Version of April 6, 2020

PRIVACY POLICY

GENERAL INFORMATION

This privacy policy outlines the conditions of processing of personal data of visitors of the websites https://www.agaras.lt/ and https://www.feelthebeef.lt/ and other data subjects as well as the procedure for the exercise of the rights of data subjects. Personal data is processed by UAB Agaras, Company Reg. No. 154742821, address of seat: Agaro St. 5, Balandiškiai Village, Ward of Pabiržė, District of Biržai, e-mail: info@agaras.lt (hereinafter the Controller).

Please take the time to review this policy, and do not hesitate to contact the Controller by telephone, mail or email in case you have any questions.

The Controller may review and amend the privacy policy at any time, and we therefore recommend that you make sure on a regular basis that you are familiar with the updated (effective)version of the privacy policy. The date of publication of the updated (effective)version of the privacy policy is specified at the top of this webpage.

The personal data of the websites’ visitors and other data subjects shall be processed pursuant to legislation and by implementing appropriate technical and organisational measures to protect the personal data.

The Controller shall only use the personal data, which you provide or which the Controller collects for the purposes specified in the privacy policy or another privacy notice provided to you, and shall not transfer the personal data for processing to other persons, except in cases specified in this privacy policy. In cases stipulated by law, your data may also be transferred to competent authorities. Other cases in which your personal data may be transferred to third parties (the Controller’s partners, data processors, etc.) shall be specified in individual sections of the privacy policy.

The websites contain links to websites which are not owned by the Controller. The Controller shall not be responsible for any privacy policies applied by such websites, and we therefore recommend you to be proactive and read the privacy policy applied to a website to which you are redirected.

PERSONAL DATA OF VISITORS OF THE WEBSITES; USE OF COOKIES

Cookies

The websites use cookies, which are small text files placed on your device (e.g. desktop computer, mobile phone, tablet) when you browse the website.

The specifications of the cookies used by the Controller are provided in the table below.

WEBSITE NAME OF THE COOKIE FUNCTION OF THE COOKIE EXPIRATION
https://www.agaras.lt/ october_session Saves session status for all page requests 1 day
cookiebar Saves the choice of the visitor on the use of cookies

 

 Until the browsing session ends
https://www.feelthebeef.lt/ _ga Used by „Google Analytics“ to identify unique users 2 years
_gat Used by„Google Analytics“ to throttle the request rate 1 day
_gid Used by „Google Analytics“ to identify unique users 1 day
_fpb Facebook cookie, used for the purpose of advertising 3 months

 

When visiting the websites third-party cookies may also be placed on your device. The Controller may not control their number and functions and has no possibility to get acquainted with the information they collect. Accurate information about the functions of the cookies used by third parties (Facebook, Google, LinkedIn, etc.) and the personal data collected by the third parties can be found in the privacy / cookie policies of these third parties (e.g. Facebook cookie policy, Google cookie policy, LinkedIn cookie policy) or by contacting the contact person of the respective third party that sends the cookies.

You can find out what specific cookies were placed on your device after you visited any of the Controller’s websites by checking your browser settings. If you use the Google Chrome browser, information about the placed cookies can be viewed by clicking the button on the left of the address field.

Cookies placed during visits to the Controller’s fan pages on social media

The Controller administers the following pages on social networks: Agaras, UAB pages on  Facebook and LinkedIn, as well as „Feel the Beef“ page on Facebook (hereinafter Fan pages).

When you visit the Fan Pages, the administrators of the social media platforms place cookies on your device, and these cookies collect your personal data. Cookies are placed on your device both in case you are a registered user of the respective social media platform and in case you do not have an account on the respective social media platform. The Controller (Agaras, UAB) does not have access to the collected personal data and only receives from the administrators of the social media platforms statistical information about visits to the Fan Pages.

If you need any further information on personal data processed for the purpose of administering Fan pages, please read the following:

  • Facebook cookie policy or contact Facebook data protection officer (regarding personal data processed by Facebook).
  • Linkedin cookie policy or contact Linkedin data protection officer (regarding personal data processed by LinkedIn).

You can restrict or block cookies by changing your browser settings. If you do not want websites to place any cookies on your device, change your browser settings in such a manner as to ensure that you are notified about cookie placement beforehand or that your browser block all cookies. You will have to adjust your settings for each browser of each of your devices.

If you block or restrict the use of cookies, you may be unable to avail of certain services or use certain functionalities of the websites.

Comprehensive information about cookies and their operation principles and settings can be found at http://www.allaboutcookies.org.

Communication tools

To be able to respond to your inquiry and save evidence of correspondence (having legitimate interest to ensure the effective communication and prevent any disputes regarding the provision of services to persons), the Controller shall process the following information that you provide:

  • By communicating via e-mail addresses specified on the website, the following data shall be processed: name, surname, e-mail address, e-mail date and time and content of correspondence with the Controller’s representative.
  • By sending a letter to the Controller’s address of seat, the following data shall be processed: name, surname, address, date of receipt of the letter and information provided in the letter.
  • By communicating via Facebook or LinkedIn, the following data shall be processed: user name, date, time and content of correspondence with the Controller’s representative.

The personal data provided together with inquiries and the subsequent correspondence between you and the Controller’s representative shall be stored for the period of 5 years after the end of the current year.

In case of sending an inquiry via Facebook or LinkedIn accounts, the personal data you provide may be disclosed to the social network managers and other individuals with whom Facebook and LinkedIn managers share personal data. For more information please read the privacy policies of Facebook and LinkedIn.

Your rights relating to processing of your personal data shall be specified in the PROCEDURE OF THE EXERCISE OF THE RIGHTS section of the privacy policy.

PERSONAL DATA OF CATTLE SUPPLIERS

The Controller buys up cattle from cattle breeders and processes personal data of cattle breeders or natural persons related to the cattle breeders for the purpose of conclusion and performance of contracts, for accounting purposes and for the purpose of defending the Controller’s rights.

For the purpose of conclusion and performance of contracts the Controller processes name, surname, personal code, VAT number, address, phone number, e-mail address and communication via e-mail or via other communication platforms, job title of the representatives of legal persons, data specified in the power of attorney of the legal person, ID number of the cattle, code of the herd, date and number of the contract, price, bank account number. Legal basis for the processing of the personal data – performance of a contract. Personal data processed for this purpose is stored for the 5 years after the end of calendar year the contract was concluded. Personal data is transferred to the State Enterprise Agricultural Information and Rural Business Centre, as well as to the companies who provide to the Controller IT, logistics, parcel delivery services and other service providers, related to the conclusion and performance of contracts.

For accounting purposes, the Controller processes name, surname, personal code, VAT number, address, phone number, e-mail address, invoice data, bank account number, information on payments. Legal basis for the processing of the personal data – legal obligation to comply with legislation setting out the requirements for accounting. Personal data processed for accounting purposes is stored for 10 years after the end of the calendar year, the respective accounting document was issued, and is transferred to the State Tax Inspectorate.

For the purpose of defending the Controller’s rights, the Controller processes name, surname, personal code, address and other information necessary to defend the rights of the Controller. Legal basis for the processing of the personal data – legitimate interest of the Controller to defend its potentially infringed rights. Personal data processed for this purpose is stored insofar as is necessary for the purpose and may be transferred to lawyers, law enforcement agencies, courts, bailiffs, bankruptcy administrators and other persons related to the protection of the rights of the Controller.

The Controller also keeps records and assessment of cattle breeders and for this purpose administers a database containing the following personal data of the cattle breeders who sold cattle to the Controller: name, surname, personal code, VAT number, address, phone number, e-mail address, purchase history, data on the quality of the cattle. Legal basis for the processing of the personal data – legitimate interest of the Controller to ensure the quality of the cattle being purchased, by performing the obligation to assess cattle suppliers in respect of its clients. The recipients of the personal data are companies that provide to the Controller IT services. Personal data in the database is stored for 10 years after the end of the calendar year, in which the last contract with the supplier was concluded.

If you object to being included in the cattle supplier database, please inform the Controller (right to object). Your rights relating to the processing of your personal data shall be specified in the PROCEDURE OF EXERCISEOF THE RIGHTS section of the privacy policy.

PERSONAL DATA OF PROSPECTIVE EMPLOYEES

The Controller shall only process the personal data of prospective employees for the purpose of employee selection and employment having legitimate interest to evaluate a candidate’s suitability for the respective position.

For the purpose of employee selection and employment, in addition to the data provided by a candidate, the Controller may collect and process in other manners other publicly accessible data of a candidate, related to his qualifications, professional skills and competences, i.e. look for information on the internet, check a candidate’s profiles on social media platforms (e.g. LinkedIn, Facebook, Twitter), etc. The Controller may also contact a candidate’s former employers, specified in the candidate’s CV and (or) public social media accounts, and ask such former employers to provide information about the candidate’s qualifications, professional skills and competencies.

The Controller shall store the personal data of a candidate, participating in the employee selection procedure organised by the Controller, for 4 months from the end of the respective employee selection procedure. The term of storage of the personal data shall only be extended upon receipt of the candidate’s consent to process personal data. If a consent to the processing of a candidate’s personal data is not obtained, then, on expiry of the said term, all personal data of the respective candidate (both the data provided by the candidate and the data collected by the Controller) shall be destroyed.

Your rights relating to the processing of your personal data shall be specified in the PROCEDURE OF EXERCISEOF THE RIGHTS section of the privacy policy.

VIDEO SURVEILLANCE

Video surveillance is carried out in the territory and premises of the Controller. The monitored areas and parts of the premises are marked with visual signs visible before entering the area under video surveillance.

Video surveillance is carried out for the purpose of ensuring the security of the Controller’s property and its employees. Legal basis for the processing of video data is the Controller’s legitimate interest to prevent any damages that the Controller may incur if it is deprived of its property or if it fails to ensure employee security.

The recipient of the video data is security company, providing physical security services to the Controller. In case of allegation of committing a crime or other offence, the video data may also be transferred to law enforcement authorities. Video data is recorded and stored for the period from 14 to 30 calendar days from the recording. The specific storage time depends on how fast the storage device, in which the video recordings are stored, fills up. If the video data is used as evidence by law enforcement authorities,  as well as for the purpose of determining the employee’s breach of duties and liability, determining the extent of the employee’s damages and compensation procedures or in other cases prescribed by law, the video data may be stored for as long as it is necessary for these purposes, and destroyed immediately when no longer needed.

Your rights relating to the processing of your personal data shall be specified in the PROCEDURE OF EXERCISEOF THE RIGHTS section of the privacy policy.

REGISTRATION OF VISITORS

The Controller registers all visitors entering the company’s territory for the purpose of prevention and control of infectious diseases. For this purpose, the Controller processes the following personal data: name, surname, the company represented by the visitor, registration number of the vehicle, date and time of the arrival to the Controller’s territory, part of the visited territory.

Legal basis for the processing of personal data is the legitimate interest of the Controller to prevent the spread of infectious diseases. The recipient of the data is security company, providing physical security services to the Controller. The data is stored for the period of 3 years after the end of the current calendar year.

Your rights relating to the processing of your personal data shall be specified in the PROCEDURE OF EXERCISE OF THE RIGHTS section of the privacy policy.

PROCEDURE OF EXERCISE OF THE RIGHTS

As a data subject you have the following rights:

  • Right of access to your personal data;
  • Right to demand rectification of incorrect, inaccurate or incomprehensive personal data;
  • Right to restriction of the processing of personal data until the legitimacy of the processing is verified;
  • Right to erasure of unlawfully processed personal data;
  • Right to object to the processing of personal data for the purpose of direct marketing, including profiling, and in any other cases when processing is based on the legitimate interest of the Controller;
  • Right to have your personal data transmitted to another data controller or provided directly to you in a convenient form (this right applies to the data that you provided to the Controller and when the processing is carried out by automated means and is based on your consent or performance of contract);
  • Right to withdraw your consent, without prejudice to the lawfulness of processing of personal data carried out prior to the withdrawal of the consent;
  • Right to lodge a complaint with the State Data Protection Inspectorate (for more information please visit the website of the State Data Protection Inspectorate).

The Controller makes every effort for you to be able to exercise your rights, also to answer any questions you may have about the information provided in this privacy policy. You may submit a request for the exercise of the above mentioned rights, as well as complaints, notifications or requests to the contact person of UAB “Agaras” by email info@agaras.lt, by mail to Agaro St. 5, Balandiškiai Village, Ward of Pabiržė, 41385 Biržai District, or upon arrival at this address. When submitting the request, please indicate clearly the right you wish to exercise and the extent to which you wish to exercise that right. For example, in case you submit a request of access to your personal data, please indicate which personal data you wish to have access to and what information, listed in Article 15 (1) of the Regulation, you wish to receive.

Please note that the requests submitted by email must be signed by a qualified email signature. In cases when the request is sent to the address of the Controller’s seat, a copy of the notarized identity document (passport, personal identity card) must be submitted together with the request.

The Controller will respond to your request not later than within 30 (thirty) calendar days from the date of receipt of the request. In exceptional cases requiring additional time, the Controller may extend the deadline for submitting the requested data or for examining claims referred to in your request by two further months. You will be notified on the extension of the deadline before the expiration of the original term.

The Controller may refuse to satisfy your request subject to the conditions laid down in the General Data Protection Regulation or other legislation. You will be notified in writing about any refusal to satisfy your request.

CONTACT INFORMATION

Should you have any questions regarding the privacy policy, please do not hesitate to contact us and request assistance:

 

UAB „Agaras“

Agaro St. 5, Balandiškiai Village, Ward of Pabiržė, District of Biržai
Tel. +370 450 31458
E-mail info@agaras.lt