1. General Information
1.1. This Privacy Policy regulates how MB “ED AutoMoto” (hereinafter – the Data Controller) processes, collects, uses, discloses, and protects your personal data when visiting the website www.edautomoto.com (hereinafter – the Website).
1.2. The Data Controller is responsible for collecting, using, disclosing your personal data and ensuring its protection in compliance with the General Data Protection Regulation (2016/679) (hereinafter – GDPR) and other European Union and Lithuanian national data protection laws.
1.3. Information about the Data Controller:
Data Controller’s details:
“ED AutoMoto”, MB
Company code: 306816209
VAT payer code: LT100017025011
Registered address: Europos pr. 34-47, LT-46370 Kaunas
Email: info@edautomoto.com
2. Definitions of Privacy Policy
2.1. Personal Data – any information relating to an identified or identifiable natural person (data subject); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
2.2. Data Processing – any operation or set of operations performed on personal data or personal data sets, whether automated or manual, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination with other data, restriction, erasure, or destruction.
2.3. Data Controller – a natural or legal person, public authority, agency, or other body which alone or jointly with others determines the purposes and means of processing personal data. Where the purposes and means of processing are determined by Union or Member State law, the controller or the specific criteria for its appointment may be provided for by Union or Member State law.
2.4. Data Processor – a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the Data Controller.
2.5. Data Subject’s Consent – any freely given, specific, informed, and unambiguous indication of the data subject’s wishes, either by a statement or a clear affirmative action, by which the data subject signifies agreement to the processing of personal data related to them.
2.6. Cookie – a small piece of text information automatically created while browsing the Website and stored on your computer or other device.
2.7. Direct Marketing – activities aimed at offering goods or services to individuals directly by mail, phone, or any other direct means, and/or seeking feedback on the offered goods or services.
3. Collection and Use of Personal Data
3.1. The Data Controller collects voluntarily provided information through the Website’s contact form (name, surname, email, phone number).
3.2. Information about the user’s experience on the Website is collected using cookies installed on the Website. This data collection helps to better adapt the Website for easier use, increase the visibility and dissemination of information on the Website, and track the effectiveness of advertising (if used).
3.3. When visiting the Website, you will be notified about the use of cookies. You may agree to the use of cookies or decline it. If you decline the use of cookies, your personal data will not be used for marketing purposes. However, cookies that are essential for the proper functioning of the Website will still be used, regardless of your consent.
3.4. The collected information is used by the Data Controller for direct marketing purposes – sending newsletters, notifications about promotions or special offers, and conducting market analysis. Additionally, as mentioned above, the collected information is used to improve the user experience on the Website, i.e., to ensure comfortable Website use.
4. Data Subject's Rights
4.1. The data subject has the right to obtain confirmation from the Data Controller whether their personal data is being processed, and if so, to access the personal data.
4.2. The data subject has the right to request the correction of inaccurate personal data and, considering the purposes for which the data was processed, to request the completion of incomplete personal data, including by providing an additional statement.
4.3. The data subject has the right to request the Data Controller to erase their personal data without undue delay, and the Data Controller must do so if it is justified by certain statutory reasons.
4.4. The data subject has the right to request the restriction of data processing in certain specified cases.
4.5. The data subject has the right to receive personal data concerning them, which they have provided to the Data Controller, in a structured, commonly used, and machine-readable format, and to transmit those data to another Data Controller without hindrance.
4.6. When personal data is processed for direct marketing purposes, the data subject has the right to object at any time to the processing of their personal data for such marketing purposes, including profiling related to direct marketing.
4.7. The data subject has the right to file a complaint with the supervisory authority.
5. Data Security
5.1. The Data Controller has implemented various technical and physical measures to safeguard personal data from loss, unlawful use, or alteration. However, while the Data Controller takes all necessary steps to protect your personal data, it is impossible to guarantee complete security of personal data as browsing the internet is not secure.
5.2. The Data Controller retains your personal data for 5 years. This period is calculated from the last day of using the Data Controller’s services or content.
5.3. The Data Controller undertakes not to transfer personal data to third parties. However, there are certain cases in which personal data may be transferred:
To the Data Processor, if they provide services to the Data Controller and process data on behalf of the Data Controller;
To law enforcement authorities, as prescribed by the laws of the Republic of Lithuania;
To other third parties, with your consent.
6. Final Provisions
6.1. If you have any questions, requests, or comments regarding the change, processing, use, or storage of personal data, please contact the Data Controller at info@edautomoto.com.
6.2. The Data Controller will respond to your inquiry within 30 calendar days.
6.3. If you believe that your personal data has been processed or protected improperly, you have the right to file a complaint with the State Data Protection Inspectorate.