Privacy Policy

Introduction

SIA “Certes.lv” (hereinafter referred to as “Certes”) develops, provides and maintains audiovisual solutions, including offers sound, lighting, video and interactive technology solution (hereinafter referred to as the “Service” or “Services”).

Certes has drafted this privacy policy (hereinafter referred to as the “privacy policy”) to inform about Certes’s data protection practices when providing services and hosting the Internet website www.certes.lv (hereinafter referred to as the “Website”).

This privacy policy shall be binding on Certes and the persons whose data is processed by Certes, including:

  • on the persons who visit the Website, 
  • on potential recipients of the Service who submit their data to Certes for the purposes of receiving the Services, 
  • on the persons who receive the Services.

In addition to the provisions of this privacy policy, Certes and the recipient of the Services shall be bound by the data processing rules laid down in the contracts for the provision of the Services and agreements for the processing of personal data, if any. In the event of a conflict between this privacy policy and the contract for the provision of the Services and/or an agreement for the processing of personal data, the most favourable rules for the data subject shall apply. Supplements and clarifications which do not conflict with the laws and regulations referred to in paragraph 2.1 of this privacy policy shall not be considered a conflict.

The potential recipient of the Services and the recipient of the Services are obliged to obtain consent of their representatives to transfer their personal data to Certes, inform their representatives of the transfer of their personal data to Certes and the terms of this privacy policy if they submit their personal data to Certes.

Certes is entitled to amend the privacy policy rules provided that the regulatory enactments referred to in the next paragraph of the privacy policy are complied with. Certes shall publish a valid version of the privacy policy on the Website.

 

General rules of processing of personal data

Certes shall process and protect personal data in accordance with the laws and regulations in force in the Republic of Latvia, including Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

This privacy policy shall include the main rules for the processing and protection of personal data, in addition to which Certes shall lay down and implement other provisions for the processing and protection of personal data which do not conflict with this privacy policy and comply with the laws and regulations laid down in the previous paragraph.

Certes certifies that it has taken the necessary measures to ensure the protection of personal data and to prevent access of third parties to them as far as possible. Certes shall control and improve data protection processes on a regular basis.

Under this privacy policy data shall mean any information, including personal data, information on the service provided by Certes, information on the contracts to be entered into and concluded for the provision of the Services, the amount of payments and the payment history of Certes’s recipient of Services, the content of telephone calls with the representatives of the recipient of the Services, etc. Personal data processed and protected under this privacy policy shall be any information relating to an identified or identifiable natural person. The persons whose data is processed by Certes may also be referred to as “data subjects” in the text of this privacy policy.

Under this privacy policy “processing of personal data” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

The data subject has the right to request from Certes access to and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to processing as well as the right to data portability.

The data subject has the right to submit a complaint about Certes’s violations in the processing and protection of personal data to the supervisory authority: the Data State Inspectorate of the Republic of Latvia.

 

Personas datu iegūšana, apstrādes nolūki un apstrādes juridiskais pamats

Certes shall receive data, including personal data, in a variety of ways, including:

  • The potential recipient of the Services shall submit to Certes the data for entering into a contract with Certes for the provision of the Services, and Certes shall process the data for the preparation, conclusion and execution of the contract for the provision of the Services, as well as for other purposes specified in this privacy policy and the contract on provision of the Services. Where a potential recipient of the Services is a natural person, the submission of personal data shall be a prerequisite for entering into a contract for the provision of the Services; the submission of any additional data of representatives shall, in that case, be optional. Where a potential recipient of the Services is not a natural person, the submission of the name of the natural person who will sign a contract for the provision of the Services with Certes, as well as a power of attorney for the person concerned if the person represents the potential recipient of the Services on the basis of a power of attorney; the submission of any additional data of representatives shall, in that case, be optional. Certes shall receive the data during the events organised by Certes (trainings, seminars relating to the Services), including by taking photographs and recording videos.
  • Certes shall receive from third parties the data necessary for the performance of contracts concluded between third parties and the data subjects concerned, that is if Certes provides the Services as a sub-contractor.
  • Certes shall receive data from publicly available registers.
  • Certes can receive the data using cookies on the Website placing a notice on the Website. More detailed provisions relating to the processing of those data are set out in paragraph 6 of this privacy policy.

Certes shall process data from potential recipients of the Services and recipients of the Services for the following purposes:

  • If the data subject has submitted data to Certes, thereby giving consent to the processing of personal data, Certes shall be entitled to process the data with a view to providing advice, preparing the Service offers and entering into a contract for the provision of the Services in order to take measures prior to the conclusion of the contract on provision of Services.
  • For the performance of a contract for the provision of Services, for communication with the recipient of the Service, for notification on changes in the Service, for the provision of technical information, for notification on software updates, for the submission of security, support and other messages. 
  • For the performance of contracts concluded between third parties and the data subjects concerned, that is if Certes provides the Services as a sub-contractor.
  • To notify the recipient of the Services of other Certes’s services Offers. In such a case, the legal basis for the processing of personal data shall be the consent of the recipient of the Service, which shall be deemed to be expressed when entering into a contract for the provision of Services.
  • For the preparation of Service offers, advertising of Certes and informing third parties about the Services, using photographs and video recordings obtained during the training and other events that are organised by Certes.
  • To control the quality of the Services and to determine customer satisfaction by asking the recipient of the Services to participate in surveys on the quality of Certes’s services and receiving survey results. For customer service quality control and improvement of the quality of Certes’s services phone conversations with representatives of the customer service centre may be recorded and saved.
  • For sending of greetings to the recipient of the Services at national holidays and greetings to the recipient of the Service and its representatives on their birthdays and name days. In such a case, the legal basis for the processing of personal data shall be the consent of the recipient of the Service, which shall be deemed to be expressed when entering into a contract for the provision of Services.
  • In order to fulfil the legal obligations applicable to Certes, if such are provided for by regulatory enactments.

If the potential recipient of the Services has submitted personal data for the purposes specified in paragraph 3.1.1 of this privacy policy, they shall be entitled to withdraw their consent to the processing of personal data before the conclusion of the contract for the provision of the Services and to withdraw from the conclusion of the contract for the provision of the Services.

If the recipient of the Services has submitted data to Certes prior to entering into a contract for the provision of the Services, it is not necessary to re-submit the data when entering into the contract for the provision of the Services, and Certes shall not be obliged to inform the data subject separately of the processing of their personal data and the change of the legal basis.

 

Categories of recipients of data

The employees of Certes are entitled to process personal data in accordance with their duties. Certes is required to inform the employees who process the data of the recipients of the Service of the terms of this privacy policy.

Data of potential recipients of the Service who submit the data to Certes for the purposes of receiving the Services and data of recipients of the Service may be transferred to third parties for the following purposes:

  • The data of the potential recipient of the Service may be transferred to the relevant outsourcer with a view to obtaining a specific service offer and to processing the application of the potential recipient of the Services prior to the conclusion of a contract for the provision of the Services.
  • The data of the recipient of the Service may be transferred to outsourcers for the performance of a contract for the provision of the Services, including for the processing of applications of the recipient of the Service, for example, for the processing of an application for changes in the Service, processing of damage applications, preventing of damages, etc.
  • Other cooperation partners of Certes for the performance and management of the contract for the provision of the Services, including administration, record-keeping, accounting and legal service providers, etc.
  • Making available to third parties photographs and video recordings obtained during the training and other events that are organised by Certes with a view to advertising Certes and informing of the Services.
  • To debt recovery service providers and for filing to court if the recipient of the Services fails to make payments in good time. Certes has the right to transfer to third parties the data of the recipient of the Service for the purpose of recovering the debt, including the establishment of a database of the debt history.
  • Data may be transferred to third parties in cases provided for by law for the purposes of performance of duties imposed by regulatory enactments.

Time period for which personal data are stored

Personal data in the case referred to in paragraph 3.2.1 of this privacy policy shall be kept for a maximum of 1 (one) month for the purposes of concluding a contract for the provision of the Services. If a contract for the provision of the Services has not been concluded within that time period for any reason, but the data subject subsequently contacts Certes with a repeated offer to enter into a contract for the receipt of the Services, personal data should be resubmitted to Certes. Where a contract for the provision of the Services is concluded within that time period, Certes shall continue to store the personal data in accordance with the next paragraph of this privacy policy.

For the purposes specified in paragraph 3.2.2 of this privacy policy personal data shall be stored during the period of validity of the contract for the provision of the Services and in addition for a period not exceeding 10 (ten) years after termination of the contract with a view to ensuring preservation of documents certifying and supporting earlier transactions, the fulfilment of guarantee obligations and the recovery of any potential debt.

In the case referred to in paragraph 3.2.3 of this privacy policy, it is not possible to specify an exact period of storage of the data, but Certes shall be entitled to process personal data for a period not exceeding the performance of the duties of Certes in accordance with a contract for the provision of the Services concluded between Certes and the third party.

The period of storage of personal data for the purposes specified in paragraphs 3.2.4 to 3.2.6 of this privacy policy shall be the period of validity of the relevant contract for the provision of the Services.

The period of storage of personal data for the purposes specified in paragraph 3.2.7 of this privacy policy shall be determined in accordance with the regulatory enactments in accordance with which Certes is subject to the specified legal obligation.

In other cases, the period of storage of personal data shall be determined without exceeding the time period specified in regulatory enactments, if such is specified.

 

Special provisions relating to the use of the Website

Certes can receive the data using cookies on the Website placing a notice on the Website. The legal basis for such data processing shall be a consent of the data subject, which shall be deemed to have been provided if the data subject continues to use the Website after a warning on the use of cookies has been displayed on the Website.

Certes shall ensure the processing and protection of personal data of Website visitors in conformity with the regulatory enactments specified in paragraph 2.1 of this privacy policy. 

With a view to providing services and evaluating the need to improve the Website, Certes has the right to process information about Website visitors which are included in Website access files, such as IP address, type of network browser used, previous Website page from which the visitor has reached the Website, the Internet service provider, the time of the visit, Website sections, etc.

In line with the capabilities of the technologies used, cookies may be disabled, but this is not recommended, as this may result in fewer or denied Website usage rights. 

The Website is the property of Certes. Any text, images, diagrams, sound files, animation files, video files, and their arrangement on the Website are objects of copyright and other intellectual property rights. These objects may neither be copied for commercial purposes or for distribution nor modified or placed on other Websites. When republishing materials, written permission of Certes is required. When quoted, a reference to the source is mandatory.

Certes shall not assume responsibility for other Websites, to which links from the Website lead.

 

Communication with Certes

If you have any questions related to the processing of personal data, you can contact Certes using the following contact information:

SIA “Certes.lv”

Braslas iela 29A-2, Riga, Latvija, LV-1004

E-mail: info@certes.lv

T.: +371 67615096 


We are working to understand your needs and complement them with our knowledge and experience creating customised and effective solutions.

If you don’t find in our offer the solution or products you need, apply for an individual consultation.