Privacy Policy for SIA L.E.A.

  1. General Provisions
    1.1. This privacy policy regulates the principles of collection, processing, and storage of personal data. Personal data is processed and stored by SIA L.E.A., who is the controller of the personal data (hereinafter the controller).
    1.2. For the purposes of this privacy policy, a data subject means the customer or another natural person whose personal data is processed by the controller.
    1.3. For the purposes of this privacy policy, a customer means anyone who uses the services or interacts with the website www.giftory.store.
    1.4. The controller observes the principles relating to personal data processing provided by legislation and processes personal data in a lawful, fair, and secure manner.
  1. Collection, Processing, and Storage of Personal Data
    2.1. The personal data collected, processed, and stored by the controller is collected electronically via the website or e-mail.
    2.2. By sharing their personal data, the data subject grants the controller the right to collect, arrange, use, and administer the data for the purposes defined in this privacy policy.
    2.3. The data subject is responsible for the accuracy and integrity of the data they submit.
    2.4. The controller is not liable for any damages resulting from the submission of false data.
  1. Processing of Personal Data of Customers
    3.1. The controller may process the following personal data of the data subject:
  • Full name;
  • Contact details (e.g., telephone number, e-mail address);
  • Delivery address;
  • Payment information (e.g., bank account details).

3.2. The legal basis for processing personal data includes:

  • Consent of the data subject;
  • Performance of a contract;
  • Compliance with legal obligations;
  • Legitimate interests of the controller.

3.3. Processing purposes and storage periods:

  • Security and safety: Data stored according to legal requirements.
  • Order processing: Data stored for up to 5 years.
  • Customer management: Data stored for up to 5 years.
  • Marketing: Data stored for up to 3 years or until consent is withdrawn.
  • Financial activities and accounting: Data stored according to legal requirements.

3.4. The controller may share personal data with third parties such as payment processors, transport companies, and service providers. Payment data is transmitted to Montonio Finance UAB for processing.

3.5. Personal data is stored securely to prevent unauthorized access or misuse.

  1. Rights of the Data Subject
    4.1. The data subject has the right to access, correct, or delete their personal data.
    4.2. The data subject can withdraw their consent for processing at any time.
    4.3. To exercise their rights, the data subject can contact admin@giftory.store.
    4.4. Complaints regarding data protection can be filed with the Latvian Data State Inspectorate.
  1. Final Provisions
    5.1. This privacy policy complies with the General Data Protection Regulation (EU) 2016/679 and Latvian data protection laws.
    5.2. The controller reserves the right to amend this privacy policy and will notify users via www.giftory.store.