Who We Are and How to Reach Us

Stellavox Prime operates from Varna, Bulgaria, and we're subject to Bulgarian data protection laws as well as the EU General Data Protection Regulation (GDPR). When we say "we," "us," or "our," we're talking about Stellavox Prime as the data controller responsible for your information.

Our physical address is ul. "Pirin" 41, 9000 Center, Varna, Bulgaria. You can reach our support team at support@stellavoxprime.com or call us at +35942614869 during business hours.

What Information We Collect

We're going to be specific here. Different situations call for different data, and we only collect what we actually need.

Information You Give Us Directly

When you sign up for our educational programs or contact us, you share certain details:

• Your name and email address (required for account creation)
• Phone number (optional, but helpful if you want course updates via SMS)
• Payment information when enrolling in paid courses (processed securely through third-party payment processors)
• Your learning preferences and game development interests
• Messages you send through our contact forms or support channels

Information We Collect Automatically

Like most websites, our platform gathers some technical information when you use it:

• Device information (browser type, operating system, screen resolution)
• IP address and general location (city/country level, not your exact address)
• Pages you visit and features you use on our platform
• Time spent on different course materials
• Referral sources (how you found our website)

Learning Progress Data

For educational platforms, tracking progress is important. We collect data about your course completion, quiz scores, project submissions, and engagement with learning materials. This helps us improve our content and provide you with personalized feedback.

How We Use Your Information

We're not in the business of collecting data for the sake of it. Everything we gather serves specific purposes.

We base our data processing on several legal grounds under GDPR. Most commonly, it's because we need to fulfill our contract with you (delivering the courses you signed up for), we have legitimate business interests (like improving our platform), or you've given us explicit consent (such as opting into marketing emails).

Who We Share Your Data With

We don't sell your personal information. Period. But running an educational platform means working with certain service providers who help us deliver our services.

Essential Service Providers

• Payment processors who handle transactions securely (they never share your full payment details with us)
• Email service providers for course communications and newsletters
• Cloud hosting providers where our platform and data are stored
• Analytics tools that help us understand how people use our website

All these partners are contractually required to protect your data and can only use it for the specific purposes we've authorized. We vet them carefully before working together.

Legal Requirements

Sometimes we're legally required to share information with Bulgarian authorities or EU regulators. This happens in situations like fraud investigations, court orders, or compliance audits. We'll only share what's legally necessary in such cases.

Your Rights Under Bulgarian and EU Law

GDPR gives you significant control over your personal data. Here's what you can do:

How Long We Keep Your Information

We don't hold onto data forever. Retention periods depend on the type of information and why we collected it:

• Account information remains active as long as your account exists, plus three years after account closure (for legal and financial record-keeping)
• Course completion records are kept for ten years to verify credentials and certificates
• Payment records are retained for seven years under Bulgarian tax law
• Marketing consent records are kept until you withdraw consent, then archived for proof of compliance
• Technical logs and analytics data are typically deleted after 24 months
• Support correspondence is kept for three years after resolution

When data reaches the end of its retention period, we securely delete or anonymize it so it can no longer identify you.

Security Measures We Take

Protecting your data is something we take seriously. We use industry-standard security practices, though no system is ever 100% foolproof.

Our security measures include encrypted connections (HTTPS) for all data transmission, secure password requirements with hashing, regular security audits of our systems, access controls limiting who on our team can view personal data, and regular backups stored in secure, separate locations.

We also train our staff on data protection requirements and maintain an incident response plan. If we ever experience a data breach that poses risks to your rights, we'll notify you and relevant authorities within 72 hours, as required by GDPR.

International Data Transfers

While we're based in Bulgaria (part of the EU), some of our service providers operate servers in other countries. When we transfer data outside the European Economic Area, we ensure adequate protection through:

• EU-approved standard contractual clauses with service providers
• Adequacy decisions recognizing certain countries as providing sufficient data protection
• Additional safeguards like encryption and access controls

You can request more information about specific transfers and safeguards by contacting us.

Cookies and Tracking Technologies

Our website uses cookies—small text files stored on your device. Some are essential for the site to function (like keeping you logged in), while others help us understand how people use our platform.

You can control cookie preferences through your browser settings. Blocking certain cookies might limit some functionality, but essential features will still work. We respect "Do Not Track" signals from browsers where technically feasible.

Children's Privacy

Our educational programs are designed for adults interested in mobile game prototyping. We don't knowingly collect information from anyone under 16 years old without parental consent, as required by Bulgarian law and GDPR.

If we discover we've inadvertently collected data from someone under 16 without proper consent, we'll delete it promptly. Parents or guardians who believe their child has provided us with information should contact us immediately.

Changes to This Policy

We review and update this privacy policy periodically as our practices evolve or laws change. When we make significant changes, we'll notify you via email or through a prominent notice on our website at least 30 days before the changes take effect.

The "Last Updated" date at the top shows when we last revised this policy. We encourage you to review it occasionally to stay informed about how we protect your information.

Bulgarian Law Specifics

As a Bulgarian company, we comply with the Law on Protection of Personal Data and other local regulations. This means we're registered with the Bulgarian Commission for Personal Data Protection and follow their guidance on data processing.

Bulgarian law provides additional protections in certain areas, and where local law offers stronger rights than GDPR, those stronger protections apply.