Privacy Policy
Privacy Policy
Limited liability companies
"FERAMAGUS"
privacy policy
Purpose and scope of the privacy policy
1.1. The Privacy Policy (hereinafter - the Policy) describes and provides information to natural identifiable persons (hereinafter - the Data Subject) as SIA FERAMAGUS, registration number 41203056332, legal address: 9. Maija Street 5, Talsi, hereinafter - the Manager) processes the Data Subject's persons data, if they have decided to visit the website maintained by the Manager on the website www.petplanet.lv, to come to the office premises, to execute transactions or to attend any other events organized by the Manager.
1.1. In this Policy, the Controller has described measures to ensure that the interests and freedoms of the data subject are protected, while ensuring that their data are processed fairly, lawfully and in a way that is transparent to the data subject.
1.2. The policy applies to the processing of personal data, regardless of the form and / or environment in which the natural person provides personal data (entering the territory and / or premises, by telephone, orally, etc.) and the source of personal data, as well as from which Manager's systems (video, audio, web, etc.) they are processed.
1.3. If this Policy is updated, the amendments to this Policy will take effect on the date specified in the notices of changes to this Policy. The current version of the policy, in order to ensure transparent and fair data processing, will be posted on the Manager's website www.petplanet.lv in the privacy policy and retail stores section.
Manager contact information
2.1. Limited Liability Company SIA FERAMAGUS, registration number 41203056332, legal address: 9. Maija Street 5, Talsis, can be reached by writing a letter to the indicated legal address, or by e-mail to info@feramagus.lv or by calling. +371 20111009
Applicable law
3.1. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation) ( hereinafter referred to as the Regulation).
3.2. Other applicable legislation in the field of processing and protection of personal data, including legislation governing information society services.
Purposes of personal data processing
In the course of its business, the Controller has determined that it has several purposes for the processing of personal data, the following data processing for which the Controller provides more detailed information in this policy:
Data processing for the purpose of ensuring the accurate provision of services, fulfillment of contractual obligations and ensuring the legitimate interests of the Manager.
What personal data does the Manager process?
The categories of personal data processed by the Manager depend on the Manager's services used by individuals. For example, when a data subject receives or expresses a wish to receive services provided by the Controller, to purchase materials and goods from the Controller in accordance with regulatory requirements and the Controller's legitimate interest, the Controller has the obligation and right to process the data subject's identifying information and identity. For example, if you return a product or make a claim about its quality, then the Manager is obliged to review your claim, as a result, the Manager needs to identify the complainant or the person who needs to prepare a response. In this case, in order to achieve the purpose of providing services, the Controller may process the amount of personal data, which includes name, surname, personal identification code, contact information, information on services received and to be received and assortment of goods, etc. the relevant information is recorded in the documentation and stored in the Manager's data processing system. Upon receipt of services by the data subject, personal data is processed in accordance with the agreement concluded between the Parties.
What is the legal basis for the processing of personal data?
The processing of data for the purpose of providing services is carried out on the basis of Article 6 (1) (b), (c) and (f) of the Regulation, i.e. processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract; processing is necessary for compliance with a legal obligation to which the Manager is subject. Also, in certain cases, to safeguard the legitimate interests of the Manager and third parties (eg to investigate complaints about the quality of service provision, to carry out follow-up inspections to improve service provision, and to provide evidence in case of complaints and claims) .
What is the processing period for personal data?
When providing services, the controller complies with special regulatory enactments that stipulate its obligation to keep certain data, for example, the Accounting Law stipulates the obligation to keep information on transactions for at least five years.
What is the processing period for personal data?
Video surveillance records for the purpose of preventing or detecting criminal offenses relating to the protection of persons and property, the protection of the legitimate interests of the controller or of a third party and the protection of vital interests, including life and health, shall be kept for no more than two calendar months. the video recording will not reflect any allegedly unlawful conduct or conduct that is likely to assist the Manager or third parties in securing their legal interests. In this case, the video in question can be retrieved and stored until the legal interest is served.
Who has access to the information and to whom is it disclosed?
Recipients of personal data may be authorized employees of the Controller, Processors, law enforcement and supervisory authorities
4. Preservation and accounting of incoming and outgoing communications (e-mails, postal letters, etc.) in order to ensure the fulfillment of the obligations applicable to the Manager and the provision of the legitimate interests of the Manager.
What personal data does the Manager process?
Using the various options to contact the Manager in writing, information related to the specific letter, request, application will be saved. Despite the fact that the Manager encourages the use of official means of communication, there may be situations where you have chosen to contact the Manager through social networking platforms. In these cases, you should be aware that the Manager may have additional information displayed on the relevant social network.
What is the legal basis for the processing of personal data?
The retention of information on the fact and content of the communication is carried out on the basis of Article 6 (1) (c) and (f) of the Regulation, i.e. In cases where you have submitted a claim or request, which gives rise to the controller's obligation to process your request, the legal basis for data processing is this legal obligation, and to ensure the legitimate interests of the controller and third parties (for example, to investigate customer service complaints). as well as to provide evidence against possible claims), the legal basis for the processing is the
What is the processing period for personal data?
To achieve this, the Controller will keep the relevant information for a period not exceeding two years, unless the relevant information needs to be used to ensure the controller's legitimate interests for a longer period (eg in case of disputes, preservation of evidence). In this case, the relevant documents are kept until the legal interest is ensured.
Who has access to the information and to whom is it disclosed?
Recipients of personal data may be employees authorized by the Controller, Processors, law enforcement and supervisory authorities, the court.
What personal data does the Manager process?
All information included in your submitted CV, such as: name, surname, personal identification number, gender, citizenship, address of residence, work and study / training, language skills and their application, additional knowledge / skills, interests / hobbies, telephone number, e-mail address, skype username, photo or other information identifying you, as well as information obtained from persons who have provided feedback about you, if you have expressly authorized to contact the relevant persons. In case you are invited to a job interview, the information provided during the job interview, the completed tests and other tests will be considered as your personal data.
What is the legal basis for the processing of personal data?
You are free to express your wish to run for future vacancies. The controller will only continue to process your personal data for the above purpose if he / she has received a request from you to be included in the jobseeker database under the conditions set out in this policy .
In any case, upon receipt of your application, the Company has a legal interest in processing your application, evaluating the information provided in it, organizing a negotiation procedure, conducting negotiations and providing evidence that justifies the legal course of the process. In the event of a dispute, the information obtained during the selection process may be used to reflect the legal course of the process.
What is the processing period for personal data?
All information obtained by applying for vacancies and / or providing additional information, such as during interviews, will be stored in whole or in part in the Manager's database for a maximum of six months after the end of the competition to safeguard the Company's legal interests. In accordance with the principle of data minimization, the company undertakes to delete the relevant information after reaching the legal interest. In the event that the Manager receives complaints about a particular selection process, all information processed during the selection process will be retained until the complaint is processed.
7.5. The Data Subject has the right to request that the Controller restrict the processing of the Data Subject's personal data if one of the following circumstances exists:
The data subject disputes the accuracy of personal data - for the time during which the Controller can verify the accuracy of personal data;
the processing is unlawful and the Data Subject objects to the deletion of personal data and requests instead that the use of the data be restricted;
The controller no longer needs personal data for processing, but they are necessary for the Data Subject to raise, enforce or defend lawful claims;
The data subject has objected to the processing until it has been verified that the legitimate reasons of the controller do not outweigh the legitimate reasons of the data subject.
7.6. If the processing of the Data Subject's personal data is restricted in accordance with 7.5. Such personal data, with the exception of storage, shall be processed only with the consent of the Data Subject or for the purpose of raising, enforcing or defending lawful claims, or for the protection of the rights of other natural or legal persons or important public interests.
7.7. Before removing the restriction on the processing of personal data of the Data Subject, the Controller shall inform the Data Subject.
7.8. The Data Subject has the right to submit a complaint to the Data State Inspectorate, if it considers that the Controller has processed his / her personal data illegally, at the same time, the Controller invites to first contact him / her by writing to info@feramagus.lv to find a solution promptly. data protection have been breached.
7.9. The data subject may submit a request for the exercise of his or her rights in the following way:
in writing in person at the Manager's premises, presenting a personal identification document (for example, passport or ID card, etc.), because the Data Subject is obliged to identify himself / herself;
in the form of an electronic mail, signing it with a secure electronic signature. In this case, it is presumed that the data subject has identified himself / herself by submitting a request signed with a secure electronic signature. At the same time, the Controller reserves the right to request additional information from the data subject in case of doubt, if it deems it necessary. Electronically submitted applications should be sent to the Manager to the e-mail address: info@feramagus.lv
via mail. A reply will be prepared and sent by registered mail, thus ensuring that unauthorized persons will not be able to receive this item. At the same time, the Controller reserves the right to request additional information from the data subject in case of doubt, if it deems it necessary.
7.10. The data subject is obliged to specify in his request, as far as possible, the date, time, place and other circumstances that would help to fulfill his request.
7.11. Upon receipt of a written request from the Data Subject for the exercise of his / her rights, the Controller shall:
7.11.1. verifies the identity of the person;
7.11.2. assess the request if:
- can provide for the request, such as listening to videos, then the Data Subject as the requester can receive a copy of the video or other data.
- additional information is needed to identify the Data Subject requesting the information, then the Data Subject will be asked to provide additional information in order to be able to correctly select the information (eg time of visits, use of services) in which the Data Subject is identifiable.
if the information is deleted or the person requesting the information is not a Data Subject or the person is not identifiable, the request may be rejected in accordance with this Policy and / or regulatory enactments.
In case the Controller has received the request but you have not left your contact information so that the Controller can contact during the processing of the request and inform about the result of the Request, the Controller undertakes to prepare a written response within one month to the Controller's administration or department. The relevant reply letter will be kept by the department concerned for a maximum of two months from the date of the request.
8. How is personal data protected?
8.1. The controller shall ensure, continuously review and improve personal data protection measures to protect the personal data of natural persons against unauthorized access, accidental loss, disclosure or destruction. To ensure this, the Manager uses appropriate technical and organizational requirements, including the use of firewalls, intrusion detection, analysis software and data encryption.
8.2. The Controller carefully inspects all service providers who process personal data of natural persons in the name and on behalf of the Controller, as well as assesses whether cooperation partners (processors of personal data) apply appropriate security measures to ensure personal data processing in accordance with the Controller's delegation and regulatory requirements.
8.3. In the event of a personal data security incident, if it poses the highest possible risk to the rights and freedoms of the data subject, the Controller will notify the data subject concerned.
