This Privacy Policy explains how Control Solutions Ltd. collects, uses, stores, and protects personal data in accordance with the General Data Protection Regulation (EU) 2016/679 and applicable Bulgarian data protection legislation.

By using this website or providing personal data to us, you acknowledge the practices described in this Policy.

Collection of Personal Data

We explicitly collect personal data when you interact with our website or services.

Personal data we may collect includes:

  • Full name
  • Email address
  • Telephone number
  • Company name and position
  • Correspondence and enquiry details
  • Billing or contractual information where applicable
  • Technical information such as IP address, browser type, device information, and usage data

We collect only personal data that is necessary for legitimate business purposes.

How Personal Data Is Collected

Personal data may be collected through:

  • Direct interactions, such as completing contact forms or sending enquiries
  • Email, telephone, or written communications
  • Contractual engagement processes
  • Automated technologies, including cookies and server logs
  • Third-party service providers where lawful and appropriate

We do not collect personal data without a lawful basis.

Purpose of Data Collection

Personal data is collected and processed for the following purposes:

  • Responding to enquiries and communications
  • Providing and administering services
  • Entering into and performing contractual obligations
  • Managing client relationships
  • Maintaining website functionality and security
  • Complying with legal and regulatory obligations
  • Protecting our legal interests

Personal data will not be processed for purposes incompatible with those stated above unless required or permitted by law.

Lawful Basis for Processing

Processing is based on one or more of the following lawful grounds:

  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests pursued by the company
  • Consent where required

Where processing is necessary to fulfil service obligations, access to personal data is limited strictly to trusted personnel who require it for operational purposes.

Disclosure and Processing by Third Parties

Personal data may be shared with:

  • Authorised employees and contractors
  • Professional advisers
  • IT and hosting providers
  • Payment or administrative service providers
  • Regulatory authorities where required by law

Where third-party service providers are engaged, they are contractually required to process personal data in accordance with GDPR and maintain standards equivalent to our own data protection practices.

Storage Practices and Security

We take appropriate technical and organisational measures to safeguard personal data.

These measures include:

  • Secure hosting environments
  • Encryption technologies such as SSL
  • Restricted access controls
  • Internal data handling procedures
  • Ongoing monitoring and periodic security reviews

Personal data may be transferred for secure hosting and data storage purposes, including to reputable data centres within or outside Bulgaria.

Access to personal data is strictly limited to individuals who require it for the fulfilment of their responsibilities.

Cross-Border Transfers

Where personal data is transferred outside the European Economic Area, we ensure that appropriate safeguards are in place, including:

  • Transfers to countries recognised by the European Commission as providing adequate protection
  • Standard Contractual Clauses approved by the European Commission
  • Other legally recognised transfer mechanisms

Such safeguards are implemented to ensure that personal data remains protected to a standard consistent with GDPR.

Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or regulatory requirements.

When personal data is no longer required, it is securely deleted or anonymised.

Your Rights Under GDPR

You have the right to:

  • Request access to your personal data
  • Request rectification of inaccurate or incomplete data
  • Request erasure of your personal data
  • Request restriction of processing
  • Request data portability
  • Object to processing based on legitimate interests
  • Not be subject to a decision based solely on automated processing

Requests may be submitted using the contact details below.

You also have the right to lodge a complaint with the Bulgarian Commission for Personal Data Protection if you believe your rights have been infringed.

Full Legal Information

Full Legal Name: Control Solutions Ltd.
Registered Address: XCOMPANYADDRESSX
Phone Number: XCOMPANYPHONEX
Contact Email: XCOMPANYEMAILX
Registration Number: XCOMPANYREGISTRATIONX

Updates to This Policy

We may update this Privacy Policy to reflect changes in legal requirements or operational practices. The most recent version will always be available on this website.