869553134467775 Privatumo politika | Pakruojo dvaro receptai
top of page

WWW.PAKRUOJO-receptai.LT PRIVACY POLICY

General provisions

  1. Closed joint-stock company "PAKRUOJO PARKAI" (hereinafter - the Company), implementing Regulation (EU) 2016/679 of the European Parliament and of the Council of 27/04/2016 on the protection of natural persons in the processing of personal data and on the free movement of such data and which repeals Directive 95/46 /EC (hereinafter - the General Data Protection Regulation or GDPR) and the requirements of the Law on the Legal Protection of Personal Data of the Republic of Lithuania (hereinafter - ADTAĮ) regarding the protection of personal data and ensuring the implementation of the rights of personal data subjects, this document establishes the basic principles of personal data management and processing, using the Company's on the website: www.pakruojo-dvaras.lt, provisions (hereinafter - Privacy Policy).

  2. This Privacy Policy does not apply to links on the Company's website to third-party websites, therefore we recommend that visitors directly and individually familiarize themselves with the privacy policies applicable to such third-party websites and services.

  3. Terms used in this Privacy Policy:

  • Personal data is any information that can be used to identify a natural person, as well as any other information about a natural person with the help of which he can be identified (hereinafter - AD).

  • Personal data controller – UAB "PAKRUOJO PARKAI", legal entity code 302249127, registered office address: Gurelių k. 11, Turgeliau sen., Šalčininkų r. weekly

  • Personal data processor – the Company or its partners, which processes certain personal data managed by the Company on behalf of and on behalf of the data controller.

  • The company's website is a website managed by UAB "PAKRUOJO PARKAI" at the address: www.pakruojo-dvaras.lt.

  • Manor - accommodation, catering and entertainment complex "Pakruojo dvaras" managed by UAB "PAKRUOJO PARKAI", located at Karčiamos street 9, Pakruojo village, Pakruojo district, municipality

  • Personal data subject or visitor - a natural person whose personal data is managed or processed by the Company when he visits the Company's website (hereinafter - ADS or visitors).

  • Cookies are small pieces of textual information that are automatically created when browsing the website and are stored on the visitor's computer or other terminal device.

  • Other terms and definitions used in this Privacy Policy correspond to the terms and definitions used in the GDPR and ADTAĮ.

  1. The Company's Privacy Policy is drawn up in accordance with the following provisions:

  • principles of legality, fairness and transparency;

  • on the principle of purpose limitation, when personal data is collected for established, clearly defined and legitimate purposes and is not further processed in a manner incompatible with those purposes;

  • according to the principle of reducing the amount of data, when adequate, suitable and only such personal data are collected that are needed to achieve the purposes for which they are processed;

  • according to the principle of accuracy, when only accurate personal data is processed and, if necessary, it is immediately updated or inaccurate data is corrected or deleted;

  • on the principle of storage period limitation, when personal data is kept in such a form that the identity of the data subjects can be determined no longer than is necessary for the purposes for which the personal data is processed, if the legislation does not establish a longer storage period, in order to protect the rights and freedoms of the data subject ;

  • on the principle of integrity and confidentiality, when technical or organizational measures are applied to the processing of personal data that ensure adequate security of personal data.

PROCESSING OF PERSONAL DATA ON THE COMPANY'S WEBSITE

Processing of personal data of visitors to the company's website

  1. During the visit of the AD subject to the Company's website, entries are automatically made on the Company's website server in the system file about the visitor's visit with the aim of ensuring a smooth connection (online communication), convenient interaction between the website and the application program, stability and security of communication and website operation.

  2. During the AD subject's visit to the Company's website, the following data identifying the AD subject is collected and processed:

AD categories:

  • The IP address of the requesting device of the AD entity;

  • date and time of access;

  • the name and URL of the opened file;

  • data about the website or application from which access was provided (intermediate URL);

  • data about the browser used and, if necessary, the operating system of the computer that can connect to the Internet and the name of the access service provider.

The purpose of collecting AD is to optimize the operation and stability of the Company's website, to optimize the communication connection and to protect the information system.

Legal basis for AD processing - Data processing is necessary to achieve the legitimate interests of the data controller or a third party (GDPR Article 6 d (f) p.).

From what sources AD is collected - Collected automatically during a visit to the Company's website.

Term of data processing - the data identifying the AD subject is stored only during the visit to the website, and after the end of the visit, they are automatically deleted or stored for a certain period of time (more information is provided below - Use of cookies).

AD management of visitors to the company's website for performance improvement and marketing purposes
 

  1. The Company monitors the behavior of AD entities visiting the Company's website (www.pakruojo-dvaras.lt) with the aim of collecting and analyzing statistical data on market trends and characteristics of buyers' behavior (habits) so that the Company can make important business decisions regarding hotel guests and visitors to the Manor meeting needs and improving performance. For these purposes, the Company uses automated data collection and analysis tools (cookies) that allow not to use AD (IP addresses are masked).

  2. The company uses only third-party cookies for statistical data collection and analysis, which are described in more detail in the Cookie Usage Rules (presented in Part 3).

  3. The company uses the website analysis service Google Analytics provided by Google Inc. (USA), and which allows the recording and analysis of statistical data on the use of the website. About the possibility of Google Analytics tools to collect data identifying the AD subject, Google Inc. In the privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

  4. If the visitor wishes that Google Analytics tools do not record information about his browsing on the website, the visitor can use the Google Analytics opt-out browser plugin.

  5. In any case, on the Company's website, the AD entity is provided with the opportunity to disable the operation of cookies by using the function of setting the operation of cookies before starting to browse the Company's website.


AD management of the company's website visitors for direct marketing purposes

  1. The company processes AD for the purpose of direct marketing only after obtaining the clear and active consent of ADS for such data processing in advance.

  2. The company can carry out direct marketing in the following ways:

  • provide general direct marketing offers - the Estate newsletter with the Company's offers, promotions and news;

  • provide invitations to participate in Manor events, surveys, loyalty programs or lotteries;

  • provide customized direct marketing offers that meet the needs of the AD entity.

AD categories:

  • first and/or last name,

  • e-mail address,

  • telephone number,

  • job title and/or current position.

The purpose of AD collection is the Company's direct marketing.

Legal basis for processing AD:

  • Data processing is necessary for the legitimate interests of the data controller or a third party (GDPR Article 6 d (f) p.);

  • The data subject has given his consent for his personal data to be processed for one or more specific purposes (Article 6 GDPR, Article 1 d (a) p.).

3. From what sources AD is collected - AD is provided to the subject after registration (submitting a notification), and then collected automatically during a visit to the Company's website.

4. Term of data processing - the data identifying the subject of AD is stored for 3 (three) months after the end of the event, and then AD is anonymized into statistical data, which is processed for 12 (twelve) months.

5. For direct marketing purposes, the Company uses automated AD collection and analysis technologies, which are described in Part 3 of the Privacy Policy "Ad management of company website visitors", which are used to profile AD subjects, taking into account their browsing behavior on the website and signs of specific interests.

6. Considering the content of the Company's website, the Company assumes that the data of AD subjects who are over 16 years of age are collected and processed for marketing purposes. If it is determined that the data of AD subjects who are younger than 16 years old are being processed, the Company will immediately stop the processing of these AD subjects and inform the AD subject of the need to submit the consent of the parents or legal representative regarding the processing of such AD subject's data.

7. For direct marketing purposes, the Company uses the services of social networks (Facebook, Instagram), online service providers (e.g. Google) and other online advertising providers. The AD subject will be informed about the privacy policy of these service providers, the data collected and the personal data protection measures applied by the links placed on the Company's website to the privacy policy applied by the aforementioned service providers.

8. The company ensures the AD subject's right to withdraw the consent given at any time regarding the processing of his AD for direct marketing purposes in the same way as the consent was given or in another way acceptable to the visitor.

Use of cookies to collect personal data of visitors to the Company's website

  1. In order to improve the experience of visitors when visiting the Company's website, cookies are used. Cookies help ensure the smooth operation of websites, allow you to monitor the duration and frequency of visits to websites and collect statistical information about the number of website visitors. The information collected by cookies allows the Company to provide visitors with an opportunity to browse more comfortably, to learn more about the behavior of visitors to the Company's website, to analyze trends and to improve both the website and visitor service and the services provided by the Company.

  2. Visitors have the option to choose or accept the cookies used on the website. If the visitor does not agree to cookies being saved on the visitor's computer or other end device, the visitor can change the access settings of the Company's website or the settings of his internet browser: disable all cookies or enable/disable them one by one. However, please note that in some cases, disabling cookies may slow down your internet browsing speed, limit the functionality of certain website functions or block access to the Company's website. More detailed information about cookie management can be found at: http://www.allaboutcookies.org/manage-cookies/ or at: www.google.com/privacy_ads.html.

  3. Data on the cookies used:

Description

The name of the cookie

A standard cookie used to maintain a user session

has_js

The moment of creation

When entering the page

Until closing the website window

Expiry date

Until closing the website window

Facebook advertising management cookie

_fbp

During the first entry to the page

3 months

A cookie to collect information about visitors browsing the website.

AA003

During the first entry to the page and after giving consent

3 months

A cookie to collect information about visitors browsing the website.

ATN

During the first entry to the page and after giving consent

2 months

Facebook cookie to provide third-party advertising links.

Fr

During the first entry to the page

3 months

A cookie to recognize the visitor's consent to the use of cookies when browsing the website.

cookiesAgree

Upon submission of consent

Until deleted

A cookie that distinguishes which cookies you allow to be used while browsing the site.

cookiesLevelX

Upon submission of consent

Until deleted

GoogleAdSense cookie to determine advertising effectiveness.

google_experiment_mod*

During the first entry to the page

Permanent

GoogleAdSense cookie to determine advertising effectiveness.

google-per-mod

During the first entry to the page

Permanent

Google DoubleClick cookie to collect information about visitors browsing the website.

IDE

During the first entry to the page and after giving consent

1 year

This cookie is used by the Google Analytics tool to evaluate the user's visit goals, to prepare reports on website activity for website operators so that they can improve the customer's experience while visiting the website.

_yeah, _

During the first entry to the page and after giving consent

2 years

This cookie is used by Google Analytics to recognize the individual.

_guid

During the first entry to the page

48 hours

This cookie is used by Google Analytics to collect statistical information about website traffic.

_gat

During the first entry to the page

Until the end of the session

4. The Company's website contains links to third-party websites (websites of the Company's partners, e.g. www.dovanusala.lt), as well as social network extensions (Facebook, YouTube, Google Maps plugins). . Third-party websites, services or applications provided on the Company's website are subject to the respective third-party privacy policy. The Company encourages visitors to familiarize themselves with the privacy protection provisions of these third parties.

Data processing of AD entities submitting inquiries, reports or complaints about the Company's activities

  1. The following AD subject data is collected and processed during the processing of inquiries, reports or complaints:

AD categories:

  • first and/or last name,

  • e-mail address,

  • telephone number.

AD subjects - Natural persons who submitted an inquiry, report or complaint to the Company.

The purpose of collecting AD is to improve the Company's activities, ensure the rights of customers and protect the legitimate interests of the Company.

Legal basis for processing AD:

  • processing data is necessary for the legitimate interests of the data controller or a third party (GDPR Article 6 d (f) p.);

  • processing the data is necessary in order to fulfill the contract to which the data subject is a party (GDPR Article 6 d. 1 d. (b) p.).

From what sources AD is collected:

  • By filling out a notification in the prescribed form on the Company's website.

  • Data processing term

  • Complaints, reports and inquiries - 1 (one) year after submission of the answer.

Transfer of AD to third parties - AD is not transferred to third parties, except when it is related to the investigation of legal claims or lawsuits or when the information provided by law must be transferred to law enforcement authorities for further investigation.

  1. Longer data storage: After the expiration of the AD processing and storage period set in this Privacy Policy, the Company destroys the AD, and in the cases specified in the Privacy Policy, reliably and irreversibly depersonalizes it as soon as possible, within a reasonable and reasonable period of time necessary to perform such an action. Personal data may be stored longer than specifically stated in this Privacy Policy only when:

  • it is necessary for the Company to be able to defend itself against demands, claims or lawsuits and exercise its rights;

  • there are reasonable suspicions of an illegal act, which is the subject of an investigation;

  • The data of the AD subject are necessary for the proper resolution of the dispute, complaint;

  • for the storage of IT system recovery backup copies and for other purposes of ensuring the security and operational stability of IT systems;

  • in the presence of other legal grounds.

The company ensures the following AD subject rights:

  1. The right to get acquainted with the processed personal data: the AD subject has the right to obtain the Company's confirmation as to whether his personal data is processed, as well as the right to get acquainted with his personal data processed by the Company and to receive information about the purposes of data processing, categories of processed data, categories of data recipients, data processing period, sources of data acquisition.

  2. The right to correct personal data: If the data provided by the AD subject has changed or the AD subject believes that the information about him/her processed by the Company is inaccurate or incorrect, the AD subject has the right to demand that this information be changed, clarified or corrected.

  3. The right to file a complaint: If the AD subject believes that the Company is processing his AD in violation of the requirements of data protection legislation, he has the right to directly contact the Company for the removal of a possible violation. If the AD subject is not satisfied with the method of solving the problem proposed by the Company or, in his opinion, the Company has not taken the necessary actions according to his request, the AD subject has the right to file a complaint with the supervisory authority, which is the State Data Protection Inspectorate in the Republic of Lithuania (L. Sapiegos st. 7, 10312 Vilnius; tel. (8 5) 271 2804, 279 1445; e-mail: ada@ada.lt).

  4.  Right to delete data (right to be forgotten): In certain circumstances specified in data processing legislation (when personal data is processed illegally, the basis for data processing has disappeared, etc.), the AD subject has the right to request that the Company delete his personal data, if they were obtained on the legal basis of the AD subject's consent.

  5. The right to restrict data processing: In certain circumstances specified in the data processing legislation (when personal data is processed illegally, the AD entity disputed the accuracy of the data, submitted an objection to data processing based on legitimate interest, etc.), the AD entity also has the right to limit the processing of its AD .

  6. The right to data portability: the AD subject, which is processed by the Company in accordance with the consent of the AD subject and whose processing is carried out using automated means, the AD subject has the right to transfer to another data controller, if the data was obtained after obtaining the consent of the visitor. The Company will provide the data requested by the AD subject to be transferred in the format normally used in IT systems and readable by a computer, and if the AD subject wishes and if technical possibilities are available, the Company will forward the data directly to another data manager indicated by the AD subject.

  7. In order to exercise the rights listed above, the AD subject must submit a written request to the Company in the manner indicated below.

Examination of requests for the provision of personal data or violation of rights

  1. In order to protect the AD subject's data from illegal disclosure, the Company, upon receiving the AD subject's request to provide data or to exercise his other rights, has the right to identify the AD subject. For this purpose, the Company has the right to (i) request to indicate the relevant profile data provided in the registration form of the AD entity with the aim of comparing whether the relevant profile data match or (ii) send a control message to the contact specified in the registration form (SMS or e-mail), requesting to perform the authorization action. If the verification procedure is unsuccessful, the Company has the right to state that the applicant is not the subject of the requested data and reject the submitted request.

  2. The company undertakes to provide information on the actions that were taken in accordance with the submitted request without undue delay, but in any case no later than within one month from the receipt of the AD subject's request and the completion of the inspection procedure. Taking into account the complexity and number of requests received, the Company has the right to extend the period of one month for another two months by informing the AD subject before the end of the first month and indicating the reasons for such extension.

  3. If the request was submitted by electronic means of communication, the Company will also provide the answer by means of electronic means of communication, except in cases where this will be impossible (for example: due to an extremely large volume of information) or if the AD entity requested to respond in another way.

Security measures and transfer of personal data

  1. The Company ensures that it uses a variety of security technologies and procedures when handling AD, which protect the managed AD from unauthorized access, use or disclosure.

  2. The company undertakes to immediately take all possible measures when cases of unauthorized access to AD, or their unauthorized use or disclosure are detected, accordingly informing the AD subject and the authority performing AD protection control about the incident.

  3. The Company does not transfer the AD to any third parties without the prior consent of the AD entity, except that the AD may be transferred to third parties for processing, which help the Company to carry out its activities and administer the provision of Services. Such persons may include companies providing data centers, hosting and related services, companies providing advertising, marketing services, companies creating, providing, maintaining and developing software, companies providing information technology infrastructure services, companies providing communication services, internet browsing or internet activity analysis companies performing and providing services, security services providing security services. In each case, the Company provides the data processor with only as much data as is necessary to fulfill a specific order or provide a specific service.

  4. The Company has the right to submit the AD to the competent authorities or law enforcement agencies, upon their request, and also in order to ensure the interests of the Company and third parties to make legal claims or defend legitimate interests.

  5. The company ensures that personal data is processed in the territory of the European Union.

  6. The company has no intention to transfer and will not transfer personal data to third countries, but informs that certain technical data of the AD subject's visit to the Company's website (IP address, cookies, technical information of the browser used, other information related to browser activity and website browsing) website browsing statistics , analysis and related purposes may be transferred or made available to entities operating both in the European Economic Area and outside of it (e.g. when using the Google Analytics service, the provider of which is Google Inc., a company operating in the United States of America).

Final Provisions

  1. This Privacy Policy is effective from 2020. April 30

  2. The Company may change the provisions of this Privacy Policy from time to time. The Company informs the Visitor about the changes by providing a new version of the Privacy Policy on the Company's website indicating the dates of the implemented corrections.

  3. Visitors must understand and acknowledge that by continuing to visit the Company's website, they agree to this Privacy Policy and its changes and updates.

  4. If the AD entities have any questions regarding the Company's processing of personal data in accordance with the provisions of this Privacy Policy or the AD entity intends to exercise its rights related to the processing of the visitor's personal data, the AD entities can submit an inquiry to the Company in the following ways:

  5. by sending a letter to the address: Gurelių k. 11, Turgeliai sen., Šalčininkai district. weekly or Karčiamos street 9, Pakruojo village, Pakruojo district, sav., UAB "PAKRUOJO PARKAI" with the reference on the envelope "Regarding personal data processing";

  6. sending an inquiry by e-mail by mail at: info@pakruojo-dvaras.lt.

  7. by contacting by phone + 370 686 65055 (UAB "PAKRUOJO PARKAI" administration);

  8. or by filling out the notification form on the Company's website (www.pakruojo-receptai.lt) in the section: "Contacts" with the link "About personal data processing".

bottom of page