This Data Protection and Privacy Policy (hereinafter referred to as the “Privacy Policy”) operates on the basis of the laws and regulations of the Republic of Latvia, as well as of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to all information that relates to the User and that the NGSRT Website, which is located using the https://ngsrt.com/ domain name, may obtain during the use of the Website, as well as of Website programmes and products

1. Definition of Terms
1.1. The following terms are used in this Privacy Policy:

1.1.1. The “Website Administration” means authorised employees who shall manage the Website acting on behalf of NGSRT and organise and (or) carry out the processing of personal data, as well as determine the purposes of the processing of the personal data, the composition of the personal data to be processed, and actions (operations) carried out with regard to the personal data.

1.1.2. “Personal data” means any information relating, directly or indirectly, to an identified or identifiable natural person (data subject).

1.1.3. The “processing of personal data” means any action (operation) or a set of actions (operations) carried out with or without the use of automation tools with personal data, including collection, recording, systematisation, accumulation, storage, clarification (updating, changing), extraction, use, transfer (dissemination, provision, access), anonymisation, blocking, deletion, and destruction of personal data.

1.1.4. The “confidentiality of personal data” means a mandatory requirement for the Website Administration or another entity who has gained access to personal data, which is used in order to prevent their dissemination without the consent of the data subject or without other legal grounds.

1.1.5. “Website User (hereinafter referred to as the “User”)” means a person who has access to the Website via the internet and who uses the Website.

1.1.6. A “cookie” means a small piece of data sent by a web server and stored on the user’s computer, which the web client or web browser sends to the web server in an HTTP request every time it tries to open a page of the corresponding website.

1.1.7. “IP address” means a unique network address of a node in a computer network built using the IP protocol.

2. General Provisions

2.1. The use of the Website by the User means acceptance of this Privacy Policy and the terms and conditions of the processing of the User’s personal data.

2.2. If the User does not agree with the terms and conditions of the Privacy Policy, they must stop using the Website.

2.3. This Privacy Policy shall only apply to the NGSRT Website. The Website shall not control third-party websites to which the User can go using links to these websites available on the pages of the Website, and it shall not be responsible for these websites.

2.4. The Website Administration shall not verify the accuracy of personal data provided by the Website User.

3. Subject Matter of the Privacy Policy

3.1. This Privacy Policy establishes the obligations of the Website Administration to not disclose and ensure the protection of the confidentiality of personal data that the User provides at the request of the Website Administration when registering on the Website.

3.2. The personal data authorised for processing under this Privacy Policy is provided by the User by filling out the order submission form on the NGSRT Website in the Built-in Wardrobes section and the Prices and Promotions section, and it shall include the following information:

3.2.1. name;

3.2.2. contact phone number.

3.3. The Website Administration shall use the data of the Yandex.Metrica statistics service in order to analyse visits, and it shall provide a mode of protection of received data, but it shall not be responsible for the leakage and use of data by these services. Statistics services may collect the following Data from the Website pages:
• • IP address;
• • information contained in cookies
• • browser (or other software) information;
• • access time;
• • addresses of visited pages;
• • the resource which one comes from in order to visit the Website.

3.3.1. Disabling cookies may result in the inability to access parts of the Website that require authorisation.

3.3.2. The Website shall collect statistics about the IP addresses of its visitors. This information shall be used to identify and solve technical problems.

3.4. Any other personal information not specified above shall be subject to safe storage and non-dissemination, with the exception of the cases provided for in Paragraph 5.2 and Paragraph 5.3 of this Privacy Policy.

4. Purposes of Collecting the User’s Personal Information

4.1. The User’s personal data may be used by the Website Administration for the following purposes:

4.1.1. receiving feedback from the User and giving feedback to the User, including sending notifications and requests regarding the use of the Website, providing services, as well as processing requests and applications sent by the User;

4.1.2. determining the User’s location to ensure security and prevent fraud;

4.1.3. confirming the accuracy and completeness of personal data provided by the User;

4.1.4. providing effective client and technical support to the User in the case of problems related to the use of the Website;

4.1.5. providing special offers, newsletters and other information to the User (with their consent) on behalf of the Website or on behalf of Website partners;

4.1.6. carrying out promotional activities with the User’s consent;

4.1.7. providing access to the websites or services of Website partners to the User so that they can obtain products, updates, and services.

5. Methods and the Timeframe for the Processing of Personal Information

5.1. The processing of the User’s personal data shall be carried out without limitation of time, using any legal methods, including in personal data information systems using automation tools or without using such tools.

4.1.7. providing access to the websites or services of Website partners to the User so that they can obtain products, updates, and services.

5.2. The User agrees that the Website Administration shall have the right to transfer personal data to third parties, in particular, to courier services, postal organisations and telecommunications operators, solely for the purpose of fulfilling obligations to the User related to the activities of NGSRT.

5.3. The User’s personal data may only be transferred to the authorised government bodies of the Republic of Latvia on the basis and according to the procedure established by the legislation of the Republic of Latvia.

5.4. In the case of loss or disclosure of personal data, the Website Administration shall inform the User about the loss or disclosure of the personal data.

5.5. The Website Administration shall take the necessary organisational and technical measures to protect the User’s personal information from unauthorised or accidental access, destruction, modification, blocking, copying, dissemination, as well as from other unlawful actions of third parties.

5.6. The Website Administration, together with the User, shall take all the necessary measures to prevent losses or other negative consequences caused by the loss or disclosure of the User’s personal data.

6. Obligations of the Parties
6.1. The User shall be obliged to:

6.1.1. provide information on personal data necessary to use the Website;

6.1.2. update and supplement the information on personal data provided in the case of changes in this information..

6.2. The Website Administration shall be obliged to:
6.2.1. use the received information solely for the purposes indicated in Paragraph 4 of this Privacy Policy;

6.2.2. ensure the secret storage of confidential information, as well as not disclose it without the prior written permission of the User, and also not sell, exchange, publish or disclose transferred personal data of the User in other possible ways (with the exception of Paragraph 5.2 and Paragraph 5.3 of this Privacy Policy);

6.2.3. take precautionary measures in order to protect the confidentiality of the User’s personal data according to the procedure usually used in existing business practice to protect this kind of information;

6.2.4. block personal data relating to the relevant User from the moment of a request or inquiry sent by the User, or their legal representative, or the authorised body for the protection of the rights of data subjects for the period of verification (in the case of revealing inaccurate personal data or unlawful actions).

7. Liability and Responsibility of the Parties
7.1. The Website Administration, which has not fulfilled its obligations, shall be liable and responsible for losses incurred by the User in connection with the unlawful use of personal data in accordance with the legislation of the Republic of Latvia, with the exception of the cases provided for in Paragraph 5.2, Paragraph 5.3, and Paragraph 7.2 of this Privacy Policy.

7.2. In the case of the loss or disclosure of Confidential Information, the Website Administration shall not be liable and responsible if this confidential information:

7.2.1. became available to the public prior to its loss or disclosure;

7.2.2. was received from a third party prior to its receipt by the Website Administration;.

7.2.3. was disclosed with the User’s consent.

8. Dispute Resolution
8.1. Before going to court with a complaint regarding disputes arising from the relationship between the Website User and the Website Administration, it is mandatory to submit a claim (a written proposal regarding voluntary dispute settlement).

8.2. The recipient of the claim, within 30 calendar days from the date of receipt of the claim, shall notify the claimant in writing of the results of the consideration of the claim.

8.3. If no agreement is reached, the dispute shall be referred to the judicial authority in accordance with the current legislation of the Republic of Latvia.

8.4. The current legislation of the Republic of Latvia shall apply to this Privacy Policy and the relationship between the User and the Website Administration.

9. Additional Terms and Conditions
9.1. The Website Administration shall have the right to make changes to this Privacy Policy without the User’s consent.
9.2. The new Privacy Policy shall enter into force from the moment it is posted on Website pages, unless otherwise provided by the new version of the Privacy Policy.
9.3. All suggestions or questions regarding this Privacy Policy should be sent using the addresses and contact details posted on the Website.
9.4. The current Privacy Policy is posted on the website: https://ngsrt.com/.

Current version dated 20 March 2022.