Privacy Policy

1. Introduction

SIA "GEMEIA", Reg. No.: LV40003834909 (hereinafter - the Controller), on the website gemeia.lv (hereinafter - the Website) carries out the processing of personal data obtained from the data subject - the Website user (hereinafter - the User). The Controller cares about the User's privacy and the protection of personal data and respects Users' rights to the lawful processing of personal data in accordance with the applicable legislation - Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter - the Regulation) and other applicable legislation in the field of privacy and data processing. In view of the above, the Controller has drawn up this privacy policy in order to provide the User with the information stipulated by the Regulation. 

The privacy policy applies to data processing regardless of the form and/or environment in which the User provides personal data (on the Website, in paper format, in person, or by telephone). The Controller reserves the right to change these terms at any time. 

It is the Website visitor's responsibility to independently review the Website content in order to be aware of any changes to the terms.

2. Identity and contact information of the Controller

Controller: SIA "GEMEIA"

Reg. No.: LV40003834909

Controller's address: Jelgavas nov., Cenu pag., Cena, "Spārītes", LV-3018

Website: gemeia.lv

E-mail:gemeia@gemeia.lv

Phone: +371 25669929

3. Purposes of processing personal data and the legal basis for processing

If the User submits their personal data to the Controller - by telephone, using the Website contact forms, e-mail or other types of mail - we store and use this information in order to perform or conclude the relevant service provision contract, including for: identifying the client; preparing and concluding the contract; providing services (fulfilling contractual obligations); customer service; reviewing and handling objections; increasing customer loyalty; administering payments and settlements; debt recovery and collection; proving facts; maintaining and improving the operation of the website; business planning and analytics; and planning and record-keeping. We will also process this data to provide information to public administration authorities and operational activity entities in the cases and to the extent stipulated by external regulatory enactments. The legal bases for data processing are: the conclusion and performance of a contract; compliance with regulatory enactments; the consent of the Client - the data subject; and our lawful (legitimate) interests (for example, to verify the Client's identity before concluding a contract; to ensure the fulfilment of contractual obligations; to analyse how the website is used and to ensure the efficiency of service provision, etc.).

4. Categories of personal data

Categories of personal data - first name, surname, personal identity code, e-mail or postal address, IP address, telephone number, the content of a message or letter, etc.

5. Categories of personal data recipients

Data is disclosed to those employees of the Controller who need it to perform their direct duties in order to fulfil or conclude the relevant service provision contract. In obtaining and using personal data, we partly use the services of external service providers who, under contract, strictly follow our instructions and whom we monitor continuously both before and throughout the use of the service.

6. Categories of data subjects

Categories of data subjects - the Controller's current, former and potential clients, as well as other persons who express a wish to contact the Controller.

7. Transfer of data outside Latvia

There is no plan to transfer the received data outside Latvia, the European Union or the European Economic Area, nor will it be transferred to any international organisation. At the same time, given that the Website is linked to Google and Facebook services, the Controller cannot guarantee that these companies will not transfer data outside the European Union or the European Economic Area.

8. Data storage period

We process and store the User's personal data for as long as either party has a legal obligation to store the data.

Once the aforementioned circumstances cease, and unless otherwise stated in the data protection instructions, we delete the personal data no later than three months after the original reason for retaining the data is no longer valid, except in cases where we have a legal obligation to continue storing this data (for example, but not limited to, for accounting or litigation purposes).

9. Data subject's access to personal data

The data subject has the right to receive access to the data subject's personal data within one month of the day of submitting the relevant request.

The User may submit a request to exercise their rights in written form in person at the Controller's registered address (presenting an identity document), by post, or by e-mail, signing with a secure electronic signature;

Upon receiving the User's request to exercise their rights, the Controller verifies the User's identity, assesses the request and fulfils it in accordance with the regulatory enactments. The User has the right to receive the information stipulated by regulatory enactments in connection with the processing of their data, the right to request access to their personal data, as well as to request the Controller to supplement, correct or delete it, restrict its processing, or the right to object to the processing, insofar as these rights do not conflict with the purpose of the data processing (the conclusion or performance of contracts).

The data subject does not have the right to receive information if the disclosure of this information is prohibited by law in the field of national security, national defence, public security, criminal law, as well as for the purpose of safeguarding the State's financial interests in tax matters or the supervision of financial market participants and macroeconomic analysis.

10. Processing of cookies

Data about Website visitors is collected on the Website, giving the Website operator the opportunity to assess how useful the Website is and how it could be improved. The Controller continuously improves the Website with the aim of enhancing its usability, and therefore the Controller needs to know what information is important to Website visitors, how often they visit the Website, which devices and browsers they use, which region visitors come from, and what content they most enjoy reading. The Controller uses the Google Analytics system, which allows the Controller to analyse how visitors use the Website. You can learn about the basic principles of how Google Analytics works on the Google website at https://support.google.com/analytics/answer/1012034?hl=lten&ref_topic=6157800. The Controller uses the collected data in its legitimate interests to improve its understanding of the needs of Website visitors and to improve the accessibility of information published by the Controller. A visitor can stop data collection by Google Analytics at any time, as described here: https://tools.google.com/dlpage/gaoptout/.

The server on which the Website is hosted may record the requests sent by a visitor (device used, browser, IP address, date and time of access). The data referred to in this point is used for technical purposes: to ensure the proper functioning and security of the Website and to investigate possible security incidents. The basis for collecting the data referred to in this point is the Controller's legitimate interest in ensuring the technical availability and integrity of the Website.

Cookies are small files that, each time a visitor visits the Website, the browser stores on the visitor's computer to the extent specified in the settings of the visitor's computer browser. Certain cookies are used to select and tailor the information and advertisements offered to the visitor based on the content the visitor has viewed previously, thereby making the visitor's use of the Website simple, convenient and individually tailored. Additional information about cookies, as well as how to delete and manage them, can be obtained at www.aboutcookies.org

The Website uses cookies to collect users' IP addresses and browsing information and to allow the Website to remember the visitor's choices. Cookies allow the Controller to track the Website's data flow and users' interaction with the Website - the Controller uses this data to analyse visitor behaviour and improve the Website. The legal basis for the use of cookies is the Controller's legitimate interest in ensuring the functionality, availability and integrity of the Website.

A visitor can control and/or delete cookies as they choose. More information about this process is available here www.aboutcookies.org. A visitor can delete all cookies that are on their computer, and most browsers can be set to block cookies from being placed on the computer. A visitor can decline cookies in the browser menu or at https://tools.google.com/dlpage/gaoptout. To make the necessary settings, the visitor needs to familiarise themselves with the terms of their browser. If cookies are blocked, the visitor will have to manually adjust the settings each time the Website is visited, and there is also a possibility that some services and functions will not work.

Only those employees of the Controller who are responsible for analysing such data may access statistical data about Website visitors.

Unless otherwise specified, cookies are stored while the action for which they were collected is being performed, and are then deleted.

If a forum or comments feature has been provided on the Controller's Website, in such a case the IP address, as well as the data specified by the visitor themselves, are stored on the Website. For your convenience (so that you do not have to type it in again next time), cookies containing this data may be stored for one year.

11. Third-party websites

We may cooperate with third parties who are authorised to place third-party cookies on our websites, or in our services, applications and tools, with your consent. These service providers enable us to give you a better, faster and more secure Website experience. Please note that third-party cookies are subject to the third parties' privacy policies, so we accept no responsibility for these privacy policies.

The "Facebook pixel" tool is installed on the Website. The purpose of using this tool is to tailor content and advertisements to Facebook users. To learn more about Facebook's privacy policy, click here https://www.facebook.com/about/privacy/. You can also change the advertising settings in your Facebook profile.

12. The right to lodge a complaint with a supervisory authority

The data subject has the right to lodge a complaint with the supervisory authority (the Data State Inspectorate). The Data State Inspectorate accepts documents by post, by e-mail (documents signed with a secure electronic signature), and they can also be left in the ground-floor mailbox at Blaumaņa iela 11/13, Riga. The Data State Inspectorate accepts e-mail sent to the e-mail address info@dvi.gov.lv.

13. Validity of the privacy policy

We reserve the right to change and supplement the content of this privacy policy from time to time in order to clarify the description of how we process your data. In view of the above, we encourage you to review this privacy policy regularly so that you are aware of how your personal data is processed on the Website.