CELTA Ltd.
BGEN

Privacy policy

CELTA Ltd.

This Privacy Policy governs the processing of personal data by CELTA Ltd. (hereinafter referred to as the «Company», «Data Controller») in accordance with Regulation (EU) 2016/679 (GDPR), the Personal Data Protection Act of the Republic of Bulgaria, and other applicable legislation.

The Company processes personal data in good faith, lawfully and transparently, solely for the specified purposes and with appropriate technical and organisational security measures in place.

1. Data Controller

CELTA Ltd.

Registered address: BULGARIA, Sofia (1618), Krasno Selo district, HUBCHA, 8, floor 1

E-mail: sales@predict-oil.com

Phone: +359885348790

For questions related to the processing of personal data, please contact us using the details provided.

2. Categories of personal data processed

The Company may process the following categories of personal data:

  • first and last name;
  • company name;
  • job title;
  • email address;
  • phone number;
  • information provided through the contact form;
  • technical data (IP address, device type, browser — when using the website).

The Company does not process special categories of personal data.

3. Purposes of processing

Personal data is processed solely for the following purposes:

  • processing enquiries submitted through the website;
  • establishing and maintaining business communication;
  • providing information about the Company's products and services;
  • fulfilling contractual obligations;
  • compliance with legal requirements.

Processing is carried out only to the extent necessary to achieve the stated purposes.

4. Legal bases for processing

Personal data is processed on the following legal bases:

  • consent of the data subject;
  • necessity for the performance of a contract;
  • legitimate interest of the Company (e.g. website security);
  • compliance with regulatory requirements.

5. Retention period

Personal data is retained for the period necessary to achieve the purposes of processing, or as required by law. Upon expiry, data is deleted or anonymised.

6. Transfer of data to third parties

The Company does not share personal data with third parties, except in the following cases:

  • when required by law;
  • when necessary for the performance of a contract;
  • when using technical service providers (hosting, IT support) acting under contractual data protection guarantees.

7. Rights of data subjects

Under the GDPR, you have the right to:

  • access your personal data;
  • rectify inaccurate data;
  • erasure («right to be forgotten»);
  • restriction of processing;
  • data portability;
  • object to processing;
  • lodge a complaint with the Commission for Personal Data Protection.

Requests may be submitted through the contact details provided.

8. Security measures

The Company implements appropriate technical and organisational measures to protect personal data from unauthorised access, loss, alteration or disclosure.

9. Changes to the policy

The Company reserves the right to update this Policy. The current version is published on the website.