← Back to Home
Privacy Policy
Last updated: February 2026
MundoTech ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information in compliance with the General Data Protection Regulation (GDPR).
1. Data Controller
MundoTech, headquartered in Sofia, Bulgaria, is the data controller responsible for your personal data.
Contact: privacy@mundo-tech.eu
2. Data We Collect
| Data Type |
Purpose |
Legal Basis |
| Name, Email, Phone |
Communication & Service Delivery |
Contract Performance |
| Company Information |
B2B Service Provision |
Legitimate Interest |
| Billing & Payment Data |
Financial Transactions |
Legal Obligation |
| Usage Data & Analytics |
Service Improvement |
Legitimate Interest |
| Communication Records |
Support & Quality |
Legitimate Interest |
3. How We Use Your Data
- Provide and maintain our services
- Process orders and payments
- Communicate about projects and support
- Send relevant updates (with your consent)
- Comply with legal obligations
- Improve our services through analytics
4. Data Sharing
We may share your data with:
- Service Providers: IT suppliers, payment processors, delivery services (for equipment orders)
- Legal Requirements: When required by law or to protect our rights
- Business Partners: Only with your explicit consent
We do not sell your personal data to third parties.
5. International Transfers
Your data may be processed within the European Economic Area (EEA). If data is transferred outside the EEA, we ensure adequate protection through:
- EU Standard Contractual Clauses
- Adequacy decisions by the European Commission
- Other lawful transfer mechanisms
6. Data Retention
- Client data: Duration of business relationship + 5 years
- Financial records: 10 years (legal requirement)
- Marketing data: Until consent is withdrawn
- Analytics: 26 months
7. Your Rights (GDPR)
You have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate data
- Erasure: Request deletion of your data ("right to be forgotten")
- Restriction: Limit how we use your data
- Portability: Receive your data in a structured format
- Object: Object to processing based on legitimate interest
- Withdraw Consent: At any time for consent-based processing
To exercise these rights, contact: privacy@mundo-tech.eu
8. Security Measures
We implement appropriate security measures including:
- Encryption of data in transit and at rest
- Access controls and authentication
- Regular security assessments
- Employee training on data protection
- Incident response procedures
9. Cookies
Our website uses essential cookies for functionality. Analytics cookies are only used with your consent. You can manage cookie preferences through your browser settings.
10. Data Breach Notification
In the event of a data breach that poses a risk to your rights and freedoms, we will notify:
- The relevant supervisory authority within 72 hours
- Affected individuals without undue delay
11. Complaints
If you have concerns about our data practices, you may:
- Contact us directly at privacy@mundo-tech.eu
- Lodge a complaint with your local data protection authority
- Contact the Bulgarian Commission for Personal Data Protection (CPDP)
12. Updates to This Policy
We may update this Privacy Policy periodically. Changes will be posted on this page with an updated revision date. Significant changes will be communicated via email to active clients.