Notice on the processing of personal data
We care about your privacy
Data Subjects entrust their personal information to us and we are responsible that we would justify their trust in our everyday work.
It is important for us to ensure the transparency of processing of your personal data. Therefore, in this Policy:
- We explain how we collect, use and store (process) personal data;
- We inform the Data Subjects about how their personal data is processed and what rights each Data Subject has.
The conditions established in the Policy apply to you whenever you want to access the content and/or service provided by the Data Controller, regardless of which device (computer, mobile phone, tablet, TV, etc.) you use.
It is very important for you to read this Policy carefully because, each time you visit the website owned by the Data Controller, you agree to the terms described in this Policy. If you do not agree to these terms, please do not visit our websites nor use our content and/or services.
We confirm that the data of our website visitors will be collected in accordance with the requirements of the valid legal acts of the European Union and the Republic of Lithuania as well as the instructions of the controlling institutions. All reasonable technical and administrative measures are applied so as to prevent the data collected by us about website visitors from the loss, unauthorized use and alteration.
Persons under the age of 16 may not provide any personal data through our websites. If you are a person over the age of 16, you must obtain the consent of your parents or other legal guardians before submitting personal information.
Definitions used in the Policy herein shall be understood as defined in the General Data Protection Regulation No 2016/679 (ES).
What categories of personal data we manage and why?
Information provided directly by you
|Purpose for processing of personal data||Group of data subjects||List of processed personal data||Term of storage of personal data|
|Direct marketing on the website https://rezervacija.delfisportocentras.lt /||The persons who have given their consent to process their personal data for direct marketing purposes;
The customers who did not object to the processing of such personal data at the time of data collection thereof
|Name, surname, email address||One year from last active action of the Data Subject|
|E-commerce on the website https://rezervacija.delfisportocentras.lt/||The customers whose data is processed for e-commerce purposes||Name, surname, phone number, email address, payment method, bank card number, purchase history||One year from last login to e-commerce|
|Creating a user account on the website https://www.delfisportocentras.lt/paraiskos/ in accordance with submitted application for conclusion of contract and the use.
|The users who logged into the website, willing to enter into the contract||Name, surname. address, email address, telephone number||One year from last active action of the Data Subject|
|E-commerce on the website https://bilietai.vandensparkas.lt/||The customers whose data is processed for e-commerce purposes||Name, surname, phone number, email address, address of the place of residence, payment method, bank card number, purchase history||One year from last login to e-shop|
|Direct marketing and implementation of customer loyalty programs in order to offer services and products, inform about the applicable discounts, welcome and make special offers on the occasions of public and personal holidays on the website https://bilietai.vandensparkas.lt/||The persons who have given their consent to process their personal data for direct marketing purposes;
The customers who did not object to the processing of such personal data at the time of data collection thereof
|Name, surname, email address||Five years from last active action of the Data Subject|
Information on how you use our websites
If you visit our websites, we also collect information that reveals the peculiarities of using our services, or we automatically generate the statistics of visits. Read more about this in section “Cookies” of the Policy.
Information from third-party sources
We may receive information about you from public and commercial sources (insofar as permitted by applicable legislation) and associate it with other information we receive from you or about you. We can also receive information about you from third-party social networking services when you sign in to them, for example through your Facebook account.
Other information we collect
Following your consent, we may also collect other information about you, your device or your use of the content of our website.
You may choose not to provide us with certain information (for example, information requested when purchasing a service), but in this case it may not be possible to use our online purchase service.
How do we use your data?
We can use the collected data for the following purposes:
- For e-commerce purposes: to process your service orders/reservations.
- For the payment of shopping cart through the selected external banking service provider.
- For marketing* purposes, for example, to send information about the Vichy Aqua Park/DELFI Sports Centre/Aloha Restaurant news and offers on products and services as well as promotions applied.
- On purpose to implement customer loyalty programs*, for example, to greet and send special offers on the occasions of public and personal holidays.
- For finding out how people use our online services so that we could improve them and create new content, products and services.
- Other purposes for which the Data Controller has the right to process your personal data when you express your consent*, where the data should be processed due to the legitimate interest of the Data Controller or when the Data Controller is bound to process the data by relevant legislation. We may process personal data for another purpose if we have obtained the consent of the Data Subject or we have the right to process the data based on a legitimate interest. We also process personal data in order to fulfil properly our obligations as defined by the legislation in relation to, for example, accounting (billing for services rendered), and the provision of data to competent authorities when required by legislation.
⃰ We inform you that you have the right to object to or at any time cancel your consent to process your data for the above-mentioned purposes marked with asterisk.
Who do we provide your data to?
- Data processors (sub-processors) who provide us with services (perform work) and process your data on behalf of the Data Controller;
- Companies that provide services on our request, for example, banks/companies that help perform settlement operations;
- Companies that help perform marketing-related actions, such as marketing agencies, advertisement agencies;
- Companies belonging to the same group of companies;
- Courier services;
- Other parties, when required by laws;
- Other third parties – with your consent, which may be obtained on a case-by-case basis, or at your legitimate
Where do we manage your personal data?
We always seek to manage your personal data on the EU/EEA territory. Your personal data is not transmitted nor managed outside the territory of the EU/EEA.
What do we do to protect your data?
We have implemented intelligent and relevant physical and technical measures to protect the information we collect for content/service provision purposes. But do not forget that although we are taking appropriate actions to protect your information, no website, online transaction, computer system or wireless connection is completely safe.
How long is your personal data stored?
We store your personal data for no longer than required by the purposes of processing of personal data and for no longer than the periods for the data storage as specified in this Policy or provided for by legislation, unless they provide for longer storage of data. At the end of this period, we will safely delete your personal data.
Your rights as a Data Subject
Data protection laws provide you with many rights regarding the processing of your personal data:
Access to your personal data
You have the right to ask for our confirmation that we process your personal data and, in such cases, to request access to your personal data.
Correction of personal data
In addition, if you believe that the information about you is incorrect, incomplete or inaccurate, you have the right to request the correction of personal data.
Cancellation of consent
If we process your personal data with your consent, you have the right to cancel your consent regarding the processing of personal data at any time.
Right to disagree with the processing of data for direct marketing purposes
You also have the right to disagree with the processing of your personal data for direct marketing purposes at any time. You can refuse direct marketing messages by calling the phone +370 5 2111115 or by e-mail: firstname.lastname@example.org.
Right to disagree with the processing of data, where the processing is based on legitimate interests
You have the right to disagree with the processing of personal data, when the personal data is processed based on our legitimate interests. However, in spite of your objection, we will continue processing your data given motivated reasons to continue processing the data.
In certain circumstances, you have the right to request us to delete your personal data. However, this provision shall not apply if we must store the data in accordance with laws.
Limitation of data processing
In certain circumstances, you also have the right to limit the processing of your personal data.
In addition, you have the right to receive or transfer your personal data to another data controller (hereinafter – the data transfer). This right includes only the data that you provided to us with your consent or agreement and when the processing is carried out by automated means.
The Data Controller may not create conditions for Data Subjects to implement the above-mentioned rights, where, in the cases provided for by laws, it is necessary to ensure the prevention, investigation and detection of violations of crimes, official or professional ethics, as well as the protection of the rights or liberty of the Data Subject or other persons.
In order to protect personal information against unauthorized disclosure, we will have to determine your identity upon receipt of your request for submission of the data or implementation of your other rights. To this end, we may ask you to provide the document confirming your identity.
After receiving your request for the implementation of any of your rights and being sure of your identity, we undertake to submit you the information about the actions that we have taken in response to your request without undue delay, but in any case at least within one month from the receipt of your request. Depending on the complexity and number of requests, we have the right to extend the one-month period for another two months by informing you in writing within one month from the receipt of your request, stating the reasons for such extension.
If your request is submitted by electronic means, we will also submit our answer to you by electronic means, except for cases where this is impossible (for example, because of the high volume of information) or if you ask us to respond in a different way.
We will refuse to satisfy your request by submitting our reasoned response, when the circumstances specified in the law are determined, by informing you in writing hereof.
Third-party websites, services and products on our websites
The website(s) of the Data Controller or social networking accounts may contain advertising panels of third parties, links to their websites, and services that are not controlled by the Data Controller. The data Controller is not responsible for the safety and privacy of information collected by third parties. You must be careful and read the privacy provisions applicable to third-party websites and services that you use.
When you visit the websites of the Data Controller, we want to provide the content and functions that are tailored to your needs. This requires cookies. They are small items of information saved in your web browser. They help the Data Controller recognize you as the previous visitor of a certain website, save the history of your visit to the website and adapt the content accordingly. Cookies also help ensure the smooth functioning of websites, allows monitoring the duration and frequency of visits to our websites, as well as collecting statistical information about the number of website visitors. By analysing this data, we can improve our websites and make them more user-friendly for your use.
How to manage and delete cookies
You can choose whether you want to accept cookies. If you do not agree to save cookies to your computer or to another terminal device, you can change your web browser settings and turn off all cookies or turn them on/off one at a time. However, please note that in some cases this may slow down the speed of browsing the web, restrict the functionality of certain websites or block access to the website. More detail information is given below.
How to disable cookies in Mozilla Firefox; https://support.mozilla.org/lt/kb/treciuju-saliu-slapuku-isjungimas
Learn more about how to disable cookies in Google Chrome; https://support.google.com/accounts/answer/61416?hl=lt
Learn more about how to disable cookies in Internet Explorer; https://support.microsoft.com/lt-lt/help/17442/windows-internet-explorer-delete-manage-cookies
Learn more about how to disable cookies in Safari; http://support.apple.com/kb/PH17191?viewlocale=en_US&locale=es_ES
You can find more information about cookies here:
You have the right to access your data that we process after receiving them by means of cookies. You also have the right to request correction of incorrect, incomplete, inaccurate data.
We typically use the information collected using cookies for the following purposes:
- To collect the information about behaviour of users on the website and to use thereof with the view of saving statistical information.
- To identify the users and sessions.
- To identify new data management sessions and visits on the website.
- To determine whether the user has re-visited or performed a new data management session.
- To store the Internet data flow source identifying how the user reached the website.
- To specify some demographic data of users.
- To ensure proper site review.
All information about the cookies used on the website, their purpose, validity, and the data used is given in the table below.
Data about the cookies used
|Title||Description||Moment of creation||Validity period||The data used|
|__ga||The cookie collects information about behaviour of users on the website and is used with the view of storing statistical information.||At the moment of first logging in to a page||2 years||Unique identifier|
|__gat||Analytical Google Analytics cookies collect information about behaviour of users on the website and is used with the view of storing statistical information.||At the moment of first logging in to a page||1 minute||Unique identifier|
|_gid||Analytical Google Analytics cookies collect information about behaviour of users on the website and is used with the view of storing statistical information.||At the moment of first logging in to a page||24 hrs.||Unique identifier|
|G_ENABLED_IDPS||Analytical Google Analytics cookies for recognition of users and sessions.||At the moment of first logging in to a page||1 year||Unique identifier|
|__utma||Analytical Google Analytics cookies for recognition of users and sessions.||At the moment of first logging in to a page||2 years||IP addresses and unique ID numbers used for accounting. The accounting result is statistical. Meter accounting is performed through Google Analytics.|
|__utmb||Analytical Google Analytics cookies for recognition of new data management sessions and visits on website||At the moment of first logging in to a page||2 years||IP addresses and unique ID numbers used for accounting. The accounting result is statistical. Meter accounting is performed through Google Analytics.|
|__utmc||Analytical Google Analytics cookies to determine whether the user has re-visited or performed a new data management session.||At the moment of first logging in to a page||2 years||IP addresses and unique ID numbers used for accounting. The accounting result is statistical. Meter accounting is performed through Google Analytics.|
|__utmz||Analytical Google Analytics cookies for storing an Internet data flow source that determines how the user reached the website.||At the moment of first logging in to a page||2 years|
|__utmv||Analytical Google Analytics cookies used to specify some demographic data of users.||At the moment of first logging in to a page||Until closing the browser|
|PHPSESSID||Technical cookies to ensure proper website review.||At the moment of first logging in to a page||Until closing the browser||Unique identifier|
Who should I contact if I have any questions?
Should you have any questions regarding the processing of your personal data, please do not hesitate and contact us in one of the following ways:
- In writing – by email: email@example.com;
- Orally – by phone: +370 5 2111115;
- In writing – at address: Ozo str. 14C, 08200, Vilnius;
- Arriving at the administration of UAB “Vandens parkas”.
Contacts of Data Protection Officer:
Email address: firstname.lastname@example.org;
Address for correspondence by mail: Ozo str. 14C, 08200, Vilnius;
Please address the letter to: Data Protection Officer, UAB “Vandens Parkas”.
If you are not satisfied with the response received, you have the right to fill a complaint with the State Personal Data Inspection (A. Juozapavičiaus str. 6, 09310 Vilnius, tel. (+370 5) 271 2804, email: email@example.com).
Our contacts as the Data Controller:
UAB “Vandens parkas“
Legal entity code 300023589
Registered office: Ozo str. 14C, 08200 Vilnius.
Tel. (+370 5) 211 11 15
Data about the data controller is collected and stored at the State Enterprise Centre of Registers, Vilnius branch.
Emendation of the Policy
As we expand our activities and services, we may need to update this Policy. For this reason, we recommend that you periodically visit our website(s), where you will always find the latest version of this Policy.
The Data Controller has the right to amend unilaterally the Policy at any time. Amendments or supplements to the Policy take effect from the day of their publication, i.e. from the day they are posted on a specific website(s). If you login or use our content and/or services, we will assume that you agree to the requirements of new Policy. The latest version of the Policy is always available at www.vandensparkas.lt, www.delfisportocentras.lt, www.aloha.lt.
The document was approved by Order No VP-59 (1) of the Director of 17 May 2018.
The last revision of the Policy was on 17 May 2018.