General terms

The privacy policy of "Kartel Consult" defines why we collect personal data, what we use them for, how we store them, as well as what responsibilities we have as an Administrator and what rights you have in relation to their processing.

To contact us you can use the following information:

Administrator details

"Kartel Consult" Ltd., UIC: 204023863, with seat and registered address: 1618 Sofia, "Bulgarska legia" Str, № 36 P.B. 9, represented by Lozan Shapkarov. For contact: tel: +359888220504, e-mail: shapkarov@kartelconsult.com

Contact details of Data Protection Officer

Name: Desislava Dineva
E-mail: dineva@kartelconsult.com
Tel: +359888414881

What are personal data?

According to the General Data Protection Regulation of the EC, personal data are defined as:

"Any information relating to an identified or identifiable natural person ("data subject"); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to a name, an identification number, location data, online identification or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity;".

Why does Kartel Consult collect and store personal data?

In order to administer the employment contractual relations, and to fulfill the statutory requirements for our activity, it is necessary to collect personal data. You will receive in advance detailed information about the purposes of processing of the data, the storage period, and to which third parties the data is required to be disclosed in accordance with legal requirements. We guarantee that the information we collect and use is required for a specific purpose and is not for the purpose of entering your personal space.

1. What personal data do we use and for what purpose?

1.1. If you are our client who is seeking a job through our agency:

The personal data provided through the CV, registration on the website or contact form will be used by us only for the purposes of job application in compliance with the Bulgarian and European legislation. These data are processed only after your written consent.

1.2. If you are our client – employer, looking to hire personnel:

Your names, phone number, e-mail address, business card, information about your position in the respective company, and the correspondence with you will be used only in connection with the business relations between our two organizations.

1.3. If you apply for a job in our company:

By submitting your CV and cover letter, you declare that you agree your data to be stored by us for a certain period of time.
When you apply for a potential, and not an announced, position in our company, we will store your personal data for a period of 3 (three) years.
If you have applied for a specific position, your personal data will be stored until the end of the selection process for this position, but not longer than 2 (two) months.

1.4. If you are using the online resources of our website:

Traffic data, registration content and feedback forms, as well as other data that we receive when you use the resources of our website, will be used to fulfill your request or for marketing and communication purposes, when you give your consent for this.

1.5. Others:

Apart for the abovementioned purposes, we can also use the collected information for our legitimate interests, such as: internal audits and analyses; tax, accounting and other legally enforceable obligations; protection in legal claims; prevention of illegal acts; and other purposes which are mandatorily regulated by virtue of the current legal provisions, as well as for the purpose of fulfilling our obligations assigned to us by the current legislation.

2. When and to whom do we disclose your personal data?

We may disclose your personal data to other Kartel Consult affiliates who have also accepted this Privacy Policy. The purpose of the disclosure may be related to further lawful performance of our contractual relationship, to liaising with third parties - such as service providers, for marketing purposes or for technical support.

Personal data may also be disclosed to third parties in cases when a court or administrative order has been issued.

Personal data are usually processed within the EU and only rarely need to be disclosed in countries outside the Community. In the latter case we are committed to ensuring the same level of security in the processing and storage of data as guaranteed by EU law.

3. How long do we store personal data?

We store data only for the period necessary to achieve the purposes which they were collected for or to comply with legal or regulatory requirements. The specific periods are indicated in the cases under item 1.3 of this document.

4. How do we protect personal data?

The security of your personal information is ensured by physical, technical and administrative protection measures. Please note that regardless of the measures applied, the information shared on the Internet can never be fully guaranteed. Assess the risk and sensitivity of the required personal data before providing it!

5. What rights do you have and how can you exercise them?

You can see what rights you have on the website of the Commission for Personal Data Protection, but in general they are the following:

  • you have the right to request a copy of your personal data and the right to access your personal data at any time;
  • you have the right to request your personal data in a form convenient for transfer to another personal data administrator, or to request that we transfer it without being hindered by us;
  • you have the right to request that we correct, without undue delay, your inaccurate personal data, as well as data that is no longer up to date;
  • you have the right to request that your personal data be deleted without undue delay in any of the following cases:
    - the personal data are no longer necessary for the purposes, for which they were collected;
    - when you have withdrawn your consent;
    - when you have objected to the processing;
    - when the processing is illegal;
    - when personal data must be deleted in order to comply with a legal obligation under EU law or the law of a Member State that applies to us as an administrator of personal data;
    - when personal data have been collected in connection with the provision of services to the information society.

    We can refuse to delete your personal data for any of the following reasons:
    - in exercising the right to freedom of expression and the right to information;
    - for compliance with a legal obligation on our part or for the performance of a task of public interest;
    - for reasons of public interest in the field of public health;
  • you have the right to ask us to restrict the processing of your personal data, in which case the data will only be stored but not processed;
  • you have the right to withdraw your consent to the processing of your personal data at any time with a separate request addressed to the administrator;
  • you have the right to object to certain types of processing, such as direct marketing (unsolicited advertising messages);
  • you have the right to object to automated processing, including profiling;
  • you have the right not to be the subject of a decision based solely on automated processing which includes profiling;
  • if we need to use your personal data for a new purpose that is not covered by your declaration of consent, we will provide you with a new data protection notice and we will request your consent for the new processing in advance, when, and where it is necessary.

All of the above requests will be forwarded if there is a third party (recipients, including outside the EU and international organizations) in the processing of your personal data.

If you wish to exercise any of the above rights, please contact us through the contacts published in the introduction to this document.

6. Cookies policy

6.1. What are "cookies" and what do we use them for?

"Cookies" are information sent from your computer when you visit a website. These files on our website serve for its better functionality. For example, when you create a registration, we "set" an identification cookie, with which you will not be required to re-identify each time you visit.

Other "cookies" we use serve for web analysis, or allow to see how many users visit our site, how long it takes, what keywords they use, and so on.

All data collected through the "cookies" are stored and managed by "Kartel Consult".

6.2. How to control "cookies"?

You can set your computer's browser so that you do not receive "cookies", be notified when this happens, or block "cookies" from a specific website. However, please note that if you do not accept our "cookies", you will not be able to use the full functionality of the website.

7. Changes in the privacy policy

Any significant changes to this Policy will be published on the website of "Kartel Consult". Our clients and partners will be informed of the changes in due time.

8. Right to appeal

You have the right to file a complaint directly with the supervisory authority, the competent authority being: for Bulgaria: Commission for Personal Data Protection, with address: 1592 city of Sofia, 2 Prof. Tsvetan Lazarov Blvd. (www.cpdp.bg).

Effective from: 09.04.2021