Privātuma politika

PRIVACY POLICY

UAB “BIOTIK”, legal entity code: 306208139, registered office address: Panerių g. 38A, LT-03202 Vilnius (hereinafter – the Company), respects the privacy and protection of personal data of every individual and has therefore prepared these privacy policy rules, under which, among other things, the Company will process personal data provided by its clients and employees. By using the services of the website waterion.eu, the individual confirms that they have read, understood, and agreed to this Privacy Policy.

  1. General Provisions

1.1. This Privacy Policy (hereinafter – the Policy) governs, among other things, the collection, processing, and storage of personal data carried out by the Company as a data controller.

1.2. The Company is engaged in economic commercial activities, including the decomposition of organic sludge (wastewater, lakes, landfills) and pollution reduction, sampling, and other services. For the provision of these services, the Company processes personal data on the legal grounds and for the purposes indicated in this Policy and in accordance with applicable legislation.

1.3. This Policy is intended for individuals who use or intend to use the Company’s services or visit the website at www.waterion.eu.

  1. Principles of Personal Data Processing

2.1. The Company processes personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (hereinafter – the Regulation), the Law on Legal Protection of Personal Data of the Republic of Lithuania, and other legal acts regulating the processing of personal data.

2.2. The scope of processed personal data depends on the services ordered or used from the Company and on the information provided by the website visitor when ordering and/or using the Company’s services, visiting, or registering on the website.

2.3. The Company, among other things, follows these key principles of data processing:

  • Personal data is collected only for clearly defined and legitimate purposes.
  • Personal data is processed only lawfully and fairly.
  • Personal data is continuously updated.
  • Personal data is stored securely and no longer than required for the specified processing purposes or as provided by legislation.
  • Personal data is processed only by those Company employees who are granted such a right according to their job functions.

2.4. Data is processed by the Company only when one or more lawful processing criteria apply: (i) in order to provide services under a contract (i.e. to perform a contract or to take steps at the request of the data subject prior to entering into a contract); (ii) upon receiving the data subject’s consent; (iii) when data processing is necessary for compliance with a legal obligation applicable to the Company; (iv) when data processing is necessary to perform a task carried out in the public interest or in the exercise of official authority vested in the Company; (v) when processing is necessary for the purposes of the legitimate interests pursued by the Company or a third party (see Article 6(1) of the Regulation, http://www.privacy-regulation.eu/en/6.htm).

2.5. When processing and storing personal data, the Company implements organizational and technical measures that ensure protection of personal data against accidental or unlawful destruction, alteration, disclosure, as well as against any other unlawful processing. Access to personal data processed by the Company is granted only to those Company employees and service providers who need it to perform their job functions or provide services to the Company.

2.6. The Company’s client or potential client, employees, and other natural persons are responsible for ensuring that the personal data they provide is accurate, correct, and complete. If the personal data they have provided changes, they must immediately inform the Company. The Company shall not be liable for damage caused to an individual and/or third parties due to the individual having provided incorrect and/or incomplete personal data or failing to apply for updating and/or amending the data when it changes.

  1. Sources of Personal Data

3.1. Personal data is usually obtained directly from the data subject (the Company’s client or potential client, employees, or candidates) who provides it while visiting the website, using the Company’s services, providing services to the Company, working, or seeking employment at the Company.

3.2. In cases provided by law or on the basis of consent, personal data may also be obtained from third parties (e.g., temporary employment agencies, companies providing recruitment services, state institutions, and registers).

3.3. Although the client is not obliged to provide any personal data to the Company, certain services may not be provided to them or they may not be able to obtain employment at the Company if the personal data is not provided.

  1. Purposes of Personal Data Processing

4.1. The Company processes personal data for the following main purposes:

  • For the administration and performance of contractual relations, in order to properly fulfill contractual obligations, maintain relations with suppliers, partners, and clients in business development, service provision, and cooperation;
  • For the provision of services indicated on the website;
  • For internal and employee administration purposes of the Company;
  • For direct marketing and marketing purposes;
  • For fulfilling legal requirements in the field of waste management and other areas and for providing data to state institutions (data controllers);
  • For ensuring the security of the Company’s equipment and property in production and common-use premises, video surveillance is installed.
  1. Provision of Personal Data and Recipients

5.1. The Company has the right to transfer the personal data of its clients’ representatives or employees to third parties that need to process the clients’ personal data for the purposes specified in this Policy or in legal acts.

5.2. The Company undertakes to transfer client data to third parties only to the extent and only in cases necessary to provide relevant services and/or fulfill obligations established by law. If personal data is not necessary for the provision of a specific service, it is not transferred. Personal data is transferred to the mentioned third parties on the basis of a data provision agreement or a specific legal act, strictly in compliance with legal requirements.

5.3. The Company undertakes to maintain confidentiality of the personal data of clients, employees, potential clients, or employees. Personal data may be disclosed to third parties only if it is necessary to conclude and perform a contract for the benefit of the data subject, or for other legitimate reasons.

5.4. The Company may provide processed personal data to its data processors (subcontractors) who provide the Company with IT, accounting, debt collection, or other auxiliary services and process personal data on behalf of the Company. Data processors have the right to process personal data only in accordance with the Company’s instructions and only to the extent necessary to properly fulfill contractual obligations. The Company engages only those data processors who sufficiently ensure that appropriate technical and organizational measures are implemented in such a way that the processing meets the requirements of the Regulation and ensures the protection of the data subject’s rights.

5.5. The Company may also provide client data in response to requests from courts, bailiffs, or state institutions, to the extent necessary to properly comply with applicable legislation and instructions of state institutions.

  1. Processing of Personal Data for Direct Marketing Purposes

6.1. For direct marketing purposes, the Company may process the data subject’s contact details. Consent for the use of personal data for direct marketing purposes is expressed by email at info@waterion.eu, by subscribing to the Company’s newsletter, by subscribing to news on the Company’s social network accounts, by leaving consent on the Company’s website (by ticking a box), by signing a form or contract with the Company, or by otherwise informing the Company’s administration in writing. Consent to direct marketing is voluntary, it is not a condition of contractual relations with the Company, and it does not affect the relationship between the data subject and the Company.

6.2. The Company may send informational messages if the individual has given consent for the Company to use their data for direct marketing purposes, and to the Company’s clients without separate consent for marketing of similar services, provided they are given a clear, free, and easily implementable opportunity to object or opt out of such use of their contact data and if they did not initially object to such use, with each message sent.

6.3. For direct marketing purposes, the Company may send messages by email.

6.4. Consent for direct marketing may be withdrawn at any time by notifying via email at info@waterion.eu or by otherwise contacting the Company.

  1. Retention Period of Personal Data

7.1. Personal data collected by the Company is stored in printed documents and/or in electronic format in the Company’s information systems. Personal data is processed no longer than necessary to achieve the purposes of processing or no longer than required by data subjects and/or prescribed by law. In general, personal data is processed for 10 years after the end of contractual relations.

7.2. Although a client may terminate the contract or opt out of the Company’s services, the Company is still required to retain the client’s representatives’ personal data due to possible future claims or legal disputes until the expiration of the data retention periods.

7.3. The Company strives not to retain outdated or unnecessary information and to ensure that personal data and other client information is constantly updated, accurate, and timely destroyed.

  1. Rights of Data Subjects

8.1. The data subject, among other things, has the following rights:

  • To receive information about the personal data processed by the Company, where and how the personal data was collected, and on what basis it is processed;
  • To contact the Company with a request to correct their personal data, to suspend its processing, or to destroy it if the data is incorrect, incomplete, or inaccurate, or if it is no longer necessary for the purposes for which it was collected. In such a case, the data subject must submit a request, upon receipt of which the Company will verify the information provided and take the necessary actions. It is very important for the Company that the personal data it holds is accurate and correct;
  • To contact the Company with a request to destroy personal data or suspend such data processing actions, except storage – if, after reviewing their personal data, the individual determines that the personal data is processed unlawfully or unfairly;
  • To object to the processing of personal data when the data is processed or intended to be processed for direct marketing purposes or on the basis of the legitimate interest pursued by the Company or a third party to whom the personal data is provided;
  • To withdraw their consent to the processing of personal data for direct marketing purposes at any time;
  • If the data subject has concerns about the Company’s actions (or inaction), which may not comply with this Policy or the requirements of legislation, they may contact the Company and receive free assistance.

8.2. An individual may exercise all their rights as a data subject by contacting the Company by email at info@waterion.eu

8.3. If the issue cannot be resolved with the Company, the client has the right to contact the State Data Protection Inspectorate (ada.lt), which is responsible for the supervision and control of legislation regulating personal data protection.

  1. Cookies

9.1. In order to improve the experience of visiting the Company’s website, the Company may use cookies – small text files that are automatically created when browsing the website and are stored on the visitor’s computer or other terminal device.

9.2. The information collected by cookies allows ensuring more convenient browsing on the Company’s website and gaining more insights into the behavior of the Company’s website visitors, analyzing trends, and improving both the website and the services provided by the Company or the information presented on the website. With the help of cookies, the Company processes anonymized personal data.

9.3. If the website visitor does not agree that cookies be stored on their computer or other terminal device, they may change the settings of their internet browser and disable all cookies or enable/disable them one by one. However, the Company notes that in some cases this may slow down the browsing speed of the website, limit the functionality of certain website features, or block access to certain pages of the website.

9.4. We use cookies on our website:

Cookie name Purpose Creation time Expiration time
october_session System user session code When the website is launched Session
cookie_consent Information about cookie consent is stored When cookies are accepted 1 year

 

 

  1. Final Provisions

10.1. This Policy is governed by the laws of the Republic of Lithuania and the European Union.

10.2. The Company reserves the right to amend this Policy; therefore, website visitors are kindly requested to periodically check whether the Policy has changed and to familiarize themselves with its amended or new provisions.