Privacy policy

General Terms and Conditions

This Privacy Policy describes how SIA MBD Latvia (hereinafter also referred to as the “Data Controller”) collects, processes and stores personal data obtained from its customers and persons (hereinafter “Data Subject” or “You”).

Personal data include any information pertaining to an identified or identifiable natural person, i.e., Data Subject. Processing is any activity related to personal data, such as obtaining, recording, modification, use, viewing, deletion or destruction.

Data Controller shall comply with the data-processing principles laid down by law and be able to confirm that the personal data are processed in accordance with applicable law.
By using our website or Services, you agree to this Policy and acknowledge that you have read and understand its terms.

We process personal data in accordance with this Policy and applicable laws and regulations, including the Personal Data Processing Law and the General Data Protection Regulation (2016/679) (hereinafter “GDPR”).

Obtaining, processing and storage of personal data

Personally identifiable information is collected, processed and stored by the Data Controller, mainly through e-mail.

By visiting the website www.mbd.lv you agree that any information provided by you will be used and managed in accordance with the purposes set out in the Privacy Policy.

The Data Subject shall be responsible for ensuring that the personal data submitted are correct, accurate and complete. Deliberate provision of false information is considered a violation of our Privacy Policy. The Data Subject is obliged to immediately notify the Data Controller of any changes in the personal data submitted.

The Data Controller is not liable for any damage incurred by the Data Subject or third parties if it is caused due to false personal data submitted.

Processing of customers’ personal data

The Data Controller may process the following personal data:

• Name, surname
• Contact information (e-mail address and/or phone number)
• Any other information submitted by contacting us.

In addition to the above, the Data Controller may verify the accuracy of submitted data by using public registers.

The legal basis for the processing of personal data is Article 6 (1) (a), (b), (c) and (f) of the General Data Protection Regulation:

a) the data subject has given consent to the processing of his or her personal data for one or more specific purposes;
b) processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior entering into a contract;
c) processing is necessary for compliance with a legal obligation to which the controller ir subject;
d) processing is necessary for the purposes of the legitimate interests pursued by the controller or by third party, except for where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

The Data Controller shall store and process the Data Subject’s personal data for as long as at least one of the following criteria exists:

• personal data is necessary for the purposes for which it was received;
• as long as the Data Controller and/or Data Subject are able to exercise their legitimate interests, such as filing objections or bringing an action in court, in accordance with the procedures specified in external laws and regulations;
• as long as there is a legal obligation to store the data, for example in accordance with the Accounting Law;
• as long as the Data Subject’s consent to the processing of their data is valid, unless there are other legal grounds for the processing of the data.

Upon the expiry of the circumstances referred to in this paragraph, the retention period of the Data Subject’s personal data shall also expire and all the personal data shall be permanently deleted from the computer systems and electronic and/or paper documents containing these personal data, or these documents shall be anonymised.

Upon request, we may transfer your personal data to government and law enforcement agencies to protect our legal interests, if necessary, by drafting, filing and defending legal claims.

When processing and storing personal data, the Data Controller shall implement organisational and technical measures to ensure the protection of such personal data against accidental or unlawful destruction, alteration, disclosure and any other unlawful processing.

Rights of the Data Subject

In accordance with the General Data Protection Regulation and Latvian legislation, you have the right to:

• access your personal data, receive information about its processing, as well as request a copy of your personal data in electronic format and to transfer such data to another controller (data portability);
• request the correction of incorrect, inaccurate or incomplete personal data;
• delete your personal data (“to be forgotten”), unless the law requires the data to be retained;
• withdraw your prior consent to the processing of personal data;
• restrict the processing of your data – the right to request that we temporarily suspend the processing of all your personal data;
• contact the Data State Inspectorate of Latvia.

You may submit a request regarding the exercise of your rights by sending it by e-mail to info@mbd.lv.

Final provisions

This Privacy Policy was developed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), as well as the laws in force in the Republic of Latvia and the European Union.

The Data Controller is entitled to make changes or additions to the Privacy Policy at any time and without prior notice. The amendments shall take effect after their publication on www.mbd.lv.

COOKIES USED TO PROCESS PERSONAL DATA

A cookie is a small text file that our website stores on your computer or smart device. The cookie remembers your actions and choices and allows us to provide you with the best experience when visiting our website. Without cookies, the website would not be fully operational.

We use persistent cookies: Google Analytics (“_ga”) cookies are used to improve our website by analysing user habits. These cookies provide us with information such as the number of visitors to the website, the sections of the website visited and the total time spent on our website. All information collected by persistent cookies is anonymous and cannot be used to identify you as an individual. “_ga” cookies are stored for two years.

System cookie “mbd_session”. This cookie is used to determine the length of a visit to the website from the time a visitor enters the website until the time the visitor leaves the website or closes the browser. This cookie is stored for thirty minutes.

Most browsers allow you to control the use of cookies by using certain settings. If you do not wish to receive cookies, you may set your browser to reject all cookies or warn you when a cookie is about to be installed.

For more information on how to manage cookies in the most popular browsers, visit these links: Internet Explorer; Chrome; Firefox; Safari; Opera.