- KEY DEFINITIONS
- The Company or the Personal Data Controller – MB Iglo namelis, a private limited liability company established and operating under the laws of the Republic of Lithuania, whose legal entity code is 303327049, registered office address Kuosų g. 16-89, LT-91187 Klaipėda.
- Customer or data subject – an individual person – a customer of the Personal Data Controller (including website visitors) whose personal data is collected by the Personal Data Controller.
- Online Shop – the Company’s online shop at https://iglo.lt.
- Services – all services provided by the Company.
- Personal data – any information relating to an individual – Data Subject whose identity is known or can be established, directly or indirectly, by means of personal data, one or more personal, physical, physiological, economic, cultural or social data criteria.
- Processing of personal data means any operation carried out on personal data: collection, recording, storage, storage, classification, grouping, aggregation, modification (addition or correction), provision, publication, use, logical and/or arithmetic operations, retrieval, dissemination, destruction or other action or set of actions.
- Partner – a legal entity that provides services to the Personal Data Controller related to the activities performed by the Personal Data Controller or sells goods to it or carries out joint projects with the Personal Data Controller, including but not limited to marketing campaigns, joint sales campaigns, loyalty programs, etc.., in the media, websites, E-shop, retail stores, retail chains, etc.
- A cookie is a small piece of textual information automatically generated when you browse a website and stored on a visitor’s computer or another device.
- Direct Marketing – activities designed to offer by mail, telephone or other direct means, to individuals goods or services and/or seek their opinion on the goods or services offered.
- “Privacy Policy” means this document which sets out the principles for the processing of Personal Data and rules for the use of the services of the Online Shop.
- “Account” means the Customer’s basic login data to the Online Shop, which consists of a single e-mail address and a Password.
- Password means a unique numeric, alphabetic, or numeric and alphabetic or other character created by the Customer. A combination of letters, symbols, characters, symbols or other symbols, which can be used to log in to the Online Shop.
- GENERAL PROVISIONS
- The Customer grants the Personal Data Controller the right to perform all personal data processing activities to the extent and purposes provided for this Privacy Policy.
- Personal data is processed in accordance with the Law on Legal Protection of Personal Data of the Republic of Lithuania and other legal regulations governing the processing and protection of Personal Data acts, as well as this Privacy Policy.
- The controller of personal data processes personal data in accordance with the following principles:
- Personal data is collected for defined and legitimate purposes;
- Personal data is processed accurately, fairly and lawfully;
- Personal data shall be adequate and limited to what is necessary for their collection and further processing;
- Personal data is constantly updated;
- Personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the data were collected and for which they are processed;
- All information about Personal Data is confidential;
- Customer’s Personal Data and Personal Information will not be used for illegal purposes.
- The Customer is deemed to have read and agreed to the current version of the Privacy Policy when purchasing in the E-shop. If the Customer does not agree with any part of the Privacy Policy or the Privacy Policy, then the Customer must not place an order and do not purchase the goods in the E-shop.
- The Privacy Policy is available in the E-shop and can be printed out at any time. The Privacy Policy may be modified, supplemented or updated at the discretion of the Data Controller. The new version of the Privacy Policy is published in the E-shop.
- The Customer may place an order in the Online Shop without registering, or through his Account by registering in the Online Shop.
- During the initial registration to the Online Shop through the Account, the Customer must provide his/her email address and a secure password, and provide accurate Personal Data to the Online Shop. The Customer is responsible for the correctness of the data entered. Upon creation of an Account, the Customer is granted an Identification Code.
- When using the Services and making purchases in the Online Shop, the Customer shall always provide accurate Personal Data to the Online Shop and is responsible for its accuracy.
- The Customer shall have the right to change and amend the Personal Data in the Account at any time or to contact the Online Shop with a request to cancel the Account.
- The Customer must not disclose the Password to third parties and must keep it secure, otherwise the Customer shall be liable for all related liability.
- COLLECTION, USE, CORRECTION AND STORAGE OF PERSONAL DATA
- The controller respects each Customer’s right to privacy. Customer’s Personal data (i.e., name, surname, e-mail address, telephone number, delivery address of the product/service, age/year of birth, payment details of the product/service (bank account number, method of payment, etc.), purchase history, etc. also, with the consent of the Client, age, sex, date of birth, place of residence) are collected and processed for the following purposes:
- For the purpose of e-commerce. The following personal data is processed: name, surname, e-mail address, telephone number, delivery address of the product / service, age / year of birth, IP address, payment data of the product / service. The storage period of personal data used for the purpose of e-commerce is 5 (five) years from the last order.
- For direct marketing purposes. The following personal data is processed: name, surname, telephone number, e-mail address, address, age, gender, date of birth, place of residence. The storage period of personal data used for the purpose of Direct Marketing is 5 (five) years from the last order.
- The Customer may consent to the processing of his / her Personal Data (name, surname, telephone number, e-mail address, address, age, gender, date of birth, place of residence) for the purpose of Direct Marketing. If, after consenting to the processing of his / her data for the purpose of Direct Marketing, as well as receiving Direct Marketing notifications, the Customer no longer considers it and informs the Data Controller, the Data Controller will no longer process his / her Personal Data for the purpose of Direct Marketing and will not send the Customer any electronic news, except for the information related to the Customer’s order.
- The Customer has the right to revoke his consent (as stated in 3.2) to the Personal Data Controller to process the Customer’s Personal Data for the purpose of Direct Marketing at any time by notifying the Personal Data Controller by e-mail info@iglo.lt and does not wish to receive any Direct marketing messages.
- The Customer also has the possibility to refuse to exercise his/her right to object to the processing of the Customer’s Personal Data for the purpose of Direct Marketing by clicking on the relevant link contained in each email sent.
- The Customer, as a Data Subject, has the following rights related to the processing of the Customer’s Personal Data:
- to receive information from the Personal Data Controller about the processing of the Customer’s Personal Data, to get acquainted with his / her Personal Data and how they are processed;
- to receive information from the Personal Data Controller from which sources and which personal data of the Customer have been collected, for what purpose they are processed, to which data recipients they have been provided and have been provided at least during the last 1 (one) year;
- to demand the correction, destruction of the Customer’s Personal Data or the suspension, except for storage, of the processing of its Personal Data when the Personal Data is processed in violation of the provisions of the Law on Legal Protection of Personal Data of the Republic of Lithuania and other laws.
- In order to place his rights, the Customer must present a passport, identity card or driver’s license. The controller of personal data shall provide the Data Subject with information on the processing of the Personal Data of the Data Subject once a year free of charge. The Client, placing his rights provided for in Clause 3.5, may contact Personal Data Controller by e-mail info@iglo.lt
- The Customer’s Personal Data is not provided to third parties, except in the following cases:
- When Customer’s consent is obtained as set forth in this Privacy Policy;
- Personal data for the purposes of e-commerce is provided to Partners providing services to the Personal Data Controller related to the activities performed by the Personal Data Controller;
- To the competent authorities in the cases provided for by the laws and legal acts of the Republic of Lithuania.
- In the E-shop, payments are processed using the makecommerce.lt platform, the manager of which is Maksekeskus AS (Niine str 11 Talinn 10414, Estonia reg. No.: 12268475), therefore your personal information required for payment execution and confirmation will be transferred to Maksekeskus AS.
- To delivery carriers, for clarification.
- The Customer is aware of his right to object to the processing of his Personal Data for the purpose of Direct Marketing, meaning, that The Customer has the right to express disagreement immediately.
- The Customer agrees that his / her Personal Data will be transferred to the Partners by fulfilling the Customer’s order placed in the E-shop, as well as by providing the Services to the Customer by the Personal Data Controller, as well as to the Partners of the Personal Data Controller as specified in 3.7. points.
- If the Customer does not agree with the Privacy Policy, the Customer will not be able to use the services of the E-Shop.
- The controller of personal data shall implement organizational and technical measures to protect the personal data from accidental or unlawful destruction, alteration, disclosure, as well as from any other unlawful processing.
- The Client agrees that in cases where it is necessary according to the instructions of the competent authorities and / or the Client’s Personal Data may have been used for illegal activities, or there are reasonable suspicions of identity theft, which are subject to pre-trial investigation by the competent law enforcement authorities, or other legitimate grounds or purposes, its Personal Data will be stored on the Personal Data Controller’s servers for longer than specified in this Privacy Policy.
- Upon receipt of an instruction or inquiry of the Data Subject related to the processing of Personal Data, the Personal Data Controller shall provide a response to the Customer, satisfying the request / instruction or refusing to do so, no later than within 30 (thirty) calendar days from the date of the Data Subject.
- For the Personal Data Controller to offer full-fledged services to the Customer in the E-shop, the information Cookies are stored on the Customer’s computer (device) with the Customer’s consent which are used to identify the Customer as a previous user of the E-shop when collecting E-shop traffic statistics, information about the shopping cart. The Customer may at any time review which Cookies are being stored and may delete some or all the Cookies entered.
- To learn more about cookies, such as how to manage or delete them, you can visit www.allaboutcookies.org.
- The controller respects each Customer’s right to privacy. Customer’s Personal data (i.e., name, surname, e-mail address, telephone number, delivery address of the product/service, age/year of birth, payment details of the product/service (bank account number, method of payment, etc.), purchase history, etc. also, with the consent of the Client, age, sex, date of birth, place of residence) are collected and processed for the following purposes:
Cookies used
Cookie management
Updated on June 15, 2022.