Privacy Policy

Trans Global Solutions

 

Trans Global Solutions EOOD (“TGS”) is Bulgarian based company, with registered address at bl. 43, office 1, Yuzhen park residential group, Triaditsa district, city of Sofia 1408, Bulgaria, having company identification number 201176252.

TGS is committed to protecting your data privacy. This Privacy Policy (“Policy”) informs you of our procedures regarding the collection, retention, use and disclosure of personal data relating to identified or identifiable natural persons (“Personal Data”). Please read the Policy carefully, and if you do not agree to any of the terms set herein, we do not recommend the use of the website and you should not provide your personal information to us.

  1. Who are we and what we do?

TGS is an international executive protection and risk-management company specializing in security, travel logistics, protective intelligence, and journey-management services across complex and high-risk environments globally.

TGS provides tailored VIP security solutions by merging protective intelligence and cutting-edge technology enabling clients to travel or operate safely and efficiently in any part of the world, from executives to high-net-worth individuals, business travelers, or persons operating in complex/high-risk regions.

TGS provides a range of services encompassing executive protection and journey management support for client operating in complex high-risk, or unfamiliar environments, including:

  • on-ground protective operations,
  • protective intelligence entailing monitoring of security/political environment,
  • country briefings and OSINT-based advisory
  • coordination of travel-related logistics GPS tracking and communications for personnel and/or vehicles/other assets,
  • emergency evacuation planning, medical support and preparedness,
  • secure transit,
  • airport fast-tracking, secure transport, luggage handling, and
  • secure logistics.

 

  1. Definitions

For the purposes of providing a transparent and thorough information, the following definitions are used in this Privacy Policy:

  • ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  • ‘processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
  • ‘controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
  • ‘processor’ means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;
  • ‘recipient’ means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
  • ‘third party’ means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data;
  • ‘consent’ of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
  • ‘personal data breach’ means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed;
  • ‘data concerning health’ means personal data related to the physical or mental health of a natural person, including the provision of health care services, which reveal information about his or her health status;

 

  • TGS in the capacity as data controller

In its capacity as data controller on the basis of article 4, paragraph 7 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (“GDPR”), TGS implements the appropriate technical and organizational measures to ensure the lawful processing of personal data of natural persons, in compliance with the principles and requirements of the regulatory framework regarding the processing and protection of personal data of data subjects.

  1. What kind of data we collect and who receives it?

TGS collects the following data for the purposes of client’s inquiries through TGS’s website and for enabling the effective coordination of travel-security logistics:

  • Identification data: name, surname,
  • Contact data: email address, phone number, location, company name and company identification number (if applicable);
  • Data related to the provided services: general travel details and information on destination/s;
  • Service inquiry details;
  • Website usage and technical data: Your IP addresses and similar data collected via cookies (for details about cookies see section VIII below).

For the purposes of processing the data is provided to:

Trans Global Solutions EOOD (“TGS”), including:

  • To TGS’ CEO
  • To specific associates and local partners of the company, on a need-to-know basis for performance of contractual client services

We may share your personal data, for any of the purposes mentioned in Section V below, with other third parties. Such third parties include: other corporate entities, agents, external advisors, and contractors such as accounting companies, law firms, commercial agents or support services such as internet service providers, government agencies including law enforcement, regulatory and dispute resolution bodies (or any other body to whom disclosure is required by law or court/ tribunal order) and any other person or entity to whom disclosure is explicitly authorized by You.

When we disclose your personal data to a third party who is processing personal data on our behalf, we take all reasonable steps to ensure that such third parties will implement appropriate technical and organizational measures and are bound by confidentiality and legal obligations with respect to the protection of your personal data. The potential disclosure of your personal data is conducted in compliance with legal requirements. This means that such processing is guarded by data processing agreements to ensure that personal data is not processed for other purposes than those clearly stated, and to make sure that our third parties uphold adequate security measures to protect your personal data.

In case we transfer your data outside the EU/EEA, any such transfer does not change our commitment to safeguard your personal data under this Policy.  If your personal data is transferred outside of the EU/EEA, TGS ensures an adequate level of security by transferring to countries approved by the EU Commission as having an adequate level of protection (such as the standard contractual clauses for personal data protection approved by the EU Commission).

  1. Why we collect your personal data?

We collect and process your data for the following purposes:

  • To assess and respond to your service requests – to provide information about our executive protection, travel-logistics, and security services, to schedule consultations, to plan tailored security and journey-management solutions for Your specific needs.
  • To manage our website and online presence – including analytics, improving user experience, and managing cookie consent/preference management.
  • To administer client relations and service delivery – if you become a client, managing bookings, safety plans, logistical support, and operational coordination may require storing and processing personal data.
  • For compliance, record-keeping, and security – maintaining records related to services provided, legal/regulatory compliance, risk management, incident reporting, and internal auditing.
  • Optional: marketing or updates (if you consent) – e.g., sending information about our services, promotions, or industry updates (only if you opt in).

 

  1. How we collect your data?

TGS collects your data exclusively through direct interactions initiated by you, including:

  • Through the contact form on the TGS website;
  • Through direct email communication, in which data subjects voluntarily provide general details relevant to their service request;
  • Through phone calls or messaging applications, where information is shared for the purpose of coordinating services or addressing security-related needs.

If we receive personal data about you, that you have not shared with us, or that we have not requested, and which has no relevance to our services and processing activities, we will delete the data, unless otherwise required by law.

  • Legal grounds for the Processing of personal data

Given the nature of our services and interactions, personal data processing may rely on one or more of the following legal bases (depending on your location and consent):

  • Consent (Article 6(1)(a) GDPR)

We rely on your freely given consent when processing personal data for:

  • website-related analytics and improvements;
  • the use of cookies that are not strictly necessary;
  • receiving marketing communications, service updates, or newsletters.

 

  • Pre-contractual steps / Contractual necessity (Article 6(1)(b) GDPR)

We process personal data when necessary to:

  • respond to your inquiries and provide information about our services;
  • assess or prepare tailored executive-protection or journey-management solutions;
  • enter into and perform a contract with you or with the organization you represent.

 

  • Legitimate Interests (Article 6(1)(f) GDPR)

When appropriate, TGS may process personal data to pursue its legitimate business interests, provided such interests do not override your fundamental rights and freedoms. This includes:

  • ensuring the security and functionality of our website and communication systems;
  • maintaining internal records, risk management, and operational coordination;
  • protecting our infrastructure, preventing fraud, and ensuring service quality.

 

  • Compliance with a Legal Obligation (Article 6(1)(c) GDPR)
    We may process personal data when required to comply with applicable laws, including:
  • accounting and tax regulations;
  • record-keeping requirements;
  • responding to lawful requests from authorities or regulatory bodies.

 

  • Cookies

TGS uses cookies and other related technologies. When you visit our website for the first time, you will see a pop-up with an explanation about our cookies. As soon as you click on “Save preferences”, your consent to us using the categories of cookies and plug-ins you selected in the pop-up, as described in the Cookie Policy on our website.

  1. Technical or functional cookies

Placing functional cookies, we make it easier for you to visit our website by not needing to repeatedly enter the same information when visiting our website. We may place these cookies without your consent.

  1. Statistic cookies

These cookies optimize the website experience for our users and we get insights in the usage of our website. We ask for your permission to use theese cookies.

  • Marketing cookies

Used to create user profiles to display advertising or to track the user on this website or across several websites for similar marketing purposes.

You can use your internet browser to automatically or manually delete cookies. You can also specify that certain cookies may not be placed.

 

  1. How long is data stored?

In accordance with the principle of “storage limitation” TGS maintains short data retention periods. Personal data is only retained for as long as necessary to fulfill the specific purpose for which it was collected, after which data is securely and accurately deleted.

Data retention periods are as follows:

  • General contact data is retained for a maximum period of up to 12 (twelve) months for follow-up purposes. After this period, the information is permanently deleted from all systems unless further retention is required by law or the GDPR.
  • Data related to the provided services – Information related to trip planning and operational assignments is retained only for the period necessary to complete the relevant assignment or trip. Unless the client explicitly requests longer retention (for example, to facilitate future projects or reporting), these records are deleted within 30 (thirty) days following the completion of the assignment.
  • Client communication – Personal data and correspondence related to active client engagements are retained solely for the duration of the active business relationship. Upon completion or termination of the engagement, all data is reviewed and securely deleted unless continued retention is required for invoicing, legal, or compliance purposes.
  1. Technical and Organizational Security Measures

According to the established “integrity and confidentiality” principle TGS implements a combination of technical and organizational measures designed to ensure an appropriate level of security in line with relevant data protection standards and regulations.

  1. Technical Measures.

TGS employs modern and robust technical safeguards to prevent unauthorized access, loss, or misuse of data. These include:

  • Full-disk encryption. All company-owned devices are secured through full-disk encryption to protect data in the event of loss or theft.
  • Encrypted email communication. Encrypted using ProtonMail or Apple Mail with Transport Layer Security (TLS) protocols, ensuring confidentiality and integrity during transmission.
  • Multi-factor authentication (2FA). Access to systems and tools requires multi-factor authentication to add an extra layer of account security.
  • Privately Managed EU-Based Server. Data is hosted on a private, dedicated server located in Bulgaria and managed by  a trusted local IT security provider responsible for server hardening, firewall protection, security updates and monitored access logs.
  • EU Data Residency. All infrastructure and data collecting activities are conducted entirely within the European Union.
  1. Organizational Measures.

Alongside technical measures, TGS enforces strict organizational and procedural safeguards to limit data access and exposure, such as:

  • Access Control: Access to personal or client data is restricted to the CEO and specifically authorized associates, strictly on a need-to-know basis.
  • Limited Data Sharing: Data is shared only when operationally necessary and only with carefully vetted local partners who comply with TGS’s data protection standards.
  • Data Minimization and Deletion: Operational and trip-related data is deleted promptly following project completion in accordance with defined retention schedules.
  • Breach Response Process: A documented breach-notification procedure is in place to detect, assess, and report potential data incidents in compliance with GDPR requirements.

 

  1. Your data protection rights

You have specific rights as a ‘data subject’ under Chapter III (Articles 14-25) of Regulation (EU) 2018/1725, such as:

  • Right to know why your personal data is needed and what will happen to it, and how long it will be retained for.
  • Right of access: to obtain confirmation of whether we process your personal data and to receive a copy.
  • Right to rectification: to have inaccurate or incomplete data corrected.
  • Right to erasure: to ask us to delete your personal data in certain circumstances.
  • Right to restriction: to request that we limit the processing of your personal data.
  • Right to data portability: to receive personal data you provided to us in a structured, commonly used, machine‑readable format and to transmit it to another controller where technically feasible.
  • Right to object: to object to processing based on our legitimate interests or for direct marketing at any time.
  • Right to withdraw consent: where processing is based on consent, you can withdraw it at any time, without affecting the lawfulness of processing before withdrawal.
  • Right to lodge a complaint with the Bulgarian supervisory authority:
    • Commission for Personal Data Protection

Address: 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592

Е-mail: kzld@cpdp.bg

Web-site: www.cpdp.bg

 

 

  • Contact details

For any questions and requests to exercise your rights pursuant to this current Privacy Policy and the data protection legislation, and regarding the collection and processing of your personal data while using this Website, please direct them to us:

E-mail: contact@tg.solution

Phone +1 (202) 754-8365

This Privacy Notice may be updated from time to time to reflect changes in our services, legal requirements, or data processing practices. Please review this page periodically to stay informed about how we protect your information. The date of the most recent update will always be shown at the top of this notice.