This Policy is addressed to persons who visit this Company-owned website (http://www.padagas.lt/) and use the information and services provided on the website.
3. Any natural person whose personal data is processed by the UAB “Padagas ir Ko.” shall be considered to be the Data subject in this Policy .
By using the services and/or continuing browsing the website, the Visitor (the user of the website) confirms that he has familiarized himself with this Policy, understands its provisions and agrees to comply with them.
The Data controller shall ensure that, when accepting and implementing this Policy, he strives to implement the following essential principles related to the processing of personal data:
Personal data is processed in a lawful, fair and transparent manner (principle of legality, fairness and transparency) with respect to the Data subject;
Personal data is collected for determined, clearly defined and legitimate purposes and shall not continue to be processed in a manner incompatible with those purposes;
Further processing of personal data for archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes is not considered incompatible with the original purposes (the principle of purpose limitation);
Personal data is adequate, relevant and only necessary to achieve the purposes for which they are processed (the principle of reducing the amount of data);
Efforts are made to ensure that personal data is accurate and, if necessary, kept up to date within a reasonable time after the fact of change has;
All reasonable steps are taken to ensure that personal data which is not accurate in relation to the purposes of their processing is immediately erased or rectified within a reasonable time (principle of accuracy);
Personal data is stored in such a form that the identity of the Data subject can be established no longer than is necessary for the purposes for which the personal data is processed;
Personal data may be stored for longer periods, provided that personal data will be processed only for archiving purposes, in the public interest, for scientific or historical research purposes or for statistical purposes, subject to the implementation of appropriate technical and organizational measures, necessary to protect the rights and freedoms of the Data subject (principle of limitation of retention duration);
Taking in account the general nature of the Personal data processed by the Data controller, the Personal data is processed in such a way that appropriate technical or organizational measures ensure adequate security of personal data, including protection against unauthorized processing or unlawful processing and against accidental loss, destruction or damage of personal data (the principle of integrity and confidentiality);
The Data controller is responsible for complying with the above principles and must be able to demonstrate that they are being followed (accountability principle).
You visit or use the Company’s Website and/or the Company’s social media accounts;
You are seeking to or entering into a contract with the Company;
You purchase the services provided by the Company;
You agree to receive direct marketing communications from the Company or subscribe to the Company’s newsletter;
You provide your goods or services to the Company;
You contact the Company’s customer service department;
You otherwise interact or cooperate with the Company as a customer, supplier or other person who has a business or consumer relationship with the Company.
Contact details of the person responsible for the protection of personal data in the Company: e-mail: firstname.lastname@example.org.
THE PURPOSES OF THE PROCESSING OF PERSONAL DATA AND THE CATEGORIES OF PERSONAL DATA COLLECTED
Depending on who you are (customer, supplier, website visitor, etc.) and how you interact with the Company (in person, online, over the phone, etc.), the Company may process different types of your Personal Data.
Below you will find the categories of Personal Data that we may collect:
Purpose of data processing
Categories of data and personal data processed
Data processing term
Legal basis for data processing
Concluding a contract with the company
Personal identification data: name, surname, personal identification number*
Contact details: email address, phone number, address*
Service details: date of purchase, description of the service, price*
Data required for invoicing (only with consent): name, surname, personal identification number, bank account number, name of service, price
The personal data shall be stored for the duration of the contract and for 10 years from the date of termination of the contract (in accordance with the order of the Chief Archivist of the Republic of Lithuania of 9 March 2011 (Order No. V-100) as adopted by the General index of document retention periods)
The processing is necessary for the conclusion and performance of the contract (Article 6(1)(b) GDPR)
Administration of requests made on the website
Identifying data: name*;
Contact details: email address*, phone number.
Personal data shall be kept for 5 years (in accordance with the Chief Archivist of the Republic of Lithuania’s Order of 9 March 2011 (Order No. No. V-100) as adopted by the General index of document retention periods)
Data processing is necessary to administer the requests made and to contact the website visitor.
*Providing the data marked with an asterix is necessary if you wish to enter into a contract with the Company or make an enquiry via the website.
TO WHOM WE PROVIDE YOUR PERSONAL DATA
9.The Company shall not transfer your personal data to any third party without your prior consent, except in the cases described below.
10.We may transfer your data to third parties who help us to operate and administer the provision of the Services. Such persons may include data centers, companies providing shelter and related services, marketing companies, software developing, providing, supporting and developing companies, information technology infrastructure services companies, communication services companies, internet browsing companies and/or companies carrying out online analysis and providing related services, security services providing services, etc.
11.In each case, we provide data the data processor only to the extent necessary for the execution of a specific order or for the provision of a specific service.
12.Our invoked Data processors may process your personal data only in accordance with our instructions. In addition, they must ensure the security of your data in accordance with applicable laws and agreements signed with us.
13.Data may also be made available to competent authorities or law enforcement bodies, such as police or supervisory authorities, but only at their request and only when required by applicable law or in cases and by order provided for by law and valid legislation, to ensure our rights, the security of our buyers, employees and resources, to declare, provide and defend legal requirements.
HOW WE KEEP YOUR DATA SECURE
14.In order to protect your data, the Company takes appropriate measures to comply with data protection and data security laws and regulations, including the requirement for the Company’s service providers/processors to use appropriate measures to protect the confidentiality of your personal data.
15.Depending on the modern technology and the cost of implementing the measures and the nature of the data to be protected, the Company has in place technical and organizational measures to protect against risks such as the destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to, your data.
17.Data protection legislation gives you many rights in relation to the processing of your personal data.
You have the right to access our personal data:
You have the right to request our confirmation of whether we process your personal data, and in such cases request access to your personal data processed by us. To exercise the above-mentioned right, please submit a written request to us by e-mail: email@example.com
You have the right to require correction of your inaccurate data.
If you believe that information about you is incorrect or incomplete, you have the right to ask for correction. To exercise the above-mentioned right, please submit a written request to us by e-mail: firstname.lastname@example.org
You have the right, to object to the processing of your personal data:
You have the right to object to the processing of personal data when personal data is processed in accordance with our legitimate interests. However, despite your objection, we will continue to process your data in case of reasonable motivated reasons for further processing. To exercise the above-mentioned right, please submit a written request to us by e-mail: email@example.com
You have the right to request deletion of your personal data (right to be forgotten):
In certain circumstances, you have the right to request that we delete your personal data. However, this provision does not apply if we are required to store data by law. To exercise the above-mentioned right, please submit a written request to us by e-mail: firstname.lastname@example.org
You have the right to restrict the processing of your personal data:
In certain circumstances, you also have the right to restrict the processing of your personal data. To exercise the above-mentioned right, please submit a written request to us by e-mail: email@example.com
You have the right to lodge a complaint regarding the improper processing of personal data with the State Data Protection Inspectorate directly or by email at firstname.lastname@example.org.
INFORMATION ABOUT USED COOKIES
19.Cookies are small size text files, which are stored on the Person’s browser or device (personal computer, mobile phone or tablet).
20.The Company uses the following categories of cookies:
Strictly mandatory cookies: cookies that are essential for the functioning of the system. For example, some cookies allow us to identify registered users and ensure that they have access to the whole system. If the user refuses these cookies, they may not be able to see the full content of the system;
Performance cookies: cookies that allow us to analyze how users use the system and to monitor the performance of the system. This allows the Company to select the right offers and quickly identify and fix any problems, thus ensuring a high quality browsing experience. For example, performance cookies allow us to track which pages are the most popular and to determine why some pages show error messages;
Functional cookies: cookies that allow us to remember users’ preferences and tailor them to the website/mobile app so that the Company can provide enhanced functionality;
Google Analytics, which allows you to record and analyze statistical data about the use of the website. You can find out more about Google Analytics and the information that these tools allow you to collect here at https://support.google.com/analytics/answer/6004245?hl=lt. If you want Google Analytics tools to not record information about your browsing online, you can use the Google Analytics opt-out browser plugin.
21.The following cookies are used on http://www.padagas.lt/:
Name of cookie
Period of validity
Used to assess visitor’s goals, prepare reports on the website activity to website operators and to improve the customer’s experience when visiting the website
Used to control the number of requests made to a web page.
Used for tracking purposes to distinguish between visitors to the website.
This cookie is derived from PHP programs. The cookie is used to store and identify a unique user session ID to manage the user’s session on the website. The cookie is a session cookie and is deleted when all browser windows are closed.
Used to store the language selected by the user on the website.
Used by Google, it tracks a user’s website actions, location, activity and preferences.
Used to identify users logged in to YouTube.
Used to measure user bandwidth on pages with
integrated YouTube video
Used to record a unique visitor ID in order to manage statistic data on which YouTube videos a visitor has viewed.
22.Cookies used on the website do not allow to determine the identity of the user of the website. Visiting the Website is recorded anonymously, identifying a personal computer, mobile phone or tablet and IP address, and such collected information is not provided to third parties, except in cases as provided for by law.
23.By browsing to the Website and clicking the “I Agree” button in the pop-up box, the person doing the browsing agrees that cookies are stored on his/her computer, mobile phone or tablet.
24.In order to revoke the given consent, the browsing person may delete or block cookies by selecting the appropriate settings in his browser, allowing him/her to opt out of all or part of cookies. Please be aware, that using browser settings that block cookies (including necessary cookies) may cause the Person to experience problems with all or some of the features of the Website.
25.Personal data collected by cookies is processed in accordance with the Law on Legal Protection of Personal Data of the Republic of Lithuania, the Law on Electronic Communications of the Republic of Lithuania, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC and other legal acts on the protection of personal data.
26.In accordance with the requirements of the legal acts, the Website shall apply security measures to prevent unlawful disclosure of Personal data and its unlawful use.
27.Legal relations related to this Policy are governed by the law of the Republic of Lithuania.
28.The Data controller shall not be liable for damages, including damages due to interference with the use of the Website, for loss or damage to data caused by acts or omissions of the person himself or third parties acting on the person’s message, errors, deliberate damage, other improper use of the Website.
29.The Data controller is also not responsible for any interference during logging in and using the Website and / or damage caused by it, appearing due to the actions or omission of third parties, unrelated to the Data controller or person, including interference in electricity supply or internet access, etc.
30.The Data controller has the right to partially or fully change the Policy.
31.Policy supplements or changes shall take effect from the day they are Published on the Website.
32.If, after completing or changing the Policy, the person continues to use the Website and/or the Services provided by the Data controller, it is considered that the person does not object to such additions and/or changes.
33.For all data processing issues, you can contact us by e-mail: email@example.com.