LODE SIA has committed to safeguarding the privacy of individuals — data subjects, based on the Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 concerning the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, and in compliance with other laws and regulations governing privacy and personal data processing.
The Privacy Policy of LODE SIA applies to data processing irrespective of the format and/or environment in which the data subject provides personal data (on websites maintained by LODE SIA, in paper format, or electronically) and the systems or paper format in which it is processed by LODE SIA.
Personal data controller
LODE SIA, reg. No. 50003032071, registered address: “Lode”, Liepas pagasts, Cēsu novads, LV-4128. For data processing inquiries, contact us by email at info@lode.lv
Legal basis for processing clients’ personal data
LODE SIA processes the personal data of the data subject based on the following purposes:
- in order to conduct commercial activities;
- for product sales;
- to fulfill a contract concluded with the data subject;
- to provide service to the data subject;
- on the grounds of data subject’s consent;
- for other lawful (legitimate) purposes/interests;
- Protection of property of LODE SIA — video surveillance is performed to protect the property of LODE SIA, to ensure the safety of individuals entering the site, to prevent potential violations of law, and to document any criminal acts. Video surveillance is implemented at both LODE SIA production plants and surrounding areas. The video surveillance data are stored for a maximum of 30 days. After this period, LODE SIA guarantees complete erasure of the data, provided that the data has not been requested beforehand or no criminal activities or other security breaches have been identified. If the data have been previously requested by competent state authorities or security breaches have been identified, the data will be retained as necessary.
Legitimate interests of LODE SIA are:
- verify the data subject’s identity before concluding a contract;
- ensure fulfillment of contractual obligations;
- manage the data subject’s purchases, payments, and orders;
- compliance with mandatory legal requirements.
What data of the data subject are processed by LODE SIA and in what way?
- Identification details — first name, surname, identity number, date of birth;
- Contact information — residential address, delivery address, phone number, email address;
- Financial details — bank account details;
- data that the data subject discloses or transfers to LODE SIA (e. g., email address on the website for receiving a reply; video image of the data subject within the video surveillance area of LODE SIA production plant).
This information is important to ensure the quality of the service and legal (legitimate) purposes/interests. Personal information is not collected without the data subject’s consent, except in cases specified by law where the data subject’s consent is not required. The data of data subjects are not transferred outside the European Union or the European Economic Area countries.
LODE SIA does not disclose the personal data of the data subject to third parties, except:
- if the data need to be transferred to a third party under the terms of a contract (e. g., goods delivery);
- where the data subject has given clear and unequivocal consent;
- to state institutions on the basis of a justified request in accordance with the procedures and scope specified in regulatory acts (e. g., video surveillance data to the police);
- in the cases specified by the regulatory acts for the protection of the legal (legitimate) purposes/interests of LODE SIA.
Information about data subjects’ personal data is stored in databases and servers of LODE SIA, which are housed within a secure infrastructure and contain specific administrative and data flow information regarding the data subject.
What methods does LODE SIA use to collect and process personal data of data subjects?
LODE SIA can obtain personal data that the data subject specifies or submits using LODE SIA services, including via the LODE SIA website.
LODE SIA can engage service providers to ensure organizational and technical support in processing the data subject’s information.
LODE SIA uses cookies on its website. Cookies are small text files that your browser (e. g., Google Chrome, Microsoft Edge, and others) saves on your device (e. g., computer, mobile phone, tablet) during browsing. They are widely used to enable websites to function or to function more effectively and efficiently, and sometimes for obtaining statistical information about the data subject and their activities on the site.
Cookies essentially serve as an Internet user’s identification card, supplying a website with information upon each subsequent visit. They perform a range of functions, including storing previous searches, language and font size preferences, and enabling easy navigation throughout the site by remembering user habits and preferences, thereby enhancing the overall website experience.
Cookies on the website maintained by LODE SIA are used for user convenience, full functionality, and statistical purposes. The data subject can always reject the storage of cookies on their computer by changing the relevant settings in the Internet browser. However, in such a case, the data subject will not be able to fully use all the features of the website. If the data subject visits the LODE SIA website without any restrictions on cookie storage or with undeleted cookies, it is considered that the data subject agrees to the use of cookies.
For detailed information about the cookies used by LODE SIA, you can refer to the LODE SIA Cookie Policy at www.lode.lv/sikdatnu-politika/.
Retention period of personal data of data subjects
LODE SIA processes personal data of the data subject as long as at least one of the following criteria is met:
- the data subject uses a service/acquires a product;
- in accordance with the realization and protection of the legal (legitimate) purposes/interests of LODE SIA;
- the consent of the Data Subject for the processing of personal data has not been withdrawn;
- the retention period for personal data is determined by the regulations of LODE SIA, the Republic of Latvia, or the European Union.
What are the security conditions?
LODE SIA shall endeavor, to the extent possible, to maintain, continuously review, and enhance security measures to safeguard the personal data of data subjects from unauthorized access, accidental loss, disclosure, or destruction. LODE SIA employs modern technologies, technical and organizational requirements, such as firewalls, intrusion detection, analysis software, and data encryption.
LODE SIA thoroughly reviews all service providers processing the personal data of data subjects on behalf of LODE SIA, and evaluates whether the partners (personal data processors) implement relevant security measures to ensure data processing is conducted in line with LODE SIA instructions and regulatory requirements.
LODE SIA assumes no liability for unauthorized access to, or loss of, personal data when it is beyond control of LODE SIA, such as when a data subject has disclosed their personal data to third parties.
LODE SIA will report information/data processing security incidents without undue delay, within 72 hours of becoming aware of the breach, to the authorities and affected individuals, as mandated by the legislation of the Republic of Latvia and/or the European Union, unless, under the accountability principle, LODE SIA can clearly demonstrate that the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons.
LODE SIA ensures compliance with personal data processing and protection requirements according to the laws and regulations of the Republic of Latvia and/or the European Union.
What rights does a data subject have?
- Contact LODE SIA to receive a copy of the personal data that LODE SIA holds.
- Edit all personal data held by LODE SIA about yourself.
- To obtain information regarding those individuals or entities that have, within a specified timeframe, received information about the data subject from LODE SIA. LODE SIA will not disclose information to the data subject concerning state authorities (such as bodies directing criminal proceeding, operational activity entities, or other organizations) and in other instances where disclosure is prohibited by law.
- Request the deletion or limitation of the processing of personal data, the processing of which is no longer required for the purposes for which it was collected and processed (“right to be forgotten”), and whose deletion or limitation is allowed by the laws and regulations of the Republic of Latvia and/or the European Union.
- The data subject has the right to the transferability of their personal data.
You can contact LODE SIA or the supervisory authority for personal data processing (Data State Inspectorate, www.dvi.gov.lv) with questions about personal data processing. Any issues related to the information security system and the security of information/data processing not outlined in this policy should be directed to LODE SIA (67378020, email: info@lode.lv)