1. General provisions

1.1. UAB "Nutvila" (hereinafter - the "Company") respects the right to privacy of all purchasers of its services, potential clients (who have tried the services but did not become clients), and all visitors of the verskis.lt website (hereinafter - the "Website") (hereinafter - the "Clients"), and undertakes to ensure the protection of the personal data provided and received. The Company also cares about ensuring the rights of clients as data subjects.

1.2. This Privacy Policy regulates the main principles and procedures for the collection, processing, and storage of the personal data of the Company’s clients.

1.3. By using the Website, as well as by ordering or in any way using the services offered by the Company and by providing your personal data to the Company, you agree to the provisions of this Privacy Policy. Clients are deemed to have familiarized themselves with the Privacy Policy when, while registering on the Website, they tick the box indicating that they agree with the Company’s Privacy Policy. The Privacy Policy can be reviewed again at any time on the Website by clicking the relevant link.

1.4. When processing the Client’s personal data, we comply with all laws applicable to this area, including EU legislation, the Law on Legal Protection of Personal Data of the Republic of Lithuania, and other applicable legal acts regulating personal data protection.

2. What terms are used?

2.1. Personal data - any information relating to a natural person whose identity is established or can be established (data subject); a natural person whose identity can be established is a person who can be identified directly or indirectly, in particular by reference to an identifier such as a name and surname, personal identification number, location data, and online identifier, or by reference to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

2.2. Data subject - a natural person - a client of the Company (including Website visitors) whose personal data is collected by the Company.

2.3. Consent of the data subject - any freely given, specific, and unambiguous indication of the will of the properly informed data subject, by a statement or by clear affirmative action, by which he or she agrees to the processing of personal data relating to him or her.

2.4. Data processing - any operation or set of operations performed on personal data or sets of personal data, whether by automated or non-automated means, such as collection, recording, sorting, systematization, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination with other data, restriction, erasure, or destruction.

2.5. Data processor - a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the Data Controller.

2.6. Data Controller - UAB "Nutvila", a company operating and established under the laws of the Republic of Lithuania, company code 304422849, registered at Jono Variakojo g. 16, Šešuolėlių I k., Širvintų district, Republic of Lithuania, the data of which is collected and stored in the Register of Legal Entities.

2.7. Direct marketing - activities intended to contact the Client by post, telephone, or other direct means and offer goods or services and/or ask for their opinion about the goods or services offered, including by automated means.

3. What cookies do we use and how do we use them

3.1. What is a cookie - small files that are sent to the user’s web browser and placed on the computers or other devices of those browsing the Website when they visit it for the first time. Later, cookies are used on the Website to ensure the best possible use of the website for the user, when the user’s computer is identified and access to the website or the information on it is facilitated, thereby adapting the website content as conveniently as possible for the user.

3.2. These cookies are used on the Website, as well as in the related Company systems intended to properly and efficiently serve the Client.

3.3. In order to ensure that you can browse the Website more conveniently and efficiently and receive useful offers, we use the following Cookies on the Website: PHPSESSID (session information), "CookieInfoScript" (consent to the use of cookies), _gat, _ga, _git, __utma, __utmb, __utmc, __utmt, __utmz (cookies used by Google Analytics), datr, Fr, sb, locale, reg_ext_ref, reg_fb_gate, reg_fb_ref (cookies used by Facebook Pixel), as well as "GPS", "PREF", "VISITOR_INFO1_LIVE", "YSC" (information related to YouTube video content streaming).

3.4. Client’s right to refuse cookies - the Client may at any time delete or block some or all cookies stored on their computers or other devices by changing the settings of the browser they use. More information about deleting or blocking cookies can be found on the website of the browser manufacturer. Please note that after taking these actions, some website functions may partially or completely stop working and become unavailable. The Client understands that third-party plugins (partners, statistical collection systems, communication systems, etc.) may be used on the Website, and they also use cookies to ensure proper functionality. We emphasize that the Website operator does not control, cannot be, and is not responsible for cookies used by third parties, their content, or the privacy protection applied by those websites, which we recommend reviewing individually in each case.

4. What personal data do we collect?

4.1. The Company collects and subsequently processes the Client’s personal data that you provide yourself when using and ordering services on the Website or ordering services in another way: name, surname, personal identification number (optional), address, email address, phone number, and other data related to the specifics of the service order. Please note that you provide the data additionally on your own initiative when registering and/or ordering, managing the services provided by the Company.

4.2. The personal data provided by the Client is stored by the Company during the period of cooperation between the Company and the Client (during service provision) and for 10 (ten) years after the end of this period. The data may be stored for a shorter period if there is no legal basis for longer storage.

5. For what purposes and how do we process personal data?

5.1. The data held by the Company about the Client will be processed lawfully, fairly, and transparently (principle of lawfulness, fairness, and transparency).

5.2. The Company processes the above-mentioned personal data of the Client for the processing and administration of service purchases/orders, handling accounting documents related to service orders, contacting you regarding the performance of contractual obligations, and for direct marketing purposes (with the prior consent of the data subject).

5.3. We ensure that the Client’s personal data is and will be processed lawfully, fairly, and transparently, collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes, adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed, accurate and, where necessary, kept up to date, and processed in such a manner that appropriate technical and organizational measures ensure proper security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage (principle of integrity and confidentiality).

6. What rights do you have as a data subject?

6.1. The Client has the right to withdraw their consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. The data subject is informed of this before giving consent. It is as easy to withdraw consent as it is to give it.

6.2. You have the rights of data subjects, which we will implement upon receipt of the Client’s request sent by registered mail to Jono Variakojo g. 16, Šešuolėlių I k., Širvintų district, and after you have properly confirmed your identity. The Client has the right to access their personal data and how it is processed, to request the correction of inaccurate personal data concerning the Client, and also to request that incomplete personal data be completed.

6.3. The Client has the right to request that the Company erase personal data concerning the Client if it is no longer necessary for the purposes for which it was collected or otherwise processed; if consent is withdrawn and there is no other legal basis for processing the Client’s personal data; if the personal data has been processed unlawfully; on other grounds established in the Regulation; to request that the Company restrict the processing of the Client’s personal data; to receive the personal data concerning the Client that was provided to the Company in a structured, commonly used, and machine-readable format; the Client also has the right to request that the Company transfer the personal data to another data controller; and to object to the processing of related personal data (e.g. for direct marketing or otherwise).

7. How do we process personal data for direct marketing purposes

7.1. The Company will contact the Client only with the Client’s prior consent and in accordance with the provisions of the Law on Electronic Communications of the Republic of Lithuania, the Law on Legal Protection of Personal Data, and the Regulation. We will send the Company’s newsletters by email or phone and/or ask about the quality of existing services and other related issues.

7.2. We process the following personal data of the Client for direct marketing purposes: name, email address, phone number.

7.3. The Client’s personal data for direct marketing purposes is stored until the Client submits a refusal to receive direct marketing messages (such an unsubscribe link is provided at the bottom of each sent email).

8. To whom do we provide personal data

8.1. Access of the Company’s employees to the Client’s personal data is granted only when necessary to perform their duties and only after the employee has undertaken to comply with the confidentiality requirement.

8.2. The Company may provide the Client’s personal data to data processors who provide services to the Company and process the Client’s personal data on behalf of the Company and for the benefit of the Company or the Client, to law enforcement authorities where there is a legal basis, and to other third parties with the Client’s consent. Such data processors have the right to process the Client’s personal data only in accordance with the Company’s instructions.

8.3. The Client’s personal data may also be provided in response to official requests from state authorities and courts, but only after verifying the legality of such requests.