Privacy Policy
This Privacy Policy (the "Policy") describes the ways we collect, store, use
and manage the information - including any personal information - that our
users ("users" or "you") provide, and the information we collect, in connection
with the use of this website (the "Services").
By using the Services, you are expressing your agreement to this Policy and
the processing of your data, including your personal information, in the manner
provided in this Policy. If you do not agree to these terms, please do not use
the Services.
If you have questions or concerns about our privacy policy or practices,
please contact us using the contact information provided below.
Information Collection and Use
Our primary goals in collecting and using information is to create your
account, provide Services to you, improve our Services, contact you, conduct
research and create reports for internal use and for any kind of educational
purpose. We store information on servers located in Finland and may store
information on servers and equipment in other countries within the European
Union.
The EU-SELF (the website)
While you are browsing the website, your mobile device or computer operating
system, Internet Protocol (IP) address, access times, browser type and language
may be logged automatically. This constitutes anonymous usage data that does
not identify or precisely locate the user (non-personally identifiable
information). We may use this information to monitor, develop and analyse your
use of the Services. In addition, if you register as a Contributor we may ask
you to submit and we may process data that is personal to you, including, but
not limited to, your name, profile photo, email address. Personally
identifiable information is only collected with your informed knowledge, i.e.
when you knowingly submit it to us. If you provide your email, we may use your
email address to contact you for subjects related to this project. If you no
longer wish to receive our Services or any or all types of communication, you
may opt-out from receiving them at any time by e-mailing us at the email
address provided below.
Server log files
Whenever you navigate in the website we collect data about your interactions
via server log files. This information may be associated with your anonymised
IP address or device ID for the purpose of providing you with our Services.
This data is stored in our servers.
Cookies
A cookie is a small text file that we transfer to your computer and/or device,
to identify a user's computer/device. We only use necessary cookies, in order
to make our website work in a secure manner, namely we use a cookie to prevent
Cross-Site Request Forgery (CSRF) attacks. All cookies used are first-party
cookies (i.e. we do not use external services and do not store third party
cookies in your device). You can disable cookies at any time, although you may
not be able to access or use some features of the Services anymore.
How We Use Information
We use information collected through our Services for purposes described in
this Policy or disclosed to you in connection with our Services. For example,
we may use your information to: operate and improve our Services; understand
you and your preferences to enhance your experience and enjoyment using our
Services; provide and deliver products and services you request.
Disclosure of Your information
We do not share your personal information except as approved by you or as
described below:
We may release your information as permitted by law, such as to comply with a
subpoena, or when we believe that release is appropriate to comply with the
law; investigate fraud, respond to a government request, enforce or apply our
rights; or protect the rights, property, or safety of us or our users, or
others. This includes exchanging information with other companies and
organisations for fraud protection.
Changes to the Policy
We may update this privacy policy to reflect changes to our information
practices. If we make any material changes, we will notify you by means of a
notice on our website prior to the change becoming effective and also via
email.
Security
We take all the necessary technical and organisational measures to protect the
confidentiality and security of your information from unauthorised access or
against loss, misuse or alteration by third parties. We make good faith efforts
to store the information collected on the Services in a secure operating
environment that is not available to the public and is only accessible by
authorised employees, agents or contractors and we verify the identities of
registered users before they can access personal information stored about them.
Your Data Protection Rights (Art. 12-22. GDPR)
Access to Personal Information
You have the right to obtain from the controller confirmation as to whether or
not personal data concerning you are being processed, the controller shall
provide complete information and a copy of the personal data undergoing
processing.
Right to rectification and Right to erasure ('right to be forgotten')
If your personal information changes, or if you no longer desire our service,
you may correct, update, or delete inaccuracies by making the change within
your account settings or by contacting us at the address provided below. We
will respond to your access request within 30 days.
Right to restriction of processing
If you ask, your personal data can't be processed with the exception of
storage.
Right to object
You can object, at any time to processing of your personal data.
The right to legal remedy
In the case of breach of your rights, you can turn to the data protection
officer, to the Supervisory authority or you can sue in court.
Data Retention
We will retain your information for as long as needed to provide you Services.
If you wish to cancel your account or request that we no longer use your
information to provide you services, contact us at the address provided below.
We will retain and use your information as necessary to comply with our legal
obligations, resolve disputes, and enforce our agreements.
Our Policy Regarding Children
We do not knowingly collect or solicit personal information from anyone under
the legal age of majority or knowingly allow such persons to use our Services.
If you are under this age, please do not send any information about yourself to
us, including your name, address, telephone number, or email address. In the
event that we learn that we have collected personal information from a child,
we will delete that information as quickly as possible. If you believe that we
might have any information from or about a child, please contact us at the
address provided below
Contact Information
For data protection purposes, the NBU is the Data
Controller of any personal information submitted and related to the
above-mentioned Services. You can contact us at:
nkoltcheva@nbu.bg, https://gdpr.nbu.bg
You can also contact the Data Protection Officer:
E-mail: dpo@nbu.bg
Last updated: 2023-08-01
