1. GENERAL INFORMATION
This Privacy Policy explains how MB “South Baltic”, a private limited liability company established and operating under the laws of the Republic of Lithuania, having its registered office at V. Nageviciaus str. 3, Vilnius, company code 305634730 (hereinafter – the “Data Controller”), collects and processes personal data of website visitors.
The Data Controller ensures that personal data are processed in compliance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR), the Law on Legal Protection of Personal Data of the Republic of Lithuania, and other applicable legal requirements, as well as in accordance with the guidelines of competent supervisory authorities.
All appropriate technical and organizational security measures are implemented to safeguard personal data against accidental or unlawful destruction, alteration, disclosure, loss, or unauthorized access.
2. WHAT PERSONAL DATA DO WE COLLECT?
We may collect and process the following categories of personal data:
- Identification data: your name;
- Contact details: e-mail address and phone number;
- Content of communication: information voluntarily provided by you in the inquiry form (e.g. the “Send a message” field).
- Technical information: cookies and similar technologies (see Section 5 below).
3. PURPOSES AND LEGAL BASES OF PROCESSING
Your personal data are processed for the following purposes and on the following legal bases:
- Responding to inquiries submitted through the contact form.
- Legal basis: Article 6(1)(b) GDPR – processing is necessary for the performance of a contract or in order to take steps at your request prior to entering into a contract.
- Providing information about services offered on Eworks.lt.
- Legal basis: Article 6(1)(a) GDPR – processing is based on your consent.
- Ensuring website functionality and security through cookies.
- Legal basis: Article 6(1)(f) GDPR – processing is based on the Data Controller’s legitimate interest to ensure the secure and effective operation of the website. Where cookies are not strictly necessary, Article 6(1)(a) GDPR applies – your consent.
4. DATA RETENTION
Personal data are retained only for as long as necessary to achieve the purposes for which they were collected, unless a longer retention period is required by law:
- Data provided in inquiries are retained for up to 1 (one) year after the inquiry is resolved, unless you enter into a contractual relationship with us;
- Data processed on the basis of consent are retained until such consent is withdrawn;
- Cookie data are retained for the duration indicated in the cookie settings.
5. COOKIES
Cookies are small text files stored on your device when you browse our website. They enable the website to function properly and allow us to improve user experience.
Types of cookies used:
- Strictly necessary cookies – required for the proper functioning of the website;
- Analytical/Performance cookies – help us understand how visitors use the website (used only with your consent).
Any data collected via cookies are stored only until their expiry date and are not used for purposes other than those specified herein.
6. DISCLOSURE OF PERSONAL DATA
We do not transfer your personal data to third parties, except in the following cases:
- To competent public authorities and law enforcement bodies, where disclosure is required by law;
- To trusted service providers who process personal data on our behalf and under our instructions, subject to appropriate confidentiality and data protection obligations.
7. YOUR RIGHTS AS A DATA SUBJECT
Under the GDPR, you have the following rights:
- Right of access – to obtain confirmation whether we process your personal data and to receive a copy of such data;
- Right to rectification – to have inaccurate or incomplete personal data corrected;
- Right to erasure – to request deletion of your personal data where there are legal grounds;
- Right to restriction of processing – to limit processing in certain cases;
- Right to data portability – to receive your personal data in a structured, commonly used, and machine-readable format;
- Right to object – to object to processing carried out on the basis of legitimate interests or direct marketing;
- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
To exercise your rights, please contact us by e-mail: info@eworks.lt.
If you believe your rights have been infringed, you also have the right to lodge a complaint with the State Data Protection Inspectorate of the Republic of Lithuania (www.vdai.lrv.lt) or with a supervisory authority in your Member State of residence.
8. THIRD-PARTY WEBSITES
Our website may contain links to third-party websites. The Data Controller is not responsible for the content, terms of use, or privacy practices of such websites. We encourage you to review the privacy policies of those websites separately.
9. AMENDMENTS TO THIS PRIVACY POLICY
The Data Controller reserves the right to amend or supplement this Privacy Policy at any time. Updates will be published on the website Eworks.lt in the Privacy Policy section.
