UAB "TMT" online shop www.xprog-m.com privacy and cookies policy.

 

 

 

1. Main concepts

1.1. Company – means UAB „TMT“, according to Lithuanian Republic lawsestablished company, located at Beržų st. 2R Ringaudų vlg., Kaunas, company code 160425238, information collected is being protected by juridical personal rights.

1.2. Information subject – means an actual person, whose personal data is being taken care of by the Company.

1.3. Personal data – means information, associated with an actual person or juridical - Information subject.

1.4. Personal data regulation – means any action involving personal data : collection, recording, gathering, protection, classification, grouping, connecting, changing (adding or correcting), sharing, using, logical and/or arithmetical operations, searching, deleting.

1.5. Automatic way - means actions, completely or partly done by automated tools.

1.6. Employee – means a person, who with the Company has signed a work or similar contract and the Company’s head has personally appointed he or she to look over all or specific Personal data.

1.7. Data receiver – means juridical or physical person, who is receiving Personal data. Data receiver (-ers) must be registered in an Inspection.

1.8. Inspection – Lithuanian Republic Government's data security inspection.

 

2. General regulations

2.1.This document governs the Company’s and its Employees’ actions while interfering with Personal data, using the Company’s created automatic Personal data regulation tools, it also sets Information subject rights, risks for Personal data security breach, making sure that Personal data is secure and other Personal data regulation regarding questions.

2.2. Personal data has to be precise, accurate and the right size, which is required to collect them and work with further. If required for Personal data regulation, Personal data will be constantly updated.

2.3.The Company, for the purpose that is provided in the rules, regulates such Information subject’s Personal data:

(a) First name;

(b) Last name;

(c) E-mail address;

(d) Phone number;

(e) IP address;

(f) Purchase history;

(g) Product delivery address;

2.4. While managing Personal data the Company is following Lithuanian Republic personal data right protection laws and other laws and right acts governing data management and protection, also these rules.

3. Personal data management

3.1. Personal data is being taken care of automatic and not automatic ways using Company’s created personal data regulation and management tools.

3.2. Only the appointed Employees have the right to regulate Personal data. Every Employee, who is appointed to regulate Personal data has to protect Personal data, keep it safe and to follow Personal data right acts.

3.3.Employee must: (a) protect Personal data and keep it safe from all who are unauthorized to access it; (b) regulate Personal data according and following Lithuanian Republic laws, right acts and these Rules; (c) not reveal, sell or in any way endanger the security of Personal data; (d) immediately inform head of the Company, or his/hers entrusted Employee, about any kind of suspicious situation involving Personal data and causing it any risks or harm.

3.4.Employees who regulate Personal data in an Automatic way or whose computers can be used to access network where Personal data is being kept safe, must use passwords. Passwords must be changed periodically as well as in certain specific situations (for example: new Employee getting hired, some sort of event or person causing suspicion, password getting leaked, etc.). Employee working on a specific computer only knows its and no other computer’s password.

3.5.Employee who is overseeing computers must guarantee, that Personal data files will not be “seen” (shared) from other computers and that antivirus security program is being kept updated.

3.6.Employee who is overseeing computers has to make copies of data file already in computers. In a case of crash or an error of any sorts Employee must restore them, to their previous state in time of few work days.

3.7.Head of the Company or his/hers appointed Employee must organize and guarantee security of Personal data.

3.8.Employee loses his right to work with Personal data when Employees’ work or any of the same type contract with the Company ends or when the head of the Company cancels Employees’ access to personal data.

4. Information subject’s rights.

4.1. Information subject (once a year without any additional pay) has a right to get information, what are the sources and what is his/hers Personal data in storage, on what purpose they are being regulated and who is regulating them. In order to have an ability to acquire all of this information a person must send a written request to the Company about this matter. A request can be sent using mail, fax or email. A response to a request will be sent out in a time span of 30 work days.

4.2.When the Company receives Information subject’s request ,about his/hers Personal data regulation, Company sends back an answer which includes is his/hers Personal data being regulated currently and also Company provides the information that Information subject requested. A response with information is sent out in a time span of 30 work days from the day that the Company has received Information subject’s request. Requested information will be sent by either mail or email.

4.3.Ability to correct, delete Personal data or stop any action taken to regulate Personal data an Information subject must send a written request to the Company with proof that Information subject is indeed Information subject, only then is this ability granted within a time span of 5 work days after making sure that proof presented is legitimate. A response with requested actions taken (changing, deleting, stopping action) is sent back no later than in  5 work days.

4.4.The Company guarantees that all Lithuanian Republic laws and right acts will be followed to guarantee Information subject’s rights and interests.

 

5. Personal data transition

5.1.Certain Personal data (first/last name, delivery address, phone number) can be presented to delivery services in order for a delivery to be possible.

5.2.Personal data can be presented to third party if that is requested by Lithuanian Republic laws or right acts in certain situations.

 

6. Actions that cause risks for security of Personal data

6.1.Personal data security violation – actions or not taken actions, which can or do cause not wished consequences also is against imperative law norms that include security regulations for Personal data. Harm and consequences of this action or actions is determined according to commission which was created by head of the Company or his/hers entrusted Employee.

6.2. Actions that cause risks for security of Personal data: (a) accidental, when Personal data security violation happens due to accidental reasons (data regulation errors, accidental deletion of files or information, accidental delivery of information to a wrong Information subject due to incorrect address input, system crashes due to electric power shut down, program failure, improper maintenance of Personal data, improper security, integration into network and other.);

(b) intentional, when Personal data security violation happens due to intentional factor (break-in into the premises, Personal data file “safes”, information systems, computer network, intentional ill-willed Personal data security violation, intentional spreading of computer virus, theft of Personal data, unauthorized use of other Employees’ abilities/ rights and other);

(c) environmental and not disasters (lighting strike, fire, flood, storm, failure of electric installation, change of temperature or humidity, mud or dust caused magnetic field influence, technical accidents, other unpredictable and unpreventable events etc.);

 

7. Personal data security enforcing measures

7.1.The Company, in order to ensure security of Personal data, presents these Personal data security enforcing measures: (a) administrative (safe acquaintance of the personnel, safe management of documents and computer data and other);

(b) technical and automated equipment security (servers, information

systems and database administration, workplace and the Company’s maintenance of facilities, protection for operating systems and protection against computer viruses and other);

(c) Communications and computer network security (filtering of shared data, applications and such (fire-walling) and other);

7.2.Personal data protection hardware and software tools must ensure:

(a) operating systems and database storage for backup copies, copying devices and monitoring;

(b) technology that would continuously sort and secure data;

(c) system activity updates in emergencies;

(d) the authorized use of the data and their integrity;

7.3.All Employee’s who possess the right to access and regulate Personal data, must strictly follow the Company’s established personal data protection measures, rules and instructions or order requirements.

 

8. Amount of time that Personal data will be regulated and/or kept safe

8.1. The Company keeps Personal data safe for 10 years since registration beginning or last order/delivery.

8.2.After 10 years since registration beginning or last order/delivery, Personal data and Purchase history will be destroyed (deleted from database), except for data, which according to the law have to be passed on to government archives.

 

9. Responsibility

9.1. Employees who break Lithuanian Republic Personal data protection laws or other right acts regulating Personal data management and protection or these Rules, will be punished according to Lithuanian Republic laws foreseen responsibility measures.

 

10. Final Provisions

10.1. Rule compliance is the Company’s head’s responsibility or his/hers appointed Employees’. 10.2. The responsible employees must be acquainted with the Privacy policy in signing.

 

11. Changes to our privacy policy

The Company reserves the right to change this policy and our Terms of Service at any time. We will notify you of significant changes to our Privacy Policy by sending a notice to the primary email address specified in your account or by placing a prominent notice on our site. Significant changes will go into effect 30 days following such notification. Non-material changes or clarifications will take effect immediately. You should periodically check the Site and this privacy page for updates.

 

 


 

 

What are cookies?

A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. The Company may use both persistent and session cookies; persistent cookies remain on your computer after you close your session and until you delete them, while session cookies expire when you close your browser. It enables the website to remember your actions and preferences (such as login, IP adress, browser, operating system, language, font size and other display preferences, your last visit, your shopping cart) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.

 

What cookies we are using?

- Google Analytics:

We use Google Analytics to collect information about how people use this site. We do this to make sure it is meeting its users’ needs and to understand how we could do things better.

Google Analytics stores information about what pages you visit, how long you are on the site, how you got here and what you click on. We do not collect or store your name or address so this information cannot be used to identify who you are. We do not allow Google to use or share our analytics data.

The following cookies are set by Google Analytics:

_utma

_utmb

_utmc

_utm

 

- Funcional cookies:

random letters and numbers cookie name to store user or guest ID

How to control cookies

You can control and/or delete cookies as you wish – for details, see aboutcookies.org. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.

 

 

Contact us

If you have any questions regarding this Privacy Policy or the practices of this Site, please contact us by sending an email to info@xprog-m.com.

 

Last Updated: This Privacy Policy was last updated on 2017.07.03.

 


HomeHome

Cart  

(empty)