UAB “Aradas” is concerned about the protection of your information and therefore, in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter – GDPR), the provisions of the Law on the Legal Protection of Personal Data of the Republic of Lithuania (hereinafter – LPPD), as well as with the provisions of other laws relating to the protection of personal data, the company has drawn up the present privacy policy, which defines the manner in which we collect, use, and protect your personal data.

  1. Terms used in the Privacy Policy
    1. 1.1. Privacy Policy – this privacy policy available on the website: https://www.aradas.lt/
    2. 1.2. Website – in this Privacy policy is understood as https://www.aradas.lt/
    3. 1.3. The Controller – “Aradas” UAB, legal entity code 301818042, address Gamybos st. 12, Alytus, email: info@aradas.lt, phone No. +370 315 58 895
    4. 1.4. Client (Data subject) – natural person whose personal data are processed by the Controller.
    5. 1.5. Personal data – personally, identifiable information, such as name, surname, phone number, email address, mail address that is used alone or in combination with other personal or personally identifiable information and that is or may be associated with a specific person.
    6. 1.6. Processing – any act or set of acts performed on Personal Data, such as collecting, recording, storing, modifying (adding to or rectifying), disclosing, using, destroying, or otherwise.
    7. 1.7. Consent – any freely given, specific, informed and unambiguous indication of the Data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of Personal data relating to him or her.
    8. 1.8. Third party – a natural or legal person, public authority, agency or body other than the Data subject, Controller, Processor and persons who, under the direct authority of the Controller or Processor, are authorised to process Personal data.
    9. 1.9. Cookies – small amount of data that is transmitted from a website and stored on a visitor’s computer or other device.
    10. 1.10. Other definitions used in this Privacy Policy are understood as they are defined in the LPPD and GDPR.
  2. General provisions
    1. 2.1. With this Privacy Policy, the Controller seeks to ensure that the Client’s Personal Data is processed in a lawful, fair and transparent manner, collected only for the purposes set out and clearly defined in this Privacy Policy.
    2. 2.2. Personal data is processed for the following purposes:
      1. 2.2.1 to ensure the convenient and smooth use of the Website;
      2. 2.2.2 to properly provide services to the Client;
      3. 2.2.3 to respond to Client’s complaints/requests/messages and to provide additional information in relation to Client’s enquiry/complaint/request.
    3. 2.3. The Data Controller confirms that the implementation of this Privacy Policy strictly adheres to the following principles for the processing and protection of Personal Data:
      1. 2.3.1. the Personal Data of the Data Subject shall be collected for defined and legitimate purposes established by law and shall be processed in a manner consistent with those purposes;
      2. 2.3.2. the collection and processing of the Data Subject’s Personal Data shall comply with the principles of purposefulness and proportionality and shall not require the Data Subject to provide Personal Data that is not necessary. Redundant Personal Data shall not be stored or processed;
      3. 2.3.3. the processing of Personal Data of the Data Subject shall be accurate, fair and lawful;
      4. 2.3.4. the Personal Data of the Data Subject must be accurate and, where necessary for the processing of Personal Data, kept up to date; inaccurate or incomplete Personal Data shall be rectified, supplemented, destroyed or suspended;
      5. 2.3.5. the Personal Data of the Data Subject shall be kept in such a form as to permit identification of the Data Subject for no longer than is necessary for the purposes for which the Personal Data were collected and processed.
    4. 2.4. The Controller collects, uses and stores the Personal Data of the Client on the following legal grounds: the Client Consent; the fulfilment of a contract made between the Client and Controller; to ensure the legitimate interest of the Controller and to ensure the proper quality of services.
  3. What Personal data is collected, used and stored by the Controller
    1. 3.1. When the Data subject uses the Website:
      1. 3.1.1. IP address;
      2. 3.1.2. information about the device;
      3. 3.1.3. login information;
      4. 3.1.4. website browsing peculiarities.
    2. 3.2. When the Data subject sends a request to the Controller:
      1. 3.2.1. name and surname;
      2. 3.2.2. email address;
      3. 3.2.3. phone number;
      4. 3.2.4. the topic of the request;
      5. 3.2.5. the data of the request;
      6. 3.2.6. the content of the request;
      7. 3.2.7. files attached to the request and information contained therein;
      8. 3.2.8. the answer to the request of the Data subject provided by the Controller;
      9. 3.2.9. other information provided by the Data subject.
    1. 3.3. All information provided by the Client on social media – Facebook, Instagram, and LinkedIn (including messages, use of the “Like” and “Follow” fields, and other communication) is controlled by the social network manager. The Controller recommends that you read the privacy policies of third parties and contact service providers directly if you have any questions.
  4. Newsletters
    1. 4.1. The Website provides the Client with the opportunity to subscribe to and receive newsletters about the services provided by the Controller, marketing offers and other communications of an informative nature.
    2. 4.2. You will receive information about the Controller’s services and marketing offers by completing the newsletter recipient form on the Website, where you will be required to provide the following personal data: your e-mail address.
    3. 4.3. By completing the Newsletter Recipient Form, the Client expresses his/her consent to the collection and use of the Client’s personal data, and in particular his/her e-mail address, for marketing purposes.
    4. 4.4. If you wish to withdraw your consent to the use of your personal data (email address) for marketing purposes, you may do so by clicking on the special link at the bottom of the newsletter, or you may contact the Controller at the following email address: info@aradas.lt, with the subject line “Unsubscribe”.
  5. Cookies
    1. 5.1. The Website uses cookies for the following reasons:
      1. 5.1.1. for the statistical purposes when evaluating Website traffic and popularity of individual content;
      2. 5.1.2. to ensure the proper functionality of the Website;
      3. 5.1.3. to facilitate the Client’s browsing on the Website.
    2. 5.2. The Website use such type of Cookies:
      1. 5.2.1. Primary cookies – cookies used or created by the website visited by the user. These cookies are used to adapt to the needs of the website visitor;
      2. 5.2.2. Third party cookies – cookies placed by other websites on the website visited by the user. These types of cookies are mainly used for data analysis purposes. Facebook and Google are the most common domains for third party cookies.
    3. 5.3. The Client may delete the cookies from the computer or block them in the browser, but the blocking of the cookies may discontinue user access to certain features of a Website and their operation, which may result in ineffective or impossible browsing.
  6. Sharing of the Personal data
    1. 6.1. The Data Controller undertakes not to disclose the processed Personal Data to third parties, except in the following cases:
      1. 6.1.1. if there is Client Consent to the disclosure of Personal Data;
      2. 6.1.2. to the competent law enforcement body, regulatory authority, court of law or other third party where it is believed that such disclosure is necessary: 1) as a matter of applicable law or regulation; 2) to exercise, establish or defend Controller’s legal rights; 3) to protect the vital interests of the Data subject or of another natural person.
      3. 6.1.3. to the companies that provide services to the Controller (IT companies etc.).
    2. 6.2. The Client’s Personal Data shall be provided to Third parties only to the extent necessary to ensure the proper provision of such third-party services to the Data Controller.
  7. Storage terms of the Client’s Personal data
    1. 7.1. The personal data of the Client is stored only for as long as necessary to achieve the purposes of Personal Data processing as set out in this Privacy Policy, but not longer than 3 years after the respective submission.
  8. The rights of the Client
    1. 8.1. The Client has the following rights:
      1. 8.1.1. to submit a request to get acquainted with the information about the Client available to the Controller;
      2. 8.1.2. to submit a request to correct the information about the Client;
      3. 8.1.3. to submit a request to delete available information about the Client;
      4. 8.1.4. to submit a request to restrict access to or delete the information about the Client;
      5. 8.1.5. submit a request to export the Client’s Personal Data or transfer it to another data controller;
      6. 8.1.6. to lodge a complaint with a supervisory authority (address L. Sapiegos st. 17, Vilnius, website: www.vdai.lrv.lt).
    2. 8.2. The Controller may not provide the Client with the conditions for the implementation of the above-mentioned rights when, in cases provided for by the law, it is necessary to ensure the prevention, investigation and detection of crimes, professional or business ethics violations, as well as protection of the rights or freedoms of the Client or other persons.
  9. Personal data breaches, risk factors and their resolution
    1. 9.1. To ensure adequate protection of Personal Data, the Data Controller shall implement the following organisational and technical measures for the protection thereof:
      1. 9.1.1. provide access to the Personal Data of the Data Subject only to those employees who need the Personal Data for the performance of their job functions and only to those who have signed confidentiality agreements;
      2. 9.1.2. the Controller shall select only those processors which are capable to ensuring Personal Data protection
      3. 9.1.3. Personal data shall be protected against loss, unauthorized use and alteration;
      4. 9.1.4. the computer equipment shall be protected against malicious software (e. g. anti-virus software installation, updates) and the internal computer network is firewalled
  10. Final provisions
    1. 10.1. The Data Controller shall have the right to unilaterally amend this Privacy Policy at any time by posting the amended Privacy Policy on the Data Controller’s own website or the website of the developed project.
    2. 10.2. The law of the Republic of Lithuania and European Union shall govern this Privacy policy.
    3. 10.3. This Privacy policy shall come into effect on the 1st of July 2022 and is publicly available on the Website.
    4. For all questions related to this Privacy Policy, the Clients may contact: email info@aradas.lt; phone. No. +370 315 58 895 or arrive directly at the Controller at the addresses:
      • Švitrigailos str.11H, LT-03228 Vilnius.
      • Gamybos str. 12, LT-62175 Alytus