PRIVACY POLICY FOR PROTECTION OF PERSONAL DATA
1. Purpose of the Privacy Policy
Purpose of the privacy policy is to provide the data subject - natural person - information on the purpose of personal data processing, scope, legal basis of data processing, categories of personal data receivers, data storage period and security, as well as the rights of the data subject.
2. Data Controller and its Contact Information
SIA "Teliko"
Registration Number: 4010325180
Legal address: Zemitāna iela 9 k-1, Rīga, LV-10125
Web page: https://www.citylight.net/
e-mail: [email protected]
Registration Number: 4010325180
Legal address: Zemitāna iela 9 k-1, Rīga, LV-10125
Web page: https://www.citylight.net/
e-mail: [email protected]
3. The scope of application of the Privacy Policy
3.1. Personal data means any information about an identified or identifiable natural person.
3.2. Privacy Policy applies to the provision of privacy and personal data protection with regard to:
● natural persons - customers, employees and other cooperation partners (including potential, former and current), as well as third persons that receive or deliver SIA “Teliko” any information in relation to the provision of services (including contact persons, payers, signatories, etc.).
● Visitors of the office of SIA “Teliko” and other premises;
● Visitors of website maintained by SIA “Teliko”.
3.3. SIA “Teliko” takes care of the Customer's privacy and protection of personal data, observes the Customer's right to the lawfulness of personal data processing in accordance with the applicable law - Personal Data Protection Law, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and other applicable legal acts in the field of privacy and data processing.
3.4. The privacy policy applies to data processing, regardless of the form and/or environment in which the personal data are provided by the Customer (SIA “Teliko” website, on social platforms, in paper form, or over telephone) and in what systems or paper forms of the company they are processed.
3.2. Privacy Policy applies to the provision of privacy and personal data protection with regard to:
● natural persons - customers, employees and other cooperation partners (including potential, former and current), as well as third persons that receive or deliver SIA “Teliko” any information in relation to the provision of services (including contact persons, payers, signatories, etc.).
● Visitors of the office of SIA “Teliko” and other premises;
● Visitors of website maintained by SIA “Teliko”.
3.3. SIA “Teliko” takes care of the Customer's privacy and protection of personal data, observes the Customer's right to the lawfulness of personal data processing in accordance with the applicable law - Personal Data Protection Law, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and other applicable legal acts in the field of privacy and data processing.
3.4. The privacy policy applies to data processing, regardless of the form and/or environment in which the personal data are provided by the Customer (SIA “Teliko” website, on social platforms, in paper form, or over telephone) and in what systems or paper forms of the company they are processed.
4. Purposes and legal grounds of the processing
SIA “Teliko” may use the personal data provided by the Customer for the following purposes:
● recruitment of potential employees, upon receipt of CV and application (legitimate business interest, on the basis of consent of the data subject);
● to ensure convenient reservation of goods and services, organised cooperation, improved maintenance service (interest of the legitimate business, on the basis of the consent of the data subject);
● execution of product/service sale and delivery transaction and provision of services (for establishment of contractual relations and fulfilment of contractual obligations);
● execution of product and service acquisition transactions, as well as the organisation of other types of cooperation (establishment of contractual relations and fulfilment of contractual obligations);
● to ensure fast and high-quality communication in response to the questions or comments sent by persons (legitimate business interest, on the basis of consent of the data subject);
● to perform analytical studies on the use of products and services provided by SIA “Teliko” (legitimate business interest, on the basis of consent of the data subject);
● to ensure the provision of safety in the premises and territory of the company when performing video surveillance and access control (legitimate business interest).
● recruitment of potential employees, upon receipt of CV and application (legitimate business interest, on the basis of consent of the data subject);
● to ensure convenient reservation of goods and services, organised cooperation, improved maintenance service (interest of the legitimate business, on the basis of the consent of the data subject);
● execution of product/service sale and delivery transaction and provision of services (for establishment of contractual relations and fulfilment of contractual obligations);
● execution of product and service acquisition transactions, as well as the organisation of other types of cooperation (establishment of contractual relations and fulfilment of contractual obligations);
● to ensure fast and high-quality communication in response to the questions or comments sent by persons (legitimate business interest, on the basis of consent of the data subject);
● to perform analytical studies on the use of products and services provided by SIA “Teliko” (legitimate business interest, on the basis of consent of the data subject);
● to ensure the provision of safety in the premises and territory of the company when performing video surveillance and access control (legitimate business interest).
5. Categories of recipients of Personal Data
Personal data may only be transferred to third parties to the extent and in the manner specified for the purposes determined in this policy, and to the extent that SIA “Teliko” has the right or obligation to do in accordance with the law or under the concluded agreement:
● basic information of the data subject, for example, name, surname, personal identity number, customer’s identifier, year of birth, gender, profession, address of the place of residence, e-mail address, phone number, preferred type of communication may be transferred to another company;
● to state and municipal institutions, only for compliance with the requirements of laws and national laws and regulations;
● to organisations and institutions within the framework of the fulfilment of the agreement;
● in certain cases the personal data processors may only include such service providers that guarantee to implement the relevant technical and organisational measures in the way in order to ensure the protection of the rights of the data subject in accordance with the requirements of regulatory enactments.
● basic information of the data subject, for example, name, surname, personal identity number, customer’s identifier, year of birth, gender, profession, address of the place of residence, e-mail address, phone number, preferred type of communication may be transferred to another company;
● to state and municipal institutions, only for compliance with the requirements of laws and national laws and regulations;
● to organisations and institutions within the framework of the fulfilment of the agreement;
● in certain cases the personal data processors may only include such service providers that guarantee to implement the relevant technical and organisational measures in the way in order to ensure the protection of the rights of the data subject in accordance with the requirements of regulatory enactments.
6. Data Retention and Archiving Principles
Personal data are processed and stored only for as long as necessary to achieve the purposes for which they were collected, to protect the legitimate interests of SIA “Teliko”, or to comply with applicable legal obligations.
Where applicable, specific retention periods are as follows:
● Data related to product warranties or contractual obligations are retained for the duration of the warranty period (e.g., 5 years) and, where necessary, for an additional period to establish, exercise, or defend legal claims.
● Operational system data are stored in active systems for up to 2 years, after which they may be transferred to restricted-access archives and retained until the applicable retention period expires.
● User account data are retained for as long as the account remains active and for up to 2 years after the last user activity, unless a longer retention period is required by law or justified by a legitimate interest.
● Accounting and transaction data are retained in accordance with applicable legal requirements (typically 5 to 10 years).
● Technical data (including IP addresses and access logs) are retained for up to 12 months for security and system integrity purposes.
After the applicable retention period expires, personal data are securely deleted or irreversibly anonymised. Deletion includes the removal of all data that can directly or indirectly identify a data subject. Encrypted data are considered deleted only if the encryption keys are irreversibly destroyed or the data are fully anonymised.
Archived data are subject to restricted access and may only be processed where strictly necessary (e.g., for legal compliance, dispute resolution, or audit purposes).
Personal data are treated as confidential information. Access to such data is granted only to authorised employees who require it to perform their job duties. All employees authorised to process personal data are appropriately trained and are bound by confidentiality obligations to ensure the protection of data subjects’ rights.
Where applicable, specific retention periods are as follows:
● Data related to product warranties or contractual obligations are retained for the duration of the warranty period (e.g., 5 years) and, where necessary, for an additional period to establish, exercise, or defend legal claims.
● Operational system data are stored in active systems for up to 2 years, after which they may be transferred to restricted-access archives and retained until the applicable retention period expires.
● User account data are retained for as long as the account remains active and for up to 2 years after the last user activity, unless a longer retention period is required by law or justified by a legitimate interest.
● Accounting and transaction data are retained in accordance with applicable legal requirements (typically 5 to 10 years).
● Technical data (including IP addresses and access logs) are retained for up to 12 months for security and system integrity purposes.
After the applicable retention period expires, personal data are securely deleted or irreversibly anonymised. Deletion includes the removal of all data that can directly or indirectly identify a data subject. Encrypted data are considered deleted only if the encryption keys are irreversibly destroyed or the data are fully anonymised.
Archived data are subject to restricted access and may only be processed where strictly necessary (e.g., for legal compliance, dispute resolution, or audit purposes).
Personal data are treated as confidential information. Access to such data is granted only to authorised employees who require it to perform their job duties. All employees authorised to process personal data are appropriately trained and are bound by confidentiality obligations to ensure the protection of data subjects’ rights.
7. Rights of the data subject
The data subject has the following rights:
7.1. to receive confirmation from SIA “Teliko” regarding the fact whether personal data are or are not processed;
7.2. to request modification, erasures and restriction of processing of his/her personal data, to object against processing;
7.3. right to withdraw consent at any time, without affecting the lawfulness of the processing based on consent before its withdrawal;
7.4. to submit a complaint to the supervisory authority (State Data Inspectorate) regarding the use of personal data.
The State Data Inspectorate accepts information via post, via e-mail (if documents signed with a secure electronic signature), as well as in person at Elijas Street 17, Riga, LV – 1050. The State Data Inspectorate mail address: [email protected]
7.1. to receive confirmation from SIA “Teliko” regarding the fact whether personal data are or are not processed;
7.2. to request modification, erasures and restriction of processing of his/her personal data, to object against processing;
7.3. right to withdraw consent at any time, without affecting the lawfulness of the processing based on consent before its withdrawal;
7.4. to submit a complaint to the supervisory authority (State Data Inspectorate) regarding the use of personal data.
The State Data Inspectorate accepts information via post, via e-mail (if documents signed with a secure electronic signature), as well as in person at Elijas Street 17, Riga, LV – 1050. The State Data Inspectorate mail address: [email protected]
8. Information Security
SIA “Teliko” protects the data of data subjects by using modern technologies, considering the existing privacy risks and organisational, financial and technical resources reasonably available to SIA “Teliko”, including by using the available protective mechanisms in accordance with the current development possibilities of the equipment.
9. Changes in the Privacy Policy
SIA “Teliko” assumes that you have read and accepted this Privacy Policy before using the https://www.citylight.net/ website. If you do not agree to this Privacy Policy, please do not submit any information through https://www.citylight.net/. SIA “Teliko” reserves the right to unilaterally change and supplement the Privacy Policy at any time without notice. The Privacy Policy, available at the website https://www.citylight.net/ is updated.
In the case of issues related to the Privacy Policy or data processing, as well as in other cases, please contact us by e-mail: [email protected]
In the case of issues related to the Privacy Policy or data processing, as well as in other cases, please contact us by e-mail: [email protected]
