This page summarises how SimpleGPS complies with the EU General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR"). It complements our Privacy Policy and Data Processing Addendum.
Roles
Simple Works Ltd is the data controller for account and website data. For personal data you store inside your Workspace (e.g. a driver's name attached to a vehicle), you are the controller and we act as your processor under our Data Processing Addendum.
Lawful bases
We process personal data under performance of a contract, legitimate interests, legal obligation and - where applicable - consent. See the Privacy Policy for the detail.
Your rights
Under the GDPR you can access your data, correct it, erase it, restrict or object to its processing, port it, and withdraw consent at any time. To exercise any right, email support@simplegps.bg - we respond within one month.
International transfers
Where data leaves the European Economic Area, we rely on the European Commission's Standard Contractual Clauses (SCCs) and appropriate supplementary measures.
Sub-processors & security
We use vetted sub-processors bound by data-protection terms (see our Subprocessors list) and apply encryption in transit, hashed passwords, per-tenant isolation and access controls.
Data protection contact
Questions or requests: support@simplegps.bg. Simple Works Ltd, 4 Tsarkovna Nezavisimost Str., bl. 6, ent. 1, fl. 3, ap. 4, 7000 Ruse, Bulgaria (UIC 208762645).
Complaints
You may lodge a complaint with the Bulgarian Commission for Personal Data Protection (CPDP, www.cpdp.bg) or the supervisory authority in your country of residence.