Category: Bulgaria

CMS has advised Geosolar Kamenyak on licensing for the 75-megawatt Kamenyak photovoltaic project by the Bulgarian Energy and Water Regulatory Commission. 

Licensing before the regulator was finalized beginning of April 2025.

According to CMS, the construction of the project in Shumen Municipality is well underway – it is expected it will reach commercial operation in June 2025 for the first stage and in September 2025 for the second stage.

The CMS team included Managing Partner Kostadin Sirleshtov, Partner Borislava Piperkova, Senior Associate Elena Yotova-Yordanova, Associate Viktoriya Toneva, and Trainees Boris Kirov and Niya Ivanova.

Bulgaria is currently facing delays in passing key legislation, with the government focused on distributing the state budget through sectors and preparing for Eurozone accession in 2026, according to PPG Lawyers Managing Partner Irena Georgieva. Regulatory changes are expected, and the IT sector remains strong and innovative.

“In Bulgaria, there are numerous laws in the pipeline as the government tries to catch up with various pending issues, especially since they have been occupied with the state budget for quite some time,” Georgieva begins. “What we’ve observed is that after the budget was voted on, no specific details were provided on how it would impact different sectors. The budget allocation is very broad, with funds expected to be redistributed across various sectors. In the field of public procurement, we’re still waiting to see if our clients can be part of major public procurement projects and whether any ministry will have sufficient resources to manage them.”

The current global landscape, according to Georgieva, “is influencing the mentality of the government, as new challenges extend far beyond national issues.” Europe will become “a more attractive environment for the development of technology, and I hope this shift will align with regulatory advancements,” she adds. “In Europe, the priority has been to balance innovation with fundamental rights, but this approach has made processes slower. While it’s sustainable in the long run, it’s certainly slower compared to the more pragmatic, market-driven approach seen in the US, especially with the influence of tech giants.”

Georgieva further believes that both Bulgaria and the EU will move toward regulatory simplification. “There are already expectations that the GDPR would be simplified (the EU is awaiting to provide a proposal soon) due to the ongoing discussions surrounding the EU AI Act. This regulatory simplification will require changes at both the national and EU levels, and although the process will be difficult, it’s necessary,” she says. “I hope the Bulgarian government will focus on this as well since it remains a significant part of our work. Everyone is watching developments surrounding AI and the EU AI Act, but there are tensions with how it intersects with GDPR as well as how it can apply uniformly across the vastly different sectors where AI is being used.”

“The government is expected to start voting on and drafting delayed laws soon, many of which were supposed to be voted on a long time ago. These include the transposition of EU directives, such as the Cybersecurity Act to transpose NIS2, and there’s a lot going on in this regard,” Georgieva notes. “On the IT front, things are going well. Due to global restructuring and market shifts from the US to Europe, the IT sector is becoming increasingly innovative.”

Additionally, a key focus for Bulgaria is “entering the Eurozone by January 2026, and the government has indicated that by summer, we should have a clearer picture of whether this will happen as planned. We are optimistic that the government will remain stable during this period to avoid jeopardizing the process,” Georgieva points out.

Finally, “we also anticipate changes in supervisory and regulatory bodies, particularly the Commission for Personal Data Protection, with shifts expected not just at the leadership level but also among commission members,” Georgieva highlights. “Regarding competition, we expect also changes in the national regulatory body, and this will likely have implications for our work. Given the changes at the supervisory level, it’s important for us to take a moment to observe the new approach and focus of the regulators before reacting.”

Boyanov & Co has advised NewMed Energy Balkan on the acquisition of a 50% interest in the oil and gas exploration permit for the 1-21 Khan Asparuh Block from OMV Offshore Bulgaria.

NewMed Energy Balkan is a subsidiary of Israel-based energy company NewMed Energy.

OMV Offshore Bulgaria is a subsidiary of OMV Petrom. 

According to Boyanov & Co, the permit covers an area in the exclusive economic zone of Bulgaria in the deep Black Sea.

Dimitrov, Petrov & Co has promoted Radina Tomanova and Yana Georgieva to Partner.

Tomanova’s primary area of focus is corporate and M&A. She has been with the firm since 2012 when she joined as a Legal Trainee. She became a Legal Assistant in 2015, an Associate in 2016, and a Senior Associate in 2022, before making Partner this year.

Georgieva focuses primarily on intellectual property. She has been with the firm since 2021 when she joined as an Associate and was promoted to Senior Associate in 2023. Earlier, she worked for Yonev Valkov Nenov Attorneys At Law between 2015 and 2021.

CMS has advised Green Energy Market on a 10-year market coordinator license from the Energy and Water Regulatory Commission of Bulgaria.

Green Energy Market operates in the electricity trading and balancing market.

According to CMS, the EWRC granted the license after confirming that Green Energy Market possesses all the necessary human, technical, financial, and material resources to operate effectively, as evidenced by the Bulgarian TSO’s confirmation of its communication and data transfer capabilities, and its plan to employ at least six dedicated employees.

The CMS team included Managing Partner Kostadin Sirleshtov, Counsel Borislava Piperkova, Senior Associate Elena Yotova-Yordanova, and Associate Viktoriya Dimitrova-Toneva.

Schoenherr has advised the Bulgarian Ministry of Energy on launching two support schemes under the Bulgarian Recovery and Resilience Plan.

According to Schoenherr, the RES & Storage scheme facilitated the first-ever renewable energy and storage auctions in Bulgaria – conducted under the GBER – with nearly 400 applications received and over 200 projects expected to be financed at a total value of approximately EUR 269 million. Moreover, the RESTORE scheme secured state aid clearance from the European Commission under the TCTF to support standalone storage projects, targeting the installation of at least 3,000 megawatt/hours of new grid-scale electricity storage capacity by March 2026, with an estimated investment aid budget of around EUR 590 million. 

The Schoenherr team included Partners Bernd Rajal and Stefana Tsekova and Attorneys at Law Marta Katarzyna Krzystek and Dimitar Kairakov.

By judgment from 9 January 2025 in Case C‑394/23 the Court of Justice (CJEU) rules that the processing of personal data relating to the title of the customers of a transport undertaking is not necessary and might even be not legally grounded.

Titles whose purpose is to personalize commercial communication based on their gender identity, do not appear to be either objectively indispensable or essential to enable the proper performance of a contract, says CJEU. Therefore, they cannot be regarded as necessary for the performance of that contract or as essential for the legitimate interests pursued by the data controller or by a third party, where those customers were not informed of the legitimate interest pursued when those data were collected; the processing is not carried out only in so far as is strictly necessary for the attainment of that legitimate interest; or in the light of all the relevant circumstances, the fundamental freedoms and rights of those customers can prevail over that legitimate interest, in particular because of a risk of discrimination on grounds of gender identity.

Association Mousse, an organization that fights against gender discrimination, challenged the practice of SNCF Connect, the French railway company, before the French data protection authority (CNIL), arguing that requiring customers to specify their title (e.g., “Monsieur” or “Madame” / “Mr” or “Ms”) when purchasing tickets online violates the General Data Protection Regulation (GDPR). Mousse believes this requirement violates the principle of data minimization, as the title, which indicates gender identity, does not appear necessary for purchasing a rail ticket.

In 2021, the CNIL rejected the complaint, determining that the practice did not breach the GDPR. Mousse disagreed with the decision and appealed to the French Council of State, requesting that the decision be annulled. The Council of State referred the case to the CJEU, asking whether the collection of data regarding titles (specifically ‘Monsieur’ or ‘Madame’) can be considered lawful and compliant with the principle of data minimization, particularly when this data is used for personalized commercial communication, in line with common practices in the sector.

The CJEU reaffirmed the principle of data minimization, emphasizing that data collected must be adequate, relevant, and limited to what is necessary based on the purposes for which it is processed. The CJEU also reiterated that the GDPR outlines a strict and exhaustive list of circumstances under which personal data processing can be considered lawful. This includes situations where processing is (i) necessary for fulfilling a contract with the data subject or (ii) necessary for the legitimate interests pursued by the data controller or a third party.

Regarding the first justification, the CJEU stressed that for data processing to be deemed necessary for the performance of a contract, it must be objectively indispensable to fulfill that contract. In this case, the CJEU found that personalizing commercial communication based on gender identity, inferred from the customer’s title, was not objectively necessary for the proper performance of a rail transport contract. The railway company could instead use generic, inclusive language in addressing customers, which would be less intrusive and equally effective.

On the second justification, the CJEU, referencing its established case law, stated that processing data on customers’ titles to personalize communication-based on gender identity cannot be considered necessary if (i) customers were not informed of the legitimate interest pursued during data collection; (ii) the processing is not limited to what is strictly necessary to achieve that legitimate interest; or (iii) the fundamental rights and freedoms of customers, especially in terms of potential gender identity discrimination, outweigh that legitimate interest.

The CJEU’s analysis is interesting (probably to a very specialized, narrow audience dedicated to the regulation of personal data protection) and, to some extent, well-reasoned and in conformity with the letter of law. However, the judgment raises a number of questions as well:

What exactly is the risk level associated with using titles, and to what extent are the rights and interests of the data subjects violated?

Is there really no legitimate interest on the part of the railway company in considering the gender identity of its passengers? (For example, by doing so, it could improve its services during travel by providing specific additional comforts related to a particular gender, such as hygiene products or pregnancy care, etc.).

Where is the line between the actual risk of discrimination and providing good services?

Against the backdrop of such significant gaps in the application and practice of GDPR by individual Member States, which relate to business development, innovation, and the rights of data subjects – How is such judgment helpful for society in applying the legal provisions without feeling overwhelmed by excessive regulatory pressure?

If it is not legally justified to use the titles “Ms.” and “Mr.” when purchasing travel tickets, is the use of these titles by the train staff when addressing travelers also a violation of the principles of data minimization?

All questions without answers… and a judgment that undoubtedly reflects a strict interpretation of the norms, without, however, safeguarding or rationalizing the purpose of the law.

By Irena Georgieva, Managing Partner, PPG Lawyers

CMS has advised Solar Park Trakiya on a EUR 32 million financing from EuroBank Bulgaria for the 57.6-megawatt-peal Sinitovo photovoltaic project.

According to CMS, the project was structured on July 16, 2024, and licensed by the Bulgarian Energy and Water Regulatory Commission on November 7, 2024.

Additionally, a EUR 4.5 million grant – awarded by the Bulgarian Ministry of Energy under the Recovery and Resilience Plan – supports the installation of a battery electric storage system. Construction of the Solar Park Trakiya project is underway and set for completion in 2025.

The CMS team included Managing Partner Kostadin Sirleshtov, Counsel Borislava Piperkova, Senior Associates Diyan Georgiev and Elena Yotova-Yordanova, Associates Dian Boev and Viktoriya Toneva, and Trainees Boris Kirov and Niya Ivanova. 

Kinstellar has advised Paradox Interactive on its acquisition of Haemimont Games.

Paradox Interactive is a developer and publisher of strategy and management games.

Haemimont Games is a Bulgarian video game development studio.

According to Kinstellar, this acquisition is part of Paradox Interactive’s strategy to grow the management games genre.

The Kinstellar team included Partner Diana Dimova, Counsel Atanas Mihaylov, Managing Associate Georgi Kanev, Senior Associate Denitsa Kuzeva, Associate Debora Dineva, Attorney at Law Vanya Evtimova, and Junior Associates Simona Damyanova and Vilislava Kolarova.

Boyanov & Co. has advised Generali CEE Holding in the acquisition of United Health Insurance Fund Doverie. Djingov, Gouginski, Kyutchukov & Velichkov advised the seller.

The deal will be completed subject to the required regulatory and concentration clearance permits.

Doverie is one of Bulgaria’s largest health insurance providers. According to Boyanov & Co, “this strategic acquisition marks a significant milestone in Generali’s expansion within the Bulgarian market…[It] underscores Generali’s commitment to enhancing its presence in the health insurance sector and providing comprehensive healthcare solutions to its clients.”

The Boyanov & Co team was led by Partner Yordan Naydenov and included Partner Peter Petrov and Senior Counsel Svetlina Kortenska.

The DGKV team was led by Partners Georgi Tzvetkov and Valentin Bojilov.