The personal data of website visitors and other data subjects are processed in accordance with the legislation in force and providing the appropriate technical and organizational measures for the protection of personal data.
The website contains links to other websites and not owned by the Controller. The Controller is not responsible for the privacy policies of these sites, therefore, we encourage you to be active and read the privacy policies of the websites you are being linked.
The cookies used by the website are needed to us in order to:
- Ensure the proper functioning of the website;
- Ensure the optimum speed and security of the website;
- Find out the traffic and the number of visitors of the website and its individual pages, parts, analyze the traffic of the website (date and time of visit, browsers, types of devices and their screen sizes), and thus continuously improve our website to better meet your needs;
The Controller uses the cookies listed on Cookie declaration.
The website provides the opportunity to contact the Controller in three ways: to submit your inquiry by filling in the contact form (www.rackray.com/contacts), contact via the tawk.to correspondence program located at the bottom right of each page of the website, or contact at the e-mail addresses indicated on the website.
The purpose of responding to your request and maintaining proof of correspondence (by exercising the legitimate interest in effective communication and avoiding disputes relating to the servicing of individuals), the Controller processes the following information you provide:
- By sending a request through a contact form, processing your name, company name, e-mail address, telephone number and query content. Without indicating the required information (your name and e-mail address), you will not be able to contact us by submitting an inquiry through the contact form.
- When sending a request through the correspondence program tawk.to, the Controller processes the correspondence with the Controller’s agent and the IP address from which the correspondence was conducted.
- By sending an inquiry using the e-mail addresses indicated on the website, the Controller processes the name, e-mail address, date, time of correspondence and the content of the correspondence with the Controller’s representative.
Personal data submitted with inquiries and further communication between you and the Controller’s representative will be stored to the extent necessary for the fulfilment of a specific task and to ensure the implementation of the rights of the Controller.
The Controller’s data centre located at Sevcenkos st. 16J, Vilnius, carries out the video surveillance. The view is monitored to ensure the security of the Controller’s property and their customer data. The legal basis for the processing of video data is the legitimate interest of the Controller to prevent damage to the Controller as a result of the loss of data or without guaranteeing the customer data security.
The monitored parts of the rooms are marked with labels that are visible before entering the monitored area.
Real-time video monitoring of the Controller’s premises is carried out by a security service company. Data is also provided to law enforcement authorities. The recorded video data are stored for 90 days after recording. If these data are used as evidence by law enforcement authorities, they are kept to the extent and for the period necessary for these data processing purposes.
PERSONAL DATA OF CANDIDATES FOR EMPLOYMENT
All personal data of persons seeking employment in the Controllers company are processed by the Controller solely for the purpose of selecting and recruiting staff, having a legitimate interest in assessing the suitability of a candidate for the job they are seeking.
The Controller receives personal data from employee candidates directly from the candidates when they send CVs to the Controller, as well as from the agencies providing recruiting services to the Controller. Data provided by the candidate to the Controller may be transmitted to the recruitment agencies for the selection of the Controller’s staff.
In addition to the data provided by the person who seeks employment in the Controller’s company, the Controller may collect and otherwise process other publicly available candidates data, namely, to search the information on the Internet, to check the profiles of the candidate’s social networks (for example, LinkedIn, Facebook, Twitter, etc.). The Controller can also contact the former employers referred to in the candidate’s CV and request information about the candidate’s qualifications, professional skills and business characteristics. In order to verify whether the qualification evidence (diplomas, certificates, etc.) presented by the candidate are authentic, the Controller can also contact the educational institutions indicated in the qualification evidence submitted to the candidate.
The Controller keeps the information provided by the candidate and collected independently for 4 months of the end of a specific employee selection. The term of storage of personal data is extended only with the individual consent of the candidate. If the consent to keep the candidate’s personal data for more than 4 months after the recruitment is not obtained, after the expiration of this term all personal data of the candidate (both provided by the candidate and collected by the Controller) are destroyed.
INFORMATION ABOUT YOUR RIGHTS
All persons whose personal data are processed by the Controller have:
1. The right to access with the personal data processed by the Controller
The right of access to and request for the rectification of personal data is effected by submitting a written request to the Controller’s registered office or by e-mail [email protected] (if an application signed by e-signature is submitted). In the application for access to personal data, please indicate to which personal data you wish to have access and which of the information listed in Article 15 (1) of the Regulation you wish to obtain.
2. The right to request correction of incorrect or inaccurate personal data
In the application for access to video data, you must indicate additionally the specific premises of the Controller and the time you visited it. The right to access the image data is implemented upon your arrival to view the video at the Controller’s address or by downloading a video copy on an external data carrier.
3. The right to demand that the Controller restrict the processing of personal data until the accuracy of personal data is verified, until it is determined whether the interests of the data subject who disagrees with the processing of personal data are superior to the interests of the Controller, as well as in the cases where the personal data is processed illegally, but the data subject disagrees to delete this data.
This right is lamented by submitting a written request to the Controller’s registered office or by e-mail [email protected] (if an application signed by e-signature is submitted). When requesting to restrict only the processing of personal data processed by the Controller, the application must contain the categories of personal data the processing of which is requested to be restricted.
If the request is justified, the processing of personal data will be limited within 5 business days of receipt of the request.
4. The right to data transferability
This right is implemented by submitting a written request to the Controller’s registered office or by e-mail [email protected] (if an application signed by e-signature is submitted). When requesting the transfer of only part of the personal data processed by the Controller, the application must contain the list of categories of personal data in respect of which the right to data portability is implemented.
If the request is reasonable, the Controller submits your personal data to you or the data Controller provides them to you in computer-readable format (depending on your preference, systematised personal data is sent by email or stored on an external medium) within 30 days of receipt of the request.
5. The right to disagree with the processing of personal data
This right is enforced by submitting a written request to the Controller’s home address or to the e-mail address of the Controller’s registered office or by e-mail [email protected] (if an application signed by e-signature is submitted).
By expressing a disagreement with the processing of personal data, it will be assessed whether your legitimate interest, for which you disagree with the processing of personal data, is superior to the Controller’s legitimate interest on which the Controller bases the processing of your personal data.
6. The right to complain to the supervisory authority
This right may be enforced by submitting a complaint to the State Data Protection Inspectorate regarding any actions of the Controller concerning the processing of your personal data.
In cases when you exercise your rights by submitting a written application to the address of the Controller’s office by mail, a copy of the notarised ID document (passport, ID card) must be submitted along with the application.
Savanorių pr. 1, 03116 Vilnius, Lithuania
Tel. +370 (5) 207 55 55
E-mail: [email protected]