1. Controller of processing of personal data: LLC “NERE E ”, reg. No. 40003868642, legal address: Riga, Meistaru Street 10, LV-1050 (hereinafter also – NERE E )
2. Applicable legislation: the Personal Data Protection Law, the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and other applicable laws in the area of privacy and data processing.
4. What purposes the User's data is acquired for?
The User's personal data and any other information is acquired in order to: • offer and provide appropriate services, supervise transactions and protect Users from unlawful or harmful direct or indirect, intentional or unintentional acts by persons while processing information and data at disposal of the respective persons; • to process all requests for information by the User; • to fulfil the obligations of NERE E under regulatory documents; • to
provide the User with support services; • to carry out research, surveys and analysis of customers; • to provide the User with information on offers, products and services of NERE E, if the User has given its consent for receipt of such information.
5. What User's data is processed by NERE E?
Name, surname, personal identity number/date of birth, correspondence address, phone number and e-mail address; Bank details, if such are provided; Data, which the Customer notifies to NERE E itself; User's IP address; Cookies (website browsing data); Other personal data, depending on the type of service provided to the Customer.
This information is stored on servers of NERE E, located in secure infrastructure. When the User uses NERE E services, servers of NERE E maintain a unique journal of activities for the User's
safety, which stores a certain administrative and data flow information, including: • IP addresses; • access time; • access dates; • previously visited pages; • used language; • report on software errors according to used browser program. This information is important to ensure quality of provided services. Personal information is not obtained without the User's consent. User data will not be transferred to countries outside the European Union or the European Economic Area; however, if such necessity will occur, the User's data may be transferred only to countries that guarantee the same level of protection of personal data as required in the European Union.
6. What means are used by NERE E for acquisition and processing of data?
7. What are the bases for processing of User personal data?
User's consent – the User as a data subject, completes an application and/or contact form, thus giving consent for acquisition and processing of personal data for specific purposes. The User agrees to processing of personal data for direct marketing purposes, enabling NERE E to offer new and individual services (this consent may be withdrawn by the User).
The User's consent comprises his/her free will and independent decision, and it may be given at any moment, thus allowing NERE E to process personal data for the specific purposes. The User's consent is binding upon the User, if given directly and explicitly. The User is entitled to withdraw its previously given consent at any moment, using the specified communication
channels of NERE E. The applied changes will come into force within three working days. The consent withdrawal shall not affect the lawfulness of data processing done on the basis of the consent before such withdrawal.
Fulfilment of legal obligations – NERE E is entitled to process personal data for the purpose of fulfilling requirements of regulatory enactments and responding to lawful requests of public and municipal authorities.
8. Exceptions to disclosure of User data
NERE E is entitled to disclose personal data only in the instances stipulated by regulatory enactments.
9. What are cookies?
Cookies are small text files, stored by our website on your computer or mobile device, when you visit our website. At any subsequent visit of our website the cookies are sent back to the website of origin or third-party website, which recognizes the respective cookie. In addition, cookies enable the website to remember settings selected by the User during previous visits,
If the User wants to delete all cookies stored on his/her computer or terminate cookies that follow activities of the User on the website, the User can do it by deleting the existing cookies and/or changing confidentiality settings of the web browser to block cookies (this process differs among various browsers). More information on how to do it is available on the website www.allaboutcookies.org.
10. Duration of storage of User personal data
NERE E will process the User's personal data as long as at least one of the following conditions is effective: a) while the User uses the provided service; b) the term for storage of personal data is determined by or arises from regulatory enactments of the Republic of Latvia or the European Union; c) to the extent necessary for implementation and protection of legitimate interests of NERE E; d) as long as the User's consent for processing of personal data is not withdrawn.
11. What are security conditions?
When using services of NERE E or contacting NERE E, the User agrees to NERE E terms and conditions of provision of services. NERE E ensures, revises and improves protection measures on regular basis to protect the User's personal data from unauthorized access, accidental loss, disclosure or destruction of data. To do so, NERE E applies modern technology, technical and organisational requirements, also using firewalls, intrusion detection and analysis software and data encryption. NERE E carefully checks all service providers that process the User's personal data on behalf and upon the order of NERE E, and assesses, whether cooperation partners (processors of personal data) implement appropriate security measures to ensure that processing of the User's personal data is implemented according to delegation by NERE E and requirements of regulatory enactments.
Cooperation partners are not allowed to process the personal data at disposal of NERE E for own purposes. NERE E does not assume any liability for any unauthorized access to personal data and/or loss of personal data, if it is not dependent on NERE E, for example, when the User has disclosed own personal data to third parties himself/herself. In the case of any threats to the User's personal data, NERE E will notify the User. NERE E also undertakes to notify the relevant authorities and involved natural persons about information/data processing security incidents or possible incidents without unjustified delay within 72 hours after such violation becomes known to NERE E, as stipulated by applicable regulatory enactments and/or laws of the European Union, except the instances, when according to the principle of accountability NERE E is able to prove, that the personal data protection violation, most likely, does not pose any risks to rights and freedoms of natural persons. NERE E stores all personal information received from the User in a protected database, encrypting some of the data and ensuring that connection to the database is protected.
13. What are the User's rights?
To address NERE E and receive a copy of personal data at disposal of NERE E. To rectify all personal data at disposal of NERE E on the User, and receive information about natural or legal persons that have received information on the User in a specific period of time. NERE E will not issue to the User any information about public institutions that manage criminal proceedings, subjects of operational activities or any other institutions, where disclosure of such data is forbidden by the law. To request deletion or limit processing of personal data, processing of which is not required anymore for the purposes this data was acquired (the right “to be forgotten”). The User has the right for portability of own personal data. To address NERE E or the personal data supervisory institution (Data State Inspectorate, www.dvi.gov.lv) in relation to issues concerning processing of personal data.
The e-mail address firstname.lastname@example.org can be used for communication with NERE E
All information security system questions and information/ data security questions that are not discussed in this Policy shall be addressed to NERE E (67780577 and email@example.com)