Who we are
Stantchev CAS | A service of Presidio Ventures OOD | Vitosha Blvd. 5 | Sofia 1000 | BG
cas (at) stantchev.com | www.stantchev.com
Despite careful control we assume no liability for the content of external links. The operators of the sites we link to are solely responsible for the content of linked pages.
Data protection is of a particularly high priority for the management of stantchev CAS. The use of the Internet pages of stantchev CAS is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.
This data protection declaration applies to the online offer of stantchev CAS, which can be accessed on the websites available under the domain “stantchev.com” (hereinafter referred to as “our website”).
2. Name and Address of the controller
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
Presidio Ventures OOD | Vitosha Blvd. 5 | Sofia 1000 | BG | EIC: 202378221
3. Personal data
Personal data is information about personal or factual circumstances of a specific or identifiable natural person. This includes information such as your name, address, telephone number and date of birth, but also data about your specific career, etc., which can be assigned to a specific person with reasonable effort. Information that is not (in)directly associated with your real identity, however, is not personal data.
We will collect, process and use the personal data you provide online only for the purposes disclosed to you. Some of the information we may collect from you is necessary to enable us to provide you with the services you request, to fulfill our contracts with you, to comply with legal requirements or if we have a legitimate interest in the use of your information. If we collect data directly from you, we may ask you for your consent and clearly mark mandatory information (e.g. with an asterisk (*)). You voluntarily provide us with any other information that is not marked. For the rest, we use your personal data exclusively to be able to offer you an extensive and interesting offer via our web services and to constantly improve this.
5. Legal basis for the processing
We process your Personal Information in relation to your subscription to event, participation in a Survey, a Training, our Newsletter, your use of the contact forms in our Websites and in cases for recruitment purposes, where we have your consent to do so. In other cases, we process your personal information where we need to do so:
to comply with our legal and regulatory obligations;
• for our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms in:
• responding to your queries;
• providing services and/or information to you; and
• our internal business purposes.
6. Which personal data is stored and processed?
You can use our websites without providing us with personal data (e.g. name, address, telephone number or e-mail address), unless you make them available to us voluntarily (e.g. for registrations for events, enquiries or surveys) or the corresponding legal provisions on the protection of your data permit this. Your personal data will be used as follows:
We do not create any personal user profiles. In connection with the retrieval of the information requested by you, data will only be stored on our servers in anonymous form for the provision of our various services or for evaluation purposes. Here general information is logged, e.g. when which contents from our offer are called up or which pages are visited most frequently. For these purposes we use so-called “cookies” (small text files with configuration information). The cookies used serve in particular to determine the frequency of use and the number of users of our websites. This tells us which area of our websites and which other websites our users have visited.
However, these usage data do not allow any conclusions to be drawn about the user. All of this anonymously collected usage data will not be merged with your personal data and will be deleted immediately after the statistical evaluation.
In addition, our websites do not store cookies that do not have purely technically necessary functions and serve the proper functioning of our web services if you have not previously accepted this. Before storing cookies, you must agree to this by selecting the types of cookies you want or accept and clicking on “Accept” on the banner, which contains the reference to the storage of cookies. Further information on the types of cookies we use in detail and how you can set the use of individual types of cookies and agree and object to their use can be found in our cookie settings.
6.2 Data protection provisions about the application and use of Google Analytics (with anonymization function)
On this website, the controller has integrated the component of Google Analytics (with the anonymizer function). Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimization of a website and in order to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
For the web analytics through Google Analytics the controller uses the application “_gat. _anonymizeIp”. By means of this application the IP address of the Internet connection of the data subject is abridged by Google and anonymised when accessing our websites from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the traffic on our website. Google uses the collected data and information, inter alia, to evaluate the use of our website and to provide online reports, which show the activities on our websites, and to provide other services concerning the use of our Internet site for us.
Google Analytics places a cookie on the information technology system of the data subject. The definition of cookies is explained above. With the setting of the cookie, Google is enabled to analyze the use of our website. With each call-up to one of the individual pages of this Internet site, which is operated by the controller and into which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject will automatically submit data through the Google Analytics component for the purpose of online advertising and the settlement of commissions to Google. During the course of this technical procedure, the enterprise Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements.
The cookie is used to store personal information, such as the access time, the location from which the access was made, and the frequency of visits of our website by the data subject. With each visit to our Internet site, such personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Google Analytics from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Google Analytics may be deleted at any time via a web browser or other software programs.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html. Google Analytics is further explained under the following Link https://www.google.com/analytics/.
6.3. Google Maps
Within our websites we may use the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an appealing representation of our online offers and at an easy findability of the places indicated by us on the website. This represents a legitimate interest.
You can find more information on the handling of user data in Google’s data protection declaration: https://www.google.de/intl/de/policies/privacy/.
6.4. Server-Log files
Your visit to our websites is automatically logged by our web servers.
In connection with the retrieval of the information requested by you from our web services, data for the provision of our various services or for evaluation and security purposes are collected and, if necessary, stored in anonymous form (without personal reference). The web servers we use automatically store data about the retrieval of our web services in so-called server log files. This is the following data:
Referrer URL (the page from which you are visiting us)
Time of the server request
Host name of the accessing device (the name of your Internet service provider)
Browser type and browser version the operating system used and its settings
The processing of the above mentioned data is done for security purposes, for general fraud prevention and as a precaution against attacks on our web services. This data is not automatically combined with data from other data sources.
If your IP address is also automatically logged, it will be automatically deleted after 7 days at the latest.
Furthermore, only general information is recorded, e.g. when which content is called up from our offer or which pages are visited most frequently, the names of the requested files as well as their retrieval date and time. These data are evaluated for the improvement of our offer and do not allow any conclusions about your person.
We will not use this information for any other purpose.
7. Period for which the personal data will be stored
We only store personal data that you provide us for as long as it is needed to fulfil the purposes for which this data was provided or as long as this is required by law:
If you conclude contracts with us, we store and process your personal data for the duration of your contractual relationship and also for the fulfilment of post-contractual obligations and matters and for the duration of the statutory retention periods (maximum 10 years);
If you send us an inquiry, we process your personal data for the duration of processing your inquiry.
When we no longer need your personal data, we delete it from our systems and records or make it anonymous so that you can no longer be identified.
We may retain certain personal information in order to comply with our legal and regulatory obligations and to enable us to administer our rights (e.g. to enforce our claims in court), or for statistical purposes (in anonymous form).
8. Data Security
For a secure transmission of your personal data we use a so-called SSL encryption. According to the current state of knowledge, this form of transmission is recognised as a secure form of data transmission. We make every effort to take technical and organisational security measures to protect your personal data against unintentional or unlawful deletion, alteration or loss and against unauthorised disclosure or access. Our employees are accordingly bound to secrecy and data protection.
In order to prevent the loss or misuse of data stored by us, we take extensive technical and organisational security precautions which are regularly checked and adapted to technological progress. Insofar as it is within our sphere of influence, we use modern encryption techniques and a large number of other measures in particular to prevent unauthorised access by third parties. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption exists, the data you exchange with us cannot be read by third parties.
However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures may not be observed by other persons or institutions for which we are not responsible. In particular, unencrypted data can be read by third parties – even if this is done by e-mail. We have no technical influence on this. In such cases, it is the responsibility of the user to protect the data provided by him against misuse by encryption or in any other way.
9. Transmission of data
If these cases are not listed in this privacy statement, we will not sell or market your personal data to third parties or pass them on for any other reason.
In addition to the other cases mentioned in this data protection declaration, your personal data will only be passed on without your express prior consent in the following cases:
If it is necessary for the clarification of an illegal or abusive of our web pages or for the prosecution, personal data are passed on to the prosecution authorities as well as if necessary, to damaged third parties. However, this only happens if there are concrete indications of illegal or abusive behaviour. We are also legally obliged to provide information to certain public authorities upon request. These are law enforcement authorities, authorities that prosecute fined offences and the tax authorities. A disclosure to third parties bound to professional secrecy can take place if this is necessary to enforce the contractual conditions or other agreements as well as our claims arising from contracts that you have concluded with us.
As our business develops, the structure of our company may change as its legal form changes, subsidiaries, parts of companies or components are established, purchased or sold. In such transactions, customer information will be shared with the part of the company to be transferred with your consent. Whenever personal data is passed on to third parties to the extent described above, we will ensure that it is used in accordance with this data protection declaration and the relevant data protection laws and ask you for your consent.
However, your personal data can also be processed on our behalf by our reliable, external service providers (“contract processors”).
We rely on reliable, external service providers who conduct a number of business processes on our behalf and only provide them with the information they need to provide the services and we do not require them to use your personal information for any other purpose. We make every effort to ensure that all contractors with whom we work protect your personal data.
10. Rights of the data subject
If we process personal data as the data controller, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and purpose of the processing, in particular the right of access (Art.15 GDPR), the right to rectification (Art.16 GDPR), the right to erasure (‘right to be forgotten’) (Art. 17 GDPR), the right to restriction of processing (Art. 18 GDPR), the right to data portability (Art. 20 GDPR), the right to object (Art. 21 GDPR). If the processing of personal data is based on your consent, you have the right to revoke this data protection consent in accordance with Art. 7 III GDPR.
If you wish to exercise your above rights, please contact us using the contact details given in the “Responsible Party” section.
Please note that we may require proof of identity and full details of your request before we can process your request.
11. Right of appeal to the competent supervisory authority
In the event of data protection violations on our part, you have a right of appeal to the responsible supervisory authority.
12. Hyperlinks to other websites
Our website contains so-called hyperlinks to websites of other providers. When these hyperlinks are activated, they are redirected from our website directly to the websites of other providers. With these links to external companies and other third parties, stantchev CAS is not responsible for the data protection requirements or the content of these websites.
13. Concluding provisions
This data protection declaration can be called up, saved and printed out at any time under this URL. Since changes in the law or changes in our internal processes may make it necessary to adapt this data protection declaration, we ask you to read this data protection declaration regularly.
We reserve the right to adapt this data protection declaration at any time so that it always meets the current legal requirements or to reflect changes in the application procedure or the like. If you visit the recruiting page again or apply again, the new data protection declaration will apply.
Last updated: April 2022