A. INTRODUCTION
The privacy of our website is crucial, and we are committed to safeguarding it. This policy explains how we handle your personal data.
This Security and Personal Data Protection Policy (hereinafter “Policy”) covers issues related to the personal data of individuals collected and processed by The Ads Box through the website https://www.theadsbox.com/ (referred to as “Site” or “Website”). The Site is managed by employees of The Ads Box. When processing personal data, the data controller adheres to all applicable regulatory acts related to personal data protection, including but not limited to Regulation (EU) 2016/679 (“Regulation”) and the Personal Data Protection Act. The security of personal data is of paramount importance to us. You can contact us through the Site or other means.
The Policy contains information for individuals providing their personal data or data of third parties. The document details who processes the data (the data controller), whose data the data controller processes (categories of data subjects), what data of individuals is processed, how the data controller collects, processes, uses, and protects this data, and the rights of data subjects according to Regulation (EU) 2016/679 – General Data Protection Regulation (GDPR). Anyone who has provided data on any occasion should familiarize themselves with this Security and Personal Data Protection Policy.
No third party can access personal data without having previously entered into a data confidentiality agreement, imposing obligations on the third party no less burdensome than those undertaken by The Ads Box, and granting the right to conduct checks on compliance with the obligations imposed by the agreement.
This policy also applies to all company employees and external providers of products and services with whom it has contracts. Any violation of the General Regulation will be considered a violation of labor discipline or non-performance of contracts with partners. In case of suspicion of a committed crime, the matter will be referred for consideration to the relevant state authorities.
For visitors to the Site who do not submit inquiries through the contact form but only browse our webpage, the published Cookies Policy on the Site applies. Also, please note that this Security Policy does not apply to legal entities (commercial companies and non-profit legal entities).
B. COLLECTION OF PERSONAL DATA
The following types of personal information may be collected, stored, and used:
Before sharing your personal data with us, we need your consent for this disclosure and for the processing of this personal information in accordance with this policy.
C. USE OF PERSONAL DATA
Personal information submitted to us through our website will be used for the purposes specified in this policy or on the relevant pages of the website. We may use your personal information to:
If you submit personal information for publication on our website, we will publish and otherwise use that information in accordance with the permission you grant us.
Your privacy settings can be used to limit the publication of your information on our website and can be adjusted using our website management tools.
We will not, without your express consent, provide your personal information to any third parties for their or any other direct marketing.
Depending on the reason that necessitates the processing of personal data, the type of data may vary. The functionalities provided on the Site are not intended for the storage and processing of special categories of data within the meaning of Article 9 and Article 10 of the Regulation (see Article 9 and Article 10 of the Regulation here). We require only such personal data that is necessary for the provision of the activity/service required by the company. In the course of using the website https://www.theadsbox.com/ by individuals, employees may process other data that does not contain personal data but pertains to the subject, such as their IP address, data about their activity on the site, etc.
Depending on the specific action, we collect the following data:
In case you provide your personal data via Viber, Skype, Facebook, or another platform/social network, we inform you that these platforms/websites/social networks have their own privacy rules, and we do not accept any responsibility for these rules as their processing cannot be controlled by us. In this regard, we recommend checking these rules before sending us your personal data through these websites/applications/platforms.
If you leave a post or comment on the website, your IP address will be stored. This is for the security of the website operator. In addition, because sending comments, inquiries, and other messages to the website, Facebook page/group, or their administrators constitutes sending an electronic statement under the Electronic Document and Electronic Certification Services Act (“EDECSA”), OSA is obliged to maintain logs of the fact of sending the statement for a period of 1 year. The log contains the date of the statement, the name, and the email address of the sender if entered.
If you provide personal information about someone else, you must do so only with that person’s authorization. You must inform them of how we collect, use, disclose, and store their personal information in accordance with this Security Policy for the personal data of individuals.
When connecting your profile on the site to your profile on Facebook or Google or to other third-party services (currently this functionality is not available), we receive information from these profiles (such as friends or contacts). The information we receive from these services depends on their settings and privacy statements, so each person should check what they are.
In the course of performing our business:
In the course of performing our business, we may obtain a variety of personal data, concerning both you and third parties. That is why, while performing our services, it may be necessary to process personal data, including:
D. DISCLOSURE OF PERSONAL DATA
We may disclose your personal data to any of our employees, insurers, professional advisers, agents, suppliers, or subcontractors as reasonably necessary for the purposes set out in this policy.
We may disclose your personal information:
Except as provided in this policy, we will not provide your personal information to third parties.
E. INTERNATIONAL DATA TRANSFERS
The information we collect may be stored, processed, and transferred between any of the countries in which we operate to enable the use of the information in accordance with this policy.
The information we collect may be transferred to the following countries that do not have data protection laws equivalent to those in force in the European Economic Area: United States, Russia, Japan, China, and India.
Personal information that you publish or submit for publication on our website may be available, via the internet, around the world. We cannot prevent the use or misuse of such information by others.
You explicitly agree to the transfers of personal data described in this section D.
F. RETENTION OF PERSONAL INFORMATION
This section E sets out our data retention policies and procedures, which are designed to help ensure that we comply with our legal obligations regarding the retention and deletion of personal information.
Personal information processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
Without prejudice to section E-2, we will usually delete personal data falling into the categories set out below at the date/time set out below:
Personal data will be deleted within 12 months of its provision.
Notwithstanding the other provisions of section E, we will retain documents (including electronic documents) containing personal data:
G. PROTECTION OF YOUR PERSONAL INFORMATION
We will take reasonable technical and organizational measures to prevent the loss, misuse, or alteration of your personal information.
We will store all the personal information you provide on our secure (password- and firewall-protected) servers.
You acknowledge that the transmission of information over the Internet is inherently insecure, and we cannot guarantee the security of data sent over the Internet.
You are responsible for keeping the password you use for accessing our website confidential – we will not ask you for your password (except when you log in to our website).
H. CHANGES
From time to time, we may update this policy by publishing a new version on our website. You should check this page to ensure you understand any changes to the policy. We may notify you of changes to this policy by email or through our website’s private messaging system.
I. YOUR RIGHTS
You can instruct us to provide you with any personal information we hold about you – the provision of such information will be subject to the following:
We may withhold personal information that you request to the extent permitted by law.
At any time, you can instruct us not to process your personal information for marketing purposes.
In practice, you will expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal information for marketing purposes.
J. THIRD-PARTY WEBSITES
Our website includes hyperlinks to third-party websites and details about them. We have no control and are not responsible for the privacy policies and practices of third parties.
K. UPDATING INFORMATION
Please inform us if the personal information we hold about you needs to be corrected or updated.
L. DATA PROTECTION OFFICER
The Data Protection Officer is Stefan Atanasov
Correspondence Address: Graf Ignatiev Street 6, 1000 Sofia Center, Sofia, Bulgaria