offered through this website, within the framework of a contract between us in connection with their provision, as well as information that you have requested or explicitly agreed to. We shall not collect personal data that we do not need for the aforementioned purposes.
Art. 6 How we use your information
We may use your information in order to:
- provide the services you have requested, including processing your orders and fulfilling our obligations arising from the contract between us;
- provide new information directly related to the services you have requested;
- respond to inquiries and provide you with information you have requested, including assistance in resolving issues, arising from your inquiries;
- use remarketing through trusted sites, including Google AdWords, Facebook and Instagram;
- seek your opinions or comments about the services and products we provide;
- carry out statistical analyses and other analyses to improve our services;
- ensure saving your interests in connection with the use of our site or services;
Art. 7 How long we store your information
We keep your personal data only to the extent and as long as necessary for the relevant activity for which it has been collected, or as provided in a contract between us, in compliance with the requirements and deadlines stated in the Accounting Act, tax laws and other applicable regulations in force in the Republic of Bulgaria.
The data you have provided for marketing purposes shall be kept until you notify us that you no longer wish to receive the relevant information from us.
Once the purposes of processing your personal data have been achieved, we destroy it.
Art. 8 Who has access to your information
Only the responsible person who serves you has access to your personal data. Your data is stored and will not be sold, rented, nor shared for marketing purposes with third parties.
We may transfer your information to third party service providers, subcontractors and other related organizations only for the purpose of performing tasks and providing services for you on our behalf.
However, when we use third party service providers, we only disclose the personal information that is necessary to provide the service, and we have a contract with that third party that obliges them to keep your information and not use it for its own direct marketing goals.
We will not provide your information to third parties for their own marketing purposes unless you have requested it, or it is necessary by law, court order or to prevent fraud or other crime.
Your data may be shared with state authorities only in the cases provided for by law and in the amount that does not exceed the purposes for which it has been requested.
The Commission for Personal Data Protection exercises legal control over the process of personal data processing and we provide full access to our personal data registers under the relevant legal conditions.
Art. 9 Where we process your data
All personal data that we process are processed in Bulgaria and for the hosting and support purposes this information is located in Bulgaria. Third parties do not have access to your personal data, except when required by law.
Art.10 In which cases we will contact you
You can choose whether to receive information from us or not.
We may contact you freely when and to the extent necessary to perform the services you have requested or the obligations under a contract between us, to provide new information directly related to the services you have requested in response to your inquiry, for the purpose of saving your interests in connection with the use of our site or services, or on the basis of a legal requirement. We have the right to send an e-mail newsletter for the site to which you have subscribed with your e-mail address.
We will not contact you for marketing purposes by e-mail, telephone, text messages, or mail unless you have given us your prior explicit consent, or the communication is directly related to you and meets the requirements of the General Data Protection Regulation (Regulation (EU) 2016/679).
Art.11 How you can access, rectify or erase your personal data
At any time you have the right to request from us:
- access to your personal data collected in the process of providing and using the services, including: confirmation of whether we process your personal data, what categories they are, the purposes of this processing, and the recipients to whom the data is disclosed, as well as a message with a copy of your personal data that is processed and its source;
- rectification of information that you have stated to us when it has become incorrect or out of date, e.g. your email address or any other piece of information;
- erasure or blocking of your personal data when its processing does not meet the requirements of the Personal Data Protection Act or the General Data Protection Regulation (Regulation (EU) 2016/679);
- notification of this rectification, erasure or blocking to third parties to whom your personal data has been disclosed, except when this is not possible or involves huge efforts.
The action you would like to be taken for granting access, rectification, erasure or blocking personal data is performed only in relation to your own personal data and it is free of charge.
In order to request access, rectification, erasure or blocking of your personal data that we process, you need to send us a written request containing:
- name, address and other data for identification of the respective natural person;
- description of the request;
- preferred form for providing the information pursuant to Art.28, para.1;
- signature, date of submission of the request and correspondence address;
- a notarized power of attorney, when submitted by an authorized person. The request can also be electronically signed.
The request is sent to e-mail: firstname.lastname@example.org
We will comply with your request for access, rectification, erasure or blocking within 14 days, subject to the legal requirements and exceptions in this regard.
You will be notified of the decision to perform the requested action or the refusal to do so in accordance with the requirements of the law. Notification of this will be sent to you by registered mail with advice of delivery or may be received in person upon signed acknowledgement.
Art.12 How you can file an objection or complaint against the processing of personal data
In the cases provided by law, you have the right to:
- object to us against the processing of your personal data if there are legal grounds for that; in case of justified objection, the personal data of the natural person concerned may no longer be processed;
- object to the processing of your personal data for the purposes of direct marketing;
- be notified before your personal data is first disclosed to third parties or used on your behalf for the purposes of the previous paragraph of this article, giving you the opportunity to object to such disclosure or use.
If you wish to make any complaint about the way your data is processed, you can contact us at email@example.com. If you are not satisfied with our response or you think that we do not process your data in a lawful manner, you can contact the competent authority for personal data protection – the Commission for Personal Data Protection. Website: www.cpdp.bg.
Art.13 Available security measures to protect your information from loss, misuse or alteration
When you provide personal information to us, we take action to ensure that it is processed in a secure manner. The website https://www.grainprotrade.eu/ uses an SSL certificate protocol for secure communication. HTTPS authenticates the site and the corresponding web server on which it is hosted. It also encrypts the connection between a client and the server in both directions, which provides protection against eavesdropping, forging or falsifying the content of messages. In practice, this provides sufficient guarantees that the user links to the correct site (and not a fake copy), and ensures that the content of messages between the user and the site cannot be read or tampered with by third parties. Additional information about HTTPS (https://bg.wikipedia.org/wiki/HTTPS).
Non-sensitive information (your email address, etc.) is usually transmitted over the Internet, and 100% security can never be guaranteed. In this regard, while we strive to protect your information, we cannot guarantee the security of the information you send us, and you do so at your own risk. Once we receive your information, we make every effort to ensure its security on our systems.
We will not use automatic decision making or profiling.
By agreeing to use this site and its services, you express your consent to the use of “cookies”, including Google Analytics cookies.
Art.16 Links to other sites
Art. 17 Transfer of personal information outside Europe
If you use our services while outside the EU, your information may be transferred outside the EU in order to provide you with these services.
Art.18 Revision of this Policy
We regularly review this Policy to ensure quality and lawful protection of your personal data. This Policy was last updated in March 2018 and is in line with the General Data Protection Regulation (Regulation (EU) 2016/679).
Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Suggested text: If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Suggested text: Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
Suggested text: If you request a password reset, your IP address will be included in the reset email.
How long we retain your data
Suggested text: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
Suggested text: If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Suggested text: Visitor comments may be checked through an automated spam detection service.