Privacy Policy

Personal data is any information that can be used to identify an individual. Measures are implemented to ensure that customers’ personal data is always secure with controllers and that the processing of customers’ personal data is carried out in accordance with applicable data protection legislation, internal policies, guidelines and procedures. The purpose of the privacy policy is to provide the natural person – the data subject – with information about the purpose, scope, protection and processing period of personal data at the time of data collection and when processing the data subject’s personal data.

Personal data controller: SIA “STAFOR”, reg. No. 40103520315, legal address: Kuldigas street 53a, Riga, Latvia, LV1083 (hereinafter also referred to as STAFOR).
Applicable legislation: Personal Data Protection Law, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (Regulation) and other applicable legislation in the field of privacy and data processing.

What is the Privacy Policy?
The Privacy Policy is a link between STAFOR and a natural person (hereinafter also referred to as the User) who communicates with STAFOR and/or uses the J Konsult website and/or the services provided.
STAFOR is committed to protecting the User’s personal data. The Privacy Policy allows the User to understand what information is obtained when the User submits their data to STAFOR or when STAFOR obtains it in other ways, why STAFOR collects this data and how it will be used. The Privacy Policy also provides information on how STAFOR collects, processes, stores, deletes and protects the User’s personal data, thus ensuring that the User’s personal data is processed lawfully, fairly and in a transparent manner.
The Policy applies to the User’s personal data, any processing of natural persons’ data and the services provided to the User. If STAFOR updates this policy, all changes will be published on the STAFOR website. In order to provide the User with better and more appropriate services, as well as to ensure, maintain, protect and improve existing services, STAFOR processes data collected from the provision of services.

For what purposes is User data collected?
User personal data and other information is collected in order to:

• offer and provide appropriate services, monitor transactions and protect Users from illegal or harmful actions, whether direct or indirect, deliberate or unintentional, when processing information and data that comes into the possession of the relevant persons;
• to process any requests for information from the User;
• to fulfil the obligations specified in STAFOR regulatory documents;
• to provide support services to the User;
• to conduct customer research, surveys and analysis;
• to provide the User with information about STAFOR’s offers, products and services, if the User has agreed to this.

What User data does STAFOR process?

• First name, surname, personal identification number/date of birth, correspondence address, telephone number and e-mail address;
• Bank details, if provided;
• Data that the Customer provides to STAFOR;
• User IP address information;
• Cookies (website browsing data);
• and other personal data, depending on the type of service provided to the Customer.

This information is stored on STAFOR servers located in a secure infrastructure.
When the User interacts with STAFOR services, STAFOR servers maintain a unique activity log for the User’s security, which stores certain administrative and data flow information, including:

• IP addresses;
• access times;
• access dates;
• pages previously visited;
• language to be used;
• software error report based on the browser used.

This information is important to ensure the quality of the service.
Personal information is not collected without the User’s consent.
User data will not be transferred outside the European Union or European Economic Area countries, but if the need arises, User data may only be transferred to countries that provide the same level of protection for personal data as the European Union.

What means does STAFOR use to collect and process data?
STAFOR may automatically collect the aforementioned data and receive personal data that the User provides when using the services or otherwise communicating and interacting with the website. STAFOR may also receive personal information from other online service providers. STAFOR may also engage third-party service providers to provide technical support for the provision of the service. STAFOR has access to information that the User has provided to these service providers and third-party e-commerce service providers, in compliance with all privacy policy standards.

What is the basis for processing Users’ personal data?
The User’s personal consent – By filling in the application and/or contact forms, the User, as the subject of personal data, gives their consent to the collection and processing of personal data for specific purposes. The User also consents to the processing of data for direct marketing purposes in order to receive new and personalised offers (the User may, of course, withdraw this consent). The User’s consent is their free will and independent decision, which can be given at any time, thus allowing STAFOR to process personal data for specific purposes. The User’s consent is binding if it is given directly and unambiguously. The user has the right to withdraw their previously given consent at any time by using the specified communication channels with STAFOR. The requested changes will take effect within three working days. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
Provision of services – in order for STAFOR to provide the User with high-quality services, STAFOR must collect and process certain personal data collected from the User on the STAFOR website.
Legitimate interests – in accordance with STAFOR’s interests, which are based on providing high-quality services and timely support to the User, STAFOR has the right to process the User’s personal data to the extent that is objectively necessary and sufficient for the purposes specified in this Privacy Policy. STAFOR’s legitimate interests include the processing of personal data for direct marketing purposes, as a result of which the User is presented with new and/or individual STAFOR service offers.
Compliance with legal obligations – STAFOR has the right to process personal data in order to comply with regulatory requirements and to respond to legitimate requests from state and local authorities.

Exceptions to the disclosure of user data.
STAFOR has the right to disclose personal data only in cases provided for by law.

What are cookies?
Cookies are small text files that a website saves on your computer or mobile device when you visit our website. Each time you visit the website, the cookies are sent back to the originating website or a third-party website that recognises the cookie. Among other things, cookies allow the website to remember the user’s selected settings for future visits, so that they do not have to be re-entered each time. Cookies are not used to identify you personally. STAFOR may use cookies as a means of obtaining information from the web server for the aforementioned purposes by tracking the User’s use of the website. By continuing to use the website, the User agrees to STAFOR’s use of cookies. Cookies contain information that is transferred to the User’s computer hard drive. They help STAFOR improve the website and provide a better and more personalised service.
The data obtained is used by the STAFOR website administrator and Google, which obtains anonymous data that is not linked to a specific person or IP address. The security of Google Analytics data is certified by ISO 27001 and the US-EU Privacy Shield Framework. You can read more about this here: https://support.google.com/analytics/topic/2919631.
If the User wishes to delete all cookies already stored on their computer or stop cookies that track the User’s activities on the website, the User can do so by deleting existing cookies and/or changing the browser’s privacy settings to block cookies (the process for doing this varies from browser to browser).
For more information on how to do this, visit www.allaboutcookies.org.

Duration of storage of users’ personal data.
STAFOR will process the User’s personal data as long as at least one of the following conditions exists:

• while the User uses the service;
• the period of storage of personal data is specified or follows from the regulatory enactments of the Republic of Latvia and the European Union;
• as necessary for the realisation and protection of STAFOR’s legitimate interests;
• until the User’s consent to the processing of personal data is revoked.

What are the security conditions?
By using STAFOR services or contacting STAFOR, the User agrees to STAFOR’s terms and conditions for the provision of services. STAFOR ensures, constantly reviews and improves security measures to protect the User’s personal data from unauthorised access, accidental loss, disclosure or destruction. To ensure this, STAFOR uses modern technologies, technical and organisational requirements, including firewalls, intrusion detection, analysis software and data encryption. STAFOR carefully checks all service providers who process the User’s personal data on behalf of and on the instructions of STAFOR, and assesses whether its cooperation partners (personal data processors) apply appropriate security measures to ensure that the User’s personal data is processed in accordance with STAFOR’s delegation and the requirements of regulatory enactments. Cooperation partners are not permitted to process personal data held by STAFOR for their own purposes. STAFOR shall not be liable for any unauthorised access to personal data and/or loss of personal data if this is not dependent on STAFOR, for example, if the User has disclosed their personal data to third parties themselves.
In the event of a breach of the User’s personal data, STAFOR will notify the User thereof.
Similarly, STAFOR shall report information/data processing security incidents or possible incidents to the authorities and natural persons involved without undue delay within 72 hours of becoming aware of the breach, as required by applicable regulations and/or European Union laws, unless, in accordance with the principle of accountability, STAFOR can demonstrate that the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons.
STAFOR stores all personal information received from the User in a protected database, encrypting part of the data, the connection to which is protected.

What are the User’s rights?

• Contact STAFOR to obtain a copy of the personal data held by STAFOR.
• Correct all personal data held by STAFOR about yourself,
• The User has the right to obtain information about natural or legal persons who have received information about this User from STAFOR during a specified period of time. STAFOR will not provide the User with information about state institutions that are conducting criminal proceedings, operational activities or other institutions for which the law prohibits the disclosure of such information.
• Request the deletion or restriction of the processing of personal data that is no longer necessary for the purposes for which it was collected and processed (the right to be forgotten).
• The user has the right to the portability of their personal data.
• Please contact STAFOR or the personal data processing supervisory authority (Data State Inspectorate, www.dvi.gov.lv) with any questions regarding personal data processing. You can contact STAFOR by email at info@stafor.lv.

For all questions regarding the information security system and information/data security issues not covered in this Policy, please contact STAFOR (tel. +371 67603399 and email: info@stafor.lv).

Cookie Policy

Cookies are small text files that a website saves on your computer or mobile device when you visit our website. Each time you visit the website, the cookies are sent back to the originating website or a third-party website that recognises the cookie. Among other things, cookies allow the website to remember the user’s selected settings for future visits, so that they do not have to be re-entered each time. Cookies are not used to identify you personally.

This policy describes the use of cookies on the following websites: shop.stafor.lv

The purposes of using cookies, as well as the rights of users to change and select the use of cookies, are specified on the website of SIA STAFOR. Cookies help to improve the website and ensure better and more personalised service provision.

Several types of cookies (persistent and session) are used. They differ in their purpose and storage duration. Cookies may be updated and adapted to improve the quality of service provision. The following cookies are used:

• Facebook cookies: The Facebook pixel tool installed on this website applies specifically to website visitors who also use Facebook services, as these cookies ensure that the advertisements and content displayed on the Facebook network are tailored to the interests of the device and internet browser user. You can opt out of Facebook cookies and obtain more detailed information about them here: https://www.facebook.com/ads/settings
• Google Analytics: Google Analytics cookies used on this website allow the website operator to obtain information about website usage and visits in order to analyse user habits and website shortcomings. During your visit, your IP address and anonymous information about your activities on the website are collected – before this information is sent to Google, your IP address is anonymised. By installing the Google Analytics Opt-out Browser Add-on tool, you can opt out of these cookies, which can be done here: https://tools.google.com/dlpage/gaoptout?hl=en
• Google Adwords: Google Adwords cookies used on this website provide remarketing functions that allow us to remind our visitors about things (services or goods) that have interested them. This means that by agreeing to the use of Adwords cookies, you will see advertisements from our website based on your interests on third-party websites and the Google advertising network. For more information on how to opt out of specific ads or all AdWords ads, please visit: https://support.google.com/ads/answer/2662922?hl=lv

The general purposes of using cookies are as follows:

• Technical cookies are designed to ensure the high-quality functioning of the website and user convenience, so that you can log in to your account and the website operates without complications.
• Functional cookies are designed to make visiting the website more convenient for users – for example, by remembering your preferred website language, services or products you are interested in, and other things that make using the website faster and more convenient in the long term.
• Analytical cookies are designed to give us an insight into the activities of our visitors on our website, allowing us to learn about the strengths and weaknesses of the site, as well as what needs to be changed in terms of content or technical solutions.
• Analytical cookies allow us to collect information about the web browser you use, the number of clicks on the website, the website from which you came to our website, the keywords you entered, and the date and time when you did so. The information obtained is completely anonymous and is not linked to a specific person. The information is used for market research, website improvement, campaign planning and user behaviour analysis.
• Advertising cookies are designed to provide you with personalised advertising on our website and other websites. Advertising or commercial cookies ensure that you receive offers in the online environment that are based on your interests and activities.

The data obtained is used by our website administrator and Google, which obtains anonymous data that is not linked to any specific person or IP address. The security of Google Analytics data is certified by ISO 27001 and the US-EU Privacy Shield Framework. You can read more about this here: https://support.google.com/analytics/topic/2919631

If you wish to delete all cookies already stored on your computer or stop cookies from tracking your activities on the website, you can do so by deleting existing cookies and/or changing your browser’s privacy settings to block cookies (the process for doing this varies from browser to browser).

If you would like more information on how to do this, please visit www.allaboutcookies.org.