1. General provisions
1.1. Fleksneta UAB (hereinafter referred to as the “Company”) respects the right to privacy of all purchasers of its services, potential customers (who have tried its services but have not become customers), and all visitors of wallbox24.lt website (hereinafter referred to as the “Website”) (hereinafter referred to as the “Customers”), and undertakes to ensure the protection of the personal data provided and received. The Company is also concerned about ensuring the rights of its customers as data subjects.
2. What terms are used?
2.1. Personal data means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, a personal identification number, location data and an online identifier, or to one or more factors specific to the natural person’s physical, physiological, genetic, mental, economic, cultural or social identity.
2.2. Data Subject – a natural person – a customer of the Company (including visitors to the Website) whose personal data is collected by the Company.
2.3. Consent of the data subject means any freely given, specific and unambiguous indication of the data subject’s wishes, by means of a statement or an unambiguous action, by which he or she freely consents to the processing of personal data concerning him or her.
2.4. ‘Processing’ means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, sorting, organisation, storage, adaptation or alteration, retrieval, access, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination with other data, restriction, erasure or destruction.
2.5. “Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Data Controller.
2.6. Data Controller – UAB “Fleksneta”, a company operating and established under the laws of the Republic of Lithuania, code 300026578, registered at V.A Graičiūno g. 2A Vilnius, Republic of Lithuania, the data about which are collected and stored in the Register of Legal Entities.
2.7. Direct Marketing – activities designed to contact the Customer by post, telephone or other direct means to offer goods or services and/or to seek their opinion on the goods or services offered, including by automated means.3. Which cookies we use and how we use them
3.1. What is a cookie – small files that are sent to a user’s web browser and placed on the browsers’ computers or other devices when they first visit a website. Subsequently, cookies are used on the website to ensure the best possible use of the website for the user, by identifying the user’s computer and facilitating access to the website or the information contained therein, thus making the content of the website as user-friendly as possible.
3.2. These cookies are used on the Website, as well as on the Company’s related systems designed to provide a proper and quality service to the Customer.
4. What personal data do we collect?
4.1. The Company collects and subsequently processes the Customer’s personal data provided by you when using and ordering services on the Website or otherwise: name, surname, personal identification number (not required), address, e-mail address, e-mail address and other data. postal address, telephone number, and other data relevant to the specifics of the service order. We note that you additionally provide data on your own initiative when registering and/or ordering and managing the services provided by the Company.
4.2. The personal data specified by the Customer shall be stored for the period of cooperation between the Company and the Customer (during the provision of services) and for 10 (ten) years from the end of this period. Data may be retained for a shorter period of time if there is no legal justification for this.
5. For what purposes and how do we process personal data?
5.1. The processing of data held by the Company about the Customer will be carried out in a lawful, fair and transparent manner (the principle of lawfulness, fairness and transparency).
5.2. The Company processes the above personal data of the Customer for the purpose of processing and administering the purchase/order of services, for the processing of accounting documents related to the order of services, for the purpose of contacting you for the fulfilment of contractual obligations, for the purpose of direct marketing (with the prior consent of the data subject).
5.3. We ensure that the Customer’s personal data is and will be processed in a lawful, fair and transparent manner, collected for specified, explicit and legitimate purposes and not further processed in a manner incompatible with those purposes, adequate, relevant and only as necessary to achieve the purposes for which it is processed, accurate and, where necessary, kept up to date, processed in such a way as to ensure, through appropriate technical and organisational measures, adequate security of personal data, including protection against unauthorised or unlawful processing of Data and against accidental loss, destruction or damage (principle of integrity and confidentiality).
6. What data subject rights do you have?
6.1. The Client has the right to withdraw his/her consent at any time. Withdrawal of consent shall not affect the lawfulness of processing based on consent carried out before the withdrawal of consent. The data subject shall be informed of this before consent is given. Withdrawing consent is as easy as giving it.
6.2. You have data subject rights, which we will enforce upon receipt of a request from the Customer by registered mail to V.A Graičiūno g. 2A Vilnius LT 02241 and after you have duly confirmed your identity. The Client shall have the right to have access to his/her personal data and how it is processed, to request the rectification of inaccurate personal data relating to the Client, as well as to request that incomplete personal data relating to the Client be supplemented.
6.3. The Client shall have the right to require the Company to erase the personal data relating to the Client if the personal data is no longer necessary for the purposes for which it was collected or otherwise processed; the consent is withdrawn and there is no other legal basis for the processing of the Client’s personal data; the processing of the personal data has been carried out unlawfully; or for any other reasons set out in the Regulation; require the Company to restrict the processing of the Client’s personal data; obtain the Client’s personal data relating to the Client, which the Client has provided to the Company in a structured, commonly used and computer-readable format; and the Client has the right to ask the Company to transfer the personal data to another controller; object to the processing of the personal data relating to the Client (e.g., for direct marketing or other).
7. How we process personal data for direct marketing purposes
7.1. The Company will only contact the Client with the Client’s prior consent and in accordance with the provisions of the EIR, the GDPR and the Regulation. We will send the Company’s newsletters to. by email or phone, and/or enquire about the quality of existing services and other related issues.
7.2. We process the following personal data of the Customer for the purpose of direct marketing: name, email address, telephone number.
7.3. The Customer’s personal data for the purpose of direct marketing is stored until the Customer opts-out of receiving direct marketing communications (such opt-out link is provided at the bottom of each mailing).
8. Who we provide personal data to
8.1. Access to the Client’s personal data by the Company’s employees shall be granted only if necessary for the performance of their duties and only after the employee has undertaken to respect the confidentiality requirement.
8.2. The Company may provide the Client’s personal data to data processors who provide services to the Company and process the Client’s personal data on behalf of the Company and for the benefit of the Company or the Client, to law enforcement authorities where there is a legal basis for doing so, and to other third parties with the Client’s consent. Such processors shall have the right to process the Customer’s personal data only on the instructions of the Company.
8.3. Personal data may also be provided in response to official requests from public authorities and the courts, but only after the lawfulness of these requests has been verified.