Data Protection Policy

Please read the data protection policy carefully. If you have any questions, please contact us for clarification. If you do not agree to any of the terms and conditions in the data protection policy, you are not recommended to use the website and you should not provide your personal information.
 
Hardware Group Ltd guarantees that your data is collected and processed in full compliance with Regulation (EU) 2016/679 (the “General EU Data Protection Regulation” or the “GDPR”) and any other applicable Bulgarian legislation.
 
 
Who are we?
 
Hardware Group Ltd., with head office: city of Plovdiv, 3 Tsar Ivan Shishman Str., Address of management: Plovdiv, 4 Balkan str – parter, value added tax registration number BG202982663. For the purposes of data protection legislation, Hardware Group Ltd is the administrator of the processing of your personal data. Contact details: tel. +359 883 364469; email: sysadmin@hwgroup-bg.com
 
 
What data do we collect from you?
 
When ordering from the online store www.irdroid.eu, Hardware Group Ltd collects your personal data directly from you, so you decide whether or not to submit it. The information we get from you is the following:
-name
-billing address
-shipping address
-e-mail address
-phone
-IP address / collected automatically /
 
When ordering from the online store www.irdroid.com, Hardware Group Ltd collects / receives your personal data provided by PayPal:
-name
-shipping address
-e-mail address
-phone
 
For orders made through the eBay platform, Hardware Group Ltd collects / receives your personal data provided by eBay and PayPal:
-name
-shipping address
-e-mail address
-phone
 
For orders or inquiries from you by email or through our contact form, Hardware Group Ltd collects your personal data directly from you, so you decide whether or not to submit it. The information we collect from you is the following:
-name
-billing address
-shipping address
-e-mail address
-phone
-the desired product / service
-preferred payment method – PayPal, credit / debit card or bank transfer
 
Cookies and related technologies – We use “cookies” to manage user sessions, store your choice of language preferences, and provide you with relevant ads. Cookies are small text files transferred from a web server to your device’s hard drive. Cookies can be used to collect the date and time of website visits, web browsing history, your preferences, and your username. You can set your browser to deny all or some cookies, or to alert you when the websites you visit set or have access to cookies. Please note that if you disable or deny cookies, some of our services / Platforms may become inaccessible or may not function properly. You can find more information HERE
 
Hardware Group Ltd does not collect or process sensitive personal data included in special categories of personal data in the General Data Protection Regulation.
 
Providing your personal data is voluntary. In the event that you refuse to provide your personal data listed above is considered a denial of the relevant service / product offered by us.
 
 
Do we collect information from children?
 
Our Services are not intended for children under the age of 16 and do not consciously collect personal data from people under 16 years of age. If we know that a person under the age of 16 has provided us with personal data we will delete it immediately.
 
 
What principles do we observe?
 
Hardware Group Ltd. guarantees the following principles in collecting, processing and storing your personal data: fair and lawful processing; good faith and transparency; relevance of treatment to objectives; accuracy and timeliness; data minimisation; storage limitation; accountability; integrity and confidentiality.
 
 
What are the purposes and the grounds for processing?
 
Hardware Group Ltd uses your personal data for the following purposes:
 
Providing services, which includes the following:
-when we have to fulfill the contract that we have concluded or we are about to conclude with you.
-create and manage an account on one of our platforms – irdroid.com, irdroid.eu, hwgroup-bg.com;
-processing orders, including acceptance, validation, shipping and billing of the same, including via the eBay.com platform;
-resolving issues related to order cancellations or any other issues related to orders, purchased goods or services;
-return the products in accordance with the legal regulations;
-reimbursement of the value of products in accordance with legal regulations;
-assistance, including answering your questions about your orders or goods and services
-Implementation of these goals requires processing under the applicable law, including tax and accounting legislation.
 
Marketing:
Send emails that contain general and thematic information, information about similar products or products that complement your purchased products, information about offers and promotions, as we require your prior consent. You can change your mind and withdraw your consent at any time like:
use the “Unsubscribe” link in the messages you receive from us or contact us using the contact details below.
 
Protect our legitimate interests
There may be cases in which we use or transmit information to protect our rights and our commercial activity. These may include:
-measures to protect the website and our users against cyber-attacks;
-measures to prevent and detect attempts at fraud, including the transmission of information to competent public authorities;
-measures to manage various other risks.
 
 
How long do we keep your personal data?
 
We will only retain your personal data for as long as necessary to meet the purposes for which we have collected it, including for purposes of compliance with statutory, accounting or reporting requirements. You may always ask us to delete certain information or to close your account and we will respond to this request by retaining certain information even after the account is closed when the applicable law or legitimate interests impose it.
 
 
To whom do we send your personal information?
 
According to the case, we may transmit or give access to some of your personal data to the following categories of recipients:
-of the users to whom the data relate
-courier / postal service providers;
-payment / banking service providers;
-insurance companies;
-IT service providers;
-other companies with whom we can develop joint programs to market our goods and services.
 
If we are legally bound or if this is necessary to protect our legitimate interests, we may disclose certain personal data to public authorities as well.
We guarantee that access to your data by third party is governed by the legal regulations on data protection and confidentiality of information on the basis of contracts concluded with them.
 
 
How do we protect and secure your personal information?
 
We are committed to ensure the protection of the personal data we store on secure servers by using encryption algorithms and ensuring back-up. All billing information is encrypted using SSL technology. We have taken the necessary technical and organizational measures to protect your personal data from accidental or unlawful destruction, accidental loss, unauthorized access, alteration or distribution, as well as other illegal forms of processing.
Despite the measures we apply to protect your personal data, we are aware that, in general, the transmission of information over the Internet or other public networks is not completely safe, with the risk that data may be reviewed and used by unauthorized third parties. We cannot take responsibility for these exposures of systems that are not under our control.
 
 
What are your rights?
 
-Right of access to the data you refer to;
-Right of rectification;
-Right to erasure or right to be forgotten;
-Right to Restriction of Processing;
-Right to data portability;
-Right to notify personal data breach;
-Right to judicial and administrative remedy (right to appeal to a supervisor, right to effective judicial protection against a supervisor, right to effective judicial protection against an administrator or processor of personal data);
-Right to compensation for caused damages;
-Right to withdraw consent at any time, without prejudice to the lawfulness of processing on the basis of consent given before it is withdrawn.
 
In addition to these rights, the consumer is entitled, at any time and on the grounds related to his particular situation, to object to the processing of personal data related to him where the processing is necessary for the performance of a task of public interest or in the exercise of official authority conferred on the operator or the processing is necessary for the legitimate interests of the operator or of a third party, except where interests or fundamental rights and users who require data protection.
 
You have the right to withdraw your consent to the processing of your personal data at any time. This is without prejudice to the lawfulness of the processing we have already done on the basis of your prior consent.
 
We do not charge a fee for acquiring any rights related to your personal data. The order for acquiring your right of access, erasure, correction, or limitation of processing is by submitting a written request to the Personal Data Administrator, whose contacts can be found below. The administrator provides you with information about the action taken on your request without undue delay and in any case within one month of receipt of the request unless the request is particularly complex or if you have made more requests in which case we will respond within maximum two months. We’ll let you know if we’ll need more than a month. We may ask you to tell us exactly what you want or what you worry about. This will help us to act faster and reduce the time to respond to your request. We will not need to respond to a request if it affects the rights and freedoms of other data subjects in a negative way.
 
 
How will we inform you about changes to the Privacy Policy?
 
We may update this Privacy Policy from time to time. We will post the changes to this page and will inform you by email or through our website. If you do not agree with the changes you have made, you may delete your account or contact us with a request to delete your personal information.
 
 
Contacts
 
We remind you that you can contact the personal data protection officer of Hardware Group Ltd at any time by sending your request in one of the following ways:
-through the contact form of our website
-by e-mail to: sysadmin@hwgroup-bg.com
-by mail or courier to: Hardware Group Ltd., 4 Balkan str – parter, Plovdiv 4000, Bulgaria – by writing the following text: to the attention of the personal data protection officer of Hardware Group Ltd.
 
For personal data protection issues, your main supervisor is:
Personal Data Protection Commission
Address: Sofia, 1592, 2 Tsvetan Lazarov Blvd.
Tel. +359 2 915 3580 Fax +359 2 915 3525
Email: kzld@cpdp.bg
Website: http://www.cpdp.bg/