Skip to content
English

Privacy Policy

Introduction

SIA “Brīvs”, Reg. No. 40003826013, (hereinafter – the Controller), on the website https://ltech.lv (hereinafter – the Website) processes personal data obtained from the data subject – the Website user (hereinafter – the User). 

The Controller cares about the User’s privacy and personal data protection, observes the User’s rights to the lawfulness of personal data processing in accordance with the applicable laws: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (Regulation) and other applicable laws in the field of privacy and data processing. 

Considering the aforementioned, the Controller has developed this privacy policy to provide the User with the information stipulated in the Regulation. The privacy policy applies to data processing regardless of the form and/or medium in which the User provides personal data (on the Website, in paper format, or by telephone). 

Identity and Contact Information of the Controller

The Controller is SIA “Brīvs”, Reg. No. 40003826013, address: Rīga, Ieriķu iela 3, LV-1084, website: https://ltech.lv, e-mail: info@ltech.lv

Processing Purposes and Legal Basis of Processing

The Controller processes your personal data for the following main purposes: 

  • Communication and service provision: When you fill out contact forms on our website, we collect your name, e-mail address, phone number, and message content. 
  • This data is necessary to respond to your requests and provide B2B services. 
  • Marketing and analytics: To analyze website traffic and tailor advertising campaigns (including LinkedIn), we may process your IP address and cookie-related identifiers. 
  • Oracle to PostgreSQL migration assessment calculator: The technical tool developed by us is intended for syntax and structure analysis. 
  • Important: This tool does not perform database data migration and does not process business data. 
  • We apply a strict zero-retention policy – immediately after generating a report, all uploaded code is irreversibly deleted and is not used for other purposes. 
  • If the User submits their personal data to the Controller, such as name, surname, personal identification number, e-mail or postal address, phone number, personal messages, etc., using the Website’s contact forms, e-mail, or other types of mail, the Controller saves and uses this information to fulfill or conclude an appropriate service provision contract. 
  • The processing of the aforementioned data is necessary for the Controller to identify the client, prepare, conclude, and prove the fact of conclusion of a contract, ensure/maintain the operation of services, provide customer service, review and process applications and objections, administer billing, as well as for other purposes directly related to the conclusion or execution of contracts. 

We process your data based on the following articles of the General Data Protection Regulation (GDPR): 

  • Consent (Article 6(1)(a) of the GDPR): Your actively given consent for marketing and analytical cookies, as well as for receiving newsletters. 
  • Performance of a contract (Article 6(1)(b) of the GDPR): To respond to your commercial requests and provide services. 
  • Legitimate interest (Article 6(1)(f) of the GDPR): To maintain IT system security and improve the quality of our services. 

Categories of Personal Data

Categories of personal data – name, surname, personal identification number, e-mail or postal address, IP address, phone number, message or letter content, etc. 

Categories of Personal Data Recipients

Data is disclosed to those employees of the Controller who need it to perform their direct duties in order to fulfill or conclude an appropriate service provision contract. When acquiring and using personal data, the Controller partially uses the services of external service providers, who, in accordance with the contract, strictly follow the Controller’s instructions and whom the Controller constantly monitors before using the service and thereafter. We may transfer your data to trusted cooperation partners (data processors) who provide us with the necessary services. For example (but not limited to): 

  • IT infrastructure maintainers (server and cloud service providers); 
  • Outsourced accounting service providers; 
  • E-mail marketing and mailing platforms; 
  • Legal and consulting service providers. 

Data processing agreements are concluded with all such service providers, obliging them to ensure data protection in accordance with GDPR requirements. 

Categories of Data Subjects

Categories of data subjects – current, former, and potential clients of the Controller, as well as their employees or contact persons. 

Data Transfer Outside Latvia

To ensure website functionality and analytics, we use trusted partners such as Google LLC (Google Analytics 4), HubSpot, and LinkedIn. Data may be transferred to these partners outside the European Economic Area (EEA) to the USA. Such data transfer is completely legal and is based on the adequacy decision of the EU-US Data Privacy Framework (DPF), under which the mentioned companies are certified. 

Data Retention Period

Unless stated otherwise in the data protection instructions, the Controller deletes personal data no later than three months after the original reason for data retention is no longer valid, except in cases where our legal obligation is to continue retaining this data (e.g., but not limited to, for accounting or litigation purposes). Communication data from contact forms is retained until the request is fully resolved, or according to commercial limitation periods (usually up to 3-5 years). The technical analysis code (in the assessment calculator) is deleted immediately after processing. 

Data Subject’s Access to Personal Data

The data subject has the right to access the data subject’s personal data within one month from the date of submitting the respective request. The User can submit a request to exercise their rights in written form in person at the Controller’s legal address (by presenting an identity document) or by e-mail, signing with a secure electronic signature. 

Upon receiving the User’s request to exercise their rights, the Controller verifies the User’s identity, evaluates the request, and fulfills it in accordance with regulatory enactments. The User has the right to receive the information specified in regulatory enactments in relation to the processing of their data, the right to request access to their personal data, as well as to request the Controller to supplement, correct or delete them, restrict processing or the right to object to processing, insofar as these rights do not conflict with the purpose of data processing (conclusion or execution of contracts). 

The data subject does not have the right to receive information if the disclosure of this information is prohibited by law in the field of national security, state defense, public safety, criminal law, as well as to ensure state financial interests in tax matters or the supervision of financial market participants and macroeconomic analysis.