Privacy Policy

The Data Controller for your personal data is: Black Pearl Consulting Ltd Georgi Benkovski 14, 1000 Sofia, Bulgaria VAT: BG204553406 Email: info@blackpearlbusiness.com For any questions regarding the processing of your personal data, you can contact us at the email address above.

We collect the following categories of personal data: Data provided voluntarily: - First and last name - Email address - Company name (optional) - Content of messages sent through the contact form Data collected automatically: - Browsing data (IP address, browser type, operating system) - Site usage data (pages visited, time spent) - Technical and analytical cookies (see Cookie Policy)

Your personal data is processed for the following purposes: a) Managing contact requests - Legal basis: Performance of pre-contractual measures (Art. 6(1)(b) GDPR) - Purpose: Responding to your information and quote requests b) Service improvement - Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) - Purpose: Analyzing site usage to improve user experience c) Legal compliance - Legal basis: Legal obligation (Art. 6(1)(c) GDPR) - Purpose: Complying with laws, regulations, or European directives

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected. We adopt adequate security measures to prevent unauthorized access, disclosure, modification, or destruction of personal data, including: - Encryption of data in transit (HTTPS/TLS) - Limited access to data only to authorized personnel - Regular and secure backups - Continuous security monitoring

Personal data is retained for the time necessary to achieve the purposes for which it was collected: - Contact data: retained for 24 months from last interaction, unless legal obligations require otherwise - Browsing data: retained for 12 months - Data for legal obligations: retained for the period required by applicable law At the end of the retention period, data will be securely deleted or anonymized.

Your personal data is not sold to third parties. It may be communicated to: Service providers: - Hosting and cloud infrastructure providers - Transactional email services (Resend) - Analytics tools (Google Analytics, if active) All providers have been selected for their GDPR compliance and are bound by Data Processing Agreements (DPA). Extra-EU data transfers: Some of our providers may be located outside the EU. In such cases, transfers are based on: - European Commission adequacy decisions - Standard Contractual Clauses (SCC) - Other appropriate safeguards under the GDPR

As a data subject, you have the following rights guaranteed by the GDPR: Right of access (Art. 15): Obtain confirmation of processing and access to your data. Right to rectification (Art. 16): Obtain correction of inaccurate data or completion of incomplete data. Right to erasure (Art. 17): Obtain deletion of your data ("right to be forgotten") when no longer necessary or upon withdrawal of consent. Right to restriction (Art. 18): Obtain restriction of processing in certain circumstances. Right to data portability (Art. 20): Receive your data in a structured format and transfer it to another controller. Right to object (Art. 21): Object to processing based on legitimate interest. Right to withdraw consent (Art. 7): Withdraw consent at any time, without affecting the lawfulness of processing based on consent before withdrawal. To exercise these rights, contact us at: info@blackpearlbusiness.com

If you believe that the processing of your data violates the GDPR, you have the right to lodge a complaint with the competent supervisory authority. For Italy: Garante per la Protezione dei Dati Personali Piazza Venezia, 11 - 00187 Rome www.garanteprivacy.it For Bulgaria: Commission for Personal Data Protection (CPDP) 2, Prof. Tsvetan Lazarov blvd., Sofia 1592 www.cpdp.bg

We reserve the right to modify this policy at any time. Changes will be published on this page with the date of last update. We invite you to periodically check this page to stay informed about how we process your personal data.

For any questions, requests, or clarifications regarding this policy or the processing of your personal data, you can contact us at: Email: info@blackpearlbusiness.com Address: Georgi Benkovski 14, 1000 Sofia, Bulgaria