20% more spacious storage units1 EUR first monthFree code key
20% more spacious storage units1 EUR first monthFree code key
safebox-logotips1

PERSONAL DATA POLICY (ENG)

1. Data Controller

1.1. The Data Controller of personal data processing is SIA “SAFE BOX”, Reg. No.: 40103207085, legal address Brīvības gatve 204b, Riga, LV-1039 (hereinafter — the “Controller”), website: safebox.lv, e-mail: info@safebox.lv.

2. Data Processor

2.1. The Controller processes Clients’ personal data to the extent and in the manner permitted by the laws and regulations of the Republic of Latvia and the European Union. Clients’ personal data may also be received and processed by other personal data processors of the Controller. For more detailed information about cooperation partners, please contact the Controller using the indicated contact details.

3. Applicable Legal Acts

3.1. Regulation (EU) No. 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (27 April 2016).

3.2. Personal Data Processing Law of the Republic of Latvia.

4. What is a Privacy Policy?

4.1. This Privacy Policy (hereinafter — the “Policy”) provides information on how the Controller collects, processes, stores, shares, deletes and protects Clients’ personal data, ensuring lawful, fair and transparent processing of personal data. The Policy applies to Clients’ personal data, any processing of personal data of natural persons, and services provided to Clients.

4.2. If the Controller updates this Policy, all changes will be published on the Controller’s website safebox.lv.

5. What Personal Data Does the Controller Process?

5.1. The categories of personal data processed by the Controller depend on the services provided to Clients. For the purposes specified in Section 7 of this Policy, the Controller may process the following categories of personal data:

5.1.1. name, surname, personal identification number / date of birth, correspondence address, telephone number and e-mail address;

5.1.2. bank details;

5.1.3. data provided by the Client;

5.1.4. video surveillance recordings and images.

5.2. The Controller processes the following data regarding service usage for the purposes specified in Section 7 of this Policy:

5.2.1. cookies (website browsing data) — data about visits to the Controller’s website.

6. Legal Grounds for Processing Clients’ Personal Data

6.1. Consent — The Client, as a data subject, provides consent to the collection and processing of personal data for specific purposes. Consent is freely given and may be withdrawn at any time. Consent is binding if provided in writing (by signing an annex to the agreement). Withdrawal does not affect the lawfulness of processing prior to withdrawal.

6.2. Contract conclusion and performance — Personal data processing is necessary for concluding and performing a contract with the Client.

6.3. Legitimate interests — The Controller may process personal data necessary for providing quality services, customer support and direct marketing, including individual service offers.

6.4. Legal obligation — Processing is required to comply with legal requirements and lawful requests from authorities.

6.5. Vital interests — Processing is necessary to protect vital interests, e.g. prevention or detection of criminal offences using video surveillance data.

7. Purposes of Personal Data Processing

7.1. To ensure service provision during the validity of the contract, including:

  • complaint handling and support;
  • payment and debt administration;
  • video surveillance for security purposes.

7.2. To develop services and business operations, including market analysis and statistical data processing.

7.3. To maintain internal processes, document circulation and archiving.

7.4. With Client’s consent, data may also be processed for:

  • creditworthiness checks;
  • marketing activities, bonuses, surveys and brand recognition.

8. Client Rights to Restrict Data Processing

8.1. Profiling — Automated processing used to evaluate personal aspects. Clients may object at any time.

8.2. Direct marketing — Clients may opt out of marketing communications free of charge.

8.3. Objections or refusals may be submitted orally or electronically; changes take effect within three business days.

9. Cookies

Cookies are used to ensure website functionality, analytics, statistics and advertising. Users may delete or block cookies via browser settings. More information is available on safebox.lv in the “Cookie Notice” section.

10. How the Controller Obtains Personal Data

Personal data is obtained when Clients purchase services, register for communications, contact the Controller, participate in surveys or promotions, visit the website, or are recorded by video surveillance. Data may also be obtained from third parties with Client consent.

11. Data Retention Period

Personal data is processed while the contract is valid, legal obligations apply, legitimate interests exist, or consent has not been withdrawn.

12. Data Sharing

Personal data may be shared with partners, debt collection entities, cesionaries, authorities, and payment processor Maksekeskus AS (makecommerce.lv).

13. Data Protection

The Controller implements technical and organizational security measures and informs Clients in case of data breaches.

14. Client Rights

Clients have the right to access, rectify, erase, restrict processing, lodge complaints with the Data State Inspectorate, and contact the Data Protection Officer.

CALL WHATSAPP