General provisions regarding privacy when purchasing reports about companies
Creditinfo recognizes the importance of privacy and takes care of personal data protection. Creditinfo supports international human rights standards and seeks to ensure high and consistent standards that respect privacy. The main objective is to ensure that Creditinfo would respect and protect the privacy of the data subjects.
Creditinfo, a company that has established and managed a credit bureau, seeks to ensure transparency of its operations essential to ensure confidence in the market. In order to protect personal data Creditinfo:
- avails itself of the best practices in the market for working with
personal information and ensuring its protection and security, and specifying how
the personal information is used;
collects and processes data only if there is legal basis for it. Creditinfo takes measures and follows appropriate practices so that Creditinfo partners who supply and receive personal information to/from Creditinfo would ensure that there is proper legal basis for it.
collects only such personal data that are relevant and to the extent required to achieve the objectives for which they are collected, and only for clearly defined and lawful purposes;
processes personal data in good faith and lawfully in all areas of its operations. Creditinfo processes personal data only to the extent it is necessary to perform a specific data processing task at the same time always focusing on customer privacy protection.
does not store personal information for longer than it is required by laws or it is necessary to carry out Creditinfo operations. When personal data are no longer necessary for the required objectives, Creditinfo deletes the data or makes it anonymous.
ensures accuracy and updates of personal data. Creditinfo grants appropriate tools to customers to receive information about the stored personal data and the opportunity to correct inaccuracies;
responsibly processes and submits data to third parties (financial institutions, telecommunications companies, insurance companies, electricity and utility service providers, etc.) seeking lawful interests and objectives - to assess creditworthiness and administer debt.
- provides personal data to authorities only to the extent it is required by law. When providing personal data, Creditinfo verifies the legal basis and validity of a specific request as far as this is possible in Creditinfo operations.
- regularly assesses privacy risks associated with the collection, processing
and retention of personal data, and prepares appropriate risk mitigation
strategies to address these risks.
requires that suppliers, partners and processors would act very responsibly in accordance with the level of protection provided for in this policy in order to protect against the risk of loss, theft, unauthorized disclosure or improper use of personal data. Creditinfo expects that suppliers, partners and processors will process such data in good faith and lawfully in all areas of their operations.
The employees of Creditinfo are bound by the duty of confidentiality provided for in the laws and written agreements regarding non-disclosure.
Creditinfo meets the principles of data protection by design and data protection by default:
- Both when determining data processing tools and during data processing, Creditinfo implements appropriate technical and organizational measures, including data minimisation and other measures provided for in the Rules below;
- Creditinfo processes only those personal data in a standard manner which are necessary for each specific purpose of the processing.
Standardised data processing covers compliance with the requirements for the quantities of the collected personal data, scope of processing, retention period and data availability, including that personal data are not made accessible to an indefinite number of individuals without the interference of a natural person.
Creditinfo records personal data breaches and where necessary reports about the breaches to the State Data Protection Inspectorate and (if applicable) to data subjects.
Creditinfo employs the Data Protection Officer who helps supervise personal data processing processes, cooperate with the State Data Protection Inspectorate and data subjects. The Data Protection Officer can be contacted by email email@example.com
We collect and use data for the following purposes:
We understand your expectations of privacy and therefore we undertake to protect it properly. Processing of your personal data is governed by the EU General Data Protection Regulation No 2016/679, Law on Legal Protection of Personal Data of the Republic of Lithuania and other legal acts concerning collection and processing of such data.
Based on the requirements of legal acts that govern protection of personal data, Creditinfo credit bureau processes the data provided by you during the placing of an order only for the purpose of issuing a VAT invoice and the possibility to contact the Customer. The following data are provided during placing of an order (some of the data are optional if they are not marked with the asterisk): first name, surname, address, e-mail address, telephone number; contact person of the company, address, e-mail address, telephone number. Creditinfo undertakes to protect the data and not to transfer it to any other third party, unless otherwise prescribed by law.
Data shall be retained for 3 years.
Creditinfo bureau collects various personal data in order to assess the creditworthiness of natural and legal persons. The aim of the creditworthiness rating and debt management of legal and natural persons is data provision to the third parties having a legitimate interest in order they could rate the creditworthiness of a person and administer debt. Read more about it: https://www.manocreditinfo.lt/Privatumas
You have the right:
- To request to rectify your personal data if the data are inaccurate and/or incomplete;
- To require to delete your personal data or suspend their processing if superfluous personal data are processed, you wish to withdraw your consent or if there are certain other sufficient grounds for it;
- To object to processing of personal data where personal data are processed based on consent or a legitimate interest;
- Where personal data are processed on the basis of consent or an agreement in a structured and commonly used computer readable format, to obtain own personal data that the data subject provided to Creditinfo and to send such data to another controller or require that Creditinfo would directly send such personal data to another data controller, where this is technically possible (the right to data portability).
Information is provided by e-mail firstname.lastname@example.org or upon arrival to our office, address A. Gostauto 40A, Vilnius and on presentation of an identity document. Inquiries by electronic means are accepted only in the manner prescribed by legal acts via electronic means of communication that allow identifying a person by establishing his personal identity.
You may contact the Creditinfo Data Protection Officer by e-mail: email@example.com. You may also contact the State Data Protection Inspectorate (www.ada.lt) or the court.