SIA Ambers Group, a company incorporated and registered under the laws of Latvia, with legal entity code 40103874912, having its registered office address at Terbatas street 5-5, LV-1050, Riga, Latvia, is the controller of your personal data. Our contact e-mail address is firstname.lastname@example.org.
Data protection officer
You may contact our data protection officer at email@example.com if you have any questions related to the processing of your data.
- INFORMATION WE COLLECT AND HOW WE USE IT
1.1. Analytical data
We always improve our Website and user experience. Therefore, we have to know what information is most relevant to Website visitors, how often they connect, what browser and device they use, what content is mostly read, what region visitors come from, and similar demographics and statistics.
For this, we use Google Analytics tool, which lets us collect and analyse the relevant data. You can learn more about how Google Analytics works and the information it allows us to collect and analyse here. You may opt-out from the collection of data by Google Analytics, as described here.
Legal basis to collect analytical data is our legitimate interest to improve the Website.
A cookie is a small data file that the Website writes to your device when you browse it. A cookie enables the Website to remember your actions and preferences over a period, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.
We use session cookies to remember and identify a connection session, but these cookies do not collect your personal data and last only until you close your browser.
We also use preference cookies which allow you to choose your preferred Website display language and store these cookies on your device for up to 1 year.
You can control and/or delete cookies as you wish – for details, see http://www.youronlinechoices.com/. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. But if you do this you may have to manually adjust some preferences every time you visit the Website, while some services and functionalities may not work.
1.3. Communication data
If you contact us by corresponding with us, including via e-mail, or if you have a phone conversation with us, we may store your correspondence and record our telephone calls with you (including your telephone number, call date and time, the language you have chosen for the conversation).
This data is required in order for us to provide you with our support service and is processed on the basis of performance of a contract that we have entered into or in order to take steps at your request prior to entering into a contract between us. This data is also required to improve the quality of our service, as well as to provide you with the information you need and to answer any questions or requests you may have and is processed on the basis of our legitimate interest to do so.
2. WHO MAY SEE YOUR DATA
We may share your personal data with our trusted services providers when they provide services to us, to you on behalf of us and under our instructions. We will control and shall remain responsible for the use of your personal data at all times.
These are the categories of entities that may have access to your personal data:
• Providers of information technology services such as hosting services and other key operational systems such as banking modules;
• Providers of KYC and fraud prevention services;
• Other professional service providers such as accountants, legal consultants, audit firms etc.;
• Our business partners, agents or intermediaries who are a necessary part of the provision of our products and services;
• State Tax Inspectorate;
• Financial Crime Investigation Service, courts;
• Google LLC, which provides us with Google services such as Google Analytics. Google LLC is based in the US and certain data may be transferred outside EU. Google LLC participates in the Privacy Shield. You can learn more about Privacy Shield here – https://www.privacyshield.gov/.
In some cases, where you provide your personal data to third parties, those third parties may process your personal data as independent data controllers. In such cases, we are not responsible for processing of your personal data performed by third parties.
To protect your privacy, we urge you to carefully read privacy notices of any such third parties, even if you access their services by following links placed on our Website or if third party systems are integrated in our Website.
3. HOW LONG DO WE STORE YOUR DATA
Data collected via Website analytics will be stored for up to 1 year in an identifiable state.
Communication data used for the improvement of the quality of our service is stored for up to 1 month.
Personal Data collected for the implementation of the obligations under the Law of Money Laundering and Terrorist Financing Prevention is stored for 8 (eight) years. The retention period may be extended for a period not exceeding 2 (two) years, provided there is a reasoned request from a competent authority.
In some cases, personal data may be stored for a longer period if the storage of personal data is required in order to protect our or any third parties’ legitimate interests, e.g. in case of a legal dispute, or if we are obligated to do so by law.
4. YOUR RIGHTS
By contacting us at firstname.lastname@example.org you may exercise your rights as the data subject, including the following:
• The right to request rectification of your personal data;
• The right to request erasure of your personal data. If personal data is erased under your request, we will only retain such copies of the information as are necessary for us to protect our or third parties’ legitimate interests, comply with governmental orders, resolve disputes, troubleshoot problems, or enforce any agreement you have entered into with us;
• The right to data portability.
In some cases, you may have a right to request the restriction of processing of your personal data or to object to the processing of your personal data.
If you think there is a problem with the way we are handling your personal data, you have a right to file in a complaint to your national data protection authority in the EU/EEA. In Latvia, the Personal Data Processing Law (the “DPL”) entered into force on 5 July 2018, replacing the Law on the Protection of Personal Data of Natural Persons (the “DPA”) of 2000.
The DPL states that the Data State Inspectorate will continue to act as the supervisory authority in Latvia.
You can find contact details of the State Data Protection Inspection here:
Data State Inspectorate (the “DSI”)
Blaumana iela 11/13 – 15