Privacy Policy

This Privacy Policy defines the principles and procedures of personal data processing carried out by Corporate Rent, as well as the operating and usage conditions of the website www.CorpRent.eu.

GENERAL PROVISIONS

1. This Privacy Policy (hereinafter – the “Policy”) defines the principles and procedures for the processing of personal data carried out by Corporate Rent, as well as the operating and usage conditions of the website www.CorpRent.eu. Corporate Rent ensures that personal data are processed lawfully, fairly and transparently, collected for specified, explicit and legitimate purposes and are not further processed in a manner incompatible with those purposes.

2. Definitions used in this Policy:

  • Personal data – any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name and surname, personal identification number, location data and an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  • Data controller – Corporate Rent;
  • Data subject – the Company’s client – any natural person whose personal data are processed by the Data controller;
  • Processing – any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination with other data, restriction, erasure or destruction.

3. The definitions, principles and other provisions used in this Policy correspond to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation; hereinafter – “GDPR”), the Law of the Republic of Lithuania on the Legal Protection of Personal Data and other applicable legal acts.

4. The Data subject shall be deemed to have read and become acquainted with this Policy when they voluntarily submit their data (email address and phone number) on the Company’s website www.CorpRent.eu.

The Data controller follows these data processing principles:

  1. Personal data shall be processed lawfully, fairly and transparently in relation to the Data subject (lawfulness, fairness and transparency);
  2. Personal data shall be collected for specified, explicit and legitimate purposes and not further processed in a manner incompatible with those purposes (purpose limitation);
  3. Personal data shall be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation);
  4. Personal data shall be accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (accuracy);
  5. Personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed (storage limitation);
  6. Personal data shall be processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss or destruction, using appropriate technical or organisational measures (integrity and confidentiality);
  7. The Data controller shall be responsible for, and be able to demonstrate compliance with, the above principles (accountability).

5. When using third-party services, for example when visiting the Data controller’s social media accounts, third-party terms may apply. Therefore, when using such third-party services, it is recommended to also review their applicable terms.

COLLECTION, PROCESSING AND STORAGE OF PERSONAL DATA

1. The Data subject agrees that, for the purposes of providing and performing the Company’s services, purchasing, participation in activities, issuing invoices and data analysis, the Data controller processes the following personal data relating to the Data subject: name, surname, personal identification number or date of birth, telephone number, email address, residential address, bank account number (for payment for services), data about the real estate purchased/sold/owned by the Data subject (extract about the object from the State Enterprise Centre of Registers Real Estate and Cadastre Register), IP address, correspondence by email and in social media (non-public messages).

2. For direct marketing purposes, the Data controller processes the Data subject’s name and surname, email address and phone number.

3. For the purposes of administering client inquiries and ensuring high-quality service delivery, the Data controller processes the Data subject’s comment, name, surname, email address and phone number.

4. Storage of personal data:

  • Personal data, insofar as they relate to the Company’s core activities, i.e. purchase and sale of real estate, project management and development, are stored for 10 (ten) years. This period is set due to possible inspections initiated by various public authorities (e.g., the State Tax Inspectorate, SoDra, etc.) which may be initiated 5 (five) years after the conclusion of a specific contract (e.g., works contract) and request data for the preceding 5 (five) years;
  • Data obtained for direct marketing purposes (i.e., offering data subjects to buy/sell/otherwise transfer relevant real estate, participate in development projects) are stored for 5 (five) years from the date of data receipt;
  • For inquiry administration purposes, personal data are stored for 1 (one) year from the date of data receipt;
  • For invoice issuing purposes, personal data are stored in accordance with legal requirements applicable to accounting.

5. The Data subject may at any time submit a request to withdraw consent to the processing of their personal data by sending an email to: info@corprent.eu.

6. The Data controller confirms that personal data are collected both directly from the Data subject and from publicly available sources, i.e. the Company collects publicly available data of business partners and/or their representatives in publicly accessible systems (social networks, public databases, etc.) when preparing to publish relevant tenders, develop projects and similar activities. In addition, the Company has implemented a database including all real estate brokers operating in Lithuania. Their data are publicly published and accessible. Each time the Company sends relevant inquiries to brokers, the email provides them with an option to opt out of receiving future cooperation offers.

7. The Data controller undertakes not to disclose processed Personal data to third parties, except in the following cases:

  1. If the Data subject has given consent to such disclosure;
  2. When data are provided to Data processors providing accounting, IT system maintenance, payment and other services;
  3. When data are provided to carry out other relevant actions in fulfilling obligations established by law.

8. By providing personal data, the Data subject grants the Data controller the right to collect, accumulate, systemise, use and otherwise process all personal data provided directly or indirectly while visiting the Website for the purposes set out in this Policy.

9. The Data subject is responsible for ensuring that the data provided are accurate, correct and complete. Knowingly providing incorrect data shall be considered a breach of this Policy. If the submitted data change, the Data subject must correct them without delay or, if unable to do so, inform the Data controller. The Data controller shall not be liable for any damage incurred by the Data subject and/or third parties due to the Data subject providing incorrect and/or incomplete personal data or failing to request supplementation and/or amendment when data change.

10. The Data controller uses cookies on its Website to properly manage information about Data subjects (hereinafter – “Visitors”) when they visit the Website. Cookies are files that store information on a Visitor’s hard drive or browser. They make it possible to recognise that the Visitor has visited the Website, view browsing history and tailor content accordingly. Cookies are also used to ensure the most convenient browsing experience and smooth operation, allow monitoring of visit duration and frequency and collection of statistical information about the number of Visitors. In addition, they help improve the Website’s operation and implement enhancements and adapt the Website to Visitors’ needs.

11. Data that the Data controller may process about Visitors when they visit the Website:

  1. details about websites viewed;
  2. IP address;
  3. clicked links;
  4. websites visited before arriving at the Data controller’s Website.

12. Processing using cookies does not allow the identification of Visitors directly or indirectly.

13. The Visitor may delete cookies from their computer or block them in the browser; however, in such case some Website functionality may not work or may work incorrectly.

RIGHTS OF DATA SUBJECTS

1. The Data subject, upon providing an identity document or confirming their identity in accordance with legal requirements or by electronic communications means (if they allow proper identification), has the right at any time, upon submitting a request to the Data controller, to access their data processed by the Company free of charge and to receive information on the sources from which and what personal data have been collected, for what purpose they are processed, and to which recipients they have been provided within the past 1 (one) year. The Data subject also has the right to request the correction of inaccurate, incomplete or incorrect personal data, and to request the suspension of processing actions (except storage) when data are processed in violation of laws and this Policy.

2. A request to exercise the above rights may be submitted by filling in a request form, or sent by email to: info@corprent.eu.

3. Where processing is based on consent, the Data subject has the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal, as provided in this Policy.

4. If dissatisfied with the Data controller’s response or believing that personal data are processed in violation of legal requirements, the Data subject has the right to lodge a complaint with the State Data Protection Inspectorate of the Republic of Lithuania.

FINAL PROVISIONS

1. Legal relations related to this Policy shall be governed by the laws of the Republic of Lithuania.

2. The Data controller shall not be liable for damage, including damage caused by disruptions in the operation of the Website, loss or corruption of data resulting from actions or omissions of the Data subject or third parties acting with the Data subject’s knowledge, including incorrect data entry, other mistakes, deliberate harm or other improper use of the Website. The Website provider is also not liable for disruptions of access to and/or use of the Website and/or resulting damage caused by actions or omissions of third parties not related to the Data controller or the Data subject, including interruptions of electricity or internet access supply, etc.

3. The Data controller has the right to partially or fully amend this Policy. This Privacy Policy is reviewed once every 2 (two) years and updated if necessary.

4. Additions or amendments to the Policy take effect from the day they are published on the Website.

5. If, after an addition or amendment to the Policy, the Data subject continues using the Website, it shall be deemed that the Data subject does not object to such additions and/or amendments.