top of page

Check out our new Swimwear collection

Made in Bulgaria

Free delivery for orders over 130 lev

Privacy Policy

1. Data Controller

We would like to provide you with information about how we collect and process your personal data on the website www.tonylans.com. The data controller of the website (hereinafter referred to as "We", "Us") is JESSI – 11 EOOD, UIC 204072159, which is responsible for protecting your personal data.
Contact us at: JESSI – 11 EOOD, Yambol, Zlaten Rog Residential Area, Block 32, Entrance B, Floor 2, Email: beliotonylans@gmail.com, Phone: +359 89 355 4844.

It is of utmost importance that the information we store about you is accurate and up-to-date. Please notify us if there is any change in your personal information by updating your data in your user profile.

Please note: By providing your personal data, you confirm that you are at least 13 years old. If this is not the case, you must contact us immediately so we can take steps to delete your data.

2. What Data We Collect About You, For What Purpose, and On What Legal Basis We Process It

Personal data refers to any information that can identify an individual. Anonymous data is not included in this category. We process the following categories of personal data:

Communication Data

This includes any messages you send to us, whether through the contact form on our website, via email, social media messages, or other forms of communication. We process this data to communicate with you, maintain records, and establish, execute, or defend legal claims. The legal basis for this processing is our legitimate interests, which in this case are responding to your messages, maintaining records, and handling or defending legal claims.

Customer Data

This includes data related to the purchase of goods and/or services, such as your name, billing address, delivery address, email address, other contact details (phone number), purchase statistics, and more. We process this data to deliver the goods and/or services you have purchased and to maintain records of such transactions. The legal basis for this processing is the performance of a contract between you and us and/or taking steps at your request to enter into such a contract.

User Data

This includes data about how you use our website and other online services, as well as any data you post on our website or through other online services. We process this data to manage our website, ensure we provide you with relevant content, maintain the security of our website, back up our website and/or database, and manage and administer our website, other online services, and business. The legal basis for this processing is our legitimate interests, which in this case allow us to properly administer our website and business.

Technical Data

This includes data related to your use of our website and online services, such as your IP address, login data, browser details, duration of visits to pages on our website, page views and navigation paths, details about the number of visits to our website, time zone settings, and other technologies on the devices you use to access our website. The source of this data is our analytics tracking system. We process this data to analyze the use of our website and other online services, administer and protect our business and website, provide relevant content and advertisements, and understand the effectiveness of our advertisements. The legal basis for this processing is our legitimate interests, which in this case allow us to properly administer our website and business, develop our business, and determine our marketing strategy.

Marketing Data

This includes data related to your preferences for receiving marketing information from us and third parties, as well as your preferred communication methods. We process this data to include you in our promotions, such as games, prizes, and free gifts, to provide you with relevant content and advertisements, and to understand the effectiveness of these advertisements. The legal basis for this processing is our legitimate interests, which in this case help us understand how customers use our products/services, develop them, grow our business, and determine our marketing strategy.

We may use Customer Data, User Data, Technical Data, and Marketing Data to provide you with relevant content and advertisements (including Facebook or other ads) and to understand the effectiveness of the provided advertisements. The legal basis for this processing is our legitimate interests, which are related to growing our business. We may also use this data to send you other marketing communications. The legal basis for this processing is either consent or legitimate interests (namely, growing our business).

Sensitive Data

We do not collect any sensitive data about you. Sensitive data includes information about your race or ethnicity, religious or philosophical beliefs, sexual life, sexual orientation, political opinions, trade union membership, health information, genetic and biometric data. We also do not collect information about criminal convictions and offenses.

Please note: If we are required by law or under the terms of a contract between us to collect personal data and you do not provide this data upon request, we may not be able to fulfill the contract (e.g., deliver goods or services to you). If you do not provide the requested data, we may need to cancel the product you ordered, but we will notify you in advance.

We will only use your personal data for the purpose for which it was collected or if necessary for a purpose closely related to the original one. For more information, please contact us at beliotonylans@gmail.com. If we need to use your data for an unrelated new purpose, we will notify you and explain the legal reasons for our actions.

We may process your personal data without your knowledge or consent, but only within the limits permitted by law. We do not engage in automated decision-making or automated profiling.

3. How We Collect Your Personal Data

  • Provided directly by you (e.g., by filling out forms on our website or sending emails);

  • Automatically collected from you when you use our website, through cookies and similar technologies. Please see our cookie policy for more details here.

  • We may receive data from third parties, such as:

    • Analytics providers (e.g., Google), based outside the EU;

    • Advertising networks (e.g., Facebook), based outside the EU;

    • Search information providers (e.g., Google), based outside the EU;

    • Providers of technical, payment, and delivery services, information brokers, or aggregators.

4. Marketing Communications

The legal basis for processing your personal data for marketing communications is your consent or our legitimate interests (e.g., to grow our business).
Under data protection and electronic communications laws, we may send you marketing communications if:
(A) You make a purchase, register on our site, or inquire about our goods or services; or
(B) You have agreed to receive marketing communications, and in both cases, you have not explicitly opted out of receiving such communications.

If you are a corporate entity, we may send you marketing emails without your consent. In this case, you can also opt out of receiving marketing emails from us at any time.

Before sharing your personal data with third parties for their marketing purposes, we will seek your explicit consent.

You can request that we stop sending you marketing communications at any time by logging into the website and your profile to adjust your marketing preferences or by unsubscribing from newsletters via email.

Please note: Opting out of marketing communications does not apply to personal data provided as a result of other transactions, such as purchases, warranty records, etc.

5. Sharing Your Personal Data

We may share your personal data with the following parties:

  • Service providers offering IT and system administration services;

  • Professional advisors, including lawyers, bankers, auditors, and insurers;

  • Government authorities requiring us to report processing activities;

  • Courier companies;

  • Third parties acquiring or merging parts of our business or assets.

We require all third parties to respect the security of your personal data and treat it in accordance with the law. Third parties may process your personal data only for specific purposes and in accordance with our instructions.

6. Data Security

We have implemented security measures to prevent accidental loss, misuse, alteration, disclosure, or unauthorized access to your personal data. Access to your personal data is granted only to employees and partners who have a business need to use such data. They are instructed to process your personal data according to our guidelines and confidentiality rules.

We have a procedure in place to handle suspected data breaches and will notify you, as well as the relevant regulators, of such breaches if and when required.

7. Data Retention

We will retain your personal data for as long as necessary to fulfill the purposes for which it was collected or to satisfy legal, accounting, or reporting requirements.
When determining how long to retain your data, we consider its quantity, nature, and sensitivity, the potential risk of unauthorized use or disclosure, the purposes of processing, and whether these can be achieved through other means, as well as legal requirements.

Please note: Tax laws require us to retain basic information about our customers (such as contact, identity, financial, and transaction data) for up to ten years after you cease being our customer.
In certain circumstances, we may anonymize your personal data for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

8. Your Rights

Under data protection laws, you have rights regarding your personal data, including the right to request access, correction, deletion, restriction, transfer, objection to processing, data portability, and (where the legal basis for processing is consent) to withdraw your consent.
Learn more about these rights at: https://www.cpdp.bg/?p=rubric&aid=2.
If you wish to exercise any of the above rights, please contact us at: beliotonylans@gmail.com.

There is no fee for accessing your personal data (or exercising any of your other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

We may need to request specific information from you to confirm your identity and ensure your right to access your personal data (or exercise any of your other rights). This security measure ensures that personal data is not disclosed to anyone who has no right to receive it. We may also contact you to request further information regarding your request to speed up our response.

The response time for all legitimate requests is one month. If your request is particularly complex or you have made several requests, we may not be able to respond within a month, but we will notify you.

If you are not satisfied with how we collect and use your data, you have the right to file a complaint with the Commission for Personal Data Protection (https://www.cpdp.bg). We would appreciate it if you contact us first to resolve the issue.

10. Third-Party Links

This website may include links to third-party websites, plugins, and applications. Clicking on these links or enabling them may allow third parties to collect or share data about you. We do not control these websites and are not responsible for their privacy statements. When you leave our website, we recommend that you read the privacy notice of every website you visit.

11. Cookies

You can set your browser to refuse all or some cookies or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use, please see here.

bottom of page