1. General Provisions
1.1 The controller of your personal data is “Kurk Lietuvai” , contact details of it are published kurklt.lt
1.3 The Company collects personal data that a person voluntarily submits by e-mail, registered mail, fax, telephone, or using the Company’s website.
1.4 All personal data received by the Company is collected, stored and processed in accordance with the requirements provided for in the Law on The Protection of Personal Data of the Republic of Lithuania, the General Data Protection Regulation No. 2016/679 of the European Union and other legal acts regulating the protection of personal data of the Republic of Lithuania.
1.5 The Company shall ensure that the level of protection of personal data processed by the Company complies with the requirements of the legal acts of the Republic of Lithuania.
2.1. The following definitions are used in the document:
2.1.1. ‘Personal data’ means any information relating to an identified or identifiable person (data subject). An identifiable person is an identifiable person, in particular by reference to a particular identifier, such as a name, an identification number, location data and an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person;
2.1.2. Data subject – means a person from whom the Company receives and processes personal data;
2.1.3. ‘Data recipient’ means the person to whom the personal data are provided;
2.1.4. ‘Provision of data’ means the disclosure of personal data by transmission or otherwise making them available (except for publication in the media);
2.1.5. ‘Data processing’ means any act performed on personal data: collection, accumulation, storage, recording, classification, grouping, merging, modifying (addition or correction), provision, publication, use, logical and/or arithmetic operations, search, dissemination, destruction or other action or set of actions;
2.1.6. ‘Automated processing’ means the processing operations carried out, in whole or in part, by automated means;
2.1.7. ‘Data processor’ – a legal entity or person (who is not an employee of the data controller) who is authorized by the data controller to process personal data. The data processor and /or the procedure for its appointment may be established by law or other legal acts;
2.1.8. ‘Controller’ means a legal entity or person who, alone or jointly with others, determines the purposes and means of the processing of personal data. If the purposes of the data processing are determined by law or regulation, the data controller and /or the procedure for its appointment may be established in those laws or regulations;
2.1.9. ‘Consent’ means any freely given, specific and unambiguous expression of the informed will of the data subject by a statement or by an unambiguous act by which he or she consents to the processing of personal data relating to him or her;
2.1.10. ‘Direct marketing’ is an activity aimed at offering goods or services to individuals by post, telephone or other direct means and/or to seek their opinion on the goods or services offered;
2.1.11. ‘Third party’ means a legal entity or person, with the exception of the data subject, the controller, the processor and persons who are directly authorised by the controller or processor to process the data;
2.1.12. Other terms used in this Policy shall be understood as defined in the Law on Legal Protection of Personal Data of the Republic of Lithuania and other legal acts regulating the processing of personal data.
3. What principles do we follow when processing personal data?
3.1. When processing personal data, the company is guided by the following principles:
3.1.1. The Company processes personal data only for legitimate purposes defined in the Policy;
3.1.2. Personal data is processed accurately, fairly and lawfully, in accordance with the requirements of legal acts;
3.1.3. The Company processes personal data in such a way that personal data is accurate and in case of their change is constantly updated;
3.1.4. The Company carries out the processing of personal data only to the extent necessary to achieve the purposes of personal data processing;
3.1.5. Personal data shall be stored in a form which permits the identification of data subjects for no longer than is necessary for the purposes for which the data were collected and processed.
3.1.6. The personal data of the data subject may be found out only by the employees of the Company with the relevant competence and / or third parties who were used by the Company to provide the service, and only in cases where it is necessary for the provision of the service.
3.2. The Company respects the privacy of the Data Subject and undertakes to constantly comply with the data protection principles of the Data Subject specified in this Policy.
4. For what purposes do we process personal data?
4.1. Personal data is processed and used depending on the purposes for which the Data Subject provided them to the Company or for other purposes approved by the Data Subject.
4.2. The purposes of using the personal data of the data subject:
4.2.1. Processing and administration of the purchase (order) of services performed by the data subject;
4.2.2. Identification of the data subject in the Company’s information systems;
4.2.3. to identify the data subject by logging in to his/her account on the Company’s website (when the Company provides such an opportunity);
4.2.4. issuance and submission of purchased (ordered) service coupons, confirmations, invoices and other financial documents;
4.2.5. solving problems with the performance of the contract;
4.2.6. to contact the Data Subject in the event of a change in the terms and conditions of the goods or services purchased by the Data Subject;
4.2.7. for the fulfilment of other contractual obligations;
4.2.8. The Company’s direct marketing purposes;
4.2.9. for security, health, administrative, crime prevention and legal purposes;
4.2.10. business analysts, general research, which allows you to improve the quality of goods or services;
4.2.11. to contact the Data Subject in order to receive customer feedback about the purchased services;
4.2.12. evaluation of a person’s candidacy for a job position, contacting the relevant candidate, etc.;
4.3. By voluntarily providing the Company with his personal data, the Data Subject confirms and voluntarily agrees that the Company will manage and process the personal data of the Data Subject in accordance with this Policy, applicable laws and other regulatory legal acts.
4.4. The Company undertakes not to disclose personal data information to third parties without the consent of the Data Subject, except, in order to ensure the proper performance of the contract, other services related to the proper performance of the services ordered by the Data Subject. The Company may also transfer the personal data of the Data Subject to third parties who act as Data Processors on behalf of the Company. Personal data may be provided only to those Data Processors with whom the Company has signed the relevant Data Processing Agreements. It is considered that the Data Subject is informed about it, agrees with it and the Company does not assume responsibility for damages arising from the use of data of the Data Subject by third parties to the extent permitted by law. In all other cases, the personal data of the Data Subject may be disclosed to third parties only in accordance with the procedure provided for by the legal acts of the Republic of Lithuania.
5. What personal data do we process?
5.1. The personal data information collected by the Company may be:
- The name, surname, telephone number, e-mail address, service of interest and free-form message of the data subject are provided in the request form.
- On the Company’s website, certain information about the visit of the Data Subject may be collected, for example:
- the address of the Internet Protocol (IP) by which the Data Subject accesses the Internet;
- The date and time of the data subject’s visit to the Company’s website;
- The browser is used;
- Information about the operating system of the Data Subject’s computer;
- Mobile app versions;
- Language settings and more.
If the Data Subject uses a mobile device, data may also be collected that allows you to determine the type of mobile device, device settings, as well as geographical (longitude and latitude) coordinates.
This information is used to improve the Company’s website, analyze trends, improve products and services, and administer the Company’s website. The data subject voluntarily submits these data using the services provided by the Company, becoming a registered user of the Company’s website or visiting the Company’s website.
5.2. The personal data information collected by the Company may be any personal data information not specified above in this article, but voluntarily provided by the data subject to the Company or otherwise received and lawfully processed by the Company.
6. What are the rights of the subject of personal data?
6.1. The rights of the data subject and the means of their implementation:
6.1.1. be aware of the collection of your personal data. The data subject has the right to access his personal data;
6.1.2. access your personal data and how they are processed. The data subject has the right to apply to the Company with a request to provide information about what and for what purpose his personal data are processed;
6.1.3. to request rectification, destruction of your personal data or suspension of the processing of your personal domains;
6.1.4. receive the Data you provide in a readable structured form if it meets the criteria defined by law;
6.1.5. The data subject has the right to refuse data processing when processing optional data. When the Data is processed for direct marketing purposes, the Data Subject may object to such Processing (right to object). Upon receipt of a request to terminate the processing of optionally processed personal data, the Company shall immediately terminate such processing, unless this is contrary to the requirements of the legislation, and shall inform the person thereof;
6.1.6. at any time to withdraw any consent given by the Data Subject when registering or using the services provided by the Company. Such refusal will not affect the lawfulness of data Processing carried out before the refusal and based on the consent granted;
6.1.7. refuse to provide personal data;
6.1.8. to submit a complaint to the supervisory authority in case of violation of the rights of the Data Subject.
7. What are cookies and what are they used for?
7.1. The company’s website is used for data analysis management
tools – “cookies”.
7.2. By using the Company’s website, the Data Subject agrees to be recorded on the Data Subject’s computer (device) on the website (when such an opportunity is provided by the Company).
7.3. Cookies are small amounts of data that a website places on the Data Subject’s computer. Web pages have no memory. When the data subject navigates through different web pages, the Data Subject will not be recognized as the same user. Cookies allow the website to recognize the Data Subject’s browser. The main purpose of cookies is to remember the data subject’s preferences, for example, the preferred language of the website. Cookies also help to identify the Data Subject when they return to the same website. They help to personalize the website. Cookies cannot be used to execute programs or transmit viruses to a computer. Cookies are assigned only to the Data Subject and can only be read by the Web server of the domain that sent the Cookie to the Data Subject. One of the most important purposes of cookies is to provide a convenient function in order to save the data subject’s time. For example, if the Data Subject applies to the website for personal needs or browses the website, cookies will help the website to remember specific information later on the website upon visit. This makes it easier to present relevant content, makes it easier to navigate the website, etc. By returning to the website, the Data Subject can find the information provided earlier, so he can more easily use the already adapted functions of the website.
7.4. With the help of cookies, data processing does not provide an opportunity to directly or indirectly identify the user.
7.5. The following types of cookies can be used on the company’s website:
7.6. Technical cookies: with their help, the Company tries to provide users of the Company’s website with an advanced and easy-to-use website that automatically adapts to their wishes and needs.
7.7. Functional cookies: they allow you to remember the choices of the Data Subject and at the same time use the website efficiently.
7.8. Analytical cookies: with their help, the aim is to understand how the Company’s visitors use the Company’s website, to discover the weak and strong parts of the website, and to optimize the work of the website.
7.9. Commercial cookies: these cookies are used by the Company to place advertisements of the Company on other websites.
web parts may not work or function properly for the Data Subject.
7.11. No personal data of the customer is stored with the help of cookies.
7.12. Information is not provided to any third parties at the time of saving the necessary cookies.
8. Third-party websites
8.1 The Company is not responsible for ensuring the Customer’s privacy on the websites of third parties even in cases where the Customer accesses third-party websites using the links available on this website. The Company recommends that you familiarize yourself with the privacy terms and conditions of each website that is not owned by the Company.
9. Ensuring information security
9.1 The company’s goal is to ensure the highest possible security of all information received from the Customer and from public data files. In order to protect this information from unauthorized access, use, copying, accidental or unlawful destruction, alteration, or disclosure, as well as from any other unlawful processing, the Company uses appropriate legal, administrative, technical and physical security measures.
10. Final provisions