Privacy

Personal data is any information that can be used to identify an individual. Measures are taken to ensure that customers personal data with controllers are always secure and that customers personal data are processed in accordance with applicable data protection laws, internal policies, guidelines and procedures. 

The purpose of the Privacy Policy is to provide the natural person – the data subject – with information on the purpose, scope, protection and periods of processing of personal data during the acquisition of data and processing of personal data of the data subject.

1. Personal Data Processing Controller: SIA KATAP, Reg. No. 40203095186, legal address: Asarīši-3, Vētras, Mārupes novads, LV-2167 (hereinafter also – KATAP)

2. Applicable Laws: Personal Data Processing Law of the Republic of Latvia, Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regards to the processing of personal data and on the free movement of such data (Regulation) and other applicable laws in the area of privacy and data processing.

3. What is the Privacy Policy? 
The Privacy Policy is the link between KATAP and a natural person (hereinafter also – the User) who contacts KATAP and/or uses the KATAP website and/or provided services.
KATAP is committed to protecting the User's personal data. The Privacy Policy allows the User to understand what information is obtained when the User submits KATAP their data or KATAP acquires those in other ways, why KATAP collects this data and how it will be used.
Moreover, the Privacy Policy provides information on how KATAP collects, processes, stores, deletes and protects the User's personal data, thus ensuring that the User's personal data is processed lawfully, fairly and in a manner transparent to the User. The Policy applies to the User's personal data, any processing of personal data and the service provided to the User.
If KATAP updates this policy, all changes will be posted on the KATAP website.
In order to provide the User with better and more appropriate services, as well as to provide, maintain, protect and improve existing services, KATAP processes data batched from the provided services.

4. For what purposes is User Data collected? 
The User's personal data and other information is collected in order to: • Offer and provide appropriate services, monitor transactions and protect Users from illegal or harmful direct or indirect, intentional or unintentional actions of persons by processing information and data that become available to them. • To process any User request for information. • To fulfil the obligations specified in the KATAP regulatory documents. • To provide support to the User. • To conduct customer research, surveys and analysis. • If the User has agreed, to provide the User with information about KATAP offers, products and services.

5. What User’s data does KATAP process? 
First name, last name, personal identification code / date of birth, correspondence address, phone number and e-mail address.
Bank details, if provided.
Data provided by the Customer to KATAP.
User IP address information.
Cookies (website browsing data).
And other personal data, depending on the type of service provided to the Customer.
This information is stored on KATAP servers located on a secure infrastructure.
When the User interacts with KATAP services, the KATAP server maintains a unique activity log for the User's security, which stores certain administrative and traffic information, including: • IP addresses • Access times • Access dates • Previously visited pages • Selected language • Software error report by browser program used. 
This information is important to ensure the quality of the service.
Personal information is not collected without the User's consent.
User data will not be transferred outside the European Union or the European Economic Area, but if the need arises, User’s data will only be transferred to countries that provide the same level of personal data protection as the European Union.

6. What means does KATAP use to collect and process data? 
KATAP may automatically collect the above-mentioned data and receive personal data provided by the User when using the services or otherwise communicating and interacting with the website. KATAP may also receive personal information from other service providers online. KATAP may also engage third party service providers in order to provide service technical support. KATAP has access to the information provided by the User to these service providers and third-party e-commerce service providers in compliance with all Privacy Policy norms.

7. What is the basis for the processing of Users personal data? 
Personal consent of the User – the User, as a subject of personal data, by filling in the application and/or contact forms, gives their consent to the collection and processing of personal data for certain purposes. The User also agrees to the processing of data for direct marketing purposes in order to receive new and individual offers (this consent can, of course, be revoked by the User). The User's consent is their free will and independent decision, which can be given at any time, thus allowing KATAP to process personal data for the purposes specified. The User's consent is binding if it is given directly and unambiguously. The User has the right to withdraw their prior consent at any time using the specified communication channels with KATAP. The notified changes will take effect within three business days. Withdrawal of consent does not affect the lawfulness of processing based on consent prior to withdrawal.
Provision of the service – in order for KATAP to be able to provide quality services to the User, KATAP must collect and process certain personal data that is collected from the User on the KATAP website.
Legitimate interests – in accordance with KATAP's interests, which are based on the provision of quality services and timely support to the User, KATAP has the right to process the User's personal data to the extent objectively necessary and sufficient for the purposes specified in this Privacy Policy. The legitimate interests of KATAP include the processing of personal data through direct marketing, as a result of which new and/or individual KATAP service offers are made to the User.
Fulfilment of legal obligations – KATAP is entitled to process personal data in order to fulfil the requirements of regulatory enactments, as well as to provide answers to lawful requests of the state and municipality.

8. Exceptions to the User disclosure
KATAP has the right to disclose personal data only in cases stated in the regulatory enactments.

9. What is a cookie file? 
Cookies are small text files that a website stores on your computer or smart device when you visit our website. Each time you visit the website, the cookies are sent back to the originating site or to a third-party site that recognizes this cookie. Among other things, cookies, allow the website to remember the settings selected by the User for the future visits, so that they do not have to be specified again each time. Cookies are not used to personally identify you.
KATAP may use cookies in order to obtain information from the webserver for the above-mentioned purposes, following the User’s activities on the website. If the User continues to use the website, the User agrees to the use of KATAP cookies. Cookies contain information that is transferred to the User's computer hard drive. Those help KATAP to improve the website and provide better and more personalized services.
The obtained data is used by the KATAP website operator and Google, which obtains anonymous data and those are not associated with a specific person or a specific IP address. The security of Google Analytics data is acknowledged by the ISO 27001 certificate and the US and EU privacy shield regulations. You can read more about it here: https://support.google.com/analytics/topic/2919631
If the User wants to delete all cookies that are already stored on the computer or stop cookies that track the User’s activities on the website, the User can do so by deleting existing cookies and/or changing their browser's privacy settings in order to block cookies (the process depends on browser).
For more information on how to do this, visit www.allaboutcookies.org.

10. Duration of storage of the User’s personal data
KATAP will process the User's personal data as long as at least one of the following conditions exists: a) While the User uses the service. b) The term of storage of personal data is determined or follows from the regulatory enactments of the Republic of Latvia and the European Union. c) To the extent necessary for the realization and protection of the legitimate interests of KATAP. d) Until the User's consent to the processing of personal data is revoked.

11. What are the security conditions? 
By using KATAP services or by contacting KATAP, the User agrees to the terms and conditions of KATAP services.
KATAP provides, constantly reviews and improves security measures to protect the User's personal data from unauthorized access, accidental loss, disclosure or destruction. To ensure this, KATAP uses modern technologies, technical and organizational requirements, including the use of firewalls, intrusion detection, analysis software and data encryption.
KATAP carefully inspects all service providers who process the User's personal data on behalf of KATAP, as well as evaluates whether cooperation partners (personal data processors) apply appropriate security measures to ensure that the User's personal data is processed in accordance with KATAP delegation and regulatory requirements. Cooperation partners are not allowed to process the personal data held by KATAP for their own purposes.
KATAP is not responsible for any unauthorized access to personal data and/or loss of personal data, if it is not dependent on KATAP, for example, the User himself has disclosed his personal data to third parties.
In case when the User's personal data is at risk, KATAP will notify the User.
KATAP shall also report data / information security incidents or possible incidents without undue delay within 72 hours of becoming aware of the breach to the authorities and natural persons involved, as required by applicable laws and/or European Union laws, unless, in accordance with the principle of accountability, KATAP is able to demonstrate that a personal data breach is not likely to jeopardize the rights and freedoms of individuals.
KATAP stores all personal information received from the User in a secure database, encrypting part of the data, the connection of which is protected.

13. What are the User's rights? 
Contact KATAP to obtain the copy of the persona data stored at KATAP.
Correct all personal data held by KATAP about yourself.
The User has the right to obtain information about those natural or legal persons who have received information about this User from KATAP within a certain period of time. KATAP will not provide the User with information about state institutions that are the promoters of criminal proceedings, subjects of operative activities or other institutions about which the law prohibits the disclosure of such information.
Request to delete or restrict the processing of personal data which are no longer necessary for the purposes for which they were collected and processed (right to be 'forgotten').
The User has the right to portability of their personal data.
Contact KATAP or the personal data processing supervisory authority (Data State Inspectorate, www.dvi.gov.lv) with questions regarding personal data processing.
In order to contact KATAP, please, use e-mail: info@katapglass.com
All information security system issues and information / data security issues not covered in this Policy should be addressed to KATAP (phone 29720339 and email: info@katapglass.com)