Privacy and Cookie Policy

Privacy and Cookie Policy

as of 25 May 2018

Welcome to https://complianter.eu (the “Site”). This privacy policy sets out the basis on which your Personal Data will be processed by us – the European Compliance Center as the data controller for the purposes of the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council (“the GDPR”). When this Privacy Policy uses the term “Personal Data”, it means any information that identifies or could identify a living individual, including, but not limited to, name, address, phone number, fax number, email address, and credit card information.

We understand that privacy online is important to users of our Site, especially when conducting business. This statement governs our privacy policies with respect to those users of the Site (“Data subjects”) who visit without subscribing to our services and visitors who contact us or register to make use of the various services offered by European Compliance Center (“Authorized Visitors”).

By using this site or/and our services, you consent to the Processing of your Personal Data as described in this Privacy Policy. Please read carefully our Privacy Policy to understand our views and practices regarding your Personal Data and how we will treat them.

Access to information

The GDPR gives you various rights including the right to access information held about you. Questions about this privacy policy may be addressed to: dataprotection@complianter.eu.

European Compliance Center is committed to protecting the privacy and security of your personal information. We promise to follow the following data protection principles:

  • Processing is lawful, fair, transparent.
  • Processing is limited to the purpose.
  • Processing is done with minimal data.
  • Processing is limited with a time period.
  • We will do our best to ensure the accuracy of data.
  • We will do our best to ensure the integrity and confidentiality of data.

Data Subject’s rights

The Data Subject has the following rights:

  1. Right to information –you have to right to know whether your Personal Data is being processed; what data is gathered, from where it is obtained and why and by whom it is processed.
  2. Right to access –you have the right to access the data collected from/about you. This includes your right to request and obtain a copy of your Personal Data gathered.
  3. Right to rectification –you have the right to request rectification or erasure of your Personal Data that is inaccurate or incomplete.
  4. Right to erasure –in certain circumstances you can request for your Personal Data to be erased from our records.
  5. Right to restrict processing – where certain conditions apply, you have the right to restrict the Processing of your Personal Data.
  6. Right to object to processing –in certain cases you have the right to object to Processing of your Personal Data, for example in the case of direct marketing.
  7. Right to object to automated Processing –you have the right to object to automated Processing, including profiling; and not to be subject to a decision based solely on automated Processing. This right you can exercise whenever there is an outcome of the profiling that produces legal effects concerning or significantly affecting you.
  8. Right to data portability – you have the right to obtain your Personal Data in a machine-readable format or if it is feasible, as a direct transfer from one Processor to another.
  9. Right to lodge a complaint – in the event that we refuse your request under the Rights of Access, we will provide you with a reason as to why. If you are not satisfied with the way your request has been handled please contact us.
  10. Right for the help of supervisory authority – meaning you have the right for the help of a supervisory authority and the right for other legal remedies such as claiming damages.
  11. Right to withdraw consent – you have the right withdraw any given consent for Processing of your Personal Data.

Data controller

The data controller is European Compliance Center, an association registered in European Union, namely in Bulgaria and with registered office and business address at: 2 Graf Ignatiev str., Sofia 1000. European Compliance Center is a data controller under the auspices of the Commission for Personal Data Protection. The collection, use and disclosure of your Personal Data is governed by the GDPR and applicable Bulgarian law provisions. We can be contacted by email on dataprotection@complianter.eu. or by post by writing to us at the address above.

 

What Personal Data is collected?

We may collect basic user profile information from all of our users (data subjects). We collect the following additional information from our Authorized visitors: the names, addresses, phone numbers and email addresses, the nature and size of the business, credit and debit card details.

  1. Information that you give to us:

We collect personal contact information (such as your name, address, email address and telephone numbers) if you: sign up for a newsletter; complete an online form on our website, register on an online forum or website, or are responding to a survey. We collect additional Personal Data (such as the nature and the size of your business and credit and debit card details) if you as an Authorized Visitor: purchase or subscribe to any publications; attend a paid event; purchase any product or service from European Compliance Center; purchase advertising space; or are the author of works that are being published by us. The credit card information is used only for the purpose of fulfilling your order.

If you choose to opt-out of any use of your personal data at any time or if you notify us of your contact preferences, we will keep your contact information on a list so that your request can be honoured.

  1. Information that we collect about you:

We might collect demographic information, as well as purchase history and a list of promotions offered to you.

We use IP (internet protocol) addresses to gather demographic and statistical information about our users. We use login information, including, but not limited to, IP addresses, ISPs, and browser types, to analyze trends, administer the Site, and to display or allow our third-party advertising providers to display more targeted advertising and content. We may, from time to time, track and analyse anonymous usage and browsing patterns of visitors to our websites to provide users with advertising that is most likely to interest them.

We may obtain your personal data from publicly accessible sources such as Company Registers, public databases, investigative sites, your employer’s website, and LinkedIn.

How your Personal Data is used?

We use Personal Data to customize the Site and to make you appropriate service offerings. We may email Data subjects about training and events opportunities on the Site or information related to the subject matter of the Site. The information you provide to us is used to fulfil your request for information, services, to provide targeted advertising, and to respond to your inquiries.

More specifically, we use the Personal Data you provided us as follows:

  1. To improve and develop our services.

European Compliance Center values your reviews, feedback and collaboration. We process the information that you have provided to us or we have collected about you in order to gain a better understanding of your interests. Thus, we may develop better services, and determine your eligibility for more of our services. If you choose to participate in our research activities in a way of surveys or questionnaires, your Personal Data might be aggregated as part of the research results and shared with the general public in a manner that does not identify you.

  1. Marketing 

We may collect your name and contact details (such as your email address, phone number or address) in order to send you information about our services which you might be interested in and include you in a list of potential customers. We may collect this directly from you or from third parties.

We may also use Personal Data to prepare market research surveys. Information from market research surveys is shared with our advertisers, sponsors and affiliates in a manner that does not identify you.

We only share your name or contact details with event sponsors for marketing purposes where we have informed you that we will do so.

We use third party service providers to send out our marketing, but we only allow them to use that information on our instructions and where they have agreed to treat the information confidentially and to keep it secure.

Users of the site always have the right to “opt out” of receiving our marketing. If we send any marketing emails, we will always provide an unsubscribe option to allow you to opt out of any further marketing emails. If you “opt-out” of our marketing materials you will be added to our suppression list to ensure we do not accidentally send you further marketing. We may still need to contact you for administrative or operational purposes, but we will make sure that those communications don’t include direct marketing.

We retain your details on our marketing list until you “opt-out” at which point we add you to our suppression list. We keep that suppression list indefinitely to comply with our legal obligations to ensure we don’t accidentally send you any more marketing.

Opt-out of receiving unsolicited information by contacting us directly at: dataprotection@complianter.eu

  1. Content on complianter.eu website

This is information about you which you provide when you post content on our website. This may include reviews, comments, photographs, videos and other content which you post on our website or we post on behalf of you. We may display and publish this information on our platforms as part of our contract with you or as necessary for our legitimate interests in providing content to our users.

This information is kept for as long as you have an account with us and may be retained and displayed indefinitely after you close your account. You are able to remove or delete any content which you post at any time while your account is active.

  1. Improvement of our site and operations.

We use Personal Data disclosed or collected about you to administer our website and to conduct our internal operations, including testing and data analysis, to improve our website and social media content and its presentation, to keep our website safe and secure.

Other than as permitted or required by law, if we wish to collect, use or disclose your Personal Data for purposes that are not contemplated in this Privacy Policy, we will identify those purposes at the time of collection.

Information collected when entering in contractual relationship with the European Compliance Center 

When you enter into a contract with us (or someone does so on your behalf) there will be Personal Data about you relating to that contract. We need certain information to fulfill our contractual obligations with you and you must provide it in order to enter into a contract with us. If you do not, we may not be able to carry out our contract with you. Depending on the type of contract with us, you might be required to provide some of the following Personal Data:

  1. Your name and contact details.
  2. The name and address of the representative in case of legal entities.
  3. Personal or social security number
  4. ID or passport number
  5. Your delivery address.
  6. Your payment details.
  7. Information to verify your identity and other information for us to carry out anti-money laundering checks.
  8. Name and contact details of individual user of our services covered by the contract.
  9. Other correspondence or interaction (for example by email, fax, telephone, mail, SMS or via our website) between you and us, will include personal data (such as names and contact details) in that correspondence. This may include enquiries, reviews, follow-up comments or complaints lodged by or against you and disputes with you or your organisation.

We will keep and use that information to carry out our contract with you (if applicable), to comply with any legal requirements for  us to maintain certain records or carry out certain verifications, and/or for our legitimate interests in dealing with a complaint or enquiry and administering your (or your organisation’s) account or order and any services we offer, as well as to review and improve our offerings, including troubleshooting, data analysis, testing, research, statistical and survey purposes.

Where your information relates to a contract, it is kept for a period of up to 5 years after your account is closed to enable us to deal with any after sales enquiries or claims and as required for tax purposes.

Why else we use your information? 

Although in most circumstances we may use your Personal Data where you have given your specific consent to the processing, we may process your Data, relying on one or more of the following legal bases, under circumstances when:

  1. we need to perform a contract we have entered into with you.
  2. we need to comply with a legal obligation.
  3. it is necessary for our legitimate interests and your interests and rights do not override those interests.

We have a legitimate interest in carrying out the processing to further our business objectives, including for marketing purposes, or for fraud prevention, know-your-customer policies and AML due diligence. We always carry out an assessment before processing Personal Data to determine that our legitimate interests are not overridden by the interests or fundamental rights and freedoms of the individual.

  1. we need to protect your interests (or someone else’s interests) or where it is needed in the public interest.

With whom may the information may be shared?

European Compliance Center has entered into and will continue entering partnerships and other affiliations with a number of third parties, including third-party service providers. They may have access to certain Personal Data on a need to know basis for performing their contractual obligations or for evaluating the service eligibility. Our privacy policy does not cover their collection or use of this information. Third parties are required to respect the security of your Personal Data and to treat it in accordance with the law. We never sell your data to third parties.

We may need to share your personal information for third-party service providers (including contractors and designated agents) so that they can carry out their services. The following activities are carried out by third-party service providers: business consultants, CRM systems, data research partners, digital customization platforms, email engagement platforms, event administration, event management technologies, event venues, feedback and review platforms, IT services, legal advice, order fulfilment, payment processing, speakers at events, webinar platforms and website hosts.

Our third-party service vendors (such as credit card companies, payment systems, and banks) who may provide online payment services may collect also information from our users and Authorized visitors.

We do not control how these third parties use such information, but we do ask them to disclose how they use personal information provided to them from our users. Some of these third parties may be intermediaries that act solely as links in the distribution chain, and do not store, retain, or use the information given to them.

Are Cookies Used on the Site?

European Compliance Center may collect information about you and your use of our website via technical means such as cookies, webpage counters and other analytics tools. We use this as necessary for our legitimate interests in administering our website and to ensure it operates effectively and securely. We also use Cookies for security purposes to protect our Authorized Visitors. For example, if an Authorized visitor is logged on and the site is unused for more than 10 minutes, we will automatically log the Authorized Visitor off. We use technical means such as cookies, webpage counters and other analytics tools to understand how you use the site in order to improve your experience and provide you with tailor-made service. We need these technical means to continue providing you with the best content and prepare our marketing strategy.

By using any of our websites (through any device) you agree to the terms of this cookie policy. Have in mind that in most cases there are no standard options for disabling cookies without completely disabling the functionality and features they add to this site. If you wish you can disable cookies by adjusting the settings on your browser. Though, be aware that disabling cookies will affect the functionality of our site and of the many other websites that you visit. Hence, it is recommended that you leave all cookies enabled.

Cookies we use

Account related cookies

If you create an account with us then we will use cookies for the management of the signup process and general administration. These cookies will usually be deleted when you log out however in some cases they may remain afterwards to remember your site preferences when logged out.

Login related cookies

We use cookies when you are logged in so that we can remember this fact. This prevents you from having to log in every single time you visit a new page. These cookies are typically removed or cleared when you log out to ensure that you can only access restricted features and areas when logged in.

Email newsletter related cookies

This site offers newsletter or email subscription services and cookies may be used to remember if you are already registered and whether to show certain notifications which might only be valid to subscribed/unsubscribed users.

Survey related cookies

From time to time we offer user surveys and questionnaires to provide you with interesting insights, to receive your feedback or to conduct research. These surveys may use cookies to remember who has already taken part in a survey or to provide you with accurate results after you change pages.

Form related cookies

When you submit data to through a form such as those found on contact pages or comment forms cookies may be set to remember your user details for future correspondence.

Site preferences cookies

In order to provide you with a great experience on this site we provide the functionality to set your preferences for how this site runs when you use it. In order to remember your preferences, we need to set cookies so that this information can be called whenever you interact with a page is affected by your preferences.

Google analytics

This site uses Google Analytics as a reputable and fit-for-purpose analytics solution on the web for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content.

As we offer services it’s important for us to understand statistics about how many of the visitors to our site make a choice and as such this is the kind of data that these cookies will track. This is important to you as it means that we can accurately make business predictions that allow us to monitor our advertising, plan our strategy and provide the most suitable services.

Social media

We also use social media buttons and/or plugins on this site that allow you to connect with your social network in various ways. For these to work the following social media sites including; Twitter, Linkedin and Facebook who will set cookies through our site which may be used to enhance your profile on their site or contribute to the data they hold for various purposes outlined in their respective privacy policies.

Other third-party cookies

European Compliance Center, or third-party advertisers, may also use this information to serve adverts on you. Where those adverts are targeted, this may involve using website information and information we (or our third-party advertisers) have obtained from third parties. This won’t include information such as your name or contact details. Where our adverts are displayed to you using your information, your information is used as necessary for our legitimate interests in marketing to you.

Our website may, from time to time, contain links to third party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

Cookie expiry 

European Compliance Center keeps this website information about you from when it is collected until the relevant cookie expires or you disable it.

How is Personal Data stored?

Personal Data collected by European Compliance Center is securely stored and is not accessible to third parties or employees of European Compliance Center except for use as indicated above.

Our hosting provider is based in the EU. However, where required to perform contractual obligation or for our wider business purposes, the information that we hold about you may be transferred to, and stored at, a destination outside the EU.

Some countries or organisations outside the EU which we may transfer your information to will have an “adequacy decision” in place, meaning the EU considers them to have an adequate data protection regime in place. These are set out on the European Commission website: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-o….

If we transfer data to countries or organisations outside of the EU which the EU does not consider to have an adequate data protection regime in place, we will ensure that appropriate safeguards (for example, model clauses approved by the EU or a data protection authority) are put in place where required. To obtain more details of these safeguards, please contact us at dataprotection@complianter.eu.

How does the site keep Personal Data secure?

All of our employees are familiar with our security policy and practices. The Personal Data of our users and Authorized visitors is only accessible to a limited number of qualified employees who are given a password in order to gain access to the information. We audit our security systems and processes on a regular basis. Sensitive information, such as credit card numbers, personal or social security numbers, ID and passport numbers is protected by encryption protocols, in place to protect information sent over the Internet. For example, when you provide credit card information to us, we work to help protect the security of your credit card information by using industry standard secure sockets layer (SSL) encryption technology.

While we take commercially reasonable measures to maintain a secure site, electronic communications and databases are subject to errors, tampering and break-ins, and we cannot guarantee or warrant that such events will not take place and we will not be liable to users and Authorized visitors for any such occurrences. We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where necessary.

Please be aware that email is not a secure medium, and any personal data you send to us by email could be intercepted. If your communication is very sensitive, or includes information such as your credit card number, you should not send it electronically unless the email is encrypted or your browser indicates that the access to our website is secure. Materials posted to online forums are public, not secure and may be viewed by anyone. Any Personal |Data you post may be collected and used by anyone and may result in unsolicited messages from other internet users. European Compliance Center is not responsible for personal data you choose to post or submit in any online forum or social media.

How can users correct any inaccuracies in Personal Data?

Users may contact us to update their Personal Data or to correct any inaccuracies by emailing us at: dataprotection@complianter.eu.

Can users delete or deactivate Personal Data collected by the Site?

If you want to review, verify, correct or request erasure of your Personal Data, withdraw your consent to the processing of your Personal Data, or request that we transfer a copy of your Personal Data to another party, please contact us on dataprotection@complianter.eu

Note: because of backups and records of deletions, it may be impossible to delete a Visitor’s entry without retaining some residual information. An individual who requests to have Personal Data deactivated will have this information functionally deleted, and we will not sell, transfer, or use Personal Data relating to that individual in any way moving forward.

What happens if the purpose of collecting information changes?

We will let our Data Subjects know about changes to our privacy policy by posting such changes on the site.

We will only use your Personal Data for the purposes for which we collected it as set out in this notice, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

How long will we keep your information?

We keep your information up to 5 years. For the purposes of satisfying any legal, accounting, or reporting requirements, we might keep the information longer subject to applicable regulations.

To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorised use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.

In some circumstances we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you.

Legal claims

Where we consider there to be a risk that we may need to defend or bring legal claims, we may retain your personal information as necessary for our legitimate interests in ensuring that we can properly bring or defend legal claims. We may also need to share this information with our insurers or legal advisers. How long we keep this information for will depend on the nature of the claim and how long we consider there to be a risk that we will need to defend or bring a claim.

Links:

https://complianter.eu contains links to other web sites. Please note that when you click on one of these links, you are moving to another web site. We encourage you to read the privacy statements of these linked sites as their privacy policies may differ from ours.

Contact Information:

Supervisory Authority