Privacy policy

On this privacy policy and cookies page, you can find out what information we collect about you when you visit our website https://funway.lt. We also provide information on what we do with this information and where it is obtained. In addition, we provide information about the use of cookies on the website.

The controller of your personal data as a website visitor, company customer is:

UAB Ink Idea 
Company code: 302545714
Address: Darius ir Girėno st. 34A, LT-02189 Vilnius
Phone number: +370 652 40230
email e-mail address: info@inkidea.lt

HANDLING OF YOUR PERSONAL DATA

YOUR DATA IS PROCESSED FOR THE FOLLOWING PURPOSES:

  • In marketing.
  • Sending newsletters (newsletters are not sent without your consent).
  • In order to ensure the functionality of the website, to offer you better website browsing solutions.
  • We use cookies to improve the provision of information on the website https://funway.lt.
  • In order to answer your questions through the contact forms provided on our website, e-mail by post

DATA THAT IS COLLECTED AND PROCESSED ON THE WEBSITE HTTPS://FUNWAY.LT

UAB Ink Idea collects the following data for the purposes mentioned above:

  • Basic data is obtained through contact forms: IP address, name, phone number, e-mail. mail, other data specified by you.
  • Data is received by e-mail. by mail that you provide as the sender: IP address, first name, last name, e-mail postal address, telephone number, other additional data.

WHO WE PROVIDE YOUR DATA TO:

We guarantee that your data will not be sold to anyone, provided to be transferred to third parties, for purposes other than the consent given. We use your data only as provided on this page. Of course, there is a situation where we must provide your data about you in accordance with the procedure provided by law or if we are required to do so by law enforcement authorities or an institution conducting criminal prosecution.

INFORMATION TRANSFERRED TO THIRD PARTIES MAY ONLY BE AS PROVIDED ON THIS PAGE:

  • For sending newsletters, a special platform through which news about our offers is sent.
  • A third party such as Google Analytics, which allows us to collect information about you to check our website’s overall traffic and errors.

HOW LONG ARE DATA ABOUT YOU STORED:

Data is stored on our website for no longer than is required by legal acts, if a longer storage time is specified in them. Your data is stored on the website for the period indicated below:

Contact form data – no longer than 24 months.
Additional data provided through other possible communication channels – no longer than 24 months. after contact with you and our company’s employees.

NEWSLETTERS

You can get an offer on our website by submitting an e-mail. email address, you will receive newsletters from our company about the latest products and services.

By receiving your consent to send newsletters, we get the full right to do so. You can unsubscribe from newsletters at any time by clicking on the „Unsubscribe” button in the e-mail you receive and confirming the refusal in the next e-mail.

Your e-mail Your email address will be processed for the purpose of sending newsletters until you opt out. When a newsletter is sent and you click on the newsletter link, data may be collected.

Your e-mail the email address may be transferred to third parties providing special newsletter sending services only so that we can send it to you through their platform.

HOW ARE COOKIES USED ON OUR WEBSITE AND ON YOUR DEVICE?

We collect information about you using cookies and similar technologies that are legal. Cookies are small files (data files) that are temporarily saved on your device’s hard drive (HDD, SSD). Cookies allow us to recognize your device with which you connected to our website (logged in, entered our page without registration). Cookies help to recognize you, allow you to see older information such as an unfinished order, submitted comment, other information that was made from your device through which you entered our website. If you connect to our website from another device, the website will not recognize you and may not show an incomplete order.

Cookies have been a common browsing practice around the world for many years. They are used by all the big sites like: facebook.com, google.com, gmail.com, ebay.com and many other sites.

TYPES OF COOKIES USED ON THE SITE

Cookies used on our website https://funway.lt can be of several types:

  • Necessary cookies – the most necessary cookies work, thanks to which the website itself works.
  • Functional cookies – are not very necessary, but provide additional functionality to make everything as convenient as possible for your browsing and ensure a user experience.
  • Statistical cookies – cookies that collect information about you as a visitor, what actions you perform on the website. It measures time, sees where you visited the website, how many visitors there are at the moment, and it is possible to prepare a general report on website traffic.

CONSENT YOU GIVE AS A VISITOR TO THE USE OF COOKIES ON OUR WEBSITE

  • Without changing your browser settings to prevent it from accepting cookies.
  • In the table that appears at the beginning of the website, click the „I agree” button about the cookies used and the privacy policy.

IF YOU DO NOT WANT THE SITE TO COLLECT DATA ABOUT YOU

You can use additional browser add-ons, guides on how to do this can be found below:

You can cancel the collection of cookies at any time by changing your browser settings so that it does not collect cookies by using browser add-ons or by finding information about it among search engines.

LIST OF COOKIES ON OUR WEBSITE

Title

Protected information

Purpose

Valid

PHPSESSID

 

For session identification

1 session

Cookieconsent_status

Choice

Cookie confirmation of the choice of storage

1 year

SID, SAPIS, APIS, SSID, HSID, NID, PREF

Various unique variables apart from PREF which stores your preferences eg: zoom level.

Google assigns cookies on any page that uses Google Maps. We have no control over Google cookies. These cookies collect information about the behavior of Google Maps users.

Most cookies are valid for 10 years after visiting the page containing the Google map.

_ga

randomly generated ID

Google Analytics: Segments users

2 years

_gid

randomly generated ID

Google Analytics: Segments users

1 day

_hole

Number

Google Analytics: Used to increase query speed

1 minute

act,c_user,datr,fr,pl,presence,sb,wd,xs

 

Cookies are used for the interface with the Facebook platform and with the user account if the user is logged in to Facebook.

1 year

1P_JAR

A short randomly generated ID

These cookies are used to collect website statistics and track conversion rates.

1 week

SIDCC

 

A security cookie that helps protect user information from unauthorized access.

1 day

OPTION TO VIEW COOKIES

Cookies are simple text files. You can view them with any text editor. Below is information on how you can view them:

UNINTENDED COOKIES

Due to the way the Internet and websites work, we are not always aware of cookies placed by third parties through our website. This applies in particular to cases where our website contains so-called embedded elements: texts, documents, images or short video clips that are stored on another party’s website but displayed on or via our website.
Therefore, if you come across such cookies on our website that we have not previously specified, please let us know. Alternatively, contact the relevant third party directly and ask what cookies they have placed, why they do so, how long the cookie lasts and how they protect your privacy.

GENERAL PROVISIONS

The personal data processing rules (hereinafter – the Rules) regulate the actions of the Company and its employees in processing personal data, using automatic and manual personal data processing tools installed in the Company, as well as determine the data subject’s rights, personal data protection implementation measures and other issues related to personal data processing .

The purpose of the rules for processing personal data in the Company is to regulate the processing of personal data in the Company in accordance with the General Data Protection Regulation of the European Union no. 2016/679, the Law on Legal Protection of Personal Data of the Republic of Lithuania and to ensure compliance and implementation of other related legal acts.

The Company collects personal data, which a person voluntarily submits by e-mail, registered mail, fax, telephone, directly coming to the Company’s office, registering on the Company’s website and becoming a registered user (when the Company provides such an opportunity).

CONCEPTS

Terms used in the document:

Personal data– any information about an identified or identifiable natural person (data subject). An identifiable natural person is an individual whose identity can be determined, in particular by some identifier, such as a name, personal identification number, location data and an Internet identifier, or by one or more of that natural person’s physical, physiological, signs of genetic, mental, economic, cultural or social identity;

Data subject– means the natural person from whom the Company receives and processes personal data;

Worker– means a person who has concluded an employment or similar contract with the Company and is appointed to process Personal Data by the decision of the Company’s manager or whose personal data is being processed;

Recipient of the data– the person to whom personal data is provided;

Provision of data– disclosure of personal data by transmission or otherwise making them available (except for publication in public information media);

Data processing– any action performed on personal data: collection, accumulation, storage, recording, classification, grouping, combination, change (addition or correction), provision, publication, use, logical and/or arithmetic operations, search, dissemination, destruction or a different action or set of actions;

Automatic processing of data– data processing actions, fully or partially performed by automatic means;

Data controller– a legal or natural person (who is not an employee of the data controller) authorized by the data controller to process personal data. The data processor and/or the procedure for its appointment may be determined by laws or other legal acts;

Data controller– a legal or natural person who, alone or together with others, determines the goals and means of processing personal data. If the purposes of data processing are determined by laws or other legal acts, the data controller and/or the procedure for his appointment may be determined in those laws or other legal acts;

Consent– any freely given, specific and unambiguous expression of the will of a properly informed data subject by means of a statement or unequivocal actions by which he agrees to the processing of personal data related to him;

Direct marketing– activities aimed at offering goods or services to individuals by mail, telephone or other direct means and/or asking for their opinion on the offered goods or services;

Third person– a legal or natural person, with the exception of the data subject, data controller, data processor and persons who are directly authorized by the data controller or data processor to process data;

Other concepts used in these Rules are understood as they are defined in the Law on Legal Protection of Personal Data of the Republic of Lithuania and other legal acts regulating the processing of personal data.

PRINCIPLES OF PERSONAL DATA MANAGEMENT

When processing personal data, the company is guided by the following principles:

The Company processes personal data only to achieve the legal purposes defined in the Rules;

Personal data is processed accurately, honestly and legally, in compliance with the requirements of legal acts;

The company processes personal data in such a way that the personal data is accurate and is constantly updated in the event of a change;

The company processes personal data only to the extent necessary to achieve the goals of personal data processing;

personal data is stored in such a form that the identity of data subjects can be determined no longer than is necessary for the purposes for which these data were collected and processed.

The personal data of the data subject can be accessed only by employees of the Company with the appropriate competence and/or third parties that the Company has used to provide the service, and only in cases where it is necessary to provide the service.

The Company respects the Data Subject’s privacy and undertakes to constantly comply with the Data Subject’s data protection principles specified in these Rules.

PURPOSES OF PROCESSING PERSONAL DATA

Personal data are processed and used in accordance with the purposes for which the Data Subject provided them to the Company or for other purposes approved by the Data Subject.

Purposes of using personal data of the data subject:

For the processing and administration of the purchase (order) of goods or services performed by the data subject;

For the identification of the data subject in the Company’s information systems;

For the identification of the data subject when logging in to his account on the Company’s website (when the Company provides such an opportunity);

for issuing and submitting coupons, confirmations, invoices and other financial documents for purchased (ordered) goods or services;

for the resolution of problems related to the execution of the contract;

for contacting the Data Subject, in the event of a change in the conditions of goods or services purchased by the Data Subject;

for the fulfillment of other contractual obligations;

For the Company’s Direct Marketing purposes;

for security, health, administrative, crime prevention disclosure and legal purposes;

business analysts, for general research that allows improving the quality of goods or services;

for contact with the Data Subject, in order to receive customer feedback on purchased goods or services;

for the assessment of a person’s candidacy for a job position, contact with the relevant candidate, etc.;

heard

By voluntarily submitting his personal data to the Company, the Data Subject confirms and voluntarily agrees that the Company will manage and process the Data Subject’s personal data in accordance with these Rules, applicable laws and other normative legal acts.

The rules must be followed by all employees of the Company who process personal data in the Company or come to know them while performing their functions, data processors used by the Company or third parties used by the Company to provide the data processing service, and only to the extent necessary to provide the service.

The Company undertakes not to disclose personal data information to third parties without the Data Subject’s consent, except for ensuring the proper performance of the contract, other services related to the proper performance of the services ordered by the Data Subject. The Company may also transfer the personal data of the Data Subject to third parties who act as Data Processors on behalf of the Company. Personal data can only be provided to those Data Processors with whom the Company has signed relevant Data Processing Agreements. It is considered that the Data Subject is informed about it, agrees with it and the Company does not assume responsibility for damage arising from the use of the Data Subject’s data by third parties to the extent permitted by law. In all other cases, the personal data of the Data Subject may be disclosed to third parties only in accordance with the procedure provided by the legal acts of the Republic of Lithuania.

COLLECTION AND PROCESSING OF PERSONAL DATA

The personal data information collected by the company may be: Name, surname, telephone number, e-mail address of the data subject, address of receipt of purchased goods or services, postal code, name of the company on whose behalf it is acting, credit/debit card or other payment data, information about the Data goods purchased by the subject (quantities, dates of purchase, prices of purchased goods, purchase history), login name and password of the data subject in coded form on the Company’s website (if the Company provides such an opportunity). In the premises of the company’s office, video recordings can be made in accordance with the procedure established by legal acts, this information is used only in the procedure and for the purposes prescribed by legal acts to ensure security. The Company’s website may collect certain information about the Data Subject’s visit, for example: Internet Protocol (IP) address that the Data Subject uses to access the Internet; Date and time of the data subject’s visit to the Company’s website; other web pages that the Data Subject visits while on the Company’s web page; the browser used; information about the Data Subject’s computer operating system; versions of mobile apps; language settings and more. If the Data Subject uses a mobile device, data may also be collected to determine the type of mobile device, device settings, as well as geographic (longitude and latitude) coordinates. This information is used to improve the Company’s website, analyze trends, improve products and services, and administer the Company’s website. The data subject provides this data voluntarily by using the services provided by the Company, becoming a registered user of the Company’s website or visiting the Company’s website.

All personal data specified and received by the Data Subject are collected, stored and processed in accordance with the requirements stipulated in the Personal Data Protection Law of the Republic of Lithuania and other legal acts regulating the protection of personal data in the Republic of Lithuania. The Company ensures that the data provided by the Data Subject is protected against any illegal actions: illegal alteration, disclosure or destruction of personal data, identity theft, fraud, and that the level of personal data protection meets the requirements of the legal acts of the Republic of Lithuania.

Persons authorized to process personal data of employees adhere to the principle of confidentiality and keep secret any information related to personal data that they have become familiar with in the course of their duties, unless such information is made public in accordance with the provisions of applicable laws or other legal acts. The obligation to keep personal data confidential also applies after moving to another position, ending the employment or contractual relationship.

Documents containing personal data must not be kept in a visible place accessible to all. Personal data contained in the texts of relevant documents (agreements, orders, requests, etc.) are stored in accordance with the terms specified in the General Document Storage Terms Index, approved by order of the Chief Archivist of Lithuania. Other personal data are stored no longer than is necessary to achieve the purposes provided for in this procedure. The terms of storage of individual personal data are determined by the Head of the Company.

RIGHTS OF THE PERSONAL DATA SUBJECT

Rights of data subjects and means of their implementation:

to know about the collection of your personal data. When collecting personal data, the Company must inform the Data Subject what personal data the Company will process, for what purpose the relevant data will be processed, to whom and for what purpose they may be provided and/or what are the consequences of not providing personal data. The data subject has the right to get acquainted with his personal data, to demand correction, clarification or addition of incorrect or incomplete personal data. The data subject may also object to the processing of certain optional personal data;

get to know your personal data and how it is handled. The data subject has the right to contact the Company with a request to provide information about what and for what purpose his personal data is being processed. Upon receipt of the Data Subject’s request in writing (registered mail or e-mail), the Company provides the requested data in writing (registered mail or e-mail) no later than within 30 calendar days from the date of receipt of the Data Subject’s request or indicates the reasons for refusing to fulfill such a request. The response is provided to the Data Subject in the same form in which the request was received, unless the Data Subject’s request expresses a wish to receive information in another way;

demand correction, destruction of your personal data or suspension of processing of your personal domains;

to receive the Data provided by you read in a structured form, if it meets the criteria defined by law;

in exceptional circumstances, the Data Subject has the right to refuse Data Processing when the data processed is optional data. When Data is processed for direct marketing purposes, the Data Subject may object to such Processing (right to object). The company, upon receiving a request to stop the processing of optional personal data, immediately stops such processing, unless it contradicts the requirements of legal acts, and informs the employee about it;

at any time to withdraw any consent given by the Data Subject when registering or using the services provided by the Company. Such refusal will not affect the legality of the Data Processing carried out prior to the refusal and based on the consent given;

refuse to provide personal data;

file a complaint with the supervisory authority if the Data Subject’s rights are violated;

view and edit personal information provided on the Company’s website and contact details of the Data Subject (if the Data Subject is a registered user of the Company’s website). The Data Subject can do this by visiting the relevant sections of the Company’s website.

PERSONAL DATA SECURITY MEASURES

Access rights to personal data and authorizations to process personal data are granted, deleted and changed by order of the head of the Company.

Personal data is processed manually and automatically using the personal data processing tools applied by the Company.

When protecting personal data, the company implements and ensures appropriate organizational and technical measures to protect personal data from accidental or unlawful destruction, alteration, disclosure, as well as from any other unlawful processing.

In the company, only those persons who have been authorized to access such data have the right to access the personal data of the subjects of personal data, and only when it is necessary to achieve the goals provided for in the Rules.

The company ensures the safety of the premises where personal data is stored, proper arrangement and review of technical equipment, compliance with fire safety rules, proper network management, maintenance of information systems and the implementation of other technical measures necessary to ensure the protection of personal data.

The company takes measures to prevent accidental or illegal destruction, alteration, disclosure of personal data, as well as any other illegal processing, by properly and securely storing the documents and data files entrusted to it.

If an employee or other Data Processor doubts the reliability of the installed security measures, he must contact his direct supervisor to assess the available security measures and, if necessary, initiate the purchase and installation of additional measures.

An employee or other Data Processor processing personal data must:

process personal data in strict accordance with the laws of the Republic of Lithuania, other legal acts, instructions and Rules;

keep personal data confidential. Such an employee must observe the principle of confidentiality and keep secret any information related to personal data that he has become familiar with in the course of his duties, unless such information is made public in accordance with the provisions of applicable laws or other legal acts. The Company’s employee must observe the principle of confidentiality even after the end of the employment relationship;

not to disclose, transfer or provide access to personal data to persons who are not authorized to process personal data;

store documents and data files properly and avoid making unnecessary copies. Copies of company documents containing personal data must be destroyed in such a way that these documents cannot be reproduced and their contents cannot be identified;

to immediately notify the head of the Company or the responsible person appointed by him about any suspicious situation that may pose a threat to the security of personal data and to take measures to avoid such a situation.

destroy copies of unnecessary documents containing personal data so that these documents cannot be reproduced and their contents cannot be identified.

Employees or other responsible persons who automatically process personal data or from which computers can access areas of the local network where personal data are stored use passwords created in accordance with the relevant rules. Passwords are changed periodically, at least once every three months, as well as when certain circumstances arise (for example: when an employee changes, when there is a threat of hacking, when there is a suspicion that the password has become known to third parties, etc.).

An employee working on a particular computer can only know his password. The employee hands over the password in a sealed envelope to the responsible person authorized by the Company. Passwords are stored in a safe or other safe place and used only in case of necessity.

At least once a month, an appointed employee or other Data Processor makes copies of personal data on computers.

The employee responsible for computer maintenance must ensure that personal data files are not „visible” (shared) from other computers, and antivirus programs are updated periodically.

The employee responsible for computer maintenance makes copies of the data files on the computers. If these files are lost or damaged, the responsible employee must restore them within a few working days at the latest.

The employee loses the right to process personal data when the employee’s employment or similar contract with the Company ends, or when the Company’s manager cancels the appointment of the employee to process personal data.

In order to ensure the protection of personal data, the Company implements or plans to implement the following personal data protection measures:

administrative (establishing the procedure for the safe handling of documents and computer data and their archives, as well as the work organization of various fields of activity, familiarization of personnel with personal data protection, etc.);

hardware and software protection (administration of information systems and databases, maintenance of workplaces, Company premises, protection of operating systems, protection against computer viruses, etc.);

protection of communications and computer networks (filtering of shared data, programs, unwanted data packets, etc.).

Personal data protection technical and software measures must ensure:

installation of storage for copies of operating systems and databases, determination of copying techniques and compliance control;

continuous data management (processing) process technology;

authorized use of data, their non-vulnerability.

The employee or other Data Processor, having detected violations of personal data processing, immediately informs the direct manager so that the Company can take immediate measures to prevent illegal processing of personal data and, if necessary, inform the supervisory authority of personal data processing and the Data Subject about the situation.