Last Update 2023.05.19
The controller of personal data specified herein below is MAXIMA GRUPĖ, UAB, code: 301066547, registered address: Savanorių pr. 5, Vilnius, Lithuania (hereinafter referred to as the ‘Company’).
On what grounds do we process your personal data?
The Company collects and processes personal data in compliance with legislation of the EU and the Republic of Lithuania governing the protection of personal data.
The scope of processed personal data depends on the services used and the information provided by a person who uses the services or browses our websites.
The Company processes Visitors’ personal data on the following grounds:
- on the basis of a consent that is expressed by your active actions, i.e. addressing us and providing personal data, or other active actions;
- for the purpose of implementing our legitimate interests (e.g. managing and administrating the website, presenting relevant information to clients, etc.);
- for the purpose of fulfilling our duties set forth by legislation.
The Company seeks that the processing of personal data is accurate, fair and lawful, that the data are processed only for the purposes for which they have been collected, that they are processed in compliance with the clear and transparent principles of personal data processing and requirements set forth in legislation.
What your data do we process and why?
Processing of personal data when you submit inquiries, requests or other information
The Company also processes your personal data in those cases when you contact us by e-mail and submit an inquiry, ask questions and give any other information on our website or in social networks.
We ask you to keep to at least the following minimum requirements for the protection of your personal data: do not indicate personal data (e.g. name, surname, address, telephone number, e-mail, personal identification number, date of birth, bank account number, state registration number of your car, real property data, health data, other special (sensitive) data, etc.) in the subject of either an e-mail or an inquiry or in the names of attached files; do not indicate your personal identification number, health or other special (sensitive) data in the text of an e-mail, inquiry or request, and provide the remaining personal data only to the extent as it is necessary for the purposes for which the message is sent.
The Company processes your data in the above cases in order to administer inquiries and complaints, ensure the quality of its services, protect and defend its rights and legitimate interests. You give us your data on the basis of your consent which is expressed through your active actions, i.e. by addressing us.
Processing of personal data for the purposes of staff selection
You may provide your data by e-mail email@example.com in order to join the Company’s team.
Please keep to the requirements for the protection of your personal data and do not send any redundant information to us.
We hereby inform you that in case there are no exact staff selections process announced, we will process your provided personal data for the purposes of staff selection on the basis of your consent expressed when providing these data for a term not longer than 1 year from provision of the data.
We hereby inform you that in case there is the exact staff selection process, we will process your provided personal data for the purposes of staff selection on the basis of your consent expressed when providing these data and we will store them until the end of the particular selection process.
If, having considered your application, we choose a candidate who better meets our requirements, we may ask for your separate consent to the storage and use of your personal data obtained during selection for the purposes of other staff selection processes and to our contacting you to this end.
If we obtain such consent from you, we will store the said personal data for one year after the date of receipt of consent.
After you give such consent, you have the right to withdraw it at any time, without affecting the lawfulness of data processing based on consent before its withdrawal. If you exercise this right, we will immediately take actions to destroy your personal data.
Processing of personal data on the website
When you visit our website, the Company processes anonymised data such as IP address, MAC address, visiting date, duration, visited pages, devices and applications used for web browsing, etc. for the purposes of collection of website traffic statistics and improvement of the service quality and visitor experience.
From what sources do we collect your personal data?
The Company processes data provided by Visitors when they use the Company’s services or websites.
Data may be generated when a person uses services, for example, calls by phone, sends SMS, e-mail, or visits websites.
For how long do we process and store your data?
If you address us/maintain electronic correspondence with us, we usually store e-mails in our active mailbox for 24 months and in our inactive e-mail archive up to 5 years.
Personal data processed for the purposes of candidate selection and employment in the Company are stored until the end of the selection process, unless the candidate gives a separate consent to store his/her data after the selection process is over.
Your personal information may be stored for a longer period only in the following cases:
- if there are reasonable suspicions regarding unlawful activities which are investigated;
- if your data are required for appropriate resolution of a dispute, complaint;
- if we have received complaints related to the Visitor or we have noticed infringements by a respective Visitor;
- for the purposes of backup copies and other purposes related to the functioning and maintenance of information systems or similar purposes;
- if there exist other special grounds, conditions or cases specified in legislation.
In what cases and to what third persons do we disclose your data?
Without your prior consent the Company does not transfer your personal data to any third persons, except for the cases described below.
We may transfer your data for processing to third persons who help us perform and administer the provision of services and who provide services related to the administration of clients’ inquiries. These persons may include database software suppliers, providers of database administration services, providers of data centre, hosting and cloud services, providers of direct marketing services, providers of market research or business analytics services, etc. In each case we provide the data processor with such an amount of data as is necessary for performance of a particular assignment or provision of a particular service.
Our used data processors may process your personal data only in accordance with our instructions. Furthermore, they must ensure your data security in accordance with the effective legislation and written agreements concluded with us.
Data may also be provided to competent public or law enforcement authorities, e.g. police or supervisory authorities, yet only upon their demand and only when this is required in accordance with the effective legislation or in cases and under the procedure set forth in legislation, in order to ensure our rights, security of our customers, employees and resources, and to establish, exercise or defend legal claims.
In what territories and jurisdictions do we process your personal data?
We process your personal data in the territory of the European Union. We currently do not have any intention to transfer and do not transfer your personal data to any third countries.
We hereby inform you that certain technical data on your visit to a website (IP address, cookies, technical specifications of your browser, other information related to browser functioning and website browsing) may be transferred or made available to entities operating both within and outside the European Economic Area for the purposes of browsing statistics, analysis and related purposes (e.g. if we use the Google Analytics service, such an entity is a company operating in the United States of America). Please note that personal data outside the EEA may be subject to a lower level of protection than within the EEA; however, we will thoroughly evaluate the conditions under which such your data will be later processed and stored after the transfer to the above entities.
The Company implements and constantly updates appropriate organisational and technical measures that ensure security and help protect personal data against accidental or unlawful destruction, replacement, disclosure, as well as against any other unlawful processing.
Any of your provided personal data, including your name, surname, e-mail address and any other information contained in an e-mail may be processed by the Company or the e-mail owner, data centre, repository and other IT infrastructure service providers who have signed agreements for the purposes of maintenance of security of the Company’s IT systems, ensuring business with clients, suppliers and other business partners in order to ensure that data are properly protected and are not lost upon breach of security.
What rights are granted to you under data protection legislation and how can you exercise them?
a) Right of access to your personal data processed by us;
You have the right to obtain our confirmation as to whether or not we process your personal data, and the right of access to your personal data processed by us as well as information on the purposes of processing, the categories of processed data, the categories of data recipients, the period of data processing.
b) Right to rectification of personal data
c) Right to withdraw consent
In cases where we process your data on the basis of your consent, you have the right to withdraw your consent at any time and data processing based on your consent will be terminated.
d) Right to lodge a complaint
If you consider that we process your data by infringing the requirements of data protection legislation, we always first of all ask you to contact us directly. We believe that through benevolent efforts we will manage to dispel your doubts, satisfy your requests and correct our mistakes, if any.
If you are dissatisfied with our proposed problem solution or, in your opinion, we do not take actions that are necessary according to your request, you will have the right to lodge a complaint to a supervisory authority which is the State Data Protection Inspectorate in the Republic of Lithuania (further information: www.ada.lt).
e) Right to object to the processing of data where processing is based on legitimate interests
You have the right to object to the processing of personal data where personal data is processed on the grounds of our legitimate interests.
If you want to exercise the right specified in this section, please submit a written request to our Data Protection Officer.
f) Right to erasure (’right to be forgotten’)
Under certain circumstances specified in data processing legislation (when personal data are processed unlawfully, the grounds for data processing have expired, etc.), you have the right to request us to erase your personal data. If you want to exercise this right, please submit a written request to our Data Protection Officer.
g) Right to restriction of processing
Under certain circumstances specified in data processing legislation (when personal data are processed unlawfully, you contest data accuracy, you objected to data processing on the basis of our legitimate interest, etc.), you also have the right to restrict your data processing.
If you want to exercise the right specified in this section, please submit a written request to our Data Protection Officer.
h) Right to data portability
You have the right to move data that we process on the basis of your consent and by automated means to another data controller. We will provide the data that you request to move in a machine-readable format that we commonly use in our systems, and where you request so and if we have technical possibilities, we will transmit data directly to another data controller you have specified.
If you want to exercise the right to data portability, please submit a written request to our Data Protection Officer.
The procedure of examination of request
In order to protect your and other persons’ data from unlawful disclosure, we will have to verify your identity upon your request to provide data or exercise your other rights. For this reason we may ask you to indicate your name, surname, e-mail address or telephone number and we will compare whether your provided data correspond to the respective data. During verification we may also send a control notification to the indicated contact (SMS or e-mail), asking you to perform an authorisation action. If the verification procedure is unsuccessful (e.g. your provided data do not correspond to our available data or you fail to authorise according to the received SMS or e-mail notification), we will have to state that you are not the Visitor and we will have to reject your request.
Upon receipt of your request concerning the exercise of any of your rights and having successfully carried out the above verification procedure, we commit, without undue delay, yet in any case within one month from the date of receipt of your request and completion of the verification procedure at the latest to inform you about actions we took according to your request. Having regard to the complexity and number of requests, we have the right to extend the period of one month by two additional months, informing you thereof by the end of the first month and indicating the reasons for this extension.
If your request is submitted by electronic means, we will also give you an answer by electronic means, except for cases where this is impossible (e.g. due to a particularly large scope of information) or when you ask us to respond in another way.
We will refuse to satisfy your request by a reasoned response when the circumstances specified in legislation are identified, notifying you thereof in writing.
What are the ways to contact us and what are our contact details?
You may contact us on all data processing issues in the following ways:
By e-mail: firstname.lastname@example.org
By phone: +370 669 00118
Contact details of the Data Protection Officer:
Postal address: Savanorių pr. 5, Vilnius, Republic of Lithuania
Please address your letter as follows: MAXIMA GRUPĖ, UAB, to Data Protection Officer
Our legal details as the data controller:
MAXIMA GRUPĖ, UAB
Legal entity code: 301066547
Registered address: Savanorių pr. 5, Vilnius, Republic of Lithuania
MAXIMA GRUPĖ, UAB, legal entity code 301066547, registered address Savanorių pr. 5, Vilnius, Republic of Lithuania (hereinafter referred to as the “Company,” or “we”), shall undertake to ensure the security of personal information and the protection of rights of the visitors of the website (hereinafter referred to as the “Visitors”) while you use our websites www.maximagrupe.lt, www.maximagrupe.eu (hereinafter referred to as the “Website”) and the content of it.
1. GENERAL INFORMATION ABOUT COOKIES
We use the cookies on our Website, to customize the functioning of our Website as much as possible, and can contribute to ease of use when navigating our Website.
What is a cookie?
A cookie is a small file placed onto your device that enables our Website features and functionality. For example, cookies enable us to identify your device, secure your access to the Website. They enable the Website to store the data, such as:
- Login data (IP address of the logging-in device, login time, location from which the login is attempted);
- Type of browser;
- Demographic data (age group, sex);
- Data about the fact how you browse the Website (which sections you visit, what products are you interested in).
We use the cookies to:
- Understand, improve, and research products, features, and services, including when you access our Website from other websites, applications, or devices such as your work computer or your mobile device;
- Recognize the returning visitors of the Website; cookies help us show you the right information and personalize your experience; cookies also help avoiding re-registration or re-filling of the information by you each time you visit the Website;
- Analyse your habits so that the functioning of the Website would be convenient, efficient and would conform to your needs and expectations, for example, by ensuring that the Visitors would, without difficulty, find everything they are looking for;
- Measure the flows of the information and data being sent to our Website; we use the cookies for accumulation of statistical data about the number of users of the Website and their use of the Website.
We may, to the extent allowed by applicable laws, link the data, received from the cookies, with other information obtained about you from other legal sources (i.e., information about the use of the services, etc.).
2. COOKIES USED ON THE WEBSITE
Each time you visit our Website, the long-term (persistent) cookies may be created, which stay in your browser after you sign-up and will be read by us when you return to our Website or a partner site that uses our services, and not deleted after you finish browsing our Website, and the short-term (session) cookies, which expire or are deleted after you finish browsing our Website (i.e., they usually last during the current visit to our Website or browsing session).
All cookies used by us may be only used with the prior consent from you. You may express your consent by pressing the button “I agree” in the emergent cookie bar at the top/bottom of the web page of the Website.
However, we note that the necessary cookies and analytical cookies, as specified below, are necessary for functioning of our Website, and in case of your objections, we will not be sure about functioning of the Website or any of its portions or functionalities.
We recite below the main types of cookies used on the Website according to their types, collected data, and duration of storage.
2.1. Cookies used by the Company
Strictly necessary cookies
These cookies are required for the operation of our Website. They include, for example, cookies that enable storage of information filled by you during the browsing session, enable you to log into secure areas of our Website. Without these cookies operation of the Website would be impossible or its functioning may be severely affected.
These improve the functional performance of our Website and make it easier for you to use. These cookies remember the settings selected by the Visitors (for example, the settings of language and time zone). With the use of these cookies, the Visitors may avoid the changes of settings during each visit of the Website. These cookies also remember changes made by you in the Website (for example, in case you leave comment on the Website). These cookies do not track your behaviour in other websites.
Analytical / performance cookies
2.2. Third-party cookies
Other third-party cookies – in some web pages of our Website, the other entities (for example, social networks) may also use their own anonymous cookies designed so that the programmes or applications developed by them would suit your needs. Due to the specific features of the functioning of the cookies, our Website does not have access to the information transmitted by these cookies, likewise other entities do not have access to the information collected by the cookies set by us.
Such other type of third-party cookies that might be used on our Website include:
- „Google Analytics“
We may use Google Analytics, a web analysis service provided by Google, Inc (hereinafter referred to as “Google”). The information collected by Google Analytics is transmitted to and stored with Google. Google may transmit the information collected by Google Analytics to the third parties as required by the law or when those third parties process the information in the name of Google.
We recommend consulting the Google Privacy and Cookies Policy on a separate and regular basis.
Currently the Company does not use this service.
All information about the cookies used by us is recorded below:
Name of the cookie
Moment of creation
Standard cookie for upholding the session. Necessary cookie
Entering the Website
3. REFUSAL OR BLOCKING THE COOKIES
Many web browsers are set so that they would automatically accept cookies. The Visitors may, at their discretion, block or delete cookies and similar unique identifiers, if the settings of their browser or device enable them to do so. Nevertheless, if you refuse or block the cookies or other similar technologies, some functions of the Website may be inaccessible to you or they may operate not so efficiently.
Nevertheless, we draw your attention that necessary cookies and analytical cookies are necessary for functioning of our Website, and in case of your objections, we will not be sure about functioning of the Website.
You may find more information about how to delete cookies, as well as the other useful information related to the use of the cookies, on the website http://www.allaboutcookies.org/.