Privacy and Cookies Policy
Wooop Mobile App

We, at the Wooop mobile app team, (“Administrator”, “We”), value the privacy of your data highly. This privacy and cookies policy (“Policy”) contains information about the purposes and ways of using your personal data in connection with the provision of our services (“Services”). Personal data is any type of information that relates to an identified or identifiable individual. You can get more information about us and our Services on our Wooop mobile application (“Application”) and on our website with the address (URL)
Please read this Policy carefully to understand how we collect, use, protect and process your personal data in accordance with applicable law, including the General Data Protection Regulation – Regulation (EU) 2016/679, (“GDPR”) , and the Personal Data Protection Act (“PPA”).

1. Administrator
The administrator of personal data is “Dark Store Retail” Ltd., a company entered in the Commercial Register at the Registration Agency, with EIK 206661633, with headquarters and management address: Sofia, p.k. 1700, Studentski district, “Prof. Alexander Fol” 2, entrance. H, fl. 5.

2. What information do we collect and for what purposes?
In our Application, we may collect the information submitted by you by completing contact forms and form/s in the Application, by creating a user account or when you otherwise use the Application Services. All data fields are marked as mandatory and must be filled in, and the rest are marked as voluntary and optional.
The table below shows the categories of personal data that we can collect from and about you, for what purposes we collect it, on what legal basis we process it, as well as the period for which we store it:


Personal data


Storage period

Creating a user profile in the Application

Phone number

Your agreement

Until you withdraw your consent by making a request to delete your personal data.

Processing and fulfillment of an order sent by you

Physical address;
Phone number

Your agreement. Fulfillment of a contractual obligation in connection with the provided Service

No longer than necessary to achieve the purposes for which the data was collected.
With the express consent of the user, the physical address may be stored in the Application for future orders. We store it until the user’s consent is withdrawn.

Communicating with you and responding to your inquiries

Name and surname;
E-mail address;
Phone number

To fulfill contractual obligations to you. To protect our legitimate interest as well

No longer than necessary to achieve the purposes for which the data was collected.

Personalizing your user experience, providing content, suggestions and offers that you may be interested in, and improving the quality of our Services

IP address;
Traffic data;
Cookie data

Your agreement

Personal data collected through cookies and similar technologies will be processed until you change your cookie preferences.

Marketing purposes – sending periodic notifications and newsletters about other products and services offered by Us and our partners

The user profile in the Application (See table above)

Your agreement

The personal data required to send a communication will be processed until you withdraw your consent to receive such communication.

3. How do we use the information collected?
We may use information collected from and about users in one of the following ways: • Processing and fulfilling orders and/or related activity on our App (we need this information to be able to perform our Services, which
You have stated);
• Improving your experience with our Application (Your
information helps us better respond to your individual needs);
• Improving the Services and our Application (we continuously strive to improve the Services we offer and the functionalities of the Application based on
the information and feedback we receive from you);
• Improve user service (your information helps us
to respond more effectively to your customer service and support requirements);
• Marketing purposes (we may send you through the Application information and current news/promotions relating to the Services you have selected or your enquiry, if you are
consented to this).

4. Do we use cookies?
Our Application uses cookies. Cookies generally do not contain information that personally identifies a user, but the personal data we store about you may be linked to information stored in and obtained from cookies. Our Application uses the following types of cookies:
• “Session Cookies” (Session Cookies), which are deleted when the user closes the browser;
• “First-party Cookies” that are set by the web server of the visited page and share the same domain;
• “Third-party Cookies” stored by a different domain than the domain of the visited page. This can happen when the web page references a file, such as JavaScript, located outside of its domain;
You have change your browser options. To block cookies in a specific browser, learn more here:
ability to change your cookie preferences at any time, such as
• Managing cookies in
• Managing cookies in
• Manage cookies in Internet Explorer
• Manage cookies in Safari Google Chrome Firefox
Refusal of cookies may result in limited functionality or inability to use the Services.

5. Do we disclose your data to third parties?
We do not sell your personal data, we do not exchange it, nor in any other way disclose it to third parties except in the specified cases.
Information may be provided to contractors, subcontractors and other trusted partners who work on behalf of us based on contractual relationships and under confidentiality agreements. However, these companies do not have the right to independently share this information.
Information may also be provided to law enforcement authorities if duly requested and when this is necessary to comply with the law, the rules of the Application or to protect the rights, property or safety of the Administrator, users and/or third parties . Any information collected that does not constitute personal data or contain classified information may be provided to third parties for marketing, advertising or other purposes.

6. Hyperlinks to Third Parties
This Policy is applicable and valid for users of the Administrator’s Services accessible through the Application. This Policy does not apply to social networks, other websites, platforms or companies that the Administrator does not control, but which provide hyperlinks to or are connected directly or indirectly to the Services provided. You should be informed that such websites, platforms and companies have their own privacy policies for which we are not responsible. Please read the privacy policies of such websites, platforms and companies before providing personal data.

7. Compliance with the General Data Protection Regulation (GDPR). Protection measures
The administrator complies with the requirements of the GDPR and GDPR regarding the collection, use and protection of personal data. The administrator takes all possible technical and organizational measures recognized by the applicable law in the field of data protection to protect all data that it may store and/or process.

7.1. How we store and protect your personal data:
Your personal information collected through the use of the Application Services is stored in the territory of the EU or a third country where the high standards of security and protection of personal data required by applicable law are ensured.
We do not transfer the collected personal information to a country or jurisdiction that does not have the same high requirements for the protection of personal data related to the laws of the Republic of Bulgaria or European legislation. In case of transfer of personal data outside the borders of the EU and EEA, we guarantee a high level of data protection through contractual clauses or other instruments recognized by the applicable law.
We implement appropriate technical and organizational measures to protect your personal data from accidental loss and unauthorized access, use, alteration or disclosure. Procedures are in place designed to protect information from loss, misuse and improper disclosure. Although we work hard to protect your personal data, we cannot guarantee that our actions will prevent any unauthorized attempt to access, use or disclose personal data. However, if you believe that there is a threat to the security of your personal data, please contact us immediately using the contact details set out in this Policy.
We implement additional information security measures, including encryption, access control, strict physical security, regular security audits and penetration tests, and reliable information collection, storage and processing practices. The security of personal data is ensured by modern technical means such as HTTPS/SSL communication.
The Administrator uses an external platform to process credit or debit cards for the online payments you make when using the Services. These companies collect, store and process personal information necessary for the transactions and purposes expressly stated in their privacy policy.
We use the information you provide (other than customer data) to manage, maintain, improve and provide all the features of the Service that you have requested. We process customer data only in accordance with the instructions provided by the relevant user.
If you wish to access or change personal information we hold about you, or to delete data, you can contact us at any time (see contact details in Article 12 of this Policy). Upon request, we will block or delete all information we have about you from our database. You can edit and/or update the information in your user profile.
It is important to note that while changes you make will be reflected in active user databases immediately or within an acceptable period of time, we may retain all information you provide to prevent fraud, abuse or other our legal obligations or where we believe we have good reason to do so.

7.2. Supervisor
The supervisory body for the protection of personal data in Bulgaria is the Commission for the Protection of Personal Data (PCPD) with the address: Sofia, p.k. 1592, Blvd. “Prof. Tsvetan Lazarov” No. 2, and with a phone number for users: 02/91-53-555. More information about the protection of personal data can be found on the page of CPLD – with the web address (URL)

8. Changes to the Privacy Policy
Changes to the privacy policy are published on the Website with the date of the last update reflected in them, as well as through communication with users when required by law. If you do not agree with the changes, you should stop using the Application and the Services.

9. Your Rights
Under the applicable legislation, you have the legally recognized right to object to the processing of your personal data at any time by sending an express request through the Website or to the following email address:
You have the right to access the personal data we store about you, in a structured, widely used and machine-readable format, by sending an express request or to the following email address:
You have the right to request the transfer of your personal data to another administrator by sending an express request or to the following email address:
In the event that part of the information we store about you is false or inaccurate, you have the right to correct it by changing the information contained in your profile, by sending an express request or to the following email address:

You have the right to request deletion of your personal data by sending an express request or to the following email address: This does not apply to those personal data that we are required to keep by law.
You also have the right to request a limitation in the processing of your personal data in relation to individual actions on their collection, processing and sharing by sending an express request or to the following email address:
You have the right to require third parties who have access to your data to be notified of the restrictions, deletion or prohibition of processing of your data, in order to delete from these third parties all links and copies of your personal data.
We will respond to your request or inform you in writing of the actions taken in relation to the request within two months of receiving the request. The deadline may be extended by another month when it is necessary due to the complexity or number of requests, of which you will be duly notified.

10. Data Storage
We only store personal data provided by the user while the account is active, or otherwise store it for a limited period of time until we need it to fulfill the purposes for which it was originally collected unless otherwise provided by law. We will retain and use information as necessary to comply with our legal obligations, resolve disputes and enforce our agreements, some of which include: (a) payment information is retained for 10 years in accordance with accounting and tax laws; (b) information about legal transactions is kept for 10 years in accordance with the general limitation period set for civil claims.

11. Minimum Age
We do not collect and process personal data provided by persons under the age of 18 without the express consent of their parents or guardians. In the absence of such consent, the Administrator will delete all information provided by a minor.

12. Contact Us
If you have any questions about this Privacy Policy, you can contact us through the contact form or at the email address:

Effective: 01.06.2022
“Dark Store Retail” Ltd. | 2022 ©