This Privacy notice relates to all Users of the website www.aqxt.com (data subjects) (“You”, “Your”), whose personal data is processed by the controller AQX Technologies (“we”, “us”, “our”), established in the European Union (“the Union”).
In terms with the application ofRegulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“GDPR”), we therefore inform You how we collect and process Your personal data through the website www.aqxt.com (“the Website”).
About the Controller
20 Zlaten Rog Str., 1407 Sofia, Bulgaria
+359 2 439 6570
We collect Your personal data as follows:
The below Table 1 lists the categories of your personal data, that we collect and process through the Website, for what purpose and on what legal basis:
Why we collect:
Legal basis for processing:
|Contact form information|
Why we collect:
Legal basis for processing:
Personal data and logging information
To maintain our Website and prevent it from cyber threats such as DDoS and botnet attacks, we log every visit to the Website including IP addresses and other technical information (web browser information). As stated by CJEU, your IP address sometimes may constitute personal data. That is why, we treat all IP addresses as personal data under GDPR all the time. Therefore, your IP address is personal data for us and is processed us every time you interact with the Website.
Personal data and filling out the Contact form
We encourage you to provide only accurate and limited to what is necessary volume of information within the Contact form. This means that in all free-form text fields only the necessary information should be provided to us. Sometimes this may be personal data as in other cases non-personal data is required such as company name, company email, etc. Where filling in a field is not required it is up to you to provide us relevant information. Without providing all required information including personal data we may not be able to process your inquiry and/or get back to you.
Automated individual decision-making
You are not object to a decision based solely on automated processing, including profiling, while visiting and interacting with the Website.
We may share your personal data with recipients including third parties when:
The processors we engage are not allowed to process your personal data for their own purposes. The processors we engage process your personal data only:
We do not transfer your personal data in the context of Chapter V of GDPR.
Your personal data are secured by the latest state of the art technologies. We have implemented adequate technical and organizational measures for security to prevent from accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to.
Nevertheless, the access to Your personal data is strictly limited to persons that are related and authorized to access to Your personal data. They process Your personal data in accordance with our instructions and are under confidentiality obligation. Your personal data is fully encrypted and secured.
We have implemented strict procedures for dealing with any supposed data breach, related to personal data, and will notify You and the competent data protection authority (DPA) in case of data breach, when we are obliged to do so.
We store your personal data until the Website is running or 3 years after the data is collected.
We may store Your personal data a longer period if necessary, for the establishment, exercise or defense of legal claims.
As a data subject You can exercise any of the following rights:
Where we have reasonable doubts concerning your identity when making a Data Subject Request (“the Request”), we may request the provision of additional information necessary to confirm your identity. This precautionary measure guarantees that any of your personal data will not be exposed before unauthorized party.
You can make the Request emailing firstname.lastname@example.org your Data Subject Request that should include the following mandatory information:
You have the right at any time to lodge a Complaint with a supervisory authority (Data Protection Authority) in particular in the Member State of Your habitual residence, place of work or place of the alleged infringement if the You consider that the processing of personal data relating to You infringes GDPR.
Contact details of Data Protection Authorities as follows:https://edpb.europa.eu/about-edpb/board/members_en
We may update this Privacy Notice from time to time based on any changes regarding the processing of Your personal data and/or updates of the Website.