1. Introduction

ZS "Vēsmiņas", Reg. No.: 42401020050, (hereinafter referred to as the Controller), on the website laukezers.lv (hereinafter referred to as the Website) processes personal data obtained from the data subject – the user of the Website (hereinafter referred to as the User). The Controller cares about the privacy and personal data protection of the User and respects the User's rights to the lawfulness of personal data processing in accordance with applicable legislation – Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, hereinafter – the Regulation). and other applicable laws on privacy and data processing. In view of the above, the Controller has developed this privacy policy with the aim of providing the User with the information required by the Regulation.

 The Privacy Policy applies to the processing of data regardless of the form and/or environment in which the User provides personal data (on the Website, in paper format, in person or by telephone). The Controller reserves the right to change these terms at any time.

It is the responsibility of the Website visitor to independently check the content of the Website in order to familiarise themselves with any changes to the terms and conditions.

2. Identity and contact details of the controller

Controller: ZS "Vēsmiņas"

Reg. No.: 42401020050

Controller's address: "Šūmāni", Kūku pagasts, Jēkabpils novads, LV-5222

Website: laukezers.lv

E-mail: saule@niko.lv

Phone: +371 27705777

3. Purposes of personal data processing and legal basis for processing

If the User submits their personal data to the Controller by telephone, using the Website contact form, e-mail or other means of mail, we will store and use this information in order to perform or conclude the relevant service agreement, including for customer identification; preparation and conclusion of the agreement; provision of services (performance of contractual obligations); customer service; examination and processing of objections; to increase customer loyalty; to administer payments and settlements; to recover and collect debts; to prove facts, maintain the website and improve its operation; for business planning and analysis; for planning and accounting. We will also process this data for the purpose of providing information to public authorities and operational entities in cases and to the extent specified in external regulatory enactments. The legal basis for data processing is the conclusion and performance of a contract, compliance with regulatory enactments, in accordance with the consent of the Customer - data subject, our legitimate (legitimate) interests (e.g. to verify the Customer's identity before concluding a contract; to ensure the fulfilment of contractual obligations; to analyse the use of the website, to ensure the efficiency of service provision, etc.).

4. Categories of personal data

Categories of personal data – name, surname, personal identification number, e-mail or postal address, IP address, telephone number, content of messages or letters, etc.

5. Categories of recipients of personal data

The data is disclosed to those employees of the Controller who need it to perform their direct duties in order to fulfil or conclude the relevant service provision contract. When obtaining and using personal data, we partially use the services of external service providers who strictly follow our instructions in accordance with the contract and whom we monitor continuously before using their services and thereafter.

6. Categories of data subjects

Categories of data subjects – the Controller's existing, former and potential customers, as well as other persons who express a wish to communicate with the Controller.

7. Transfer of data outside Latvia

The data received will not be transferred outside Latvia, the European Union or the European Economic Area, nor will it be transferred to any international organisation. At the same time, given that the Website is linked to Google and Facebook services, the Controller cannot guarantee that these companies will not transfer data outside the European Union or the European Economic Area.

8. Data retention period

We process and store the User's personal data for as long as either party has a legal obligation to retain the data.

Once these circumstances cease to exist, and unless otherwise specified in the data protection guidelines, we will delete personal data no later than three months after the original reason for storing the data no longer applies, except in cases where we are legally obliged to continue storing the data (e.g. for accounting or legal purposes).

9. Data subject's access to personal data

The data subject has the right to obtain access to the data subject's personal data within one month of the date of submission of the relevant request.

The User may submit a request to exercise their rights in writing in person at the Controller's legal address (presenting a personal identification document), by post or by e-mail, signed with a secure electronic signature.

Upon receiving a request from the User to exercise their rights, the Controller shall verify the identity of the User, assess the request and comply with it in accordance with regulatory enactments. The User has the right to receive the information specified in regulatory enactments in relation to the processing of their data, the right to request access to their personal data, as well as to request the Controller to supplement, correct or delete it, restrict its processing or object to its processing, insofar as these rights do not conflict with the purpose of the data processing (conclusion or performance of a contract).

The data subject shall not have the right to obtain information if the disclosure of such information is prohibited by law in the interests of national security, national defence, public security, criminal law, as well as for the purposes of safeguarding the financial interests of the State in tax matters or the supervision of financial market participants and macroeconomic analysis.

10. Processing of cookies

The Website collects data about visitors to the Website, thereby enabling the Website operator to assess how useful the Website is and how it could be improved. The Controller is constantly improving the Website with the aim of improve its usability, so the Controller needs to know what information is important to visitors to the Website, how often they visit the Website, what devices and browsers they use, what region they come from, and what content they prefer to read. The Controller uses Google Analytics, which allows the Controller to analyse how visitors use the Website. You can find out how Google Analytics works on Google's website at https://support.google.com/analytics/answer/1012034?hl=lten&ref_topic=6157800. The Controller uses the collected data in its legitimate interests to improve its understanding of the needs of visitors to the Website and to improve the accessibility of the information published by the Controller. Visitors may opt out of Google Analytics data collection at any time as described here: https://tools.google.com/dlpage/gaoptout/.

The server hosting the Website may record requests sent by visitors (device used, browser, IP address, date and time of access). The data referred to in this section is used for technical purposes: to ensure the proper functioning and security of the Website and to investigate possible security incidents. The basis for the collection of the data referred to in this section is the Controller's legitimate interest in ensuring the technical availability and integrity of the Website.

Cookies are small files that are stored on the visitor's computer by the browser each time the visitor visits the Website, to the extent specified in the visitor's browser settings. Certain cookies are used to select and tailor the information and advertisements offered to visitors based on the content they have previously viewed, thereby making the Website simple, convenient and personalised for visitors. Additional information about cookies, as well as their deletion and management, can be found at www.aboutcookies.org.

The Website uses cookies to collect the user's IP address and browsing information and to enable the Website to remember the visitor's choices. Cookies allow the Controller to track the flow of data on the Website and user interaction with the Website – the Controller uses this data to analyse visitor behaviour and improve the Website. The legal basis for the use of cookies is the Controller's legitimate interest in ensuring the functionality, availability and integrity of the Website.

Visitors can control and/or delete cookies at their discretion. More information about this process is available here www.aboutcookies.org. Visitors can delete all cookies on their computer, and most browsers can be set to block cookies from being placed on your computer. Visitors can refuse cookies in their browser menu or at https://tools.google.com/dlpage/gaoptout. To make the necessary settings, visitors need to familiarise themselves with the terms and conditions of their browser. If cookies are blocked, the visitor will have to manually adjust the settings each time they visit the Website, and some services and features may not work.

Statistical data about visitors to the Website can only be accessed by employees of the Controller who are responsible for analysing such data.

Unless otherwise specified, cookies are stored for as long as the action for which they were collected is performed, and are then deleted.

If the Controller's Website has a forum or comment feature, the IP address and data provided by the visitor will be stored on the Website. Cookies containing this data may be stored for one year for your convenience (so that you do not have to re-enter it next time).

11. Third-party websites

We may work with third parties who are authorised to place third-party cookies on our websites or our services, apps and tools with your consent. These service providers enable us to provide you with a better, faster and safer website experience. Please note that third-party cookies are subject to the privacy policies of those third parties, and we are not responsible for those privacy policies.

12. Right to lodge a complaint with a supervisory authority

 The data subject has the right to lodge a complaint with a supervisory authority (the Data State Inspectorate). Documents are accepted by the Data State Inspectorate by post, e-mail (documents signed with a secure electronic signature), and can also be left in the mailbox on the 1st floor at Blaumaņa iela 11/13, Riga. The Data State Inspectorate accepts e-mails sent to the e-mail address info@dvi.gov.lv.

13. Validity of the privacy policy

We reserve the right to change and supplement the content of this privacy policy from time to time to clarify how we process your data. In view of this, we invite you to review this privacy policy regularly so that you are aware of how your personal data is processed on the Website.