Privacy Policy

PRIVACY POLICIES OF MS WARE EOOD (” Sotto “)

WE CARE ABOUT THE PROTECTION OF YOUR PERSONAL DATA

What is the purpose of this document?

In this Privacy Policy, we have summarized the key points regarding the protection of your personal data and the way we process it. If you would like more information about specific processes, you can contact us using the contacts below.

How to contact us?

Address: Plovdiv, st. Rhodopes 113
Email address: info@sotto.bg

How to contact our Data Protection Officer?

Address: Plovdiv, st. Rhodopes 113
Phone: +359883212151
Email: info@sotto.bg

Data protection and information security are part of our corporate culture and policy.

What information can I find in this Privacy Policy?

This Privacy Policy will provide you with comprehensive information in a clear and accessible language about what actions are taken with the personal data you provide to MS WEAR EOOD (hereinafter referred to as Sotto ), including:

• What personal data do we collect about you?
• What is the purpose of their gathering?
• For how long do we keep the personal data provided?
• Who do we share your personal data with?
• How do we notify you of a change to our Privacy Policy?
• What types of cookies do we use to make your stay on our website better?
• What are your rights regarding the personal data provided?

With this Privacy Policy, MS WEAR EOOD declares that it implements all technical and organizational measures to protect the personal data of natural persons, which are prescribed by law or other regulatory act at the national and European level.

What is personal data?

Any information and data that can identify a natural person, directly or indirectly.

So e.g. indirect identification is only your mobile phone number. In this case, a combination with another identifier will be required to establish your identity, such as three names and a mobile phone number.

Direct identification is achieved when you provide a unique identifier such as TIN, LNCH, customer code.

What personal data does Sotto collect about you and for what purposes (why)?

In order to provide you with efficient access to our services, Sotto collects the following information and personal data about you.

Here are the main categories of personal data we collect about you and the reasons (purposes) for which we process this personal data:

Information you voluntarily provide, including:

– Information about your marketing preferences so that we can

1. To send you personalized marketing messages about our products or services.

– Information about your activities and actions on using the capabilities of our web-portal, so that we can:

1. To provide you with a better browsing experience when using our services;
2. To give you access to the history and details of past orders; and
3. To provide you with other services at your request.

– “Cookies” and similar technologies so that we can:

1. To measure and analyze the use and performance of our services;
2. To personalize and optimize the targeting of advertisements for our services on other websites and platforms; and
3. To provide services related to your location if you choose to share your geographic location.

– Information we receive from other sources – third parties:

1. Analytical reports from the analysis and studies of our marketing activities in order to measure the effectiveness of marketing campaigns for our services; and
2. To better understand your preferences so that we can tailor our marketing campaigns and Services to your wishes.

Categories of personal data we process:

Name, surname, date of birth, mobile phone, e-mail, place of residence when filling out the form for ” email club ” posted on our website to get the latest happenings in our restaurants;

Technical data that is automatically sent to us when you use our website via desktop computers – IP address, information about the device from which you are visiting the website;

Technical data that is automatically sent to us when you use our mobile applications – device information, device IMSI number, GPS coordinates,

Data from cookies ( Cookies ) – to identify your browser or device.

What does processing personal data mean?

The processing of personal data includes the collection, storage, destruction, transmission, correction, updating, deletion, destruction and all other actions that are performed with your personal data.

On what basis (why) does Sotto process personal data about you?

The legal basis for collecting and using your personal data as described above will depend on the specific context in which we collect it.

The main reason for collecting and using your personal data is to fulfill our contract with you (ie to be able to provide you with the service you want; to respond to your enquiry, etc.).

We will also use your personal data when this is in fulfillment of our legitimate business interests, but only when these interests are not overridden by your interests in connection with the protection of your personal data or your other rights and freedoms.

In some cases we may have a legal obligation – a legal basis to collect personal data from you (e.g. in the event of legal proceedings) or we may need to process it or share it with other people to “protect your vital interests” saving one’s life) or those of another person (eg in a case where another person’s life is in danger).

If we ask you to provide personal data in order to comply with a legal requirement or enter into a contract with you, we will notify you of the circumstances at the appropriate time and let you know whether or not the provision of personal data is mandatory (and also explain the possible consequences of refusal to provide personal data).

Also, if we collect and use your personal data relying on our legitimate interests (or those of a third party), we will inform you at the relevant time what those legitimate interests are.

If you have any questions or need further information about the legal basis on which we collect and use your personal data, please contact us using the contact details set out in “How to contact us?” above.

Sotto collects personal data even after obtaining express, clear, free and unambiguous consent from you for the purposes of processing.

For example for marketing purposes to receive our latest promotions and updated menus, new dishes and delivery services for example and any other promotional newsletters

Consent to the processing of your personal data is granted when registering on our website or when filling in the various forms placed on our website (for enquiries, for job applications and for subscribing to an advertising newsletter).

The consent you provide can be withdrawn at any time by sending an email to info@sotto.bg or a written application to Sotto ‘s address in Plovdiv, st. Rhodopes 113.

How do we receive your personal data? How do we process your personal data?

In order to provide its services, Sotto processes (collects) the personal data provided by you, regarding your physical identity, in the following ways:

mail newsletter” form provided to you in the lower left corner of the web page of www.sotto.bg. The forms are filled out on our website by providing your personal data in the available positions;

– by visiting www.sotto.bg to use the services on our website;

– when updating data at your request and filling out an update form on paper or in an electronic environment;

– by using online identifiers to collect information about IP addresses, data from cookies (cookies), operating system and browser type;

Email / newsletter

When you subscribe to our email newsletter, you will be asked to enter your email address. As a newsletter subscriber, we keep a log of your IP address, the emails you open and the links you click in those emails so that we can more accurately recommend content, occasional third-party offers and products that you may find valuable. Any personal information you provide to us, including an email address, will not be provided or sold to third parties. However, if you participate in a sweepstakes, your email address may be provided to the relevant provider for registration / activation and ongoing support. Under no circumstances will we ask for credit card details for advertising and email newsletter purposes.

How long do we store and process your data before destroying it?

Sotto will retain your personal information for no longer than necessary to fulfill the purposes described in this Privacy Policy. Depending on the basis on which your personal data is processed, the term of personal data storage is different.

The term of storage of your personal data, which we process only for the purposes of direct marketing and providing advertising materials, is 2 years from the provision of your express consent. You can renew your consent indefinitely, in which case the term will be extended from the date of your last consent.

Your personal data is stored by us for a period of 5 years from the termination of our contractual basis, if we process the personal data for the fulfillment of contractual obligations to you. After the expiration of this period and in the event that there is no legal basis for continuing the storage of your personal data, your information is destroyed. Your records are permanently deleted from our system.

We may also retain certain elements of your personal information for a longer period after we delete your personal data and anonymize the information. In this case, the information will not have the character of personal data and we will no longer be able to establish your identity. Whenever we retain your information, we will do so in accordance with applicable laws.

To whom can we pass on the personal data you provide?

Sotto does NOT provide your personal data to third parties without your express consent and does not sell its databases.

Sotto undertakes not to provide your personal data to third parties without your express consent, except when it is necessary to fulfill contractual obligations towards you.

Sotto may share your personal information (your personal data) with the following recipients (in each case we will ensure that we have appropriate safeguards and contractual safeguards in place to protect it):

1. Sotto companies in our group;
2. Third parties who support our services (for example marketing partners or promotions in the food, beverage and entertainment sectors based on your preferences, courier services, web hosting companies);
3. Any law enforcement or regulatory authority, government agency, court or other third party where disclosure is required under applicable laws or regulations;
4. New owners or reorganized entities in the event of a restructuring, sale, purchase or joint venture affecting our business.
5. Any other person, provided you give your consent. We will never sell, distribute or otherwise share your personal information unless we have your express permission.

Are there other cases in which we may share your personal data?

Your personal data is also provided to third parties in the following cases:

At the request of the natural person who provided the data, the subject of personal data protection;

At the request of competent authorities according to the current legislation of the Republic of Bulgaria and the European Union.

In all the above cases, the persons to whom we transfer your personal data have declared that they provide an adequate level of protection of your personal data, including the foreign companies positioned within the EU and EEA. With respect to companies located outside the EU and EEA, on a case-by-case basis, the relevant company ensures that it provides an adequate level of personal data protection

What are your rights regarding the personal data provided?

You can also contact us to request that we update or delete your personal data, as well as to restrict its processing.

You also have the right to unsubscribe from the marketing communications we send you by using the unsubscribe feature from any marketing communication you receive from us or by sending an email to info @sotto.bg

In addition, according to Bulgarian and European legislation, including GDPR – Regulation (EU) 2016/679 of the EU and of the Council (General Data Protection Regulation) regarding the protection of personal data, you can exercise the following rights:

– The right to access and receive a copy of the personal data that Sotto processes for you

– The right to ask Sotto for correction in case you find inaccuracies or the need to update your personal data by sending an email to info@sotto.bg;

– The right to request the blocking of your personal data or restriction of the processing of personal data, in the cases defined by law and the Regulation;

– Right to request erasure ie. delete your personal data from Sotto, if the conditions are met.

– The right to object to the processing of your personal data for direct marketing purposes by using the “unsubscribe” link we have included in any email sent to you containing advertising information about our products;

– The right to object to the provision of your personal data to third parties by sending us an email at: info @sotto.bg ;

– The right, whenever you wish, to withdraw your consent to your personal data being processed for the purposes for which you have consented, for example for marketing, by sending an email to: info @sotto.bg ;

– The right to request the portability of your personal data in a structured, machine- readable format that is commonly used;

– The right to file a complaint or request for the protection of your rights before the Personal Data Protection Commission, if the prerequisites for this are met.

You can exercise all rights at any time regarding the processing of your personal data.

Do you have an obligation to provide us with your personal data?

In order to be able to provide our products and services, we collect and process your personal data. We also process them in order to fulfill legal obligations.

In the event of your refusal to voluntarily provide the requested personal data, Sotto will not be able to provide its products and services, for example you will not be able to receive food delivery or make a reservation for our location.

Changes to Privacy Policies

In the future, we may need to update this Privacy Policy from time to time in response to changing legal, technical or business processes.

We encourage you to periodically review this page for the latest information about our privacy practices.

In the event that, as a result of changes made to these Privacy Policies, new purposes for the processing of personal data or other circumstances requiring your express consent are foreseen, we declare that we will also notify you by sending a letter by electronic means (e- mail ) to the provided from you e-mail, with which we kindly invite you to confirm or refuse to provide consent.

This will give you the opportunity to stop using some or all of the services and/or to exercise your rights, some of which are expressly stated above.

Change cookie settings

Most sites automatically accept cookies, but if do not wish to accept them, you can configure your browser to reject them.

Most web browsers allow cookies to be controlled through the settings of the browser itself. You can usually find these settings in the Options, Settings, Preferences menu. You could delete any cookies already stored on your computer and set most browsers to block them entirely.

Alternatively, an external resource located at www.allaboutcookies.org/manage-cookies can be used, which can provide specific information about cookies and how to manage them according to the User’s preferences.

However, if you do this, you may need to manually adjust some parameters each time you visit a site, and some services and features may not work. Unfortunately, in most cases there is no universal option to disable cookies without limiting the functionality they add to the site. To find out more about cookies – including how to control them – you can visit https://cookiepedia.co.uk/.

Please note that blocking cookies will affect the way the website works and may cause the site to malfunction.

These privacy policies have been adopted by Sotto and are effective as of 05.10.2024​