Privacy Policy
Last Updated: February 15, 2025
At TechSmartBridge, we take your privacy seriously. This document explains how we collect, use, and protect your personal information when you use our educational services and website. We're committed to being transparent about our practices and giving you control over your data.
1. Information We Collect
Personal Information You Provide
When you register for our courses or contact us, we collect information you voluntarily share. This includes your name, email address, phone number, and any details you provide in forms or communications. We only ask for what we actually need to deliver our services.
Automatically Collected Data
Like most websites, we gather certain information automatically when you visit. This includes your IP address, browser type, device information, and how you interact with our site. We use this to understand how people use our platform and to improve the experience.
- Log data: pages visited, time spent, links clicked
- Device information: operating system, screen resolution, browser settings
- Location data: general geographic location based on IP address
- Cookies and similar tracking technologies
Educational Records
Once you enroll in a course, we maintain records of your progress, assignments, test results, and participation. This helps us track your learning journey and provide personalized support. We also keep records of any certificates or credentials you earn through our programs.
2. How We Use Your Information
We use the data we collect for specific purposes that relate to providing and improving our educational services. Here's what we actually do with your information:
| Purpose | Description |
|---|---|
| Course Delivery | Providing access to learning materials, tracking progress, issuing certificates |
| Communication | Sending course updates, responding to inquiries, administrative messages |
| Platform Improvement | Analyzing usage patterns to enhance user experience and content quality |
| Legal Compliance | Meeting regulatory requirements under Bulgarian and EU law |
We don't sell your personal information to third parties. Period. We might share anonymized, aggregated data for research or analysis, but never in a way that could identify you personally.
3. Legal Basis for Processing (GDPR Compliance)
Since we operate in Bulgaria and serve European users, we comply with the General Data Protection Regulation (GDPR). We process your data based on these legal grounds:
- Contractual necessity: fulfilling our obligations when you enroll in courses
- Legitimate interests: improving our services and ensuring platform security
- Legal obligations: complying with Bulgarian tax, educational, and business laws
- Your consent: for optional communications like marketing emails (you can withdraw anytime)
You have the right to object to processing based on legitimate interests. If you do, we'll stop unless we have compelling reasons to continue that override your interests.
4. Data Sharing and Third Parties
We work with a limited number of service providers who help us run our platform. These companies only get access to the data they need to perform their specific functions, and they're contractually obligated to protect it.
Service Providers We Use
- Hosting providers for our website and learning management system
- Email service providers for course communications
- Payment processors for handling course fees securely
- Analytics tools to understand how our platform is used
We might also disclose information if required by law, court order, or government request. This includes cooperating with Bulgarian authorities when legally obligated. We'll notify you about such requests unless prohibited by law.
5. Your Rights Under Bulgarian and EU Law
As someone whose data we process, you have several rights that we take seriously. Here's what you can do:
Access and Portability
You can request a copy of all personal data we hold about you. We'll provide it in a structured, commonly used format within 30 days. If you want to transfer your data to another service, we'll help make that happen.
Correction and Updates
Found something inaccurate in your profile? Let us know and we'll fix it promptly. You can update most information directly through your account settings.
Deletion (Right to be Forgotten)
You can request deletion of your personal data. We'll comply unless we have a legal obligation to retain certain records (like financial transactions or certificates issued). Even after deletion, some anonymized data might remain in backups for a limited time.
Restriction and Objection
You can ask us to limit how we use your data or object to certain types of processing. We'll honor these requests where legally possible, though some restrictions might affect our ability to provide services.
To exercise any of these rights, contact us using the information at the bottom of this page. We'll respond within 30 days and won't charge a fee unless your request is clearly unfounded or excessive.
6. Data Security Measures
We implement technical and organizational measures to protect your data from unauthorized access, alteration, or destruction. Our security practices include:
- Encryption of data in transit using SSL/TLS protocols
- Secure server infrastructure with regular security updates
- Access controls limiting who can view personal information
- Regular backups to prevent data loss
- Employee training on data protection and confidentiality
That said, no system is completely secure. While we do our best, we can't guarantee absolute security. If we detect a data breach that affects your information, we'll notify you and relevant authorities within 72 hours as required by GDPR.
7. Data Retention Periods
We don't keep your data forever. Here's how long we typically retain different types of information:
| Data Type | Retention Period |
|---|---|
| Account information | Active account duration plus 2 years |
| Course records and certificates | 10 years (educational records requirement) |
| Financial transactions | 7 years (Bulgarian tax law requirement) |
| Marketing communications | Until consent is withdrawn |
| Website analytics | 26 months maximum |
After these periods, we securely delete or anonymize your data unless we have a legal obligation to keep it longer.
8. Cookies and Tracking Technologies
We use cookies and similar technologies to make our website work properly and understand how people use it. Some cookies are essential for basic functionality, while others help us improve the experience.
Types of Cookies We Use
- Essential cookies: necessary for login, security, and basic site functions
- Analytics cookies: help us understand usage patterns and improve content
- Preference cookies: remember your settings and choices
You can control cookies through your browser settings. Blocking certain cookies might affect how the site works, but essential functions should still be accessible.
9. International Data Transfers
Our primary operations and data storage are within the European Union. If we need to transfer data outside the EU (for example, using certain service providers), we ensure appropriate safeguards are in place through standard contractual clauses or other mechanisms approved by EU law.
Any international transfers comply with GDPR requirements, and we only work with providers who maintain adequate data protection standards.
10. Children's Privacy
Our courses are designed for adults and professionals. We don't knowingly collect data from anyone under 16 without parental consent. If we discover we've inadvertently collected such information, we'll delete it promptly.
If you're under 16 and interested in our courses, please have a parent or guardian contact us to discuss enrollment options.
11. Changes to This Policy
We review and update this privacy policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you through email or a prominent notice on our website at least 30 days before the changes take effect.
The "Last Updated" date at the top shows when we most recently revised this document. We encourage you to review it occasionally to stay informed about how we protect your information.
12. Supervisory Authority
If you have concerns about how we handle your data and we haven't resolved them to your satisfaction, you have the right to lodge a complaint with the Bulgarian Commission for Personal Data Protection (CPDP) or your local data protection authority.
Commission for Personal Data Protection
Address: 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592, Bulgaria
Website: www.cpdp.bg
Contact Us About Privacy
If you have questions about this privacy policy or want to exercise your rights, reach out to us:
TechSmartBridge
ul. "Krakra" 2А
1504 Sofia Center, Sofia
Bulgaria
Email: info@techsmartbridge.com
Phone: +359 73 872 842
We aim to respond to all privacy-related inquiries within 5 business days.