Privacy Policy

We welcome you to www.katrinabajoras.com and thank you for your interest in this Privacy Policy! At Bajoras we understand that anyone who shares data on the Internet wants to be sure that their data does not fall into the wrong hands and that’s why we take great care to protect your data. Doing so, we follow Lithuania’s Law on Legal Protection of Personal Data (“LLPPD”) and the EU`s General Data Protection Act (“GDPR”)


What is Personal Data?

Personal data is all data that can be related to you personally, e.g., name, e-mail addresses, user behavior. The personal data of users processed within the scope of our website includes inventory data (e.g., names, e-mail addresses and addresses), usage data (e.g., the websites visited on our website, interest in our products) and content data (e.g., information in messages and forms you fill in).


Who is responsible?

Katrina Bajoras, MB

Šaltinių g. 13-20, LT-03214, Vilnius, Lithuania

Web: www.katrinabajoras.com 

E-Mail: [info@katrinabajoras.com] 

Facebook, Instagram


What do we process your data for (purpose of processing) and on what legal basis?

We process personal data in accordance with the LLPPD and the GDPR:



Where necessary, we process your data beyond the actual performance of the contract in order to safeguard legitimate interests of us or third parties. Examples:



What data protection rights do I have?

Every data subject has



Further, you can revoke consent, in principle with effect for the future.


Furthermore, you have the right to lodge a complaint with a data protection supervisory authority. The State Data Protection Inspectorate (“VDAI”) is Lithuania’s relevant authority in matters of data protection. You have the right to make a complaint at any time. We would, however, appreciate the chance to deal with your concerns before you approach the VDAI so please contact us in the first instance.


Finally, you also have a right to object. This applies, on grounds relating to data processing on the basis of our legitimate interest and also to profiling.


If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.


You may withdraw your consent and request us to stop using and/or disclosing your Personal Data for any or all of the Purposes by submitting your request to us in writing. Should you withdraw your consent to the collection, use or disclosure of your Personal Data, it may impact our ability to proceed with your transactions, agreements, or interactions with us. Prior to you exercising your choice to withdraw your consent, we will inform you of the consequences of the withdrawal of your consent. Please note that your withdrawal of consent will not prevent us from exercising our legal rights (including any remedies) or undertaking any steps as we may be entitled to at law.


Categories of personal data processed 

We process the following categories of personal data:


Name, email address, telephone number, billing address, payment methods and payment confirmations.


Products that you last purchased; Products that you placed in your shopping cart;

The advertisement links or newsletter links through which you were redirected to our website.


Online Identifiers and IP addresses.


Processing of special categories of data

No special categories of data are processed.


Automated Decision Making

Automated decision making within the meaning of the LLPPD and GDPR is not used.


Contacting us

If you contact us per e-mail or social media, we process the following data from you for the purpose of processing and handling your enquiry: Name, contact details -if provided by you- and your message. The legal basis of the data processing is our obligation to fulfil the contract and/or to fulfil our pre-contractual obligations and/or our legitimate interest in processing your enquiry.


Orders 

If you buy or order products from us, the processing is done to fulfil the contractual service such as delivery to your e-mail account, payment processing and billing. 


The sales contract with you is the legal basis for this processing. We will also process your data to the extent required by law to fulfil our archiving and retention obligations under Lithuanian commercial and tax law. The provision of this personal data and order data is necessary for the conclusion of the contract. 


The provision of bank details is subject to our payment processors Stripe. We do not collect or store payment information or bank details ourselves but receive payment confirmation statements of our processors. For further information, please refer to the relevant providers privacy policy by clicking on the above links.  


In addition, we may use your data for direct advertising - i.e., to send you information about our products, services and promotions. You can object to the use of your data for the purpose of advertising at any time, using the above contact details. 


The duration of processing depends on the purpose of fulfilling the contract and the associated further legal requirements for storage and provision of evidence. For direct advertising, we use the data as long as you have not objected.


Registration 

If you register on our website, we process the data provided for this purpose in order to provide you with the services and the account function. The mandatory information requested is necessary for registration, as you can place orders and access our services and the mandatory information requested during registration is a prerequisite for fulfilment of the contract you enter with us. 


In the context of your account, we process as part of our contractual service your name and e-mail address. The contract with you is thus the legal basis for this processing We will also process your data to the extent required by law to fulfil our archiving and retention obligations under Lithuanian commercial and tax law. The provision of personal data and order data is necessary for the conclusion of the contract and the creation of your account. 

     

In addition, we may use your data for direct advertising - i.e., to send you information about our products, services and promotions. You can object to the use of your data for the purpose of advertising at any time, using the above contact details. 


The duration of processing depends on the purpose of fulfilling the contract and the associated further legal requirements for storage and provision of evidence. For direct advertising, we use the data as long as you have not objected.


Use of our website

When you call up our website, our web server records the domain name or IP address of your computer, the file name and the URL that was requested, as well as the http response code and, if applicable, the URL referring to our website. This procedure is common for technical reasons and necessary to enable the use of our website. In this regard, we are supported by our technical service providers, which we use as processors. The above-mentioned data is logged and used for the purpose of defending against unlawful use or attempted attacks on our web server. A combination of this data with other data sources does not take place. However, we reserve the right to statistically evaluate anonymized data records. The data will be deleted after 6 months.


Use of cookies

We use so-called cookies on our web site. Cookies are small text files that are stored on your respective device (PC, smartphone, tablet, etc.) and saved by your browser. For further information please refer to our Cookie Policy. The legal basis for the use of cookies is your consent as well as our legitimate interest.


Newsletter subscription

If you subscribe to our newsletter, you consent to us informing you regularly by e-mail about current and new offers and services as well as information from us about our services. You can revoke your consent at any time, by clicking on the unsubscribe link in each newsletter or by contacting us using the contact details provided above. When you register for the newsletter, we collect your e-mail address. Your e-mail address will be passed on to our service providers for newsletter dispatch, which we use as order processors. You will receive another confirmation e-mail to confirm your consent (so-called double opt-in procedure.) We will use your data until you revoke your consent. A revocation does not affect the lawfulness of the processing of your personal customer and health data carried out on the basis of the consent until the revocation. This consent is voluntary, you can order from us regardless of the consent given.


Is there an obligation for me to provide data? 

Within the scope of our business relationship, you are only required to provide personal data that is necessary for the establishment, implementation, and termination of a business relationship or that we are legally obliged to collect. Without this data, we will usually have to refuse to conclude the contract or will no longer be able to perform an existing contract and may have to terminate it.


Data Security

We secure our website and App and other systems through appropriate technical and organizational measures against loss, destruction, access, modification, or distribution of your data by unauthorized persons. However, and despite regular checks, complete protection against all dangers is not possible.


Our website and App use the industry standard SSL (Secure Sockets Layer) for encryption. This ensures the confidentiality of your personal information over the Internet. You can tell whether encrypted transmission is taking place by the closed key/lock symbol in your browser display.


Databases or data sets that include Personal Data may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, we will notify all affected individuals whose Personal Data may have been compromised, and the notice will be accompanied by a description of action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.


Passing on of data

Your personal data will only be passed on to third parties,


Duration of storage of personal data

Your data will be stored by us for as long as it is needed for the respective purposes underlying the processing. Beyond that, we only store data insofar as we are legally obligated to do so, e.g., due to statutory retention obligations.


Accuracy

We endeavour to ensure that all decisions involving your Personal Information are based upon accurate and timely information. However, we rely on you to disclose all relevant information to us and to inform us of any changes in your Personal Information. As such, please disclose all relevant information necessary for us to provide services to you and ensure all information submitted to us is up-to-date, complete, and accurate. Kindly inform us promptly if there are any changes in your Personal Information. 


Integration of third-party services and content

Within our website and App, we use content or service offers of third-party providers on the basis of our legitimate interests in order to integrate their content and services (hereinafter uniformly referred to as "content"). 


This always requires that the third-party providers of this content are aware of the IP address of the user, as without the IP address they would not be able to send the content to their browser. The IP address is therefore necessary for the display of this content. We endeavour to only use content whose respective providers only use the IP address to deliver the content. 


This also includes disclosure by transmission to third parties and, where applicable, to so-called third countries outside the EEA. Where we transfer data outside the EEA, we make sure to use the necessary and appropriate safeguards to ensure that the security of your personal data is maintained and guaranteed. In particular those include standard contractual clauses, binding corporate rules and data processing agreements. If you have any questions relating to our third-party providers, please refer to their relevant Privacy Policies or contact us for further details


Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our website, as well as being linked to such information from other sources.


The following provides an overview of third-party providers and their content, together with links to their privacy policies, which contain further information on the processing of data and so-called opt-out measures, if any:



Online presences in social media

We maintain online presences within social networks and platforms in order to be able to communicate with the customers, interested parties and users active there and to inform them about our services there. When calling up the respective networks and platforms, the terms and conditions and data processing guidelines of their respective operators apply. Unless otherwise stated in our privacy policy, we process the data of users if they communicate with us within the social networks and platforms, e.g., write posts on our online presences or send us messages.


Validity and questions

This privacy policy is valid as of Thursday, November 17, 2022. It is the current and valid version of our privacy policy. However, we point out that from time to time due to actual or legal changes a revision to this privacy policy may be necessary. If you have any data protection questions enforce your rights or withdraw your consent, please feel free to contact us using the details provided above.