Privacy policy (GDPR)
When using the websites www.martines.coffee and, your data is processed by "Martines" Ltd., EIK: 131519268, with headquarters and management address Sofia 1404, Triaditsa district, "P.Yu" Blvd. Todorov" bl. 1, entrance B, app. 37, phone: 0898593630, email: info@ kafenaedro.com and/or info@martines.coffee
We process your data on the following grounds:
• When ordering through the website martines.coffee
• When registering on the website martines.coffee
• based on law – when legal acts assign us this obligation;
• Based on your express consent – in all other cases
In the following paragraphs, you will find detailed information about the processing of your data depending on the basis on which we process it.
When ordering product/s from our site
We process your data to fulfill our obligations to you and to exercise our contractual rights.
Purposes of processing:
• establishing your identity;
• management and fulfillment of your product requests;
• preparing and sending a bill/invoice for the products you purchase from us;
• comprehensive service for our products;
• notification of everything related to the products you use with us;
• preparing a user profile and maintaining the customer history;
• saving correspondence in connection with placed orders, processing requests, reporting problems, etc.
On this basis, we process the following data:
• personal contact details – contact address, phone number, fax and email;
• identification data – name and surname for individuals, company name, EIK number, VAT number for legal entities;
• data on the orders placed through the user profile;
• e-mail, letters, and information about your requests, to solve problems, inquiries, and complaints; other feedback we receive from you;
• any other information that is necessary to provide the specific service and without which the service could not be provided;
• customer number, code, or other identifier created to identify users;
• other personal data provided by you or a third party when placing an order and more specifically: name and surname, address, phone.email.fax, company name, other contact details, contact person; username, password (when registering on our website or another similar service);
The processing of the specified personal data is mandatory for us to be able to fulfill your orders.
Provision of your data to third parties:
We provide your data to third parties to offer quality and comprehensive service. We do not provide your data to third parties before making sure that all technical and organizational measures are taken to protect this data and we strive to implement strict controls to fulfill this purpose. In this case, we remain responsible for the confidentiality and security of the data.
We provide personal data to the following categories of recipients (administrators of personal data):
• courier operators - "Econt Express" OOD, to send shipments containing product/s you have ordered and/or documents related to your orders;
• persons hired on a civil contract, supporting the processes of sales, logistics, delivery, etc.;
• lawyers registered under the Law on the Bar;
• banks for servicing payments;
• persons who, by assignment, maintain equipment, software, and hardware used for processing personal data and necessary for the company's activities
• persons performing consulting services in various fields.
We delete the data collected on this basis five years after termination of the contractual relationship with you.
When we fulfill our legal obligations
The law may stipulate an obligation for us to process your data. In these cases, we are required to carry out the processing, such as:
• fulfillment of obligations about distance sales, and off-premises sales, provided for in the Consumer Protection Act;
• provision of information to the Consumer Protection Commission or third parties provided for in the Consumer Protection Act;
• obligations stipulated in the Accounting Act and the Tax and Insurance Procedural Code and other related legal acts, in connection with the keeping of legal accounting;
• age verification when shopping online.
We delete the data collected under an obligation provided by law after the obligation to collect and store is fulfilled or ceases.
Provision of your data to third parties:
When we are required to do so by law, we may provide personal data to the competent government authority, natural person, or legal entity's face.
When we have your express consent
We process your data on this basis only after your express, unequivocal, and voluntary consent. We will not foresee any adverse consequences for you if you refuse to process personal data.
If you give us the relevant consent until the withdrawal or termination of any contractual relationship with you:
• prepare product/s proposals suitable for you;
• preparing for you proposals for product/s from partners of the company, by processing your basic personal data.
Withdrawal of consent
The given consents can be withdrawn at any time, by an express request to our email address : info@kafenaedro.com. If you withdraw your consent to the processing of personal data, we will not use your data and information for the purposes specified above.
To withdraw the given consent, it is necessary to send a free text and written email to the following address: info@kafenaedro.com
Based on your consent, we process your email and other information for which you expressly consent.
We delete the data collected on this basis upon your request.
Anonymization and pseudonymization
We process data for static purposes. This means for analyses where the results are only generalizable and therefore the data is anonymous. Identification of a specific person from this information is impossible.
Your data can also be anonymized. Anonymization is an alternative to data deletion. Upon anonymization, all personally identifiable/identifying elements are irreversibly deleted. For anonymized data, there is no legal obligation to delete it, as it does not constitute personal data.
Protection of your data
To ensure adequate data protection of "Martines" Ltd. and its customers, we implement all necessary organizational and technical measures provided for in the Personal Data Protection Act and Regulation (EU) 2016/679 of the European Parliament and the Council, as well as best practices from international standards.
The company has adopted policies to prevent abuse and security breaches.
To ensure maximum security when processing, transferring, and storing your data, we may use additional protection mechanisms such as encryption, pseudonymization, and others.
We only work with personal data processors that provide equivalent security standards.
Personal data we have received from 3rd parties
In some cases, we have to process your data, which were not provided to us by you or collected by us, but received from third parties. These are the following data:
• Data from social networks such as Facebook – user profile data
• Data from our Partners - in fulfillment of contractual obligations or with express consent
Rights of Users
As a user, you can exercise your rights by phone at 0898593630 or by email at info@kafenaedro.com
You have all the rights to protect personal data according to Bulgarian legislation and the law of the European Union. Each User has the right to:
• Being informed (in connection with the processing of his data by the administrator);
• Access to your data;
• Correction (if the data is inaccurate);
• Deletion of personal data
• Restriction of processing by the administrator or personal data processor;
• Portability of personal data between individual administrators;
• Objection to the processing of his data;
• Not be subject to a decision based solely on automated processing, including profiling, which gives rise to legal consequences for you or similarly significantly affects you;
• Right to legal or administrative remedies if your rights have been violated.
You can request deletion of your data if:
• Personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
• You withdraw your consent on which the data processing is based and there is no other legal basis for the processing;
• You object to processing and there are no overriding legal grounds for processing;
• Personal data has been processed unlawfully;
• Personal data must be deleted to comply with a legal obligation established by law;
You can restrict the processing of personal data by us when:
• Dispute the accuracy of personal data;
• The processing is unlawful, but you do not want the personal data to be deleted, but instead require a limitation of its use;
• We no longer need the personal data for processing, but you require them for the establishment, exercise, or defense of legal claims;
• you object to the processing pending verification that our lawful grounds for processing take precedence over your interests.
Right to object.
You have the right to object to us processing your data. We will stop the processing unless we demonstrate that there are compelling legal grounds for the processing that take precedence over the interests, rights, and freedoms of you as a data subject, or for the establishment, exercise, or defense of legal claims. In case of objection to the processing of personal data for direct marketing, the processing will be stopped immediately.
Right of appeal to the Supervisory authority
You can file a complaint against the unlawful processing of your data to the Commission for the Protection of Personal Data or to the competent court.
Maintaining a register
We maintain a register of the processing activities for which we are responsible. This register contains all the information below:
• the name and contact details for us;
• a description of the categories of data subjects and the categories of personal data we process;
• the categories of recipients to whom personal data is or will be disclosed, including recipients in third countries or international organizations;
• when possible, the deadlines for erasure of the various categories of data;
• where possible, a general description of the technical and organizational security measures.