The Bulgarian Association for People Management is a non-governmental organization, established to support and develop the professionals in the people management field.
Privacy Notice
The Bulgarian Association for People Management (BAPM) is a non-profit organization. The Association works to support and develop professionals in the field of human resource management and to raise the status of the profession and to establish high standards of work commensurate with the world practices and trends in the profession.
Currently, the Association has over 850 individual and corporate members.
The Bulgarian Association for People Management provides an active exchange of information between its members through intensive internal communications and web page maintenance.
In the Association, your right to privacy is a top priority and is underpinned by the design and construction of our systems, services and products that we offer. Whenever we ask you and you have to make your choice, your right to personal data protection is established as a limitation of processing, so in any case you can trust us completely and focus on creating professional contacts.
By providing us with your information, you trust us and this makes us take full responsibility for its lawful processing.
We strive for transparency in the processing of your data. We have written our Privacy Policy and related documents in an accessible language without too complicated statements and containing sufficient information.

In fact, we want you to read our rules and understand our privacy practices!
Thank you for taking the time.
The most important thing is to make sure you understand the information we process and what your choices are.
This Privacy Policy applies from May 25, 2018.

1. Who are we?
Responsible for your information under this Privacy Policy is:

Name of the organization: Bulgarian Association for People Management
Representative: Miglena Ouzounova-Tsekova (Chairman of the Management Board of BAPM)
Address of management: 16 Knyaz Alexander I Str., 4th floor, app.14
Sofia - 1000
Contact person: Genoveva Bakardjieva
Tel. (02) 950 10 90, 950 10 91
2. Where this privacy policy applies

This Privacy Policy applies to our website, the applications we use, the events and other services managed and offered by the BAPM. For short, in this Privacy Policy we will call them "services" and we have added links to it in all of our services.

3. Information we collect

Of course, we can not help you build and maintain professional contacts without having some information about you. We collect the initial data through the membership application (
We also collect information generated by the use of our services such as participation in our events as well as information from third parties.
The Association also works to support and develop professionals in the field of human resource management and high standards of work. When you are a member of our Certification Program, we collect the original data through an application form (

Information you give us
These are the minimum required or normative data:
• As a member of BAPM - the identification data necessary for the implementation of the services we offer, such as three names, gender, education, e-mail, telephone, address, place of work and position
• As an employee of BAPM - information in accordance with the Labor Code for the purposes of shaping our labor relations: three names, PIN, ID card, address, education and qualification.
• When you are a member of our Certification Program - identifying you data such as name, telephone, e-mail, address, and education.

• When you are part of our mentoring program - data about your competencies and photo.
• When applying for a job in the organization - minimum information to determine your competencies: three names, e-mail, telephone, competencies that you define as relevant to the position.
• When you decide to participate in our competitions - the information you register or enter.
• If you are a participant in our event for accounting purposes - the information you give us to form the primary cost and reporting documents.
• If you consent (Consent Declaration.docx) to the communication of your information, we will only share it with members of the organization: names, telephone or e-mail.

Information we get from others
In addition to the information you provide us directly, we receive information about you from others, including:
Other members of BAPM can provide information about you in the amount described above, and upon first contact with you we will let you know where we have this information.
Social Media - It is possible to collect or update your social media data (Facebook, Twiter, etc.).
Other Partners - We can get information from you, from our partners, when you share with them information other than what we own but from the same categories as stated above.

Collecting information when using our services
When you use our services, we collect information about the features you have used and how you used them.
Usage information - We collect information about your activity in our services, e.g. attendance at events, preferred events and professional themes.
Information about used devices - these are Server logs, Web Application Firewalls, and more. devices falling under this category. These logs are required to identify technical problems and / or detect malicious actions. They contain information such as: date and time, IP address, URL, browser and device version information)
Information from shooting events - during the events, we take a picture or film some of them and we publish the accumulated information on our WEB page. Filming and filming always take place in public and on a public place you are notified of (CCVT.png) already in the announcement of the event.

4. "Cookies" and other similar data collection technologies

For the development of our WEB page we use the platform offered by JOBS.BG and accordingly use their cookies and similar technologies in compliance with a strict policy in line with the new EU requirements.
 Biscuits (Biscuits.docx) are information stored in your browser (or mobile app). They are used to store the settings and identifiers required for some of the services provided on the Site

5. How we use the information

BAPM processes your personal data on the following grounds:
• fulfillment of statutory obligations, including the fulfillment of statutory obligations to preserve or provide information upon the provision of appropriate orders by competent state or judicial authorities, while ensuring the possibility of exercising the control powers of the competent state bodies in the fulfillment of legal obligations of the BAPM to notify you of different circumstances related to your rights, the Services provided or the protection of your data, etc. under.
• concluding and implementing contracts for the provision of the Services between BAPM and external contractors
• Application of the legitimate interests of Service users, third parties such as members, other users, Employers, Employers' representatives, and others.
• You have given your consent - Your data may be processed based on your explicit consent, the processing in this case being specific and in the extent and scope provided in the respective consent

The main reason that makes us process your information is keeping up-to-date data from BAPM members to improve our services. In addition, we use your information to secure your security and provide you with information that you may be interested in.

We process your information for the following purposes:
• Maintain membership in the Association
• Certification - We provide the administrative certification program and ensure a fair certification process
• Mentoring - we provide an administrative mentoring program
• Providing, maintaining and operating our services - signing or executing contracts.
• Accounting activity - processing of primary accounting documents

For more information, please read here (Using Information.docx).

6. How we share information

Because our goal is to help you make relevant connections, sharing information is shared between BAPM members and partners. We also share information with some users with service providers and partners that help us maintain our services. For more details on sharing your information with others, please read the following:

• With other members of BAPM
You share information with other members of BAPM when you have consented to this through your membership in the Association. You may withdraw your consent to share your data with other members of the BAPM using the procedure described (Withdrawal of Gonsent.docx) and submitting the required declaration (Withdrawal of Consent Declaration.docx).
Please be careful with your information and make sure that the content you share is something suitable for publication because neither you nor we can control what others do with your information after you share it.

• With our service providers and partners
We use third parties to help us operate and improve our services. These third parties help us with various tasks, including hosting and data support, analytics, customer care, marketing, advertising, payment processing and security operations. When we share information, we strive to comply with legal requirements or limit ourselves to non-personal information (two or three names)
We follow a strict verification process before engaging with a service provider or working with a partner. All of us service providers and partners must be subject to strict confidentiality obligations.

• For corporate transactions
We may transfer your information if we are part of a merger, sale, acquisition, assignment, restructuring, reorganization, dissolution, bankruptcy or other change of ownership or control, for which you will be promptly informed.

• When required by law
We may disclose your information if it is reasonably necessary: (i) to observe a legal process such as, for example, court order, subpoena or search warrant, government / law enforcement or other legal requirements; (ii) to assist in the prevention or detection of criminal offenses (in every case the applicable law applies); or (iii) protect the safety of any person.

• By your consent or at your request
We may request your consent to share your information with third parties. In each case, we will clarify why we want to share your information.

We can use and share non-personal information (which means that it does not identify you yourself, namely: device information, shared demographics, common behavioral data) as well as cached personal information, machine-readable form in any of the above circumstances. More information on the use of cookies and related technologies can be found in our Cookies Policy.

7. Cross-border data transfers

The BAPM does not transfer data outside the European Union.

8. Your rights
You, as a subject of processing your personal data, are entitled to exercise the following rights.
Before you have this opportunity, we need to identify you with your ID being done in our office.
The deadline set in the Regulation for responding to your request is up to 1 (one) month, which we will observe following the procedures we have adopted.

You can submit your paper request - to our office and we will notify you in the manner specified by you about the outcome of each of your requests in the order of the GDPR.

Your rights list
• Right at any time to withdraw your consent to the processing of your personal data, as required by the Regulation;
• Right to correct personal data - if you feel that there is an error in your personal data collected for you, you may request their correction. You will need to provide us with the correct information.
• Right to access your personal information - You have the right to receive confirmation that we process your personal data and, if so, access it. Along with the data we will also give you access to the mandatory information described in Art. 15, p. 1 of the Regulation.
• The right to delete your personal data - you may want to be forgotten, and we will assess whether the requirements of Art. 17 of the Regulation.
• Limitation of processing - means the storing of personal data stored in order to limit its processing in the future. If you wish to keep your personal data without processing it, you may request this point.
• Data portability right - You may request that your personal data collected for you be transmitted in a structured, widely used and machine-readable form. We currently do not have the ability to directly transfer your data to another administrator.
• Right of objection - You may at any time object to the processing of your personal data, including profiling and direct marketing.
• The right to ask the Privacy Controller to notify third parties to whom the Data Provider has provided your data with respect to correcting, deleting, or limiting the processing of personal data. In any case, when you exercise any of the above rights, we will notify these third parties of your request.
• You have a right to complain to the Personal Data Protection Commission, which is filed in form and with requisites as specified by the law.

For more information about your rights please read here (Rights.docx)

9. Accuracy of information
The BAPM is not responsible for the accuracy of the data you provide, does not carry out checks in this sense and does not guarantee the real identity of the data subjects. In all your suspected instances of fraud and / or abuse, please let us know immediately. You agree not to disclose any information on the Site in any way that would interfere with the rights of others in the protection of their personal data or other rights. To update your data, please use the requested form (Request for Correction.docx) or the electronic form here (

10. How we protect your information

Considering the complexity of the problem, we have focused on the following types of personal data protection - physical, personal, documentary and protection of automated information systems and networks. By applying the new regulatory requirements in data transfer, we also use cryptographic protection.
We work hard to protect you from unauthorized access or change, disclosure or destruction of your personal information. As with all companies, although we take steps to protect your information, you should not expect your personal information to be always protected.
We regularly monitor our systems of possible vulnerabilities and attacks and regularly review our collection, storage and processing practices to update our physical, technical and organizational security measures.
We may suspend the use of all or part of the services without notice if we suspect or detect a security breach. If you believe your account or information is no longer protected, please let us know immediately here (

11. How long do we store your information

We keep your information for as long as is necessary for our legitimate interests or is defined in the country's legislation. In practice, we delete or anonymize your information after termination of membership, but we may continue to store your information within the next 5 years without indexing it and providing third parties with the following:

•    We need to keep data to comply with current legislation (e.g. some "traffic data" are kept for one year in order to comply with legally established data retention obligations);
•    We need to keep data to show that we are complying with applicable law (eg, the documents stored for five years on the terms of our Terms of Service, Privacy Policy and other similar agreements);
 there is an unresolved issue, claim or dispute requiring us to store the relevant information until they are resolved;
•    Information must be protected for our legitimate business interests, such as preventing fraud and increasing consumer safety and security.
•    Keep in mind that although our systems are designed to perform data deletion processes according to the above guidelines, we cannot promise that all data will be erased within a certain period due to technical limitations.
In the event of a legal dispute or proceedings requiring retention of data and / or a request from a competent public authority, data may be retained for longer than the specified time limits until the final settlement of the dispute or proceeding in all cases. These deadlines may be changed if a different requirement to keep information under the current legislation is established.
Backup. In order to ensure the reliability of the Services and to prevent loss of data for technical reasons, a data reservation policy applies to the Site. The maximum update period (including data deletion) for all backups is 30 days.
We keep all accounting or labor law records as required by law.
The information from the certification system is kept for 10 years.
Information about the mentoring program - about the activity of the mentor.
Any other information about events and other services within 2 years, after which part of it can be found in the section "archive"

12. Right to privacy of children's personal data

Our services are limited to users over 18 years of age. We do not allow users under the age of 18 on our platform and do not consciously collect personal information from anyone under the age of 18. If you suspect a user is under the age of 18, please use the reporting mechanism available through the service here (
13. Changes to the Privacy Policy

As we are always looking for new and innovative ways to help you build relevant relationships, this policy may change over time. We'll let you know before any major change occurs to have time to review the changes.

14. How to contact us

If you have any questions about this Privacy Policy, you can contact us:

Online: here (

By post: 16 Knyaz Alexander I Str., 4th floor, app. 14
Sofia - 1000
Tel. (02) 950 10 90, 950 10 91

Administrator of personal data: Miglena Ouzounova-Tsekova
Address: 16, Knyaz Alexander I Str., Floor 4, app. 14
Sofia - 1000

Copyright © 2020 BAPM  | Advertising  | Contacts