Privacy policy
I. General information
This privacy policy has been developed and implemented by Hilix Ltd. (hereinafter referred to as "Hilix" or "Administrator") in accordance with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as "Regulation (EU) 2016/679"), in force since 25.05.2018, and in accordance with Personal Data Protection Act.
As a controller of personal data, Hilix meets all legal requirements, incl. of the new regulation, collecting data of the persons to the extent necessary for the provision of the service, and storing it responsibly and lawfully.
This policy aims to provide users with information on every aspect of the processing of personal data by the controller, as well as the rights arising from such processing.
II. Data on the personal data controller and personal data protection officer
Personal data administrator
Data Protection Officer
Hilix Ltd.
UIC: 206512917
Headquarters and address of management: Sofia, 11 Prof. Hristo Danov Str., Ent. Well, office 6
Email: tech@info.hilix.org
Tel: 0899 99 79 53
Hilix Ltd.
Address: Sofia, 11 Prof. Hristo Danov Str., Ent. Well, office 6
Email: tech@info.hilix.org
Manager: Alexandra Zakova
III. Objectives, principles and grounds for collection, processing and storage of personal data
Hilix is a software company that offers a web-based accounting platform
Hilix collects and processes personal data for the following purposes:
• Creating a client profile and providing access to our client platform, incl. identification, if necessary, e.g. when concluding a contract;
• In the implementation of the offered services collection and processing of personal data related to the requirements of the Accounting Act, the Commercial Act, ZANN, TSPC, CSR, NSS, IAS.
• Accounting purposes;
• Ensuring the implementation of the provided service;
• Sending information messages, messages about changes in the service, recommendations for improving the use of the service and more;
• Improving and individualizing the service
In processing personal data, Hilix adheres to the following principles:
• legality, good faith and transparency;
• restriction of processing purposes;
• relevance to the purposes of processing and minimizing the data collected;
• accuracy and timeliness of data;
• limitation of storage in order to achieve the objectives;
• integrity and confidentiality of the processing and ensuring an appropriate level of security of personal data
In the processing and storage of personal data, the controller processes and stores personal data in order to protect its legitimate interests, such as fulfilling its obligations to the National Revenue Agency, Ministry of Interior, Consular Relations Directorate at the Ministry of Foreign Affairs, Ministry of Justice, NACID and other state and municipal institutions.
IV. What types of personal data are collected, processed and stored by the administrator
Hilix performs personal data operations for the following purposes:
• Registration of a user in the information system of the administrator and creation of a client profile (eg three names, PIN, phone, email, address, etc.);
• Customer number created by Hilix for user identification;
• Sending an information message and making a connection - for a service performed, an invoice issued;
• Other personal data provided personally or by a third party in connection with and during the performance of the services
Hilix processes your personal data pursuant to Art. 6, b. (a) Regulation (EU) 2016/679, which governs cases where the user consents to the processing of his personal data for one or more specific purposes.
In addition to the above, Hilix processes your personal data pursuant to Art. 6, b. (b) Regulation (EU) 2016/679, which governs cases where "processing is necessary for the performance of a contract to which the data subject is a party or for taking steps at the request of the data subject before the conclusion of a contract".
Having in mind the lawful requirements to the administrator, he processes data related to legal obligation and legitimate interest to the NRA, Consular Relations Directorate at the Ministry of Foreign Affairs, Ministry of Justice, NACID, etc., which is regulated by Art. 6, b. c) and b. (f) Regulation (EU) 2016/679.
By accepting the general terms and conditions, registering and creating a client profile on the client platform and the Hilix website, as well as by providing documents and other documents for translation and / or legalization, contractual relations are created between the user and the administrator, on which basis they are processed. your personal data
Each of the actions described above gives grounds and consent to the processing of any additional information provided by the user, and when using the Hilix client platform, the user agrees to the collection of data as an IP address in order to improve security and localization. .
The persons who process personal data on behalf of Hilix are persons who are employed under a civil or employment contract, or another type of contract, and perform various stages of the overall management, performance and transmission of the service provided.
Hilix does not perform automated data decision making.
V. Term of storage of personal data
Hilix stores personal data for no longer than the existence of the client profile on the client platform.
Hilix stores the personal data that it is necessary to keep under applicable law for the relevant period, which may exceed the period of validity of your registration.
VI. Transfer of personal data for processing
Hilix may, at its discretion, transfer some or all of the personal data to personal data processors for the purposes of processing in compliance with the requirements of Regulation (EU) 2016/679, such as providing delivery address to a courier company
Hilix notifies you in case of need to transfer part or all of your personal data to third parties and / or national / international organizations.
VII. Your rights in the collection, processing and storage of your personal data
1. Withdrawal of consent for the processing of your personal data
In the event that you do not wish all or part of your personal data to continue to be processed by the administrator for specific or all purposes of processing, you can withdraw your consent to processing at any time, by request by email or through your client profile.
By withdrawing your consent to the processing of personal data, which is mandatory for the creation and maintenance of your registration for the use of the services, your account will be canceled.
2. Right of access
Each user has the right to request and receive confirmation from Hilix whether personal data related to them are processed.
Every user has the right to access data related to him, as well as information related to the collection, processing and storage of his personal data.
Hilix provides, upon request, a copy of the processed personal data related to you, in electronic or other appropriate form.
3. Right of correction or completion
Each user can correct or fill in inaccurate or incomplete personal data related to him directly through his client profile.
4. Right of erasure ("to be forgotten")
Each user has the right to request Hilex to delete the personal data related to him, and the administrator has the obligation to delete them without undue delay when there is any of the following reasons:
• personal data are no longer needed for the purposes for which they were collected or otherwise processed;
• the user withdraws his consent on which the data processing is based and there is no other legal basis for their processing;
• personal data should be deleted in order to comply with a legal obligation under
EU law or the law of a Member State applicable to the administrator;
Hilix is not required to delete personal data if it stores and processes it as follows:
• to exercise the right to freedom of expression and the right to information;
• to comply with a legal obligation requiring processing provided for in EU law or the law of the Member State
VIII. Competent authority for personal data protection
In the event of a breach of your rights under the above or applicable data protection legislation, you have the right to lodge a complaint with the Data Protection Commission as follows:
Commission for Personal Data Protection
Headquarters and address of management: Sofia 1592, Blvd. "Prof. Tsvetan Lazarov ”№ 2;
Tel .: +359 2 915 3 518
Email: kzld@cpdp.bg
www.cpdp.bg
IX. Policy changes and updates
Hilix reserves the right to change this policy in order to keep it up to date in compliance with applicable law.
X. Cookie Policy
The Hilix site uses cookies, which are important for its proper operation. By visiting our site, you accept the use of cookies.
Grounds for collecting, processing and storing your personal data
Types of cookies we use:
• Mandatory cookies
These cookies are necessary for the proper operation of the website. For example, with these cookies we show you the information on our website in the correct language, and the prices - according to the currency and VAT for the respective country. Such cookies are also those for enabling caching, for activating a test store with the Shopiko service, etc.
• Analytical cookies
Thanks to these cookies, we monitor the traffic to our site and we can analyze how easily our users work with it (Google Analytics cookies). These cookies do not give us any information about your personal data. They show us which pages of our site you have viewed, whether you have visited our site via a mobile or desktop device and other anonymous data. For Google Analytics, we also use IP anonymization using _anonymizelp. The maximum period in which we store analytical data in Google Analytics is 50 months.
• Functional cookies
These cookies allow you to use the full functionality of our site, watch videos on it, chat with us, as well as remember the preferred language in which to load the information on our site.
• Precise targeting cookies
These cookies contain information about how you have used our site and can be triggered by our advertising partners. They do not store personal information. Thanks to them, you will not be shown information that is irrelevant to you. These are dynamic cookies on Facebook, Google, Adform, Adwise and others.
You can make the settings of cookies that you receive from our site in the browser you use. Please note that if you restrict certain types of cookies, our site may not work completely correctly and you may not be able to use its full functionality.