- Personal Data Protection Policy (Privacy Policy);
- Cookie policy.
According to the General Data Protection Regulation (GDPR) and the Bulgarian Personal Data Protection Act, merchants developing e-commerce by an online store are required to adopt a Personal Data Protection Policy (also known as a Privacy Policy) that is available to the users of the website.
The sanctions on the most serious violations of the obligations of Data Controllers vary between EUR 20,000,000 and 4% of the total annual worldwide turnover of the company. To avoid administrative sanctions, you need a professionally prepared Privacy Policy that is tailored to your business and the requirements of the applicable regulations.
The lack of statutory content in your Personal Data Protection Policy or the provision of conditions for the collection, processing, and storage of personal data that do not comply with the applicable regulations may cause an "avalanche" of signals to the regulatory authorities and the risk of serious sanctions.
With the entry into force of the Regulation (GDPR), the collection and processing of personal data for users of Internet sites through the so-called "cookies" also acquired a new legal framework. Merchants are required to provide a certain amount of information to each user about the data collected by cookies and how the user can manage this information. These obligations are most often fulfilled by the publication of Cookie Policies on the Merchants' sites.
We at LEXDIA can prepare your Privacy Policy and Cookie Policy by integrating the strict requirements of the law into your business without causing difficulties in your daily business operations.