Privacy Information

My personal data in the scope as provided during registration process for creating my user profile (email address, first name, last name, position, company, address, region, city, zip code, country) and also personal data collected in relation with and for the following purposes (provided that you grant the consent for the respective purpose):

  • Event organizing (only applicable if I am actually registering for event)
  • Webinar organizing (only applicable if I am actually registering for webinar)
  • Direct marketing including subscribed e-mailing
  • Conducting business activities of Deloitte
  • Managing sales opportunities for Deloitte
  • Building my profile by analysing my personal preferences, behaviours and interests in order to be able to get the targeted content or offer.

Controller(s) of personal data: Deloitte in Bulgaria

  • Deloitte Bulgaria EOOD, UIC 040450884
  • Deloitte Audit OOD, UIC 121145199
  • Deloitte Legal UIC 176533817, 103, Al. Stambolijski Blvd, Sofia Tower (Mall of Sofia),1303 Sofia, Bulgaria

Processors of personal data:

  • Onyx Knox Sp. z o.o., ul. Kurhan 12, 02-203 Warszawa, Poland
  • Deloitte Advisory Management Consulting Private Limited Company, Dózsa Gy út 84.C., 1068 Budapest, Hungary
  • Deloitte CE Business Service Sp. z o.o., Al. Jana Pawła II 22, 00-133 Warsaw, Poland
  • Deloitte Central Europe Service Centre s.r.o., Karolinská 654/2, 186 00, Prague 8, Czech Republic
  • Deloitte CZ Services s.r.o., Karolinská 654/2, 186 00, Prague 8, Czech Republic
  • con4PAS, s.r.o., Novodvorská 1010/14, 142 01 Prague 4 – Lhotka, Czech Republic
  • SI-Consulting Sp. z o.o., Slezna Str. 118, 53-111 Wroclaw, Poland
  • Microsoft Corporation, One Microsoft Way, Redmond, WA 98052, USA

In case where the data processing includes the transfer outside of the European Union (EU) the transfer is based on EU approved standard contractual clauses, thus ensuring an adequate level of personal data protection as required by the applicable data protection laws.

The personal data controller and data processors shall establish technological, physical, administrative and procedural safeguards all in line with the industry accepted standards in order to protect and ensure the confidentiality, integrity or accessibility of the personal data processed; prevent the unauthorized use of or unauthorized access to the personal data or prevent a personal data breach (security incident) in accordance with Deloitte CE instructions, policies and applicable laws.

Recipients of personal data: My personal data will be made accessible to the following categories of recipients: the authorized employees and representatives of the above listed controllers and processors and to Deloitte CE group of companies

My personal data may be also disclosed to the competent authorities as authorized by the applicable laws.

The period for which my personal data will be processed: My data will be processed until my consent is revoked or as long as it is necessary in relation to the purposes described above, but no longer than [link to the Privacy Statement – Data Retention and Destruction Procedures]. After the indicated period expires the personal data will be permanently deleted. However, I am aware that controller may retain limited scope of my personal data in order to prove compliance with the applicable laws.

I acknowledge that as a personal data subject I have the right to request from the controller access to and rectification or erasure of my personal data or a restriction on the processing or to object to the processing, as well as the right to data portability, the right to withdraw my consent at any time, the right to obtain a copy of my personal data processed. All rights described in this paragraph can be enforced by myself, as described under “How can I can access my personal data” chapter in the Privacy Policy or by sending an e-mail request to the data controller at Contact us.

I am aware that my personal data collected in relation to the above described purposes (preferences, behaviours and choice of marketing content) may be used as a basis for automated decisions leading to the identification of sales opportunities within Deloitte CE group of companies.

I also have the right to lodge a complaint with a data protection supervisory authority in Bulgaria at in case I consider that the processing of my personal data infringes the applicable laws.