We are conscious of the great importance of your personal data protection. We collect and process only the data that is necessary for performance of our activities. We process personal data in a legitimate, transparent and fair manner, for pre-defined purposes and only to the extent necessary for the achievement of the purposes of processing. When processing personal data, we want them to be accurate, safe, confidential, duly stored and protected.
Your personal data is managed in accordance to the General Data Protection Regulation (EU) 2016/679 adopted on 27 April 2016 (the 'GDPR'), the Law on the Legal Protection of Personal Data of the Republic of Lithuania, as well as the requirements for managing personal data as set in any other legal acts.
1. What is this document?
2. Who are we?
2.1. This Platform is managed and administered by us, i.e. CC Learning, UAB residence address: Marių str. 17, Klaipeda, Lithuania, contact e-mail: firstname.lastname@example.org ('We' or 'we').
3. What principles do we follow?
3.1. When processing your personal data we:
a) will comply with the requirements of the effective and applicable laws, including the GDPR;
b) will process your personal data in a legitimate, fair and transparent manner;
c) will collect your personal data for the established, clearly defined and legitimate purposes and will no longer process them for any method that is not coordinated with such purposes, except to the extent permitted by the laws;
d) will take any reasonable means to ensure that personal data which is not accurate or complete, in view of the purposes of processing, would be immediately corrected or supplemented, the processing of such would be terminated or it would be destroyed;
e) will keep such data in a form which permits to identify you for no longer than it is necessary for the purposes for which personal data is processed;
g) will ensure that your personal data is processed in a manner that ensures appropriate security of personal data, including protection against unauthorised or unlawful processing and against the accidental loss, destruction or damage, using appropriate technical or organisational measures.
4. How do we collect your personal data?
4.1. We process your personal data received under the following methods:
a) When you provide data to us. You provide us with your personal data and other information by using the Platform through your active actions when using such networks, i.e. by writing to us or communicating with our team, by submitting your complains and/or enquiries, assignments, comments, etc. Please note that in case you contact us in writing or by e-mail, we may store the data of correspondence.
b) When you use the Platform. When you use our controlled website certain information (e.g. internet address (IP), type of used browser, year, number of visits, reviewed websites, time spent on the Website, internet source (that you were redirected from), information on the used device, language, country, internet provider, etc.) is collected automatically.
4.2. We can combine personal data received directly from you with data collected individually from public or available sources. For example, your presented personal data can be combined with data collected when providing services to you or with data that was legally obtained from third parties. You will always be able to request the correction of erroneous personal data and exercise any other rights granted to you as the data subject.
5. Why and how do we process your personal data?
b) For the purpose of quality control of our activities and ensuring of functionalities of the use of the Platform (processing of your submitted enquiries and/or complaints, comments and communication (including the storage)). When you contact us (or we contact you in case of receipt of your enquiry), we process information received by phone, e-mail, via Website or any other form of communication. For this purpose, we may process such personal data as first name, last name, e-mail address, internet address (IP), nickname, related company, telephone number, content of complaint and/or enquiry, date and time of your application, communication information. For this purpose, your personal data can be received directly from you, by performing the enquiry or analysing the complaint, we can also create personal data by ourselves (e.g. having received your complaints, we contact third persons regarding the factual circumstances and record them, etc.), the controllers of social networks. For this purpose, your personal data may be supplied or transferred to legal persons providing website maintenance and other IT services. For this purpose, your personal data is stored for a period of 1 year from the day of recording, except for the cases, when there are grounds to believe that a crime or any other illegal actions have been committed or internal investigation is initiated until the end of the examination of the respective investigation and/or the case.
c) For any other purposes stipulated in our internal documents when we are obliged to process your personal data by the laws or on the basis of any legal interest or on any other grounds for legitimate processing of personal data stipulated by the laws.
6. Do we use your personal data for direct marketing and what are the rules for subscription to our newsletters?
6.1. Upon the receipt of your consent, we can use your personal data for the purpose of direct marketing in order to provide you with our offers, news and information on our services, which we consider to be interesting for you.
6.2. For this purpose, we process such personal data as stipulated in Article 5.1. a).
6.3. You can choose whether to allow us to use your personal data for direct marketing. You can do so by entering your e-mail address on the Platform and by pressing the approval for subscription or by writing us an email and by pressing the received approval for subscription.
6.4. If you give your consent to use your personal data for direct marketing, we can use your personal data for the analysis and improvement of the effectiveness of the Platform, advertising and market research and any other purposes of our marketing and sales. In such case, we will use depersonalised data.
6.5. Even if you gave your consent to process your personal data for direct marketing, this consent can be withdrawn at any time for all or part of actions of processing. In such case, you can:
a) notify us on the withdrawal by the method indicated in electronically received messages and/or proposals (e.g. by pressing the link regarding the refusal of subscription);
6.6. If you withdraw your consent, we will try to terminate the processing of your personal data for the purposes of direct marketing as soon as possible.
6.7. The withdrawal of consent automatically obliges us to destroy your personal data or to provide you with information on our processed personal data, therefore, if you want us to perform these actions as well, you should inform us on such request separately.
7. How do we share your personal data?
7.2. We can transfer your personal data to companies that help us to perform our activities. We request such partners to process your data only according to our given instructions and according to the valid legal acts ensuring the protection of your personal data. We conclude contracts with these persons in order to oblige them to follow the requirements of protection of personal data in a strict manner.
7.3. The possibility of the aforementioned service providers to use your data is restricted – they cannot use such data for any purposes other than the provision of services to us.
8. How long do we store your personal data?
8.1. We store your personal data for no longer than it is necessary for the purposes of processing of data or stipulated by the laws, if they establish a longer period for the storage of data.
8.2. Our aim is not to store outdated, irrelevant personal data, therefore, in case of update of data (e.g. specification, change of information, etc.), only relevant information is stored. Historical information is stored only if it is necessary in accordance with the procedure established by the laws or for the performance of our activities.
9. How do we store your personal data?
9.2. Unfortunately, the transfer of information online is not completely safe. Even if put our every effort in protecting your personal data, we cannot ensure the security of data when you provide such data on the Website – you shall accept the risk related to the transfer of data to the Website. When we receive your data, we will apply strict procedures and security means for the protection of your data from any unauthorised access.
9.3. In case of unlikely circumstances of finding out about the security breach of your personal data, which may cause a considerable risk to your rights and freedoms, we would immediately inform you as soon as we find out and establish what kind of information has been accessed.
10. External websites
11.1. The Platform may contain links to external websites – the websites where we have accounts and where our services are advertised. By using such links to reach any of such websites, please note that these websites and services provided through such websites have their own privacy policies and we assume no responsibility or obligations for these policies or any personal data collected on these websites or by providing services, for example, contact or location data. We recommend to review such policies before submitting personal data on such websites or by using any other services. We also recommend to read the privacy statements of third parties having the control of these websites and contact the service providers directly if you have any questions on how they use your personal data.
12. What are your rights?
12.1. By processing your personal data, we guarantee your rights according to the GDPR and the Law on the Legal Protection of Personal Data of the Republic of Lithuania. As the subject of personal data, you have the following rights:
a) to know (be informed) about the processing of your personal data;
b) to familiarise with your personal data that is processed by us;
c) to request rectification or supplement, specification of your incorrect, imprecise, incomplete personal data;
d) to request to destroy personal data when it is no longer necessary for the purposes for which they have been collected;
e) to request to destroy personal data if they are processed illegally or when you withdraw your consent regarding the processing of personal data or do not give a consent, which is necessary;
f) to object to the processing of personal data or to withdraw a previously given consent;
g) to request to terminate the actions of processing of personal data (except for storage) in case of any disputes or it is necessary to inspect the legitimacy of the processing of data, precision of data, as well as in certain cases when we no longer need personal data, but you do not want us to delete such data;
h) to request to submit your personal data, where technically possible, collected according to your consent or for the purposes of performance of contract in an easily readable format or request to send to another data controller.
12.2. We will seek to ensure the realisation of your rights as a personal data subject and to form all the conditions for effective realisation of these rights, however, we reserve a right to refrain from fulfilling your claims when it is necessary to ensure the following:
a) performance of legal obligations that have been set to us;
b) national security or defence;
c) public order, prevention of criminal activities, investigation, detection or criminal prosecution;
d) important economic or financial interests of the state;
e) prevention, investigation and detection of breaches of official or professional ethics;
f) protection of your rights and freedoms as well as those of other persons.
12.3. You can submit your claims related to the realisation of your rights in person, by mail or any means of electronic communication. After the receipt of your application, we may request to submit the documents proving your identity as well as any other additional information related to the application and necessary to us.
12.4. In case of receipt of your claim, we will reply to you no later than within 30 calendar days from the receipt of your claim and the day of submission of all the documents necessary to prepare the reply.
12.6. In case of refusal to perform your claim, we will clearly indicate the reasons of such refusal.
12.7. In case of disagreement with our actions or the answer to your application, you can appeal our actions and decisions by applying to a competent state authority.
13. Where can you submit a complaint?
13.1. If you want to submit a complaint regarding the processing of your data, you shall submit it in writing, by indicating as much information as possible, to the contact details provided at the end of this Policy. We will cooperate with you and will seek to solve all the matters immediately.
13.2. If you think that your rights under the GDPR have been breached, you can submit an appeal to our supervisory institutions. More information and contact details are available on the website of inspectorates (www.ada.lt). However, our principal aim is expedient and peaceful settlement of any disputes in cooperation with you.
15. How to contact us?