PRIVACY POLICY

The purpose of the privacy policy is to provide the natural person - the data subject - with information about the purpose, scope, protection and processing term of personal data processing during data acquisition and processing of the data subject's personal data.

1. Manager:

  • The controller of personal data processing is "Cryogenic and vacuum systems" SIA (hereinafter - CVS), single registration no. 41203052082, legal and actual address Andreja iela 7/9, Ventspils, Ventspils, LV-3601, Latvia.
  • CVS contact information for matters related to the processing of personal data - e-mail: [email protected], Andreja iela 7/9, Ventspils, LV-3601, Latvia, phone number (+371) 24807941. Using this contact information, you can ask questions about personal data processing. A request to exercise your rights can be submitted in accordance with this Privacy Policy.
  • The tasks of the responsible person are to inform and advise CVS employees on matters related to the processing of personal data, to monitor the observance of regulatory acts related to the protection of personal data at CVS, to cooperate with the supervisory authority, as well as to advise persons who contact CVS on matters related to data processing.

2. What the Privacy Policy applies to

  • Personal data is any information about an identified or identifiable natural person.
  • The privacy policy applies to ensure the protection of privacy and personal data in relation to:
  1. for natural persons – cooperation partners, employees, as well as third parties who receive or transfer any information to CVS in connection with the provision of services (including contact persons, payers, etc.);
  2. for visitors to the CVS office and other premises and areas, including those subject to video surveillance;
  3. CVS-maintained website for users (hereinafter referred to as "Persons").
  • CVS takes care of Personal privacy and personal data protection, respects the right of Individuals to the legality of personal data processing in accordance with Regulation 2016/679 of the European Parliament and Council of 27.04.2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data (hereinafter - the Regulation) and other regulatory acts in the field of privacy and data processing.
  • The privacy policy applies to data processing regardless of the form in which the data is provided and processed.
  • CVS processes personal data for the following purposes:
  1. For providing services and ensuring performance of the contract. The purpose refers to the provision of services and the execution of concluded contracts (transactions). Personal data processing is carried out on the basis of law and contract (transaction);
  2. For the preparation, conclusion or amendment of the contract. Purpose refers to new applications for existing or new business, including services. Processing of personal data is carried out on the basis of law or contract (transaction);
  3. To fulfill contractual obligations and provide services;
  4. For advertising and distribution of services or for commercial purposes;
  5. For consideration and processing of submissions, complaints and claims;
  6. For settlement administration, debt recovery and recovery. The purpose refers to the activities carried out within the settlement with the person. Personal data processing is carried out on the basis of law and contract (transaction);
  7. For website maintenance and performance improvement;
  8. For the provision of information to state administrative institutions and subjects of operational activity in the cases and to the extent specified in external regulatory acts;
  9. For the execution of binding regulatory acts. The purpose refers to the basis of personal data processing provided for in regulatory acts, for example in the areas of accounting, taxes, fees, etc.;
  10. for organizational management, planning and accounting (including record keeping, processes, services, information systems, personal accounting, ensuring the succession of the merchant, realization of public relations and social responsibility). The purpose refers to measures for the integrated management of the company, including in accordance with national and internationally recognized principles of corporate governance, ensuring the traceability , control and improvement of internal processes. Processing of personal data is carried out on the basis of the law, legitimate interest and the consent of the person;
  11. For accounting/financial and tax management. The purpose refers to accounting, tax payment, settlements, etc. We perform the processing on the basis of the law and contract (transaction);
  12. For other specific purposes, about which Persons are informed before providing data;
  13. In any of the mentioned cases, CVS processes Personal Data only to the extent permitted by the specific purpose of processing.
  • How CVS collects personal data
  1. The information that CVS obtains about a Person depends on the content of the transaction. Also, information provided as part of any kind of cooperation is obtained.
  2. Information provided to CVS about itself by the data subject (Person), i.e. when the data subject or his authorized person communicates or cooperates with CVS, for example by concluding a contract, requesting information or submitting an application for consideration of a specific question or request, communicating through informational channels, including on social media, attending CVS-hosted events or sponsored activities that may involve the taking of photographs or the recording of a video image as described above.
  3. In order to fulfill the requirements stipulated in the regulatory acts, to ensure long-term cooperation, CVS may also need to request data from publicly available registers, including the databases maintained by LURSOFT - Commercial register, land register, insolvency register, commercial mortgage register, etc.
  4. When visiting the dryeat.mozello.shop website, cookies may be used, which we inform you about during your visit to the website.
  • Legal basis for personal data processing
  1. for the conclusion and execution of the contract - to conclude the contract upon application and ensure its execution;
  2. for the fulfillment of regulatory acts - to fulfill the obligation or rights specified in the regulatory acts;
  3. consent of the data subject ;
  4. in legitimate (legitimate) interests – to realize the legitimate (legitimate) interests of CVS resulting from the existing obligations or the concluded contract or the law:
    - to carry out commercial activities;
    - to ensure the fulfillment of contractual obligations;
    - to save applications and submissions for the provision of services, other applications and submissions, notes about those, including those made verbally, on internet websites;
    - develop and develop products and services;
    - advertise products and services;
    - send other reports on the progress of contract execution and events relevant to contract execution;
    - ensure and improve product quality ;
    - to administer payments;
    - to administer unpaid payments;
    - to apply to state administrative and operational institutions and to court for the protection of their legal interests;
    - to inform the public about their activities.
  • Processing and protection of personal data
  1. CVS processes and protects Personal Data using modern technology capabilities, taking into account existing privacy risks and reasonably available organizational, financial and technical resources.
  2. In order to ensure the high-quality and prompt fulfillment of the obligations of the concluded agreements, CVS may authorize its cooperation partners to perform certain service provision activities, such as employee health insurance services, sending invoices, and the like. If during the performance of these tasks the cooperation partners process the personal data held by CVS, the respective cooperation partners are considered personal data processors and CVS is entitled to transfer to the cooperation partners the personal data necessary for the performance of these activities to the extent necessary for the performance of these activities.
  3. CVS cooperation partners, in the capacity of personal data processor, will ensure the fulfillment of personal data processing and protection requirements in accordance with laws and regulations, and will not use personal data for purposes other than the fulfillment of contractual obligations on behalf of CVS.
  • Categories of recipients of personal data to whom the data is disclosed
  1. CVS does not disclose personal data to third parties or any information obtained during the provision of services and during the term of the contract, including information about the nature, essence, etc. of the services, except:
    - if the data must be transferred to a third party within the framework of the concluded contract, in order to perform something necessary for the performance of the contract or delegated by law function (e.g. to a bank within the framework of settlements or to provide a service);
    - if clear and unambiguous consent of the data subject has been received;
    - to the persons provided for in the regulatory enactments upon their justified request, in the manner and to the extent specified therein; applying to the court or other state institutions.
  2. Personal data may be disclosed to companies. In companies, the security of data of natural persons is a priority and business processes are carried out in accordance with the requirements set out in regulatory acts.
  3. Personal data may be disclosed to cooperation partners. For merchants with whom companies have concluded cooperation agreements and there are mutual obligations. For example, for service provision, delivery provision (including parcel and contract delivery, etc., including couriers, mail, etc.), service quality control (including survey providers, etc.), security and protection (collaboration partners who provide support for the safety and protection of employees, customers, visitors, objects and infrastructure, including security, legal aid providers, etc.) and management assurance (cooperation partners for the management and assurance of organizational, financial management and accounting processes, including auditors, auditors, event organizers, etc.) .
  4. Supervisory authorities. For example, market surveillance authorities, law enforcement agencies and rescue services in accordance with regulatory enactments.
  5. Third parties. For example, natural or legal persons, public authorities, agencies or bodies that are not data subjects, controllers or processors.
  6. Personal data may be disclosed (transferred) to another person in connection with the transfer of companies, any merger, acquisition, sale of assets, transfer of the provision of the Service to another merchant, etc.
  • Disclosure of personal data outside the European Union
  1. CVS does not transfer personal data outside the European Union.
  2. In case of necessity, CVS will ensure the procedures specified in the regulatory acts to ensure a level of personal data processing and protection equivalent to that specified by the Regulation.
  • Duration of storage of personal data
  1. Personal data is stored as long as it is necessary to achieve the goals set out in the Privacy Policy, unless longer storage is determined by regulatory enactments. Criteria for determining the period of data storage are used, which correspond to those specified in the regulatory enactments, such as consideration of claims, protection of rights, resolution of issues, compliance with the statute of limitations, etc., as well as respecting the rights of natural persons, for example, determining data storage for a period of time in which claims related to the transaction, should they arise, may be filed.
  2. CVS stores and processes personal data as long as at least one of the following criteria exists:
    - as long as the concluded contract is valid;
    - in the case specified in the regulatory acts, in the scope and term provided for in them;
    - as long as one of the parties has a legal obligation to store the data;
    - as long as the data subject's consent to the relevant personal data processing is valid, if there is no other legal basis for data processing.
  3. At the end of the data storage period, personal data is deleted or destroyed.
  • Rights and obligations of a person (data subject).
  1. A person (data subject) has the right to obtain all information collected about him in any personal data processing system.
  2. A person has the right to obtain information about those natural or legal persons who have received information about the person from the manager within a certain period of time. In the information provided to the person, it is forbidden to include state institutions that are the promoters of criminal proceedings, the subjects of operational activities, or other institutions about which the law prohibits the disclosure of such information.
  3. The person is also entitled to receive the following information, if it is applicable in the specific case:
    - the name or first and last name of the controller, as well as the address;
    - contact information of the data specialist or the person responsible for data processing at CVS;
    - the purpose, legal basis and type of personal data processing;
    - recipients of personal data or categories of recipients, if any;
    - information that the controller intends to send personal data to a third country or international organization;
    - the date when the data subject's personal data were last corrected, deleted or blocked;
    - personal data extraction the source, unless the law prohibits the disclosure of this information;
    - the period for which the personal data will be stored, or, if this is not possible, the criteria used to determine the said period;
    - that there is a right to request access to the data subject's personal data from the controller and its correction, or deletion, or restriction of processing in relation to the data subject, or the right to object to processing, as well as the right to data portability;
    - the right to withdraw consent at any time, without affecting the legality of such processing, which is based on the consent given before the withdrawal;
    - the right to file a complaint with the supervisory authority;
    - information on whether the provision of personal data is required by law or a contract, whether it is a prerequisite for concluding a contract, as well as information on whether the data subject is obliged to provide personal data and what the consequences may be in cases where such data are not provided ;
    - that there is automated decision-making, including the profiling mentioned.
  4. In accordance with the laws and regulations, a person has the right to request access to his personal data, as well as to request the addition, correction or deletion of processed data, or the restriction of processing, as well as the right to object to processing, including the processing of personal data carried out on the basis of CVS's legal (legitimate) interests, as well as the right to data portability. These rights are enforceable to the extent that data processing does not result from CVS's obligations, which are imposed by the current regulatory enactments, and which are carried out in the public interest.
  5. A person can submit a request for the exercise of his rights:
    - in written form in person at the address: Andreja iela 7/9, Ventspils, LV-3601, Latvia, presenting an identity document;
    - in the form of electronic mail, signing with a secure electronic signature, sending an e-mail to the e-mail address – [email protected].
  6. Upon receiving a request from a Person for the exercise of his rights, CVS verifies the identity of the Person, evaluates the request and fulfills it in accordance with regulatory enactments.
  7. CVS's response to the received request is sent by mail to the specified contact address in a registered letter or delivered personally, taking into account the way of receiving the response specified by the Person, as far as possible.
  8. CVS ensures compliance with data processing and protection requirements in accordance with regulatory enactments and, in case of objections, takes appropriate actions to resolve the objection. However, if this fails, the Person has the right to apply to the supervisory authority - the Data State Inspectorate.
  9. The person is obliged to provide CVS with information about changes in the personal data held by CVS within a reasonable period of time.
  10. The person is obliged to familiarize himself with the CVS Privacy Policy before starting cooperation.
  • Consent to data processing and the right to withdraw it
  1. If the processing of Personal data is based on consent to the processing of personal data, the Person has the right at any time to withdraw the consent given to the processing of data in the same way in which it was given, and in that case further data processing based on the previously given consent for the specific purpose will not be carried out in the future.
  2. Withdrawal of consent does not affect data processing carried out at the time when the consent of the Person was valid.
  3. Withdrawal of consent cannot stop data processing carried out on the basis of other legal bases.
  • Different rules
  1. CVS does not perform automated decision-making or profiling of individuals.
  2. CVS reserves the right to make additions or changes to the Privacy Policy by making available to Individuals on the website or on CVS premises in paper form.
  3. Previous versions of the Privacy Policy are maintained by CVS and are available on the CVS website.