Privacy Policy
https://www.kunista.com/ ensures that personal data are processed lawfully, fairly and transparently, collected only for the purposes set out and clearly defined in this Policy and are not further processed in a manner incompatible with those purposes.https://www.kunista.com/ ensures, through organisational and technical measures, adequate security of personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage.
1.1. Privacy Policy – these personal data processing rules and information on the use of cookies, which is placed on the website https://www.kunista.com/ 1.2. Website – the website located at https://www.kunista.com/, where website visitors can enter personal data for the purpose of payment for goods, fill in the contact form and give consent to the processing of personal data for the purpose of direct marketing.
Data controller – a legal or natural person who, alone or jointly with others, determines the purposes and means of the processing of personal data. For the purposes of this Privacy Policy, the data controller is UAB KUNISTA, company code: 304255389, VAT payer code: LT100010158712, registered office address: Skuodo g. 117, Bugenių k., LT-89452 Mažeikių r., e-mail address: info@kunista.lt, telephone number: +370 623 55702. The Data Controller shall ensure that the processing of data complies with the standards of the GDPR (General Data Protection Regulation) and that the rights of natural persons are protected.
- Data Subject – a website visitor whose personal data is processed by the Data Controller for direct marketing purposes.
- Processor – a natural or legal person who assists the Data Controller, within the scope of the powers conferred by the Data Controller, in the fulfilment of the stated purposes.
- Personal Data – data of a natural person processed by the Data Controller and from which a website visitor can be identified, including but not limited to: name, surname, e-mail address, telephone number, etc.
- Processing means any operation which is performed upon personal data, such as collecting, recording, recording, sorting, systematizing, storing, modifying (adding to or rectifying), disclosing, making available, making available, accessing, using, disclosing by transmission, dissemination or otherwise making available, combining with other data, erasing or any other operation or set of operations. Personal data shall be collected, used and stored: automatically, in digital form (e.g. in an information system, by means of video cameras, etc.); non-automatically, in a structured collection in paper form.
- Direct marketing means activities designed to offer goods and services, discounts and/or seek their opinion on the goods or services offered to persons by post, telephone or other direct means.
- Consent – a freely given act of the Data Subject by which he or she agrees to the processing of personal data.
- The supervisory authority is the State Inspectorate for Personal Data Protection.
2.1. The Policy provides for the main provisions of the collection, accumulation and processing of personal data.
2.2. A data subject shall be deemed to have read and become familiar with this Privacy Policy when he/she expresses his/her consent to the processing of his/her Personal Data.
2.3. This Privacy Policy is available at the website https://www.kunista.com/
3.1. By sending a contact request, the Data Subject expresses his/her consent to the processing of his/her personal data by the Data Controller:
- your name;
- the name of the company;
- email address;
- phone number;
- address.
3.2. By submitting his/her personal data, the website visitor confirms that it is accurate and complete.
3.3. The personal data of registered users obtained for this purpose shall be stored for a period of 3 (three) calendar years from the date of the contact form enquiry.
3.4. The data subject agrees to the processing by the Controller of the personal data provided in relation to him/her for the purpose of direct marketing..5 Personal data received for the purpose of direct marketing shall be stored for a period of 3 (three) calendar years from the date on which the data was provided.
3.6 The Data Controller confirms that the personal data is collected only directly from the Data Subject and is not collected from any other sources.
3.7 The Data Controller undertakes not to disclose the Personal Data processed to any third party, except for the following cases:
- if the Data Subject has consented to the disclosure of personal data,
- for order fulfilment or other services – for Data Processors providing delivery of goods or other services ordered by the Customer,
- to law enforcement authorities in accordance with legal requirements,
- if it is necessary to prevent or investigate criminal offences.
4.1. The Data Subject authorises the Data Controller to collect, manage, process and store personal data concerning him/her to the extent and for the purposes set out in this Privacy Policy.
4.2. The Data Subject may withdraw consent to the collection, processing and storage of personal data relating to him or her at any time, and may withdraw consent to the processing of personal data processed for direct marketing purposes without any further justification, by contacting the Data Controller in writing in one of the following ways:
- by post directly to Skuodo g. 117, Bugenių k., LT-89452 Mažeikių r.;
- by email to info@kunista.lt from the same email address you provided during registration.
4.3. The Data Controller shall, upon receipt of such a request from the Data Subject, immediately suspend the processing of the personal data and destroy the personal data relating to the Data Subject. The Data Controller shall have the right not to delete personal data from the server if it has a legitimate reason to store them, where it is necessary to ensure public order, the investigation, detection and prevention of crime, the protection of important economic and financial interests of the State, or the protection of the rights and freedoms of other persons.
4.4.The Data Subject, having duly identified himself/herself and having provided the Data Controller with a document confirming his/her identity, shall have the right to access his/her personal data by submitting a written request to the Data Controller in one of the following ways: by post or by delivering it directly to the following address: Skuodo g. 117, Bugenių k., LT-89452 Mažeikių r.
4.5. If another person wishes to have access to the Data Subject’s personal data, he or she must provide a notarised power of attorney, and the data shall only be provided to a lawyer upon presentation of a representation agreement and the purpose of the use of the data.
4.6. The Data Controller shall, upon receipt of a Data Subject’s request for access to the personal data processed, provide a response within 30 (thirty) calendar days from the date of receipt of the request. The reply shall indicate whether personal data relating to the Data Subject are processed and, if so, what personal data have been processed and to whom they have been provided during the last 1 (one) calendar year.
4.7.If, after consulting his/her personal data, the Data Subject establishes that the personal data have been collected or obtained from unlawful sources, or that the personal data are processed for purposes other than those for which the consent was given, the Data Subject shall have the right to apply to the Data Controller for suspension of the processing of the Personal Data and/or deletion of the Personal Data relating to him/her. The Data Controller shall verify the Data Subject’s request and, if it finds that the request is justified, shall comply with the Data Subject’s request without delay, but no later than within 5 days, and shall inform the Data Subject in writing of the action taken.
4.8. In the event that the Data Subject, after consulting his/her personal data, finds that it is inaccurate or incomplete, he/she shall request in writing that the personal data relating to him/her be rectified and/or completed. The Data Controller shall, after establishing that the request is justified, rectify or supplement the personal data processed without delay and shall inform the Data Subject in writing of the action taken no later than within 5 days.
4.9. The Data Subject shall have the right to request that the Data Controller “forget” him/her, namely, to erase all data relating to him/her, if those data are not required for the purpose for which they were collected and processed or if the Data Subject withdraws his/her consent, or if the data are being processed in violation of the requirements of the legislation. The Data Controller shall comply with such a request within a maximum period of 5 days and inform the Data Subject of the action taken.
4.10. If the data subject considers that his or her legitimate interests have been infringed as a result of the processing of his or her personal data, he or she shall have the right to contact the Supervisory Authority.
5.1. The Data Controller shall implement the following organisational and technical data protection measures to ensure adequate protection of Personal Data:
5.1.1. Organisational
5.1.1.1. The Data Controller shall organise its working procedures in such a way as to ensure the secure management of computer data and/or documents and their archives.
5.1.1.2. Only provide access to the Data Subject’s personal data to those Employees who need it to carry out their job functions and only those who have signed confidentiality agreements.
5.1.2. Technical
5.1.2.1. Processors (service providers) appointed by the Data Controller shall act only under the authority of the Data Controller.
5.1.2.2. Personal data is protected against loss and unauthorised use.
5.1.2.3. Protecting your computer hardware from malicious software (anti-virus installation, updates) and firewalling your internal network.
6.1. https://www.kunista.com/ website uses cookies for statistical purposes, to measure website traffic and the popularity of individual content. Such data processing does not allow direct identification of the website visitor.
6.2. Cookies ensure the authenticity/reliability of the data provided by website visitors. Cookies are also used to store individual visitor information about the features/services they have selected in order to remember previous user choices. The website processes third-party cookies that store users’ information in order to improve the effectiveness of their use of products on the website (for example, products from the Google company). Some of these cookies have a long shelf life and are designed to remain on your computer for as long as possible.
CATEGORIES:
| Required | “Strictly necessary” cookies are strictly required cookies to ensure the functionality of the website and the use of the functions or services offered by the website. |
| Functional | “Functional” cookies allow us to remember the data settings you have chosen on the website. For example, the visitor’s nickname, login information, language preferences and changes you have made to the website. They are necessary to ensure that individual feature preferences are available to different users. |
| Executive | “Execution” cookies allow us to update the settings of the website features to improve its effectiveness. They can also help to manage the high volume of visitors to a website by proportionately allocating its resources. |
| Applied / promotional | These cookies collect information about a website visitor’s browsing habits in order to target advertising traffic (both on your site and on other sites), to limit the number of advertisements shown and to help analyse the effectiveness of advertising campaigns. |
WEBSITE COOKIES:
| Name | Usage | Validity | Category |
| _RequestVerificationToken
PHPSESSID |
These cookies are necessary to ensure that the visitor can use the functionalities of the secure pages of the website (for example, filling in a contact form). All information collected is anonymous and is used to improve the functionality of the website. | Until the end of the session | Required |
| ai_user | This cookie collects information about how visitors to the website use the website’s resources. For example, which pages users visit most often, whether they receive error messages, etc. This cookie does not collect any information that would allow the visitor to be identified. All information collected is anonymous and is used to improve the functionality of the website. | Until the end of the session | Functional |
THIRD PARTY COOKIES:
“Google Analytics is a web analytics tool developed by Google. This tool helps you understand how the resources of the website you are visiting are being used. All information, including the IP address, is transmitted to Google and stored on their servers. The data controller uses this information to generate reports on the website’s traffic indicators, which help to improve the website’s performance. Cookies collect information anonymously.
| Name | Usage | Validity | Category |
| _gat
_gtag _gid _ga _lc.visitor_id.* |
These cookies are used to collect and analyse information about the usage habits of visitors to the website. For example, the number of visitors to the website, from which sources visitors were directed to the website, on which pages and for how long visitors have been browsing the website. The information collected is used to formulate analyses to help improve the use of the website. All information collected is anonymous and is used to improve the functionality of the website. | 1 year | Functional |
| PREF | This cookie stores the visitor’s identifying information. For example, the language of the page selected, the number of search results to be displayed on the page, the values of the options in the booking system, the fields to be filled in the contact form, etc. All the information collected is anonymous and is used to improve the functionality of the website. | 10 years after designation/renewal | Functional |
7.1. This Privacy Policy is effective and publicly available at https://www.kunista.com/privatumo-politika
