In this privacy policy (hereinafter referred to as the "Privacy Policy") we provide you with information on how HEALTHY LONGLIFE, MB, legal entity code 306026453, registered office address J. Franko g. 14, Vilnius, 08431 Lithuania (hereinafter referred to as the "Data Controller") handles your personal data in http://www.celltriagen.com online shop.

You can contact the Data Controller using the following contacts:

Tel.: +(370) 676 76520
Email: celltriagen@celltriagen.com
Adress: J. Franko g. 14, Vilnius, 08431 Lithuania

What personal data do we process?

Tikslas

Duomenys

Teisinis pagrindas

Saugojimo laikas

Kam galime perduoti?

Drawing up and executing contracts with legal entities

Name, contact details, content of correspondence, other data contained in the contract.

Legitimate business interest

10 years after expiry of the contract

-

Drawing up and executing contracts with natural persons

Name, surname, address, email address.

Contract

10 years after the end of the contract

Payment service providers

Order delivery

Name, surname, phone number, address, self-service terminal information, consignment number.

Contract

10 years after the end of the contract

Courier services, delivery service providers, post offices

Direct marketing (newsletters, invitations to events, offering similar products or services)

Name, surname, email, tel. No.

Sutikimas

2 metus po sutikimo gavimo

Newsletter solution

Legitimate interest in offering similar goods/services to customers

2 years after the purchase of the goods or services

Managing your social media accounts

Unique ID, IP address, device information.

Consent / Legitimate interest to communicate with customers

As long as the visitor to the social website is a follower of the accounts

Social network (co-managers)

 

The e-shop processes payments using the makecommerce.lt platform, which is operated by Maksekeskus AS (Niine 11, Tallinn 10414, Estonia, reg. no.:12268475), and therefore your personal information necessary for the execution and confirmation of the payment will be transmitted to Maksekeskus AS.

How do we process your personal data on social networks?

The information that you provide to us via social media when you visit our accounts (including messages, use of "Like" boxes, and other communications) is controlled by us as joint controllers of personal data with the operators of the social networks.

We currently have the following social media accounts:

"Facebook - CellTriagen, whose privacy notice can be found at https://www.facebook.com/privacy/explanation
"Instagram - shop, whose privacy notice can be found at https://help.instagram.com/519522125107875
We recommend that you read the privacy notices of the third parties and contact the service providers directly if you have any questions about how they use your personal data.

Who can we transfer your personal data to?

We may transfer information about you to our employees, agents, service providers such as debt management or collection companies, archiving service providers, legal, marketing services, IT service providers or sub-contractors as reasonably necessary for those purposes, as set out in this Privacy Policy.

We may also disclose information about you if we are required to do so by law or in order to protect our rights or interests (including disclosing your personal data to third parties in order to collect debts owed to us by you), or in the context of the contemplated transfer of the business or assets of the Partnership or the reorganisation of the Partnership, or in the course of these processes, disclosing your personal data to the (potential) acquirer of the business or its assets or to the other parties in the reorganisation.

How is your personal data processed?

Your personal data will be processed in accordance with the General Data Protection Regulation (hereinafter referred to as "GDPR"), the Law on Legal Protection of Personal Data of the Republic of Lithuania and other legal requirements. The Data Controller, both when establishing the means of processing personal data and during the processing itself, shall implement appropriate technical and organisational measures provided for in the legislation for the protection of data protection, designed to protect the processed personal data against accidental or unlawful destruction, damage, alteration, loss, disclosure, as well as against any other unauthorised processing. The appropriate measures shall be determined taking into account the risks arising from the processing of personal data.

What are your rights?

Below we provide information about your rights in relation to the processing of your personal data by the Data Controller and when you can exercise these rights. If you would like more information about your rights or to exercise them, please contact us at the email address set out in this Privacy Policy.

  • You can contact us at any time to enquire whether we process any of your personal data. If we store or use your personal data in any way, you have the right to access it. To do so, please submit a written request to us at the email address set out in this Privacy Policy. We may ask you to confirm your identity in order to fulfil your request. Please observe the principles of fairness and reasonableness when making such a request.
    If you have given us your consent to the processing of your data, you may withdraw it at any time by contacting us at the email address specified in this Privacy Policy.
  • You have the right to ask us to correct any inaccuracies in the data we hold. In this case, we may ask you to confirm the corrected information.
  • You have the right to ask us to delete your personal data. This right shall be exercised in the cases provided for in Article 17 of the GDPR.
  • You have the right to ask us to restrict or not to process your personal data.
  • You have the right to the transfer of data which is processed by automated means and which we have received from you with your consent or for the purpose of concluding a contract. If you exercise this right, we will transfer a copy of the data you have provided to us upon your request.
  • You have the right to object to our use of your personal data in accordance with Article 21 of the GDPR.

How can you exercise your rights?

In order to exercise your rights, please submit your requests, complaints or claims in writing to us at the contact details provided in this Privacy Policy.

We will respond to any requests, complaints or claims we receive in writing in accordance with the procedures and deadlines set out by law. We will endeavour to provide you with the information as soon as possible, but no later than 30 days after receiving your request.

If, after receiving a request, complaint or demand, we are suspicious about the identity of the person making the request, we have the right to ask for the identity document of the person making the request.

Complaints

If you believe that your rights as a data subject have been and/or may be violated, please contact us immediately at the email address specified in this Privacy Policy. We ensure that only upon receipt of your complaint, we will contact you within a reasonable period of time to inform you of the progress of the investigation and, subsequently, the outcome of the complaint. If you are not satisfied with the outcome of the investigation, you may lodge a complaint with the supervisory authority, the State Data Protection Inspectorate (www.vdai.lrv.lt/).

Responsibility

You are responsible for ensuring that the data you provide to us is accurate, correct and complete. If the data you have provided us with changes, you must inform us immediately by email. In no event shall we be liable for any damage caused to you as a result of your providing incorrect or incomplete personal data or your failure to inform us of any changes to it.

Privacy Policy updated on 25 November 2022.