Privacy policy
PRIVACY POLICY
1. PRIVACY POLICY OBJECTIVE AND ITS APPLICATION
In this Privacy Policy, we provide you with information on how UAB “LITCARGO” (hereinafter referred to as the Company) processes your personal data obtained: when providing freight forwarding services, accepting orders online to execute contracts concluded between the Company and counterparties – legal entities; in order to promote the Company’s visibility when you visit the Company’s website or the Company’s social media accounts; when you submit inquiries, etc. Hereinafter, all the mentioned individuals whose data is processed by the Company are referred to as Data Subjects.
We may change this Privacy policy at any time at our sole discretion, therefore, you have a responsibility to make sure that you are familiar with the latest version of the Privacy policy.
2. THE COMPANY
The Company refers to UAB “LITCARGO”, legal entity code 302637657, address: Ukmergės str. 120-2, 2 floor, LT-08100, Vilnius Business Center “Baltic Hearts” B Building, data about the Company is collected and stored in the Register of Legal entities of the Republic of Lithuania. The contact email address for data protection matters is info@litcargo.lt
3. PERSONAL DATA
Personal data is any information collected by the Company about the Data Subject, which can be used to identify the Data Subject and is stored electronically or by other means. Personal data includes any information, including the Data Subject’s name, surname, address, telephone number, etc., collected by the Company for the purposes specified in this Privacy Policy or in a separate consent or agreement with the Company.
4. Processing of personal data when providing freight logistics services (forwarder’s services)
The Company provides transportation services for cargo with all desired temperature regimes ) (0–+6°C, –18°C, +18°C, dry / uncontrolled temperature). The cargo capacity ranges from 1 box to 33 pallets.
Cargo transportation is conducted throughout Europe, with the main transporto directions being Latvia, Estonia, Finland, Poland, Germany, Italy, Belgium, the Netherlands, France and Spain, where the Company transports the majority of cargo.
In providing freight logistics services, the Company is required to handle the following personal data:
| Data subject categories | Legal basis | Personal data | Data receivers | Data processor | Data storage and deletion deadlines |
| Contract conclusion with clients | |||||
| Clients | Article 6 (1) (b) of GDPR (contract) | Name, surname, personal identification number, contact details (phone number), cargo information, delivery address, other necessary information required to provide services | None | Suppliers of customer management and administration software | 10 years from the expiration of the contract |
| Contract conclusion with clients (legal entities) | |||||
| Client’s representative | Article 6 (1) (f) (legitimate interest) | Name, surname, profession, workplace, contact information | None | Suppliers of customer management and administration software | 10 years from the expiration of the contract |
5. Account registration and administration (order system administration)
The Company aims to efficiently accept cargo transportation orders, communicate optimally with carriers and clients, has created an order system on its website where users can submit orders and view other information related to cargo transportation.
Utilizing the order system, the company must manage personal data necessary for user account registration and account administration.
| Data subject categories | Legal basis | Personal data | Data receivers | Data processor | Data storage and deletion deadlines |
| Account registration | |||||
| Clients | Article 6 (1) (b) of GDPR (contract) | Name, surname, email address, phone number, country | None | Suppliers of customer management and administration software | 5 years since the last login to the account |
| Account administration | |||||
| Client | Article 6 (1) (b) of GDPR (contract) | Email address (login surname), account password, account creation date, login to account data, actions performed within the account | None | Suppliers of customer management and administration software | 5 years since the last login to the account |
6. Social media
The Company actively seeks to create its image in the public space and share moments of its activities and celebrations. In doing so, the Company processes the following personal data:
| Data subject categories | Legal basis | Personal data | Data receivers | Data processor | Data storage and deletion deadlines |
| Increasing brand awareness and executing marketing | |||||
| Individuals who have consented to the company publishing their personal data | Article 6 (1) (a) of GDPR (consent) | Name, surname, email address, consent date, activity, feedback, location, image, other data that may be disclosed | www.litcargo.lt website visitors, visitor’s of the company’s social media accounts | Meta Platforms Ireland Limited (Facebook) | 5 years from the receipt of consent |
| Social media accounts on Facebook | |||||
| Individuals who follow the company’s social media account and engage with the posted content | Article 6 (1) (a) (consent) | Username, data on actions performed on the social network related to the data controllers account (fact of tracking, reactions to the Company’s posts, comments, shares) | Visitors of the company’s social media accounts | Meta Platforms Ireland Limited (Facebook) | Not separately stored (only accessible when logged into the social media account) |
7. Direct marketing
| Data subject categories | Legal basis | Personal data | Data receivers | Data processor | Data storage and deletion deadlines |
| Increasing brand awareness and executing marketing | |||||
| Individuals who have subscribed to the newsletter | Article 6 (1) (a) of GDPR (consent) | Name, surname, email address, date of consent, last day of service provision | None | None | 3 years from the receipt of consent or from the provision of services to the individual |
8. Processing personal data for recruiting purposes
| Whose personal data are processed? | What is the legal basis for such processing? | What personal data are processed? | Who receives the personal data? | How long do we keep the data? |
| Recruitment | ||||
| Candidate | Article 6 (1) (a) of GDPR (consent) and Article 6 (1) (f) of GDPR (legitimate interest) | Name, surname, workplace, email address, date of birth, address, education, phone number, desired position, CV, personal qualities, work experience, proficiency in foreign languages, ability to work with computer programs, desired salary, other information provided in the CV, recommendation and or motivational letter, information in the candidate‘s public social media profiles, etc. | Suppliers of customer management and administration software | Within 3 working days following the conclusion of the selection process or the decision to terminate the selection process, unless the candidate has consented to the processing of personal data for a duration of 1 year |
9. Execution of contracts with counterparties by the company
| Data subject categories | Legal basis | Personal data | Data receivers | Data processor | Data storage and deletion deadlines |
| Conclusion and execution of contracts with legal entities | |||||
| Employees (cargo carriers, drivers), employees of the contract’s legal entity | Article 6 (1) (f) of GDPR (legitimate interest) | Name, surname, email address, phone number, content of correspondence | Legal entity | Suppliers of customer management and administration software | 10 years after expiration of the contract |
| Conclusion and execution of contracts with natural persons | |||||
| Supplier, individual contractor, etc. | Article 6 (1) (b) of GDPR (contract) | Name, surname, personal identification number, address, business license / sole proprietorship certificate number (service provider), bank account number, information about provided services, other information related to contract execution | None | Suppliers of customer management and administration software | 10 years after expiration of the contract |
10. Accounting
| Whose personal data are processed? | What is the legal basis for such processing? | What personal data are processed? | Who receives the personal data? | How long do we keep the data? |
| Accounting | ||||
| Customers, employees of customers, other natural personas | Article 6 (1) (c) of GDPR (legal obligation) | Name, surname, information about received / provided services, payment card details, other personal data indicated in invoices and other accounting documents | IT service providers, payment services provided | The data is stores according to the deadlines set by the legislation regulating accounting |
11. Defense of legitimate interest
| Whose personal data are processed? | What is the legal basis for such processing? | What personal data are processed? | Who receives the personal data? | How long do we keep the data? |
| Defense of legitimate interest | ||||
| Clients, candidates, other persons | Article 6 (1) (f) of GDPR (legitimate interest) | All personal data processed for aforementioned purposes are essential for safeguarding and defending the Company’s legitimate interests in cases of disputes with individuals | IT service providers, Courts, attorneys, bailiffs | 5 years from the date the court decision becomes final |
12. Contact Us
There are several ways how you can contact: by phone, e-mail, via social media accounts. We personally accept, review and reply to all messages. If you contact us, we can process the following data belonging to you: name, surname, e-mail address, IP address, phone number, date, your nickname used in social media networks, and text of messages.
Such data will be processed in order to answer your questions. If you do not provide your contact details, we will not be able to contact you.
Electronic messages will be stored for 1 (one) year as of the receipt of the last message of the particular conversation except for information that must be stored for other terms pursuant to the Privacy Policy or legal acts.
All personal data provided by you in the course of communication with us will be used only for the aforementioned purposes and to review messages and administer and manage the communication flows. We undertake not to use your personal data without your express consent in any publications in such a way that would allow identifying you.
Please note that we may have to contact you by post, e-mail or phone. Please notify us of any changes of your personal data.
13. DATA PROCESSORS. DATA RECIPIENTS
We can disclose your personal data to our employees, service providers, your Bank.
Moreover, we can disclose information about you:
- If we must do this under the law (state institutions, law enforcement institutions and other persons in accordance with the procedure established by laws of the Republic of Lithuania);
- In order to protect our rights or interests (including the provision of your data to third parties in order to recover your debts to us);
- In order to sell a part of Company’s activities or assets, where we disclose your personal data to the potential buyer of the activities or a part thereof;
- Having sold the activities of the Company or a substantial part thereof to third parties.
We may also provide personal data to other persons upon receiving your written consent.
Your personal data will not be transferred to third countries and/or international organisations.
If we disclose your personal data to groups of recipients other than those specified in this Privacy policy, we will inform you as soon such personal data are disclosed for the first time, unless we have already provided you such information earlier.
14. COOKIE POLICY
We may use cookies on this website.
Cookies are little text files which are stored on the Internet browser or hard drive of your computer or mobile device when you visit our website. Cookies work to make your experience browsing our website as smooth as possible. They are designed to improve the functionality and use of the website, also for the purposes of analysis.
We monitor traffic of the website and collect information on the number of visitors browsing the website, the domain name of internet service providers of visitors, etc.
Cookies can be stored for varying lengths of time on your Internet browser or device.
Most Internet browsers accept cookies, but person can change the Internet browser settings so that cookies would not be accepted. However, in this case, some functions may not work.
All information about cookies used by this website, their purpose, validity and the data used are given in the table below:
| Cookie | Purpose | Expiry time |
| CookieScriptConsent | This cookie is used by Cookie-Script.com service to remember visitor cookie consent preferences. It is necessary for Cookie-Script.com banner to work properly | 1 month |
| Tvs_session_id | This cookie is used to maintain the session state | Until the end of a session |
| _gid | This cookie is set by Google Analytics. It stores and updates a unique value for each visited page and is used to calculate and track page views | 1 day |
| _ga_1TG31QWWT7 | This cookie is used by Google Analytics to maintain the session state | 1 year and 1 month |
| _gat_UA-229953318-1 | This is a template-type cookie set by Google Analytics, where the template element of the name contains the unique identity number of the account or website it is associated with. This is the _gat cookie variant used to limit the amount of data recorded by Google on high-traffic websites | 59 seconds |
| _ga_V3DKYEX0KJ | This cookie is used by Google Analytics to maintain the session state | 1 year and 1 month |
| _ga | This cookie name associated with Google Universal Analytics – a significant update to Google’s more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in every page request on a site and is used to calculate visitor, session, and campaign data for site analytics reports | 1 year and 1 month |
| _ga_4FF7QTESTV | This cookie is used by Google Analytics to maintain the session state | 1 year and 1 month |
| _fbp | This is used by Meta to present a variety of advertising products, such as real-time bids from third-party advertisers | 3 months |
| _gcl_au | This is used by Google AdSense to enable experimentation with advertising effectiveness on sites using their services | 3 months |
| IDE | This cookie is set by Doubleclick and provides information about how the end user uses the website and any advertisement that the end user may have seen before visiting that website | 1 year |
15. SECURITY OF YOUR PERSONAL DATA
Your personal data will be processed pursuant to the requirements set out in GDPR, the Republic of Lithuania Law on Legal Protection of Personal data and other legal acts.
In the course of processing your personal data, we implement organisational and technical measures which ensure the protection of personal data from accidental or unlawful destruction, alteration, disclosure and any other unlawful processing. These measures may include, among other, encryption, physical access security, auditing and other appropriate technologies.
16. YOUR RIGHTS
This section contains information about your rights related to the processing of your personal data carried out by us and cases where you can exercise these rights. If you would like to receive more information on your rights or to exercise them, please contact us via e-mail indicated in this Privacy policy.
We will provide information on actions taken on a request with regard to implementation of your rights without undue delay and in any event within 1 (one) month of receipt of the request. In consideration of the request complexity and the number of received requests, the aforementioned term may be extended for 2 (two) further months. In this case, we will notify you of such term extension and reasons for it within 1 (one) month as of the receipt of request. We will refuse to implement your rights only in cases provided for in the legal acts.
Your rights are as follow:
The right to be informed
As a data controller, we are obliged to provide clear and transparent information about our data processing activities. This is provided by this Privacy policy.
The right of access
We want you to fully understand how we use your personal data and not to experience any inconvenience because of that. You can contact us at any time and ask if we process any of your personal data. If we store or use your personal data in any way, you have the right to access them.
We will provide access to the personal data we hold about you as well as the following information: the purposes of the processing, the categories of personal data concerned, the recipients to whom the personal data has been disclosed, the retention period or envisioned retention period for that personal data, when personal data has been collected from a third party, the source of the personal data.
The right to rectification
When you think we process inaccurate or incomplete personal information about you, you may exercise your right to correct or complete certain personal data. This may be used with the right to restrict processing to make sure that incorrect / incomplete personal data is not processed until it is corrected.
The right to restrict processing
You have the right to ask us to restrict the processing of your personal data or to object to their processing:
- During the period required for us to verify the accuracy of your personal data when you submit claims with regard to data accuracy;
- In cases of unlawful collection, storage or use of your personal data where you decide not to request of data;
- When we do not need your personal data anymore, but you need them for the establishment, exercise or defence of legal claims;
- During the period required to determine if we have an overriding legal basis to continue processing your personal data if you exercise your right to object to the processing of your personal data.
The right to erasure (the right „to be forgotten“)
Where no overriding legal basis or legitimate reason continues to exist for processing personal data, you may request that we delete the personal data. This includes personal data that may have unlawfully processed. We will take all reasonable steps to ensure personal data erasure.
The right to data portability
You have the right to the portability of data obtained by us under your consent or for the purpose of agreement conclusion. If you exercise this right, we will transfer a copy of the data provided by you.
The right to object
You have the right to object to use of your personal data by us:
- In cases where we use such data in order to implement our legitimate interests but we do not have an overriding legal basis to continue using your personal data; or
- At any time when we use your personal data to send newsletters or for direct marketing purposes. In such case, the data will not be used for these purposes anymore; however, they may be used for other legitimate purposes.
17. COMPLAINTS
If you believe that your rights of the data subject have been and / or may be violated, please promptly contact us via email indicated in this Privacy policy. We ensure that as soon as we receive your complaint, we will contact you within the reasonable period and inform you about the complaint handling process, and them about its result.
If the handling results are unsatisfactory to you, you will be able to submit a claim to the supervisory authority – the State Data Protection Inspectorate (www.vdai.lrv.lt).
Detail information about implementation of the data subject’s rights is provided in the Company’s Procedure for the Implementation of Rights of the Data Subjects.
18. RESPONSABILITIES
You are responsible for the confidentiality of the data you provide, as well as ensuring that the data you provide to us is accurate, correct, and comprehensive. If your provided data changes, you must inform us immediately via email. We will not be liable for any damages that may arise to you due to providing incorrect or incomplete personal data or failing to inform us of any changes to them.
19. PRIVACY POLICY REVIEW
We may update or amend this Privacy policy at any time. Such updated or amended Privacy policy will come into effect as of its publication on our website www.litcargo.lt. You should check it from time to time and make sure that you find the current version of Privacy policy acceptable.
The latest update to the Privacy policy was made on 2024-02-27.