Privacy Policy
1. General provisions
1.1. UAB "Karlonė" (hereinafter referred to as the "Company") respects the right to privacy of all buyers of its services, potential customers (who have tried the services but have not become customers), and all visitors to the verskis.lt website (hereinafter referred to as the "Website") (hereinafter referred to as the "Customers") and undertakes to ensure the protection of personal data provided and received. The Company also takes care of ensuring the rights of customers as data subjects.
1.2. This privacy policy regulates the basic principles and procedure for collecting, processing and storing personal data of the Company's customers.
1.3. By using the Website, as well as by ordering or in any form using the services offered by the Company and providing the Company with your personal data, you agree to the provisions of this Privacy Policy. Customers are considered to be familiar with the Privacy Policy when, when registering on the Website, they tick the box indicating that they agree to the Company's privacy policy. The Privacy Policy can be re-acquainted with it at any time by clicking on the appropriate link on the Website.
1.4. When processing the Client's personal data, we comply with all applicable laws, including the EU, the Data Protection Act, the Republic of Lithuania and other applicable legal acts regulating the protection of personal data. The Company has been granted the Personal Data Protection Registration Code XXXXX, registration date XXXXX.
2. What concepts are used?
2.1. Personal data - any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data and an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
2.2. Data subject - a natural person - a client of the Company (including visitors to the Website) whose personal data is collected by the Company.
2.3. Consent of the data subject - any freely given, specific and unambiguous indication of the data subject's wishes, by a statement or by a clear action, by which he or she signifies agreement to the processing of personal data relating to him or her.
2.4. Data processing - any operation or set of operations which is performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination with other data, restriction, erasure or destruction.
2.5. Data Processor - a natural or legal person, public authority, agency or other body that processes personal data on behalf of the Data Controller.
2.6. Data Controller - UAB "XXXXX", a company operating and established in accordance with the laws of the Republic of Lithuania, code XXXXXX, registered at XXXXXXXXXX, Republic of Lithuania, data about which is collected and stored in the Register of Legal Entities.
2.7. Direct marketing - activities aimed at contacting the Customer by mail, telephone or other direct means and offering goods or services and/or asking for their opinion on the goods or services offered, including by automated means.
3. What cookies do we use and how do we use them?
3.1. What is a cookie - small files that are sent to the user's web browser and placed on the browser's computer or other device upon first visiting the website. Later, cookies are used on the website to ensure the best possible use of the website by the user, identifying the user's computer and facilitating access to the website or the information contained therein, thus adapting the website content as conveniently as possible for the user.
3.2. These cookies are used on the Website, as well as in related Company systems designed to provide proper and high-quality service to the Client.
3.3. In order to ensure that you can browse the Website more conveniently and efficiently and provide you with useful offers, we use the following Cookies on the Website: PHPSESSID (session information), "CookieInfoScript" (consent to the cookies used), _gat, _ga, _git, __utma, __utmb, __utmc, __utmt, __utmz (cookies used by Google Analytics), datr, Fr, sb, locale, reg_ext_ref, reg_fb_gate, reg_fb_ref (cookies used by Facebook Pixel) and "GPS", "PREF", "VISITOR_INFO1_LIVE", "YSC" (YouTube video content streaming information).
3.4. The Client's right to refuse cookies - The Client may at any time delete or block some or all of the cookies stored on their computers or other devices by changing the settings of the browser they use. More information about deleting or blocking cookies can be found on the website of the manufacturer of the browser they use. We note that after performing these actions, some functions of the website may partially or completely cease to function and be inaccessible. The Client understands that the Website may use third-party plug-ins (partners, statistics collection systems, communication systems, etc.) that also use cookies to ensure their proper functionality. We emphasize that the website operator does not control, cannot be and is not responsible for the cookies used by third parties, the content and the privacy protection applied by these websites, which we recommend that you familiarize yourself with in each case individually.
4. What personal data do we collect?
4.1. The Company collects and subsequently processes the Client's personal data, which you provide yourself when using and ordering services on the Website or when ordering services in another way: name, surname, personal code (optional), address, e-mail address, telephone number, and other data related to the specifics of ordering services. We note that you provide the data additionally on your own initiative when registering and/or ordering, managing the services provided by the Company.
4.2. Personal data specified by the Client shall be stored for the period of cooperation between the Company and the Client (during the provision of services) and for 10 (ten) years from the end of this period. The data may be stored for a shorter period if there is no legal basis for this.
5. For what purposes and how do we process personal data?
5.1. The data held by the Company about the Client will be processed in a lawful, fair and transparent manner (principle of legality, fairness and transparency).
5.2. The Company processes the above-mentioned personal data of the Client for the purpose of processing and administering the purchase/order of services, processing accounting documents related to the order of services, contacting you regarding the performance of contractual obligations, and for direct marketing purposes (with the prior consent of the data subjects).
5.3. We ensure that the Client's personal data is and will be processed lawfully, fairly and transparently, collected for specified, explicit and legitimate purposes and not further processed in a manner incompatible with those purposes, adequate, relevant and only necessary in relation to the purposes for which they are processed, accurate and, where necessary, kept up to date, processed in such a way that, by applying appropriate technical and organisational measures, appropriate security of personal data is ensured, including protection against unauthorised or unlawful processing of Data and against accidental loss, destruction or damage (principle of integrity and confidentiality).
6. What data subject rights do you have?
6.1. The customer has the right to withdraw his consent at any time. Withdrawal of consent does not affect the lawfulness of data processing based on consent carried out before the withdrawal of consent. The data subject is informed about this before giving consent. Withdrawing consent is as easy as giving it.
6.2. You have data subject rights, which we will implement upon receipt of a request from the Client by registered mail to the address XXXXXXXXXX and upon your proper confirmation of your identity. The Client has the right to access his/her personal data and how they are processed, to request the correction of inaccurate personal data relating to the Client, as well as to request that incomplete personal data of the Client be supplemented.
6.3. The Client has the right to request that the Company delete personal data related to the Client if they are no longer necessary to achieve the purposes for which they were collected or otherwise processed; withdraws consent, and there is no other legal basis for processing the Client's personal data; the personal data were processed unlawfully; on other grounds established in the Regulation; request that the Company restrict the processing of the Client's personal data; receive the personal data related to the Client that they have provided to the Company in a structured, commonly used and machine-readable format; the Client also has the right to request that the Company transfer personal data to another data controller; object to the processing of the relevant personal data (e.g. for direct marketing or other purposes).
7. How we process personal data for direct marketing purposes
7.1. The Company will contact the Client only with the Client's prior consent and in accordance with the provisions of the ERĮ, ADTAĮ and the Regulation. We will send the Company's newsletters by e-mail or telephone and/or inquire about the quality of existing services and other related issues.
7.2. We process the following personal data of the Client for direct marketing purposes: name, email address, telephone number.
7.3. The Client's personal data for direct marketing purposes is stored until the Client opts out of receiving direct marketing messages (such opt-out link is provided at the bottom of each sent letter).
8. To whom do we provide personal data?
8.1. The Company's employees are granted access to the Client's personal data only if necessary to perform their duties and only if the employee undertakes to comply with the confidentiality requirement.
8.2. The Company may provide the Client's personal data to data processors who provide services to the Company and process the Client's personal data on behalf of the Company and for the benefit of the Company or the Client, to law enforcement authorities, where there is a legal basis for this, to other third parties with the Client's consent. Such data processors have the right to process the Client's personal data only in accordance with the Company's instructions.
8.3. The client's personal data may also be provided in response to official requests from state institutions and courts, but only after verifying the legitimacy of these requests.
8.4. Payments in the online store are processed using the makecommerce.lt platform, which is managed by Maksekeskus AS (Niine 11, Tallinn 10414, Estonia, reg. no.: 12268475), therefore your personal information required for payment execution and confirmation will be transferred to Maksekeskus AS.
