Privacy Policy

  1. GENERAL INFORMATION
    1. In order to provide for its economic activity, SIA VK Tranzīts group of companies (hereinafter VKT and/or We) processes personal data. It is important for us that everyone's right to privacy is protected and that personal data is processed in accordance with the requirements of laws and regulations.
    2. Therefore, we have prepared this Privacy Policy (hereinafter the Policy) which is available to everyone in order to provide each of our customers, visitors, business partners, website visitors and job applicants with information in a concise and comprehensible manner on how We process personal data and ensure the protection of such data.
    3. In this Policy:
      1. Personal data means any information related to an identified or identifiable individual.
      2. Data subject means an individual who may be directly or indirectly identified.
      3. Data processing means any activities performed with personal data, including the collection, storage, viewing, registration, structuring, etc. of personal data (hereinafter Data Processing).
      4. Processor means an individual or legal entity who processes personal data on behalf of the SIA VK Tranzīts group company and in accordance with the given instructions.
      5. Within the SIA VK Tranzīts group of companies, the controller is each company of the VKT group:
        1. SIA VK Tranzīts, the controlling company, unified registration No. 41203020528, registered address: Dzintaru iela 66, Ventspils, LV-3602. Contact details: email: office@vktranzits.lv, telephone: 63602992;
        2. SIA VK Terminal Services, unified registration No. 40003885483, registered address: Dzintaru iela 66, Ventspils, LV-3602. Contact details: email: office@vktservices.lv, telephone: 63660521;
        3. SIA Bio-Venta, unified registration No. 41203022482, registered address: Ziemeļu iela 21F, Ventspils, LV-3602. Contact details: email: ventspils@biodiesel.lv, telephone: 63620870;
        4. SIA VK Ekspedīcija, unified registration No. 41203024958, registered address: Dzintaru iela 66, Ventspils, LV-3602. Contact information: e-mail: office@vkekspedicija.lv, telephone: 63602992.
  2. HOW DOES VKT OBTAIN PERSONAL DATA?
    1. We can receive personal data in various ways, for example:
      1. the data subject itself provides its data in order to enter into the agreement, receive a service, request information, visit the premises and/or territory of the company;
      2. the data has been provided by another organisation, such as a recruitment company in providing recruitment services to a VKT group company or, for example, another organisation requesting passes for its employees to enter a VKT group company;
      3. cookies may be used when visiting the VKT group website. The Cookie Policy is available HERE.
  3. WHAT PERSONAL DATA DOES VKT PROCESS, FOR WHAT PURPOSE AND ON WHAT BASIS?
    1. The processing of personal data is always based on a legal basis. The personal data we process may differ depending on the purpose for which it is processed, such as:
      1. in order to ensure the security of property, infrastructure, information, employees, visitors and customers, measures are taken in the VKT group companies, which are implemented by physical and logical means of protection: pass regime, video surveillance. For this purpose, basic personal data (name, surname), contact information, visual data (video) are processed. The basis for processing in this case is the legitimate interest of the controller;
        1. video surveillance in the premises of SIA VK Terminal Services and SIA Bio-Venta and in the territory of the company is also performed to ensure control of the movement of excise goods in accordance with the requirements of laws and regulations. In this case, the processing is based on a legal obligation applicable to the controller;
      2. to ensure occupational safety and health protection. Taking into account the requirements of laws and regulations in labour protection, basic personal data (name, surname, personal identification number) as well as position, signature, when and what training the person has received, are processed. The basis for processing in this case is a legal obligation applicable to the controller;
      3. to implement the employee recruitment process. The basis for processing in this case is the legitimate interest of the controller. You can learn more about data processing in the employee recruitment process HERE;
      4. in order to ensure accounting and employment legal relations that are compliant with laws and regulations, data on employees' salaries, tax deductions, incapacity for work, etc. are processed. The basis for processing in this case is a legal obligation applicable to the controller.
    2. In all cases, the processing of personal data is carried out, taking into account the data processing principles mentioned in the GDPR, and only to the extent necessary to achieve the purpose of data processing.
  4. HOW LONG DOES VKT STORE PERSONAL DATA?
    1. We store personal data for as long as is reasonably necessary for the purpose for which the data were collected.
    2. When determining the data storage terms, we take the storage terms specified in laws and regulations into account. Thus, for example, in order to ensure the control of the movement of excise goods, we store the records of video surveillance cameras in accordance with the regulations in force at the time, which regulate the procedure for the movement of excise goods.
    3. After the end of the data storage period, personal data are deleted. However, in the event of a dispute or security incident, the data may be retained until the investigation of the security incident has been completed or, for example, the legal proceedings have ended. Deleted data cannot be restored.
  5. PERSONAL DATA RECIPIENTS
    1. Where there is a legal basis, the Controller may transfer the data of the data subject to:
      1. employees and authorised persons of the Controller, whose duties include the processing of personal data, in order to ensure that the relevant purpose of data processing is attained;
      2. service providers who provide services to the Controller on a contractual basis, in order to ensure attaining of the relevant purpose of data processing, for example to the security service provider, legal service provider, personnel management service provider;
      3. law enforcement authorities or other state and local government institutions based on a written request and/or obligation applicable to the Controller as specified in laws and regulations.
  6. RIGHTS OF THE DATA SUBJECT
    1. The data subject has the following rights:
      1. to receive the information specified in laws and regulations regarding the processing of his/her data;
      2. to access own data;
      3. to rectify own personal data;
      4. to personal data portability;
      5. request the deletion of personal data in individual cases;
      6. request the restriction of processing of personal data in individual cases;
      7. to object to the processing of personal data.
    2. The data subject, using the contact information specified in Paragraph 1 of the Policy, may submit a request to exercise the right specified in Paragraph 6.1:
      1. in writing, in person, at the address of the relevant Controller, by presenting a personal identification document;
      2. in writing, by sending it to the mailing address of the relevant Controller;
      3. electronically by signing the request with a secure electronic signature and sending such to the email address of the relevant Controller.
    3. In the request, the Data Subject shall specify his/her name, surname, personal identification number, telephone number.
    4. In the request for the receipt of video surveillance data, the Data Subject shall also specify:
      1. the date, time and place (including the location of the video surveillance camera, if known), when and where the video material was taken;
      2. a description of the situation or events (in which the video surveillance data of the Data Subject has been recorded);
      3. A description of the Data Subject's visual image, including information on the clothing and belongings held by the Data Subject and the specific location of the Data Subject at the time the video was taken;
      4. other information that is essential for the identification of the requested data.
    5. The Data Subject is only entitled to receive those video surveillance data in which the specific Data Subject is visible or audible, the visual appearance of which matches the description of the visual appearance.
    6. The reply to the Data Subject's written application is sent within one month from the receipt of the application by mail, to the mailing address specified in the request, by registered mail, electronic address or issued in person. If necessary, the above period may be extended by a further two months, taking into account the complexity and number of requests. The Controller shall inform the Data Subject of any such reasons for extension and delay within one month of receiving the request.
    7. The Controller may charge a reasonable fee for the administrative costs incurred in preparing an additional copy(ies) of the information requested by the Data Subject.
    8. In the event that the Data Subject's requests are manifestly unfounded or excessive, in particular due to their regular recurrence, the Controller may charge a fee for administrative costs or refuse to perform the request of the Data Subject.
    9. The Data Subject is entitled to submit a complaint to the VKT group company by using the contact information specified in Paragraph 1 of the Policy.
  7. OTHER TERMS
    1. SIA VK Tranzīts group of companies has the right to unilaterally amend this Policy. An up-to-date version of the Policy is always published on the website.
    2. If this Policy is translated into other languages, in the case of discrepancies, the Latvian text shall prevail.