Which data do we collect and store and for which purpose?
When you visit the website, we store the following pieces of information about you:
● Services that you viewed. We store this information to propose the services you have recently been interested in.
● Delivery address. We ask you to indicate this address, in particular, to estimate the cost of delivery before placing the order and send you documents confirming the ordered services.
If you want to place an order with us, you will be required to provide more information including your name, billing address, delivery address, e-mail address, and phone number. We use this information for the following purposes:
● To send you information about your account and your order(s);
● To respond to your inquiries, including refund and other claims;
● To process payments and perform anti-fraud activities;
● To create your account on the website;
● To comply with legal requirements (for example, tax calculation);
● To extend the range of our services;
● To send you advertising messages (if you agree to receive them).
If you create an account, we will save your name, address, e-mail address, and phone number to automatically fill out the form when placing orders in the future.
Normally, we store information about you as much as it is necessary for the designated purposes. The exceptions are cases when we are obliged to continue to store this information in connection with the requirements of the applicable law. So, some information about the order is stored with us without a time limit. This information includes your name, e-mail address, billing address, and delivery address. We will also keep your comments and the reviews you left.
Comments and reviews
If a visitor leaves a comment on the website, we collect the data specified in the comment form, as well as the visitor’s IP address and user-agent data in the browser to determine spam.
Payments on the website are accepted using the Paysera payment system (see Paysera ‘Data Protection Policy’).
If you are a registered user and upload photos to the website, you should probably avoid uploading images with ‘EXIF’ metadata. Such photos may contain your GPS location information. Other visitors can extract this information by downloading images from the website.
When sending data via the contact forms of the websites selling our services, we ask for the phone number, e-mail address, first name, last name, text message. We store data obtained through contact forms on our website without time limits.
Cookies are small secure pieces of data sent by the website, stored on the consumer’s computer. Each time the User’s web browser tries to open the website page, it sends this piece of information as part of its HTTP request. Cookies are used by the website for:
● Providing the user with more convenient, quick and easy access to the contents of the website;
● Authentication and storage of personal preferences and user settings;
● Gathering statistics of visits to the website.
Disabling cookie storage
To disable the storage of cookies on the consumer’s computer, they must use the appropriate ‘settings’ (‘parameters’) menu or its analog in their browser. When disabling cookie storage, the website may work less efficiently, since some functions are unavailable.
If you leave a comment on our website, you can enable the storage of your name, e-mail address, and website in cookies. This is done for your convenience, so as not to fill out the data again each time. Such cookies are stored for one year.
If you have an account on the website and you log in, we set a temporary cookie to determine whether your browser supports cookies. That cookie does not contain any personal information and is deleted at the time of closing your browser.
When you log in to your account, we also set some cookies with login data and screen settings. Login cookies are stored during two days. Cookies with screen settings are stored for one year. If you select ‘Remember Me’, your login details will be stored for two weeks. When you log out of your account, login cookies are deleted.
When editing or publishing an article, an additional cookie will be saved in the browser. That cookie does not contain personal data, but only the ID of the entry that you edited. It expires in one day.
Embeddable content of other websites
Articles on this website may include embedded content (e.g. videos, images, articles, etc.). Such content behaves as if a visitor has visited another site.
To collect anonymous internet statistics and analytics, we use the following services:
● Yandex Metric. Yandex Metric User Agreement is available here: ‘https://yandex.ru/legal/metrica_termsofuse/‘.
Who do we share your data with?
Depending on your order, we can transfer information containing your phone number, address, name, and surname, e-mail, the amount payable to our partners that help us to fulfill your orders and provide sale services. Our partners include the courier company DHL (‘http://www.dhl.com/en.html‘) and the postal company ‘Bulgarian Protect’ (‘https://www.bgpost.bg/‘).
Your data is stored using a server physically located in Russian Federation. Also, to ensure the operation of the service, the data is copied to Google Cloud Storage (‘https://www.google.com/drive/‘) every week. Data transmission is accomplished using 2048-bit encryption.
Mail messages are processed by the Yandex mail for domain service.
For how long do we keep your data?
If you leave a comment, then the comment itself and its metadata are stored indefinitely. This is done to determine and approve subsequent comments automatically, instead of placing them in a queue for approval.
For users with registration on our website, we store the personal information that they indicate in their profile for an indefinite period. All users can see, edit or delete their information from the profile at any time, except for the username (login). The website administrator can also see and change this information.
How do we protect your data?
We protect your data with HTTPS connection with the 2048-bit encryption. This is confirmed by the SSL certificate received for the ‘Baxity.com’ domain. The company staff uses two-factor authentication to access the administration panel and the electronic mailbox. When using a mailbox on the mobile devices, fingerprint authentication or graphic passwords are used.
Which anti-hacking procedures are performed?
We conduct a security audit every three months. We use antivirus software on every computer that is allowed to administer the website.
Which third-parties do we receive data from?
We do not receive user data from third-parties.
Which automatic decisions are made based on the user data?
The system does not make any automatic decisions based on user data.
State regulation of personal data administration
The company operates according to the laws of Bulgaria. According to the conditions of the State Commission for the Protection of Personal Data in Bulgaria, there is no need to register and receive a registration number in the commission (‘https://www.cpdp.bg‘).
Which members of our company can access the data?
Our staff has access to the information that you provide. Therefore, both administrators and managers have access to the following data:
● Information about the order: name of the purchased services, date and time of purchase, delivery address.
● Information about the buyer which includes your name, e-mail address, and information related to the delivery.
Our staff needs access to this information to fulfill orders, arrange for reimbursements, and provide support services to you.
What are your rights in relation to your personal data?
If you have an account on the website or if you leave comments, then you can request an export file of the stored personal data. You can also request the deletion of this data by writing us an e-mail from the e-mail address of your account to the e-mail ‘firstname.lastname@example.org’.
For any questions, you are welcome to write to ‘email@example.com’.