Privacy Policy

1. Introduction and Data Controller

TCP Global EOOD (“we”, “our”, or “the Company”) is committed to protecting the privacy and personal data of our website visitors, clients, and partners. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website www.tcp-global.eu or use our corporate IT asset lifecycle management services.

The Data Controller responsible for your personal data under the General Data Protection Regulation (GDPR) is:

• Company Name: TCP Global EOOD (ТСП Глобал ЕООД)

• Registered Office: 24 George Washington St., 1202 Sofia, Bulgaria

• Operational Office & Facility: Ruse Center, 20 Pridunavski Blvd., Ruse, Bulgaria

• Email: csd@tcp-global.eu

2. Information We Collect

We may collect and process the following categories of personal data:

• Identity and Contact Data: Name, job title, company name, corporate email address, telephone number, and physical billing/shipping addresses provided when you fill out contact forms or request commercial quotations.

• Technical and Usage Data: IP address, browser type and version, time zone setting, operating system, and information about how you use our website.

• Asset-Related Data: Information regarding corporate IT assets provided by clients for lifecycle management. While this is corporate data, it may occasionally contain associated identifying technical logs.

3. How and Why We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we use your data under the following legal bases:

• Performance of a Contract: To process requests for quotations, arrange corporate logistics, manage asset processing, and deliver technical ITAD services.

• Legitimate Interests: To improve website functionality, protect our network security, and manage our business relationships.

• Compliance with Legal Obligations: To comply with accounting, tax, and local commercial electronic laws in Bulgaria.

4. Role in Data Erasure and ITAD Services (Data Processor Status)

When performing certified data erasure and asset value recovery, the client remains the Data Controller of any data residing on the physical storage media. TCP Global EOOD acts strictly as a Data Processor. We process such data solely under strict contractual instructions from the client, employing certified sanitization tools until a Certificate of Data Destruction or Erasure is issued.

5. Data Sharing and Subcontracting

To deliver integrated international logistics and IT lifecycle operations, we may share relevant contact and asset data with:

• Our corporate office and operational team operating from our warehouse at Ruse Center, 20 Pridunavski Blvd., Ruse, Bulgaria.

• Certified Downstream Partners: Fully licensed regional logistics, transport, and recycling facilities who execute specific technical or eco-compliant tasks under strict confidentiality agreements.

• Regulatory and state bodies where required by law.

We do not sell personal data to third parties. All international data transfers within our network strictly comply with EU standard contractual clauses.

6. Data Security

We have put in place appropriate technical and organizational security measures to prevent your personal data from being accidentally lost, used, altered, disclosed, or accessed in an unauthorized manner. Access to corporate and personal data is strictly limited to authorized personnel and partners under contract.

7. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or statutory reporting requirements under Bulgarian and EU law.

8. Your Legal Rights Under GDPR

Under the GDPR, you possess the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you.

• Right to Rectification: Request correction of any incomplete or inaccurate data.

• Right to Erasure (“Right to be Forgotten”): Request the deletion of your personal data under specific conditions.

• Right to Restrict or Object to Processing: Object to or restrict the processing of your data based on legitimate interests.

• Right to Data Portability: Request the transfer of your data to another organization.

To exercise any of these rights, please contact our data management desk directly at csd@tcp-global.eu.

9. Right to Lodge a Complaint

If you believe that our processing of your personal data infringes GDPR regulations, you have the right to file an official complaint with the relevant supervisory authority in Bulgaria:

• Authority: Commission for Personal Data Protection (КЗЛД)

• Address: 1592 Sofia, 2 Prof. Tsvetan Lazarov Blvd., Bulgaria

• Website: https://www.cpdp.bg

10. Cookies

Our website uses essential and analytical cookies to optimize performance and track user traffic. For full details on how we use cookies and how you can manage your preferences, please refer to our separate Cookie Policy.

11. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy at any time to reflect operational or regulatory changes. Any updates will be published immediately on this page.