Manage your cookies

To continue using the website, please select the cookies you want to allow and click "SAVE PREFERENCES" or choose "ACCEPT ALL". For more detailed information about each type of cookie, explore the descriptions provided. To learn more, please read our Cookie Policy.

  • STRICTLY NECESSARY

    These cookies are necessary for the website to operate properly and cannot be disabled. They support core functionalities, such as making bookings and ensuring secure login. These cookies do not store personal data or allow user identification.

  • PERFORMANCE

    These cookies allow us to track visits and traffic sources to measure and improve website performance. They help us understand which pages are the most and least popular and how visitors navigate the site. All information collected by these cookies is aggregated and remains anonymous.

  • FUNCTIONAL

    These cookies allow the website to remember your preferences and personalize your experience. For example, they can help you navigate the site more easily by remembering your language settings.

  • MARKETING

    These cookies enable us to deliver personalized ads and marketing content. They do not store personal information. Instead, they rely on the unique identification of your browser and device.

MENU
BOOKING

Privacy policy

  • Privacy Policy

    The website is available at http://www.simada.bg/ and is managed by the company "HOTEL SALESWIZARD" (hereinafter referred to as "EXELY"). SIMADA EOOD is a commercial company registered in the Commercial Register, with UIC 205216121, with registered office and management address: Sofia, 2 Dobrich St., 1st floor, apt. 2, tel.: 0877142022 and e-mail address: info@simada.bg, the same is represented by the manager Simeon Doychinov. SIMADA EOOD is a personal data administrator under the European General Data Protection Regulation (GDPR) and is the sole user of the specified website, and does not have access to the server, data cloud or cookies used by the site. The company "HOTEL SALESWIZARD" FE LLC has registration number 310 463 717, Republic of Uzbekistan, Tashkent city, Mirabad district, Movarounnaxr MFY, Istiqbol ko'chasi, 34-UY and, in accordance with its internal rules for processing personal data specified on the website, is a personal data administrator in accordance with and in compliance with the European Data Protection Regulation (GDPR).


    In accordance with the requirements of Regulation (EU) 2016/679 of the EU of 27.04.2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and other applicable acts of the European Union and the Republic of Bulgaria, with this Policy, SIMADA EOOD informs you about the activities it carries out in processing personal data on the website, the purposes for which the data is processed, the measures and guarantees for the protection of the processed data, your rights and the manner in which you may exercise them


    PRINCIPLES FOR PROCESSING PERSONAL DATA
    Compliance with the provisions of the Regulation
    The Company's policy aims to ensure compliance with the provisions of the Regulation.
    Personal data is collected and processed lawfully and in good faith
    The data collected by the Company through the specified website are: First and last name, telephone number and email, all other data collected through the website are collected by EXELY, in accordance with and in accordance with the following: consent to the processing of personal data, the terms and conditions and the privacy policies and rules that you confirm in favor of the owner of the site - EXELY, when making a reservation in any of the divisions of the website. The personal data specified in the previous sentence that the Company collects and processes are collected and processed lawfully, in good faith and in accordance with the principles and rights of individuals in relation to the processing of their personal data.


    Personal data is processed transparently
    The Company ensures transparency in communication about the collected and processed personal data, as the information about this is in a short, transparent, understandable and easily accessible form, and clear and unambiguous formulations are used.
    Personal data are collected and processed only for specific purposes
    The Company processes personal data of individuals only in the following cases:
    1- processing is necessary for compliance with a legal obligation related to the exercise of its activity as a tourist site;
    2- processing is necessary for the performance of a contract (including an order) to which an individual is a party, or to take steps at the request of an individual prior to entering into a contract, when his identification is required;
    3- an individual has given his unambiguous consent for an understandable and transparently defined purpose for which the processing of his personal data is necessary;
    4- processing is necessary for the purposes of the legitimate interests of the Company or a third party, in accordance with the provisions of the Regulation;
    5- other cases provided for in the Regulation.


    Personal data not necessary for the activity is not collected and processed
    The Company does not collect and does not process personal data of individuals that exceed its obligations under the law or its needs for carrying out its activity. In case you have given your consent for your personal data to be processed by EXELY for purposes other than those for which the Company collects and processes your data, then all claims and objections regarding this processing and collection, for which you have provided your explicit consent, through the website, should be directed to EXELY by contacting an EXELY representative at the following email: privacy@exely.com or visit the website: https://prighter.com/q/16370082906.


    Minimally necessary personal data is collected for processing
    The Company collects and processes only the minimum necessary personal data of individuals that:
    1- are provided for by law;
    2- are necessary for the performance of a contract;
    3- are necessary for the fulfillment of the purposes for which they are collected.
    The processed personal data are accurate and up-to-date
    The Company ensures that the processing of personal data of individuals is carried out with maximum accuracy and, if possible, always up-to-date.


    Personal data is stored for the minimum necessary time
    The Company stores personal data for the minimum necessary time, which is:
    1- necessary by law;
    2- necessary to fulfill a contract and the responsibility under it;


    3- necessary to fulfill the purpose for which the data were collected and processed; or
    4- until the expiry of the legitimate interest of the Company, or
    5- until the request of the individual for their deletion, where there is a basis for such a request.
    After the expiry of the minimum necessary time, according to points 1 to 4 of the previous paragraph, the personal data are destroyed without undue delay.
    In all cases, the Company ensures that at least once a year a review of the collected and processed personal data is made and those of them that fall into any of the above hypotheses are deleted without undue delay.


    RULES FOR PROCESSING PERSONAL DATA
    Personal data are processed with the necessary levels and measures for protection
    The Company ensures the necessary levels of physical, organizational and technological protection in view of:
    1- the nature, scope, context and purpose of the processed personal data;
    2- the probability, levels of impact and severity of the risk to the rights and freedoms of individuals in the event of a breach of the security of the processed personal data;
    3- its financial and organizational capabilities.
    The company also provides all necessary measures for the timely recovery of collected and processed personal data in the event of their loss as a result of accidental, malicious or force majeure events.
    Personal data are processed with controlled and traceable access
    The company provides the necessary and appropriate technical, organizational and technological measures for controlled and traceable access to the personal data of individuals.
    Personal data are processed with the necessary accountability for compliance with the Regulation
    The company provides the necessary accountability and registers to be able to prove that the provisions of the Regulation have been complied with.
    Respect for the rights of individuals whose personal data are processed
    The company ensures compliance with the rights of individuals whose personal data are collected and processed, which includes:
    1- the right to be informed about the processing of personal data;
    Data subjects have the right, at any time when their personal data is processed, to be informed of the purposes of the respective processing, the measures taken to protect their personal data, the recipients of these data, as well as the period for their storage.
    2- right of access to personal data;
    Data subjects have the right at any time to request from the Company information about the data stored about them, as well as about their origin, recipients and categories of recipients to whom they are transferred and the purpose of storage.
    3- right to withdraw consent;
    In cases where the data subject has provided his consent to the processing of his data, the same may withdraw his consent at any time without giving reasons.
    4- right to correct inaccurate personal data;
    Data subjects may request the Company to correct their inaccurate personal data.
    5- right to delete and restrict the processing of personal data;
    The Company provides the possibility, upon request by the data subjects, to delete their personal data. Deletion takes place within 30 days from the date of submission of the request. In case the Company has a legal obligation to continue processing the data, the data subject is informed that they cannot be deleted, but it is possible to apply restricted processing of their personal data.
    6- right to data portability;
    The data subject may request from the Company that their personal data be transmitted or transferred to another administrator in a structured, commonly used and machine-readable format. The Company will carry out a direct transfer of the data only if this is technically feasible.
    7- right to object to the processing of personal data;
    The data subject has the right at any time and without giving reasons to object to the processing of their data for direct marketing purposes.
    8- right not to be subject to automated decision-making, including profiling.
    The Company does not perform automated data processing, including profiling.
    9- right to complaint;
    The data subject has the right to file a complaint with the supervisory authority against the processing of his/her personal data, in case his/her rights and legitimate interests are violated during the processing.
    PROCESSED PERSONAL DATA
    The Company performs the following operations and processes only the necessary personal data of users for the following purposes:
    » for the purposes of making a reservation through the website – Two names, Phone, E-mail;
    » for providing tourist services to clients – Three names, Phone, E-mail, Personal Identification Number, personal card data necessary for entering the respective tourist in the tourist books and registers, which the Company is obliged to maintain, in accordance with and in accordance with the laws of the Republic of Bulgaria;
    » for carrying out correspondence – Name, E-mail;
    RECIPIENTS AND CATEGORIES OF RECIPIENTS
    In connection with the implementation of the purposes specified above, the Company provides personal data of individuals to the following recipients:


    » State and municipal authorities and/or institutions – in connection with legal obligations to them or in connection with legal requests from them for information containing personal data;
    » Subcontractors in the performance of contractual obligations, including those of EXELY – the company that owns the website and for which you have provided your explicit consent when making a reservation through the site.
    PRIVACY OF CHILDREN’S PERSONAL DATA
    The Company does not knowingly collect personal data of persons under 16 years of age. If a parent or legal representative knows that their child has provided personal data to the Company, the same should immediately inform us.
    CONTACT DETAILS WITH THE COMPANY
    If you have any questions or concerns regarding the processing of your personal data or wish to exercise any of your rights, you can contact:
    » E-mail: info@simada.bg
    If you have any questions for the company Owner of the site regarding the collection and processing of your personal data, you can contact it at:
    » E-mail: privacy@exely.com
    COMPETENT SUPERVISORY AUTHORITY
    On the territory of the Republic of Bulgaria, the competent supervisory authority is the Personal Data Protection Commission.
    In case of doubt that your rights related to the protection of your personal data have been violated, you can file a report to:
    »Address: Sofia 1592, 2 Prof. Tsvetan Lazarov Blvd.
    »E-mail: kzld@cpdp.bg


    UPDATING AND AMENDMENT OF THIS PRIVACY POLICY


    This Privacy Policy is updated in case of improvements to our website, change of the purposes for processing personal data of individuals, introduction of new purposes, mechanisms and measures for their protection or in case of change of the regulatory or administrative requirements for processing personal data.
    This Privacy Policy is in force from 01.06.2019, and the same was amended on 08.05.2024.