Privacy Policy
Personal data protection policy - Limited Underwear Ltd
Limited Underwear EOOD ("Limited Underwear", "We", "The Company") accepts its obligations under the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on data protection of natural persons in connection with the processing of personal data and regarding the free movement of such data and for the repeal of Directive 95/46/EC) and the relevant Bulgarian legislation seriously and strives to comply with the highest applicable standards and established good practices in the processing of personal data. The competent leading supervisory authority regarding the protection of personal data processed by "Limitirano linno" EOOD is the Commission for the Protection of Personal Data of the Republic of Bulgaria.
Information about the "Personal Data Protection Officer":
Name: Anton Chobanov
Email: anton.chobanov@icloud.com
Facebook: fb.com/Chobanov.BG
Messenger: m.me/Chobanov.BG
Information about the Personal Data Administrator:
Name: "Limited underwear" EOOD
EIK/BULSTAT: 205704494
Address: Republic of Bulgaria, reg. Stara Zagora, town of Kazanlak, 41 "Iztok" street, apartment 168,
Phone: +359 (0) 888 23 4411
Email: office@limitedlingerie.eu
Website: www.limitedlingerie.eu
Information about the competent supervisory authority:
Name: Personal Data Protection Commission
Address: Sofia 1592, Prof. Blvd. Tsvetan Lazarov" No. 2
Correspondence details: Sofia, Prof. Blvd. Tsvetan Lazarov" No. 2
Phone: 02 915 3 518
Email: kzld@cpdp.bg
Website: www.cpdp.bg
Definitions
The following definitions are used in this Policy:
"Applicable law" means the applicable legislation of the European Union and the Republic of Bulgaria regarding the protection of personal data;
"Regulation (EU) 2016/679" means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and on Repeal of Directive 95/46/EC (General Data Protection Regulation), published in the Official Journal of the European Union on May 4, 2016.
"GDPR" means Regulation (EU) No 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and on the repeal of Directive 95 / 46 / EC ("General Data Protection Regulation");
"Personal Data" means any information relating to an identified or identifiable natural person ("data subject"); identifiable natural person means a person who can be identified, directly or indirectly, through information such as, for example, name, identification number, location data, one or more factors characteristic of physical, physiological, genetic, economic, cultural or social identity of that individual
"Processing" means any operation or set of operations performed on personal data, whether by automatic or other means such as collection, recording, organization, structuring, storage, adaptation or modification, retrieval, consultation, use, disclosure by transmission, dissemination or other way in which the data is made available, arranged or combined, restricted, deleted or destroyed.
"Profiling" is any form of automated processing of personal data, consisting in the use of personal data to assess certain personal aspects related to a natural person and, more specifically, to analyze or predict aspects related to the performance of professional that individual's obligations, economic status, health, personal preferences, interests, reliability, conduct, location or movement;
"Special categories of personal data": personal data revealing racial or ethnic origin, political views, religious or philosophical beliefs or trade union membership, as well as the processing of genetic data, biometric data for the sole purpose of identifying an individual, health data status or data about the sex life or sexual orientation of the natural person
"Personal data register" means any structured set of personal data that is accessed according to certain criteria;
"Administrator" means a natural or legal person, public body or other structure that alone or jointly with others determines the purposes and means of processing personal data;
"Processor of personal data" means a natural or legal person, public body or other structure that processes personal data on behalf of the controller;
"Consent of the data subject" means any freely expressed, specific, informed and unequivocal indication of the will of the data subject, by means of a statement or a clear affirmative action, which expresses his consent to the personal data relating to him being processed;
"Discloser of Personal Data" means a natural or legal person, public body or other entity that transmits Personal Data to the Recipient of Personal Data;
"Recipient of Personal Data" means a natural or legal person, public body or other entity that receives the Personal Data from the Discloser of the Personal Data;
"Third party" means a natural or legal person, public body, agency or other body other than the data subject, the controller, the personal data processor and the persons who, under the direct supervision of the controller or the personal data processor, have the right to process the personal data.
"Breach of personal data security" means an act / circumstance that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access to personal data that is transmitted, stored or otherwise processed
"Personal data controller": The organization or individual that determines the purposes and means of personal data processing.
"Data Subject": An identified or identifiable living natural person.
"Administrator's facility" means owned or leased premises that the Administrator uses to carry out its main business.
protection of personal data
As of May 25, 2018, the General Data Protection Regulation ("GDPR") has been implemented in the member states of the European Union. Limited underwear complies with the GDPR and the principles for processing personal data enshrined in European and national legislation.
Underwear Limited guarantees that the personal data it processes will be:
processed lawfully, in good faith and in a transparent manner with respect to natural persons
collected for specific, explicitly stated and legitimate purposes and not to be further processed in a manner incompatible with these purposes
appropriate, relevant and limited to what is necessary in relation to the purposes for which they are processed
accurate and, if necessary, kept up-to-date
stored in a form that allows the identification of the data subject for a period no longer than is necessary for the purposes for which the personal data are processed
processed in a way that guarantees an appropriate level of personal data security
Natural persons - data subjects, have the following rights in relation to their personal data:
right to information (this right is implemented by providing clear and easy-to-understand privacy notices that explain how and for what purposes we use your personal data, as well as what your rights are in relation to the processed personal data)
right of access to the processed personal data and to information about their processing
right to correct personal data when it is inaccurate or incomplete
right to limit the processing under the conditions defined in the applicable legislation
right to delete personal data when there is no legal basis to continue data processing
right to portability of your data between different controllers (for example, between different service providers)
right to object to certain personal data processing activities, such as direct marketing
right not to be subject to decisions with a significant impact on you made solely by automated means
right to opt out of consent to the processing of personal data
right to submit a complaint to the competent supervisory authority
The GDPR provides for six legal grounds on which personal data may be processed:
the data subject has given his informed consent to the processing of personal data for a specific purpose
the processing is necessary to enter into or perform a contract with the data subject
data processing is necessary to comply with a legal obligation
the processing is necessary to protect the vital interests of the data subject or another natural person
the processing is necessary for the performance of a task of public interest
the processing is necessary in view of the legitimate interest of the data controller or a third party, except where this interest is overridden by the fundamental rights and freedoms of the data subject
Personal data processed by Limited Underwear
Personal data refers to both facts and opinions / assessments expressed in relation to an individual. The personal data that "Limited Underwear" processes can be conditionally divided into four categories:
Limited Underwear staff and associates, job applicants and former employees;
Employees, collaborators, job applicants: "Limited underwear" processes personal data, including special categories of personal data related to an employment or civil legal relationship, or data of job applicants. In general, "Limited Underwear" processes this data for the purpose of preparing and executing employment or other contracts, as well as to fulfill its legal obligations as an employer.
Individuals (for example, lawyers, auditors, other independent consultants) and representatives, contact persons, customer employees, partners and suppliers of goods / services with whom Underwear Limited has or is considering entering into a contractual or factual relationship (for example, legal representative of clients – legal entities, providers of transport and forwarding services, providers of telecommunication services, software and / or hardware solutions and infrastructure).
Representatives, contact persons and employees of customers, partners and suppliers of Limited Underwear - we usually receive your personal information from your employer or from you personally when it is necessary to prepare, enter into or perform a contract with them or enter into a commercial relationship . For example, it is possible that you are named as a legal representative or contact person in a contract or in commercial correspondence in connection with the conclusion, performance or termination of a contract, making an offer, resolving commercial disputes and the like.
Visitors to the Limited Underwear website and official pages on social networks, such as Facebook and Instagram
Visitors to the sites, mobile applications and social networks - when filling out the contact form on our websites We collect information about you based on your consent expressed by filling out this form. Typically, this information serves us to satisfy your inquiry about our products or other requests. Depending on the information you fill in, it is possible that the same will be processed to establish and exercise rights in connection with a potential or arising dispute with you, arising from claims or complaints made. We also collect information about your IP address and your consent to cookies. More information can be found in our Cookie Policy of Limited Underwear Ltd
Participants in games / raffles / campaigns organized by Limited Underwear on our websites, on official Limited Underwear Facebook and Instagram pages or through partners - marketing agencies
Participants in games / raffles / - when registering to participate in our games, you provide us with personal data. We process them on the basis of your unequivocal consent expressed by voluntarily completing the registration form for participation in the game / raffle / product campaign (including by placing a comment on your part under a post on our official Facebook and Instagram pages). More information can be found in our Privacy Policy for games / sweepstakes / campaigns, which you can access before registration on our website or social media page.
Visitors to properties owned or leased by Underwear Limited
Visitors to the sites - when visiting the office spaces, sites used to carry out our main activity, and common areas of the company, in order to ensure the security of our property and the physical integrity of our employees, as well as access control, technical means have been installed , which will register your visit.
Sharing of Personal Data
Usually, Limited Underwear keeps your personal data completely confidential and does not disclose it to third parties.
Sometimes, "Limited underwear" may share personal data of its employees or representatives of its customers, partners, couriers, carriers, contractors or suppliers with government authorities, as well as with other natural or legal entities - for example, software suppliers and / or hardware solutions and / or infrastructure, external consultants in connection with the establishment or exercise of rights, based on a legal obligation or in view of its legitimate interest according to the specific case.
Such data disclosure takes place only when there is a valid reason for it and when providing an adequate level of protection, including through written agreements with third parties to whom personal data is disclosed, where applicable.
Special categories of data
"Limited underwear" does not process sensitive personal data of its customers - individuals or employees / representatives of customers, partners and suppliers, visitors to the websites and pages in social networks.
Storage of personal data
"Limited underwear" stores the various types of personal data in electronic and paper format, which are contained in various documents, for a strictly defined period of time. The specified storage periods are always in accordance with the purposes for which the personal data is processed. These terms are regulated in the Limited Underwear Document Storage and Destruction Policy.
Exercising the rights of data subjects
In case of requests to exercise the rights of data subjects, "Limited Underwear" communicates with the natural person in a short, transparent, understandable and easily accessible form, in clear and simple language, especially in relation to persons under 18 years of age.
In exercising the rights of data subjects, Underwear Limited has an obligation to properly identify the natural person in order to prevent the risk of unauthorized access to personal data.
Information regarding the actions taken by Limited Underwear in response to a received request to exercise the rights shall be provided to individuals without undue delay and usually within one month of receipt of the request.
Any information in exercising the rights of the data subjects is provided by Limited Underwear free of charge, except where the requests are manifestly unfounded or excessive.
You can get more information about your rights related to the processing of personal data by "Limited Underwear" through our Policy on the rights of personal data subjects.
Security of personal data
"Limited Underwear" protects collected personal data from unreasonable use and monitors its processing.
Underwear Limited maintains secure computer systems through which personal data is processed. Adequate controls for the separation and management of data are applied to our systems.
Underwear Limited has strict policies and procedures applicable to its personnel to minimize the risks of processing personal data.
The employees of Limited Underwear are familiar with the applicable rules and trained to process personal data with the utmost care and compliance with imposed good practices.
In carrying out its activity, Limited Underwear works only with established organizations and avoids working with companies that it believes may threaten the security of individuals' personal data.
Underwear Limited adopts good practices in the implementation and administration of security systems and monitors technological developments regarding possible risks to information security in the company.
Underwear Limited respects the security of computer systems and the personal data contained therein, including the ability to access certain types of personal data by its employees.
Limited Underwear provides access only to such personal data as is necessary to perform the work of the relevant employee.
Breach of personal data security
Underwear Limited has adopted procedures to effectively identify, report and investigate breaches of the security of personal data. In the event of a breach of personal data security, "Limited Underwear" will take immediate action to limit the effect of the breach, as well as to inform the affected data subjects and the supervisory authority for the protection of personal data.
More information
"Limited Underwear" will promptly update, by amending and supplementing, this Policy at any time in the future when legal requirements or other circumstances require it.
If you would like to receive more information regarding the processing of personal data carried out by Limited Underwear or have any questions or complaints about this privacy notice or the ways and purposes for which we use your personal data, please contact us or our Personal Data Protection Officer via the following coordinates:
Name: Anton Chobanov
Email: anton.chobanov@icloud.com
Facebook: fb.com/Chobanov.BG
Messenger: m.me/Chobanov.BG
Limited Underwear EOOD ("Limited Underwear", "We", "The Company") accepts its obligations under the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on data protection of natural persons in connection with the processing of personal data and regarding the free movement of such data and for the repeal of Directive 95/46/EC) and the relevant Bulgarian legislation seriously and strives to comply with the highest applicable standards and established good practices in the processing of personal data. The competent leading supervisory authority regarding the protection of personal data processed by "Limitirano linno" EOOD is the Commission for the Protection of Personal Data of the Republic of Bulgaria.
Information about the "Personal Data Protection Officer":
Name: Anton Chobanov
Email: anton.chobanov@icloud.com
Facebook: fb.com/Chobanov.BG
Messenger: m.me/Chobanov.BG
Information about the Personal Data Administrator:
Name: "Limited underwear" EOOD
EIK/BULSTAT: 205704494
Address: Republic of Bulgaria, reg. Stara Zagora, town of Kazanlak, 41 "Iztok" street, apartment 168,
Phone: +359 (0) 888 23 4411
Email: office@limitedlingerie.eu
Website: www.limitedlingerie.eu
Information about the competent supervisory authority:
Name: Personal Data Protection Commission
Address: Sofia 1592, Prof. Blvd. Tsvetan Lazarov" No. 2
Correspondence details: Sofia, Prof. Blvd. Tsvetan Lazarov" No. 2
Phone: 02 915 3 518
Email: kzld@cpdp.bg
Website: www.cpdp.bg
Definitions
The following definitions are used in this Policy:
"Applicable law" means the applicable legislation of the European Union and the Republic of Bulgaria regarding the protection of personal data;
"Regulation (EU) 2016/679" means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and on Repeal of Directive 95/46/EC (General Data Protection Regulation), published in the Official Journal of the European Union on May 4, 2016.
"GDPR" means Regulation (EU) No 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and on the repeal of Directive 95 / 46 / EC ("General Data Protection Regulation");
"Personal Data" means any information relating to an identified or identifiable natural person ("data subject"); identifiable natural person means a person who can be identified, directly or indirectly, through information such as, for example, name, identification number, location data, one or more factors characteristic of physical, physiological, genetic, economic, cultural or social identity of that individual
"Processing" means any operation or set of operations performed on personal data, whether by automatic or other means such as collection, recording, organization, structuring, storage, adaptation or modification, retrieval, consultation, use, disclosure by transmission, dissemination or other way in which the data is made available, arranged or combined, restricted, deleted or destroyed.
"Profiling" is any form of automated processing of personal data, consisting in the use of personal data to assess certain personal aspects related to a natural person and, more specifically, to analyze or predict aspects related to the performance of professional that individual's obligations, economic status, health, personal preferences, interests, reliability, conduct, location or movement;
"Special categories of personal data": personal data revealing racial or ethnic origin, political views, religious or philosophical beliefs or trade union membership, as well as the processing of genetic data, biometric data for the sole purpose of identifying an individual, health data status or data about the sex life or sexual orientation of the natural person
"Personal data register" means any structured set of personal data that is accessed according to certain criteria;
"Administrator" means a natural or legal person, public body or other structure that alone or jointly with others determines the purposes and means of processing personal data;
"Processor of personal data" means a natural or legal person, public body or other structure that processes personal data on behalf of the controller;
"Consent of the data subject" means any freely expressed, specific, informed and unequivocal indication of the will of the data subject, by means of a statement or a clear affirmative action, which expresses his consent to the personal data relating to him being processed;
"Discloser of Personal Data" means a natural or legal person, public body or other entity that transmits Personal Data to the Recipient of Personal Data;
"Recipient of Personal Data" means a natural or legal person, public body or other entity that receives the Personal Data from the Discloser of the Personal Data;
"Third party" means a natural or legal person, public body, agency or other body other than the data subject, the controller, the personal data processor and the persons who, under the direct supervision of the controller or the personal data processor, have the right to process the personal data.
"Breach of personal data security" means an act / circumstance that results in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access to personal data that is transmitted, stored or otherwise processed
"Personal data controller": The organization or individual that determines the purposes and means of personal data processing.
"Data Subject": An identified or identifiable living natural person.
"Administrator's facility" means owned or leased premises that the Administrator uses to carry out its main business.
protection of personal data
As of May 25, 2018, the General Data Protection Regulation ("GDPR") has been implemented in the member states of the European Union. Limited underwear complies with the GDPR and the principles for processing personal data enshrined in European and national legislation.
Underwear Limited guarantees that the personal data it processes will be:
processed lawfully, in good faith and in a transparent manner with respect to natural persons
collected for specific, explicitly stated and legitimate purposes and not to be further processed in a manner incompatible with these purposes
appropriate, relevant and limited to what is necessary in relation to the purposes for which they are processed
accurate and, if necessary, kept up-to-date
stored in a form that allows the identification of the data subject for a period no longer than is necessary for the purposes for which the personal data are processed
processed in a way that guarantees an appropriate level of personal data security
Natural persons - data subjects, have the following rights in relation to their personal data:
right to information (this right is implemented by providing clear and easy-to-understand privacy notices that explain how and for what purposes we use your personal data, as well as what your rights are in relation to the processed personal data)
right of access to the processed personal data and to information about their processing
right to correct personal data when it is inaccurate or incomplete
right to limit the processing under the conditions defined in the applicable legislation
right to delete personal data when there is no legal basis to continue data processing
right to portability of your data between different controllers (for example, between different service providers)
right to object to certain personal data processing activities, such as direct marketing
right not to be subject to decisions with a significant impact on you made solely by automated means
right to opt out of consent to the processing of personal data
right to submit a complaint to the competent supervisory authority
The GDPR provides for six legal grounds on which personal data may be processed:
the data subject has given his informed consent to the processing of personal data for a specific purpose
the processing is necessary to enter into or perform a contract with the data subject
data processing is necessary to comply with a legal obligation
the processing is necessary to protect the vital interests of the data subject or another natural person
the processing is necessary for the performance of a task of public interest
the processing is necessary in view of the legitimate interest of the data controller or a third party, except where this interest is overridden by the fundamental rights and freedoms of the data subject
Personal data processed by Limited Underwear
Personal data refers to both facts and opinions / assessments expressed in relation to an individual. The personal data that "Limited Underwear" processes can be conditionally divided into four categories:
Limited Underwear staff and associates, job applicants and former employees;
Employees, collaborators, job applicants: "Limited underwear" processes personal data, including special categories of personal data related to an employment or civil legal relationship, or data of job applicants. In general, "Limited Underwear" processes this data for the purpose of preparing and executing employment or other contracts, as well as to fulfill its legal obligations as an employer.
Individuals (for example, lawyers, auditors, other independent consultants) and representatives, contact persons, customer employees, partners and suppliers of goods / services with whom Underwear Limited has or is considering entering into a contractual or factual relationship (for example, legal representative of clients – legal entities, providers of transport and forwarding services, providers of telecommunication services, software and / or hardware solutions and infrastructure).
Representatives, contact persons and employees of customers, partners and suppliers of Limited Underwear - we usually receive your personal information from your employer or from you personally when it is necessary to prepare, enter into or perform a contract with them or enter into a commercial relationship . For example, it is possible that you are named as a legal representative or contact person in a contract or in commercial correspondence in connection with the conclusion, performance or termination of a contract, making an offer, resolving commercial disputes and the like.
Visitors to the Limited Underwear website and official pages on social networks, such as Facebook and Instagram
Visitors to the sites, mobile applications and social networks - when filling out the contact form on our websites We collect information about you based on your consent expressed by filling out this form. Typically, this information serves us to satisfy your inquiry about our products or other requests. Depending on the information you fill in, it is possible that the same will be processed to establish and exercise rights in connection with a potential or arising dispute with you, arising from claims or complaints made. We also collect information about your IP address and your consent to cookies. More information can be found in our Cookie Policy of Limited Underwear Ltd
Participants in games / raffles / campaigns organized by Limited Underwear on our websites, on official Limited Underwear Facebook and Instagram pages or through partners - marketing agencies
Participants in games / raffles / - when registering to participate in our games, you provide us with personal data. We process them on the basis of your unequivocal consent expressed by voluntarily completing the registration form for participation in the game / raffle / product campaign (including by placing a comment on your part under a post on our official Facebook and Instagram pages). More information can be found in our Privacy Policy for games / sweepstakes / campaigns, which you can access before registration on our website or social media page.
Visitors to properties owned or leased by Underwear Limited
Visitors to the sites - when visiting the office spaces, sites used to carry out our main activity, and common areas of the company, in order to ensure the security of our property and the physical integrity of our employees, as well as access control, technical means have been installed , which will register your visit.
Sharing of Personal Data
Usually, Limited Underwear keeps your personal data completely confidential and does not disclose it to third parties.
Sometimes, "Limited underwear" may share personal data of its employees or representatives of its customers, partners, couriers, carriers, contractors or suppliers with government authorities, as well as with other natural or legal entities - for example, software suppliers and / or hardware solutions and / or infrastructure, external consultants in connection with the establishment or exercise of rights, based on a legal obligation or in view of its legitimate interest according to the specific case.
Such data disclosure takes place only when there is a valid reason for it and when providing an adequate level of protection, including through written agreements with third parties to whom personal data is disclosed, where applicable.
Special categories of data
"Limited underwear" does not process sensitive personal data of its customers - individuals or employees / representatives of customers, partners and suppliers, visitors to the websites and pages in social networks.
Storage of personal data
"Limited underwear" stores the various types of personal data in electronic and paper format, which are contained in various documents, for a strictly defined period of time. The specified storage periods are always in accordance with the purposes for which the personal data is processed. These terms are regulated in the Limited Underwear Document Storage and Destruction Policy.
Exercising the rights of data subjects
In case of requests to exercise the rights of data subjects, "Limited Underwear" communicates with the natural person in a short, transparent, understandable and easily accessible form, in clear and simple language, especially in relation to persons under 18 years of age.
In exercising the rights of data subjects, Underwear Limited has an obligation to properly identify the natural person in order to prevent the risk of unauthorized access to personal data.
Information regarding the actions taken by Limited Underwear in response to a received request to exercise the rights shall be provided to individuals without undue delay and usually within one month of receipt of the request.
Any information in exercising the rights of the data subjects is provided by Limited Underwear free of charge, except where the requests are manifestly unfounded or excessive.
You can get more information about your rights related to the processing of personal data by "Limited Underwear" through our Policy on the rights of personal data subjects.
Security of personal data
"Limited Underwear" protects collected personal data from unreasonable use and monitors its processing.
Underwear Limited maintains secure computer systems through which personal data is processed. Adequate controls for the separation and management of data are applied to our systems.
Underwear Limited has strict policies and procedures applicable to its personnel to minimize the risks of processing personal data.
The employees of Limited Underwear are familiar with the applicable rules and trained to process personal data with the utmost care and compliance with imposed good practices.
In carrying out its activity, Limited Underwear works only with established organizations and avoids working with companies that it believes may threaten the security of individuals' personal data.
Underwear Limited adopts good practices in the implementation and administration of security systems and monitors technological developments regarding possible risks to information security in the company.
Underwear Limited respects the security of computer systems and the personal data contained therein, including the ability to access certain types of personal data by its employees.
Limited Underwear provides access only to such personal data as is necessary to perform the work of the relevant employee.
Breach of personal data security
Underwear Limited has adopted procedures to effectively identify, report and investigate breaches of the security of personal data. In the event of a breach of personal data security, "Limited Underwear" will take immediate action to limit the effect of the breach, as well as to inform the affected data subjects and the supervisory authority for the protection of personal data.
More information
"Limited Underwear" will promptly update, by amending and supplementing, this Policy at any time in the future when legal requirements or other circumstances require it.
If you would like to receive more information regarding the processing of personal data carried out by Limited Underwear or have any questions or complaints about this privacy notice or the ways and purposes for which we use your personal data, please contact us or our Personal Data Protection Officer via the following coordinates:
Name: Anton Chobanov
Email: anton.chobanov@icloud.com
Facebook: fb.com/Chobanov.BG
Messenger: m.me/Chobanov.BG