Reg. No. 40003520840
Zemitāna iela 9, Rīga, LV-1012
SIA ‘RA INVEST,’ Registration Number 40003520840, having its registered office at Zemitāna Street 9, Riga, LV-1012 (hereinafter referred to as the ‘Controller’), processes personal data obtained from the data subject, i.e., the user of the website www.grizindarzs.lv (hereinafter referred to as the ‘User’).
2. Controller’s identity and contact information
The Controller is SIA “RA INVEST”,
Reg. No. 40003520840,
Zemitāna iela 9, Rīga, LV-1012.
Phone: +371 25750555.
3. Processing purposes, legal grounds for processing
If the User provides their personal data to the Controller, including but not limited to, name, surname, email or postal address, phone number, personal messages, etc., through the Website’s contact form, email, or any other form of correspondence The Controller retains and utilizes this information to fulfill or conclude the relevant service provision agreement.
The processing of the mentioned data by the Controller is necessary for customer identification, assessment of creditworthiness, contract preparation, conclusion, and evidence of conclusion, ensuring/maintaining the operation of services, customer service, handling of applications and objections, and processing, administration of payments, as well as other purposes directly related to the conclusion or performance of contracts.
The legal basis for the processing of data is Article 6(1)(b) of the Regulation, which establishes that data processing is deemed lawful when it is necessary for the performance of a contract or the implementation of pre-contractual measures at the request of the data subject prior to the conclusion of a contract.
4. The categories of personal data
5. The categories of recipients of personal data
The data are disclosed to those employees of the Controller for whom they are necessary for the direct performance of duties to fulfill or conclude the relevant service provision agreement.
In obtaining and utilizing personal data, the Controller partially engages the services of external service providers, who strictly adhere to the Controller’s instructions following the contract and are continuously monitored by the Controller both before and during the utilization of the service.
6. Categories of data subjects
Categories of data subjects – Current, former, and potential clients of the Controller.
7. Transfer of data outside the European Union
The received data will not be and will not be transferred outside the European Union or the European Economic Area, nor will it be transferred to any international organization.
8. Data retention period
Unless otherwise specified in data protection instructions, the Controller shall erase personal data no later than three months after the expiration of the original data retention purpose, except in cases where our legal obligations necessitate the ongoing retention of such data (e.g., but not limited to, for accounting or legal purposes).
9. Access to the data subject to personal data
The data subject has the right, within one month from the date of submission of the respective request, to access the data subject’s personal data. The user may submit a request for the exercise of their rights in a written form in person at the Controller’s legal address (by presenting a personal identification document) or via email, signing with a secure electronic signature.
Upon receiving the User’s request for the exercise of their rights, the Controller verifies the User’s identity, assesses the request, and fulfills it following applicable legal regulations.
The User has the right to receive information as stipulated in regulatory acts regarding the processing of their data, the right to request access to their personal data, as well as to request the Controller to supplement, correct, or delete it, restrict processing, or object to processing, to the extent that these rights do not conflict with the purpose of data processing (contract conclusion or performance).
The data subject does not have the right to receive information if the disclosure of such information is prohibited by law in the fields of national security, state defense, public safety, and criminal law, as well as to safeguard the state’s financial interests in tax matters or the supervision of financial market participants and macroeconomic analysis.
10. The right to lodge a complaint with a supervisory authority
The data subject has the right to submit a complaint to the supervisory authority (Data State Inspectorate) Elijas iela 17, Rīga, LV-1050, Data State Inspectorate also accepts electronic mail sent to the electronic mail address: firstname.lastname@example.org.