Съдържание

    Privacy Policy

    Protection of personal data (policy)

    General settings:

    This Privacy Policy of ZB Corporex Bulgaria EOOD applies and is based on the requirements and principles for the protection of personal data adopted by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (Regulation (EU) 2016/679 or the General Data Protection Regulation).

    In accordance with Article 21 of the Financial Regulation, this revenue is to be considered as assigned revenue and gives rise to the entry of additional appropriations on the lines which bore the initial expenditure giving rise to the corresponding revenue. Head of the Office of the Prosecutor of the Republic of Moldova. Sofia, at 4 Youth Street. In the case of the applicant, the Commission considers that it is not necessary to provide the information requested by the complainant.

    In Corporex Bulgaria EOOD, a Data Protection Officer has been appointed who meets the requirements of the General Data Protection Regulation with contact details: e-mail: hq@corporexbg.com

    Corporex Bulgaria EOOD uses the website www.insurance.bg for online sale and ordering of insurance products in accordance with the Insurance Code, the Distance Financial Services Act and all other applicable Bulgarian and European regulatory acts.

    Definitions of the term

    ‘personal data’ means any information relating to an identified natural person or to an identifiable natural person (‘data subject’); an identifiable natural person is a person who can be identified, directly or indirectly, in particular by an identifier such as name, identification number, location data, online identifier or by one or more features specific to the physical, physiological, genetic, psychological, intellectual, economic, cultural or social identity of that natural person;

    ‘processing’ means any operation or set of operations carried out on personal data or a set of personal data by automatic or other means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, sorting or combining, restricting, erasing or destroying;

    A register of personal data means any structured set of personal data accessed according to defined criteria, whether centralised, decentralised or distributed according to a functional or geographical principle.

    ‘controller’ means any natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by EU law or the law of the Republic of Bulgaria, the controller or the specific criteria for its determination may be established in the law of the European Union or the law of the Republic of Bulgaria;

    ‘data subject’ means a natural person who has been identified or who can be identified on the basis of certain information which is directly or indirectly personal data;

    (e) Legitimate interest of Corporation Bulgaria Ltd or of a third party where these take precedence over the interests or fundamental rights and freedoms of the data subject/client, for example to prevent crime and other lawful purposes.

    Corporex Bulgaria EOOD recognises the privacy of individuals and endeavours to protect against the unlawful processing of personal data of individuals. In accordance with the legislation in force, the insurance broker shall apply appropriate technical and organisational measures to protect the personal data of natural persons.

    Privacy policy

    This privacy policy of Corporex Bulgaria Ltd. aims to inform users about the purposes and grounds for processing personal data, the rights of data subjects, the categories of recipients to whom the data may be disclosed, the mandatory or voluntary nature of the provision of data, information about the right of access and the right to correct the collected data, as required by the Personal Data Protection Act.

    Processing of personal data

    „Corporex Bulgaria“ EOOD, as the administrator of personal data, processes them in a way that guarantees an appropriate level of security, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, applying appropriate technical and/or organizational measures in compliance on the following principles:

    Lawful, fair and transparent processing of personal data with respect to the data subject (lawfulness, good faith and transparency)

    Processing of personal data

    Corporex Bulgaria EOOD, as the controller of personal data, shall process them in a manner that ensures an appropriate level of security, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, by applying appropriate technical and/or organisational measures, subject to the following principles:

    Processing of personal data in accordance with the law, good faith and transparency with regard to the data subject (lawfulness, good faith and transparency)

    Data are collected for specific, legitimate purposes and are not processed in a manner incompatible with those purposes (‘purposefulness of the processing of personal data and purpose limitation’)

    The processing of personal data shall be carried out in accordance with the law of the Member State in which the controller is established.

    accuracy and timeliness of the processing of personal data.

    Limitation of storage for a period no longer than necessary for the purposes for which the personal data are processed (‘limitation of storage’)

    Processing in a manner that ensures an adequate level of security of personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, by applying appropriate technical or organisational measures (integrity and confidentiality)

    Corporex Bulgaria EOOD shall process personal data if it is:

    the processing is necessary for the performance of a contract with the insurance broker to which the data subject is a party or for taking steps at the request of the data subject prior to the conclusion of a contract.

    the processing is necessary for compliance with a legal obligation applicable to the insurance broker in its capacity as controller of personal data.

    the data subject has given consent to the processing of his or her personal data for one or more specific purposes. In cases where personal data are processed solely on the basis of consent, the data subject shall have the right to withdraw his or her consent at any time.

    Corporex Bulgaria EOOD processes personal data independently or by outsourcing to data processors in compliance with the Personal Data Protection Act and the General Data Protection Regulation.

    Excluded

    The insurance broker as controller shall not process personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or membership of trade unions, as well as the processing of genetic data, biometric data for the sole purpose of identifying the natural person, data on the sexual life or sexual orientation of the natural person, unless the data subject has given his or her explicit consent to the processing of such personal data for one or more specific purposes.

    Some insurance schemes, such as Health Insurance, require health data, which are processed in accordance with the Data Protection Act and the General Data Protection Regulation. The data are required under the provisions of the Insurance Code.

    For what purposes do we process personal data?

    Corporex Bulgaria EOOD, as a licensed insurance broker, processes personal data for the purpose of providing insurance intermediation in accordance with the Insurance Code.

    The provision of personal data by individuals is voluntary. In the event of a refusal to provide personal data, Corporex Bulgaria EOOD will not provide mediation for the requested insurance product or service or perform the relevant commercial transaction, insofar as the processing of personal data in the largest volume is in compliance with the statutory and regulatory obligations of the insurance broker.

    The personal data provided by persons to Corporex Bulgaria EOOD when requesting the provision of an insurance intermediation service shall be processed for the purpose of analysing whether those persons meet the conditions for the provision of that product or service, as well as for the purpose of duly identifying the parties to the commercial transactions carried out in fulfilment of the obligations laid down by law and regulation for the insurance broker.

    The processing of personal data is most commonly in the performance of the insurance broker’s statutory obligations arising from legal requirements governing insurance and other related business activities, financial accounting activities, anti-money laundering and terrorist financing activities, health and social security activities, human resources management activities, etc.

    In addition to the cases described, the processing of personal data of data subjects is permissible in the presence of a legitimate interest of Corporation Bulgaria Ltd or of a third party, when these take precedence over the interests or fundamental rights and freedoms of the data subject /client/, for example for the purpose of crime prevention and other lawful purposes.

    The personal data of the subjects are stored for the duration of our contractual relationship and for the statutory period of 5 years after its termination, in accordance with the requirements of the applicable special laws.

    What personal data we collect

    Corporex Bulgaria EOOD collects the following types of personal data:

    Personal identification data ⁇ names, GNI, date of birth, data from an identity document, telephone number, email address. This information is necessary to comply with the requirements of the Insurance Code and the Anti-Money Laundering Measures Act, which require us to identify you. The data are also required for the conclusion of an insurance policy.

    Data on your social status ⁇ For some types of insurance, data related to marital status and social status are required in order to be able to determine customer needs in accordance with the Insurance Code.

    Special categories of personal data ⁇ For some types of insurance, such as health insurance, information about your health condition is required. If you provide one, we will process it entirely in accordance with the provisions of the Personal Data Protection Act and EU Regulation 2016/679.

    For some additional services, such as various checks in public registers related to vehicles and/or information on the validity of civil liability insurance, accidents, fines in the CAT, etc., the customer is required to provide the requested personal data and to agree to our use for this purpose.

    For direct marketing purposes, we will require explicit consent for this purpose, which can be withdrawn by the customer at any time.

    When we may disclose personal data to third parties

    ⁇ Corporation Bulgaria ⁇ Ltd may disclose personal data to:

    Public authorities having a legal basis to receive personal data

    Insurers whose personal data are necessary in connection with a pre-contractual relationship or the fulfilment of a legal obligation

    Information system providers, legal services firms, couriers and others necessary for the functioning of the processes and services at the brokerage

    Cookies and similar products

    A ‘cookie’ is a small amount of data that a website stores on your computer or mobile device.

    the visitor device.

    On our website www.insurance.bg we use ‘cookies’ in connection with its functioning as well as to collect statistical data for the purpose of carrying out analysis, for which we use Google Analytics and Google Search Console.

    The cookies used serve to distinguish users and sessions, to determine new sessions, to submit requests, to store the source of traffic and how the site was reached.

    By setting your browser accordingly, you can always turn off both our cookies and third-party cookies. In this case, you may lose some of the functionality of some of the services on the site.

    User rights

    ▪ Right to information (in connection with the processing of the personal data of the data subject by the insurance broker – the natural person who is the data subject has the right to receive information* about „Corporex Bulgaria“ EOOD as the controller of personal data, as well as about the processing of his personal data. This information includes: data identifying the insurance broker, including the contact details of the data protection officer; the purposes and the legal basis for the processing;

    The recipients or categories of recipients of the personal data, if any; The controller’s intention to transfer the personal data to a third party/third country (when applicable); The period of storage of personal data; The existence of automated decision-making, including profiling (if any); Information about any rights that the data subject has; The right to appeal to the supervisory authority. *Specified information is not provided if the data subject already has it.

    ▪ Right of access to his own personal data – the data subject has the right to receive from the insurance broker confirmation as to whether personal data related to him is being processed and, if so, to obtain access to the data and the following information: Purpose of processing;

    The relevant categories of personal data; The recipients or categories of recipients of the personal data, if any; The controller’s intention to transfer the personal data to a third party (where applicable); The period of storage of personal data; Existence of the right to correct personal data, as well as the right to object to the processing of personal data; The existence of automated decision-making, including profiling (if any); Information about any rights that the data subject has; The right to appeal to the supervisory authority.

    ▪ Right to correct personal data (if the data is inaccurate) – the data subject has the right to request the insurance broker to correct inaccurate personal data related to him without undue delay.

    ▪ Right to deletion of personal data (right „to be forgotten“) – The data subject can request the insurance broker to delete if one of the following conditions is present:

    o Personal data are no longer necessary for the purposes for which they were collected or otherwise processed;

    o The data subject withdraws his consent, which is the only basis for the processing of the data and there is no other legal basis for the processing /processing pursuant to a legal obligation, concluded contract/;

    o The data subject objects to the processing and there are no overriding legal grounds for the processing;

    o Personal data has been processed unlawfully;

    o Personal data must be deleted in order to comply with a legal obligation under the law of the European Union or the law of the Republic of Bulgaria, which applies to the insurance broker in its capacity as an administrator;

    o Personal data has been collected in connection with the provision of information society services to children and consent has been given by the holder of parental responsibility for the child.

    Procedure for exercising consumer rights

    When exercising their right of access, natural persons have the right at any time to request from „Corporex Bulgaria“ EOOD:

    confirmation of whether data relating to them is processed by the insurance broker, what are the purposes of the processing, the categories of data and the recipients of this data or the categories of recipients to whom the data is disclosed;

    The broker to send them a message to them in an understandable form, containing the personal data being processed and any available information about the source of this data;

    The above information is provided free of charge.

    Individuals have the right at any time to ask „Corporex Bulgaria“ EOOD to:

    delete, correct or block their personal data, the processing of which does not meet the requirements of current legislation

    the insurance broker to notify the third parties to whom the personal data of the individuals were disclosed about any deletion, correction or blocking, except for cases where this is impossible or related to excessive efforts for the Broker.

    To contact the Commission for the Protection of Personal Data:

    Sofia 1592, Prof. Blvd. Tsvetan Lazarov“ No. 2

    Email: kzld@cpdp.bg

    Website: www.cpdp.bg

    When visitors leave comments on the site, we collect the data displayed in the comment form, as well as the visitor’s IP address and user browser ID to help detect spam.

    An anonymous string based on your email address (also called a „hash“) may be provided to the Gravatar service to verify that you are using it. The Gravatar privacy policy is here: https://automattic.com/privacy/. Once your comment is approved, your profile picture will be publicly visible to it.

    If you upload images to the site, you should avoid uploading images with embedded location data (EXIF GPS). Site visitors can download and extract location data from images on the site.

    Cookies

    If you leave a comment on our site, you can allow your name, email address and website to be saved in cookies. These are for your convenience so you don’t have to re-enter your details when leaving another comment. These cookies will be kept for one year.

    If you have an account and log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is deleted when you close your browser.

    When you log in to your account on the site, a few more cookies will save your login information and your preferences for what to see on the screen. Login cookies expire after two days and screen preferences after a year. If you choose the remember option, your login information will be kept for two weeks. If you log out of your account, the login cookies will be deleted.

    If you edit or publish an article, an additional cookie will be saved in your browser. It won’t contain any personal data, it will simply add the ID of the post you just edited. Expires in one day.

    Embedded content from other websites

    Articles on this site may be embedded (videos, images, content, etc.). Embedded content from other sites treats and treats the site visitor as a visitor to its own site.

    These sites may collect data about you, use cookies, embed additional third-party statistics tools, track how you use these tools, including how you consume embedded content if you have an account and are logged in to the site.