PRIVACY AND DATA PROCESSING POLICY

MB "Skola ir teisė" (hereinafter referred to as "the Company") is committed to protecting your privacy and safeguarding your personal data. This Privacy and Data Processing Policy (hereinafter referred to as the "Policy") applies to the personal data processed by the Company, with the company code 305540882, located at Gedimino g. 5, Kaunas.

This Policy is prepared in accordance with the General Data Protection Regulation (GDPR), which came into effect on May 25, 2018, and other relevant Lithuanian or European Union laws governing personal data processing. By reading this Policy, you will learn how the Company processes, stores, and uses personal data. If you use the website www.skolairteise.lt, it means you have read and agree to the terms of this Policy.

Key Definitions Used in This Policy

• Personal Data – any information about an identified or identifiable natural person (data subject). An identifiable person is one whose identity can be directly or indirectly established, primarily by reference to an identifier such as a name, identification number, location data, or an online identifier, or by one or more factors specific to the person's physical, physiological, genetic, mental, economic, cultural, or social identity.

• Data Subject – a natural person whose personal data is processed by the Company.

• Data Controller – a legal or natural person who, alone or jointly with others, determines the purposes and means of processing personal data.

• Data Recipient – a legal or natural person to whom personal data is disclosed.

• Third Party – a natural or legal person, a public authority, agency, or body, which is not the data subject, data controller, data processor, or persons authorized to process personal data under the direct authority of the data controller or data processor.

• Data Processing – any operation or set of operations performed on personal data or sets of personal data, whether by automated or non-automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Purposes of Personal Data Processing

Personal data may be processed for the following purposes:

• Identification of the data subject.

• Conclusion, performance, and provision of services and fulfillment of obligations.

• Protection of the data controller's and/or the Company’s rights and legitimate interests.

• Credit assessment, debt management.

• Compliance with court or other authority orders and decisions.

• Fulfillment of evidentiary obligations (call data).

• Other legitimate purposes as specified by law.

Sources of Personal Data

Personal data may be collected directly from the data subject, from the data controller, or by official request from entities authorized to provide the required information, or based on contracts and legal acts, by accessing databases, registries, and information systems.

Types of Personal Data Collected

Personal data may include identification data, contact details, financial data, professional data, data obtained from third parties (e.g., notaries, courts, bailiffs), and statistical data on behavior and service usage.

Cookies and Their Usage

The Company uses cookies to improve your browsing experience. Cookies may be used for the following purposes:

• Providing personalized content and ads.

• Accurately calculating website traffic and user behavior on the portal.

• Allowing users to stay logged in after closing the browser.

You can choose whether to accept cookies by changing the settings of your web browser. If you do not agree to the use of cookies, you can disable them, but certain features of the website may not be available.

For more information on cookies, please visit Google's privacy page.

Who We May Share Your Personal Data With

Personal data may be shared with:

• Public authorities and institutions (e.g., courts, law enforcement, bailiffs).

• Authorized data processors (legal, financial, archiving, postal services).

• Credit bureau UAB “Creditinfo Lietuva” and other entities if you delay fulfilling your obligations for more than 30 days.

Data Subject’s Rights

You have the following rights:

• To access your personal data and receive information on how it is processed.

• To request correction, deletion, or restriction of processing of your data.

• To object to data processing or request human intervention during automated profiling.

• To file a complaint with the State Data Protection Inspectorate.

Data Retention Period

Personal data is processed for no longer than necessary, based on legal grounds and the nature of the contract. For example, credit history data is retained for up to 10 years after the fulfillment of obligations.

Contact Information

For questions or requests regarding the processing of your personal data, please contact the Company at:

• Email: info@skolairteise.lt

• Address: Gedimino g. 5, Kaunas

• Phone: +370 66 424 569