Website Privacy Policy

Introduction

The controller of personal data specified herein below is MAXIMA GRUPĖ, UAB, code: 301066547, registered address: Savanorių pr. 247, Vilnius, Lithuania (hereinafter referred to as the ‘Company’).
This privacy policy (hereinafter referred to as the ‘Privacy Policy’) is targeted at persons (hereinafter referred to as ‘Visitors’, ‘you’) who use the Company’s services or visit the Company’s websites (www.maximagrupe.lt, www.maximagrupe.eu or other).
The Privacy Policy sets forth and defines the purposes and procedure of processing and collecting personal data, the scope of collected personal data, and informs Visitors about their rights.
By using the services and continuing to browse the websites, a Visitor (website user) confirms that he/she has become acquainted with this Privacy Policy, understands its provisions and agrees to comply with them.

On what grounds do we process your personal data?

The Company collects and processes personal data in compliance with legislation of the EU and the Republic of Lithuania governing the protection of personal data.
The scope of processed personal data depends on the services used and the information provided by a person who uses the services or browses our websites.

The Company processes Visitors’ personal data on the following grounds:
- on the basis of a consent that is expressed by your active actions, i.e. addressing us and providing personal data, or other active actions;
- for the purpose of implementing our legitimate interests (e.g. managing and administrating the website, presenting relevant information to clients, etc.);
- for the purpose of fulfilling our duties set forth by legislation.

The Company seeks that the processing of personal data is accurate, fair and lawful, that the data are processed only for the purposes for which they have been collected, that they are processed in compliance with the clear and transparent principles of personal data processing and requirements set forth in legislation.

What your data do we process and why?

Processing of personal data when you submit inquiries, requests or other information
The Company also processes your personal data in those cases when you contact us by e-mail and submit an inquiry, ask questions and give any other information on our website or in social networks.
We ask you to keep to at least the following minimum requirements for the protection of your personal data: do not indicate personal data (e.g. name, surname, address, telephone number, e-mail, personal identification number, date of birth, bank account number, state registration number of your car, real property data, health data, other special (sensitive) data, etc.) in the subject of either an e-mail or an inquiry or in the names of attached files; do not indicate your personal identification number, health or other special (sensitive) data in the text of an e-mail, inquiry or request, and provide the remaining personal data only to the extent as it is necessary for the purposes for which the message is sent.
The Company processes your data in the above cases in order to administer inquiries and complaints, ensure the quality of its services, protect and defend its rights and legitimate interests. You give us your data on the basis of your consent which is expressed through your active actions, i.e. by addressing us.

Processing of personal data for the purposes of staff selection

You may provide your data by e-mail info@maximagrupe.eu in order to join the Company’s team.
Please keep to the requirements for the protection of your personal data and do not send any redundant information to us.
We hereby inform you that we will process your provided personal data for the purposes of staff selection on the basis of your consent expressed when providing these data.
We hereby inform you that we will process your provided personal data for the purposes of staff selection on the basis of your consent expressed when providing these data and we will store them until the end of the particular selection process.
If, having considered your application, we choose a candidate who better meets our requirements, we may ask for your separate consent to the storage and use of your personal data obtained during selection for the purposes of other staff selection processes and to our contacting you to this end.
If we obtain such consent from you, we will store the said personal data for one year after the date of receipt of consent.
After you give such consent, you have the right to withdraw it at any time, without affecting the lawfulness of data processing based on consent before its withdrawal. If you exercise this right, we will immediately take actions to destroy your personal data.
More about our Candidates’ Privacy Policy – https://www.maximagrupe.lt .

Processing of personal data on the website

When you visit our website, the Company processes anonymised data such as IP address, MAC address, visiting date, duration, visited pages, devices and applications used for web browsing, etc. for the purposes of collection of website traffic statistics and improvement of the service quality and visitor experience.
Moreover, our website uses cookies. Cookies are small text files (up to several KB) sent by your web browser to your computer, tablet or any other smart device upon visiting our website. Cookies are aimed at ensuring efficient and secure functioning of a website and analysing your habits so that the functioning of a website is convenient, efficient and meets your needs and expectations.
Further information about cookies used on our website is provided in our Cookie Policy.

From what sources do we collect your personal data?

The Company processes data provided by Visitors when they use the Company’s services or websites.
Data may be generated when a person uses services, for example, calls by phone, sends SMS, e-mail, or visits websites.

For how long do we process and store your data?

We store your personal information no longer than necessary for the purposes specified in this Privacy Policy.
If you address us/maintain electronic correspondence with us, we usually store e-mails in our active mailbox for 24 months and in our inactive e-mail archive up to 5 years.
Personal data processed for the purposes of candidate selection and employment in the Company are stored until the end of the selection process, unless the candidate gives a separate consent to store his/her data after the selection process is over.
Your personal data that are processed for the purposes of direct marketing will be stored for 1 year after eceipt of consent (if a separate consent has been obtained) or the date of performance or termination of a contract. Upon expiry of the specified term your personal data will be destroyed within a reasonable period of time.
Your personal information may be stored for a longer period only in the following cases:
- if there are reasonable suspicions regarding unlawful activities which are investigated;
- if your data are required for appropriate resolution of a dispute, complaint;
- if we have received complaints related to the Visitor or we have noticed infringements by a respective Visitor;
- for the purposes of backup copies and other purposes related to the functioning and maintenance of information systems or similar purposes;
- if there exist other special grounds, conditions or cases specified in legislation.

In what cases and to what third persons do we disclose your data?

Without your prior consent the Company does not transfer your personal data to any third persons, except for the cases described below.
We may transfer your data for processing to third persons who help us perform and administer the provision of services and who provide services related to the administration of clients’ inquiries. These persons may include database software suppliers, providers of database administration services, providers of data centre, hosting and cloud services, providers of direct marketing services, providers of market research or business analytics services, etc. In each case we provide the data processor with such an amount of data as is necessary for performance of a particular assignment or provision of a particular service.
Our used data processors may process your personal data only in accordance with our instructions. Furthermore, they must ensure your data security in accordance with the effective legislation and written agreements concluded with us.
Data may also be provided to competent public or law enforcement authorities, e.g. police or supervisory authorities, yet only upon their demand and only when this is required in accordance with the effective legislation or in cases and under the procedure set forth in legislation, in order to ensure our rights, security of our customers, employees and resources, and to establish, exercise or defend legal claims.
If we use a website analysis service (e.g. Google Analytics) which is applied in order to determine how you use the information presented at www.maximagrupe.eu, we may exchange your anonymised data with third persons who refer to this information when evaluating how a website or a mobile application is used, preparing reports to website operators about the websites and providing other website usage related services. Further information is presented in the Cookie Policy.

In what territories and jurisdictions do we process your personal data?

We process your personal data in the territory of the European Union. We currently do not have any intention to transfer and do not transfer your personal data to any third countries.
We hereby inform you that certain technical data on your visit to a website (IP address, cookies, technical specifications of your browser, other information related to browser functioning and website browsing) may be transferred or made available to entities operating both within and outside the European Economic Area for the purposes of browsing statistics, analysis and related purposes (e.g. if we use the Google Analytics service, such an entity is a company operating in the United States of America). Please note that personal data outside the EEA may be subject to a lower level of protection than within the EEA; however, we will thoroughly evaluate the conditions under which such your data will be later processed and stored after the transfer to the above entities.

Data security

The Company implements and constantly updates appropriate organisational and technical measures that ensure security and help protect personal data against accidental or unlawful destruction, replacement, disclosure, as well as against any other unlawful processing.
Any of your provided personal data, including your name, surname, e-mail address and any other information contained in an e-mail may be processed by the Company or the e-mail owner, data centre, repository and other IT infrastructure service providers who have signed agreements for the purposes of maintenance of security of the Company’s IT systems, ensuring business with clients, suppliers and other business partners in order to ensure that data are properly protected and are not lost upon breach of security.

What rights are granted to you under data protection legislation and how can you exercise them?

Personal data protection legislation grants many rights that you can freely exercise and we have to ensure this possibility to you. We provide information about particular rights and ways to exercise them in this Privacy Policy below; please read it carefully.

a. Right of access to your personal data processed by us
You have the right to obtain our confirmation as to whether or not we process your personal data, and the right of access to your personal data processed by us as well as information on the purposes of processing, the categories of processed data, the categories of data recipients, the period of data processing. 
We present a substantial part of this information in this Privacy Policy and we believe that it is useful to you.
b. Right to rectification of personal data
You may also contact us in ways specified in Part 6 of this Privacy Policy and ask us to rectify or specify your data. 
c. Right to withdraw consent
In cases where we process your data on the basis of your consent, you have the right to withdraw your consent at any time and data processing based on your consent will be terminated. 
d. Right to lodge a complaint 
If you consider that we process your data by infringing the requirements of data protection legislation, we always first of all ask you to contact us directly. We believe that through benevolent efforts we will manage to dispel your doubts, satisfy your requests and correct our mistakes, if any. 
If you are dissatisfied with our proposed problem solution or, in your opinion, we do not take actions that are necessary according to your request, you will have the right to lodge a complaint to a supervisory authority which is the State Data Protection Inspectorate in the Republic of Lithuania (further information: www.ada.lt). 
e. Right to object to the processing of data where processing is based on legitimate interests
You have the right to object to the processing of personal data where personal data is processed on the grounds of our legitimate interests. 
If you want to exercise the right specified in this section, please submit a written request to our Data Protection Officer.
f. Right to erasure (’right to be forgotten’) 
Under certain circumstances specified in data processing legislation (when personal data are processed unlawfully, the grounds for data processing have expired, etc.), you have the right to request us to erase your personal data. If you want to exercise this right, please submit a written request to our Data Protection Officer. 
g. Right to restriction of processing
Under certain circumstances specified in data processing legislation (when personal data are processed unlawfully, you contest data accuracy, you objected to data processing on the basis of our legitimate interest, etc.), you also have the right to restrict your data processing. 
If you want to exercise the right specified in this section, please submit a written request to our Data Protection Officer.
h. Right to data portability
You have the right to move data that we process on the basis of your consent and by automated means to another data controller. We will provide the data that you request to move in a machine-readable format that we commonly use in our systems, and where you request so and if we have technical possibilities, we will transmit data directly to another data controller you have specified. 
If you want to exercise the right to data portability, please submit a written request to our Data Protection Officer.
i. The procedure of examination of request
In order to protect your and other persons’ data from unlawful disclosure, we will have to verify your identity upon your request to provide data or exercise your other rights. For this reason we may ask you to indicate your name, surname, e-mail address or telephone number and we will compare whether your provided data correspond to the respective data. During verification we may also send a control notification to the indicated contact (SMS or e-mail), asking you to perform an authorisation action. If the verification procedure is unsuccessful (e.g. your provided data do not correspond to our available data or you fail to authorise according to the received SMS or e-mail notification), we will have to state that you are not the Visitor and we will have to reject your request.
Upon receipt of your request concerning the exercise of any of your rights and having successfully carried out the above verification procedure, we commit, without undue delay, yet in any case within one month from the date of receipt of your request and completion of the verification procedure at the latest to inform you about actions we took according to your request. Having regard to the complexity and number of requests, we have the right to extend the period of one month by two additional months, informing you thereof by the end of the first month and indicating the reasons for this extension. 
If your request is submitted by electronic means, we will also give you an answer by electronic means, except for cases where this is impossible (e.g. due to a particularly large scope of information) or when you ask us to respond in another way.
We will refuse to satisfy your request by a reasoned response when the circumstances specified in legislation are identified, notifying you thereof in writing.

What are the ways to contact us and what are our contact details?

You may contact us on all data processing issues in the following ways:
By e-mail: info@maximagrupe.eu
By phone: +370 5 219 6000

Contact details of the Data Protection Officer:
E-mail: dpo@maximagrupe.eu
Postal address: Savanorių pr. 247, Vilnius, Republic of Lithuania 
Please address your letter as follows: Maxima Grupė, UAB, to Data Protection Officer

Our legal details as the data controller:
Maxima Grupė, UAB
Legal entity code: 302670810
Registered address: Savanorių pr. 247, Vilnius, Republic of Lithuania

Other provisions

The Company may update this Privacy Policy at any time. The Company will inform Visitors about updates by posting the new version of the privacy policy on the website together with the dates of corrections made. Visitors understand that by continuing to use the website after amendments to the Privacy Policy they agree with the amendments made.
If any of the provisions of the Privacy Policy is recognised as invalid or non-applicable, this provision does not affect the legality and validity of the remaining provisions of the Privacy Policy.
This Privacy Policy is applicable as of 25 May 2018.

COOKIE POLICY

Maxima Grupė, UAB, legal entity code 301066547, registered address Savanorių pr. 247, Vilnius, Republic of Lithuania (hereinafter referred to as the “Company,” or “we”), shall undertake to ensure the security of personal information and the protection of rights of the visitors of the website (hereinafter referred to as the “Visitors”) while you use our website www.maxigimagrupe.eu (hereinafter referred to as the “Website”) and the content of it.

1. GENERAL INFORMATION ABOUT COOKIES

We use the cookies on our Website, to customize the functioning of our Website as much as possible, and can contribute to ease of use when navigating our Website.

What is a cookie?

A cookie is a small file placed onto your device that enables our Website features and functionality. For example, cookies enable us to identify your device, secure your access to the Website. They enable the Website to store the data, such as:
- Login data (IP address of the logging-in device, login time, location from which the login is attempted);
- Type of browser;
- Demographic data (age group, sex);
- Data about the fact how you browse the Website (which sections you visit, what products are you interested in).

Objectives, aims

We use the cookies to:
- Ensure efficient and safe functioning of the Website; we use cookies to enable and support our security features, and to help us detect malicious activity on our Website;
- Understand, improve, and research products, features, and services, including when you access our Website from other websites, applications, or devices such as your work computer or your mobile device;
- Recognize the returning visitors of the Website; cookies help us show you the right information and personalize your experience; cookies also help avoiding re-registration or re-filling of the information by you each time you visit the Website;
- Analyse your habits so that the functioning of the Website would be convenient, efficient and would conform to your needs and expectations, for example, by ensuring that the Visitors would, without difficulty, find everything they are looking for;
- Measure the flows of the information and data being sent to our Website; we use the cookies for accumulation of statistical data about the number of users of the Website and their use of the Website; 
- Targeting and advertising; by using the cookies we may collect information so that only relevant content is displayed for the browser by creating different target groups; we may use cookies to show you relevant advertising both on and off our Website.

We may, to the extent allowed by applicable laws, link the data, received from the cookies, with other information obtained about you from other legal sources (i.e., information about the use of the services, online account, our Loyalty program, etc.).

2. COOKIES USED ON THE WEBSITE

Each time you visit our Website, the long-term (persistent) cookies may be created, which stay in your browser after you sign-up and will be read by us when you return to our Website or a partner site that uses our services, and not deleted after you finish browsing our Website, and the short-term (session) cookies, which expire or are deleted after you finish browsing our Website (i.e., they usually last during the current visit to our Website or browsing session).
All cookies used by us may be only used with the prior consent from you. You may express your consent by pressing the button “I agree” in the emergent cookie bar at the top/bottom of the web page of the Website.
However, we note that the necessary cookies and analytical cookies, as specified below, are necessary for functioning of our Website, and in case of your objections, we will not be sure about functioning of the Website or any of its portions or functionalities.
We recite below the main types of cookies used on the Website according to their types, collected data, and duration of storage.

2.1. Cookies used by the Company

Strictly necessary cookies

These cookies are required for the operation of our Website. They include, for example, cookies that enable storage of information filled by you during the browsing session, enable you to log into secure areas of our Website. Without these cookies operation of the Website would be impossible or its functioning may be severely affected.

Functional cookies

These improve the functional performance of our Website and make it easier for you to use. These cookies remember the settings selected by the Visitors (for example, the settings of language and time zone). With the use of these cookies, the Visitors may avoid the changes of settings during each visit of the Website. These cookies also remember changes made by you in the Website (for example, in case you leave comment on the Website). These cookies do not track your behaviour in other websites.

Analytical / performance cookies

These cookies show us if the Visitor has visited our Website before. The analytic cookies allow us to recognise and count the number of users of our website and see how such users navigate through our Website. We also use cookies to understand, improve, and research products, features, and services. For instance, analytical cookies may show us, which websites are visited more frequently, help us to record dysfunctionalities of the Website, etc.

Marketing, targeting and advertising cookies 

These cookies record your visit to our website, the pages you have visited and the links you have followed. We will then use this information to make advertising displayed on it more relevant to your interests. The advertising cookies let us know whether you have already seen the specific advertisement or a certain type of advertisement, and how much time has elapsed since you saw it. We may use the cookies set by another entity so that we could provide the advertisement oriented more specifically to you. They are also used so that we could see the certain advertisements only a certain number of times and that it would help to measure the efficiency of advertising.

All information about the cookies used by us is recorded below:
 
Name of the cookie Description/Type Moment of creation Duration Data used/collected
_ga
_gid
_gat
Third party’s cookies created by Google Analytics script. Intended for counting user’s data statistics.  Entering the Website

Accordingly: 2 years;
24 hours;
10 minutes.

Unique identifer
CMSESSID[kodas] Standard cookie for upholding the session. Necessary cookie Entering the Website 1 year

Unique identifer


2.2. Third-party cookies

Advertising cookies – some ads you can see on our Website have been provided by other legal entities. Some of these entities use their own cookies by analysing how many people have seen the specific advertisement or how many people have seen it more than once. The companies creating such cookies apply the policies prepared by themselves and we have no influence on the creation or storage of such cookies. We recommend you to take a separate interest in the Privacy Policy or the Cookie Policy of those companies, which will be placed on their websites.

Analytical cookies. The analytic cookies help us track the number of users and the periodicity of their visits. 

Other third-party cookies – in some web pages of our Website, the other entities (for example, social networks) may also use their own anonymous cookies designed so that the programmes or applications developed by them would suit your needs. Due to the specific features of the functioning of the cookies, our Website does not have access to the information transmitted by these cookies, likewise other entities do not have access to the information collected by the cookies set by us.

Such other type of third-party cookies used on our Website may include:

Analytical cookies:
- „Google Analytics“
We use Google Analytics, a web analysis service provided by Google, Inc (hereinafter referred to as “Google”). The information collected by Google Analytics is transmitted to and stored with Google. Google may transmit the information collected by Google Analytics to the third parties as required by the law or when those third parties process the information in the name of Google. 
We recommend consulting the Google Privacy and Cookies Policy on a separate and regular basis. 
 
How are cookies used for advertising purposes?

Cookies and other ad technology such as beacons, pixels, and tags help us serve relevant ads to you more effectively. They also help us provide aggregated auditing, research, and reporting for advertisers, understand and improve our service, and know when content has been shown to you.

3. REFUSAL OR BLOCKING THE COOKIES

Many web browsers are set so that they would automatically accept cookies. The Visitors may, at their discretion, block or delete cookies and similar unique identifiers, if the settings of their browser or device enable them to do so. Nevertheless, if you refuse or block the cookies or other similar technologies, some functions of the Website may be inaccessible to you or they may operate not so efficiently.
Nevertheless, we draw your attention that necessary cookies and analytical cookies are necessary for functioning of our Website, and in case of your objections, we will not be sure about functioning of the Website. 
You may find more information about how to delete cookies, as well as the other useful information related to the use of the cookies, on the website http://www.allaboutcookies.org/.
 
4. GENERAL
 
This Cookie Policy may be updated by the Company.

The Company will inform the Visitors about the updates, by providing the new version of the Cookie Policy. For this reason, we recommend that you periodically visit our Website, where you will always find the latest version of this Cookie Policy.