Privacy policy V2

SIA Zinva, a company registered in the Republic of Latvia with registration number 40003946631 and legal address Riga, Maskavas 418B, LV-1063, Latvia, (hereinafter - the Manager). The Privacy Policy (hereinafter - the Policy) is a document that provides information to individuals on how data processing is performed to improve the quality of the content of the Morex website www.morex.lv, to make it more convenient to use and to adapt it to the needs of users. The controller treats your privacy responsibly and undertakes to protect your personal data accordingly. This policy sets out the basis on which we process any personal data collected from you or provided by us through our services or the website www.morex.lv, www.morex.lt and www.morex.ee. Please take the time to review this policy so that you understand our views and practices regarding your personal information and how we process it.

 

How we get information

We may obtain data about you in the following cases:

  • The information you provide when filling out forms or documents on our website or in person at the store.
  • If you contact us, we may retain these correspondences and the information provided in them (including details and order).
  • Details of your visits to our site and the resources you access.
  • Information you provide in your consents or submissions addressed to us.

 

IP addresses and cookies

We may collect information about your computer (terminal equipment),including your IP address, operating system and browser type for system administration. These are statistics analysed for browsing activities and patterns and do not identify anyone.

The Manager may also obtain information about the general use of the Internet by using cookies, which are stored in the terminal device that accesses the website www.morex.lv. You can find out more about cookie rules and types in our cookie rules: https://www.morex.lv/page/cookies.

 

Where we store your personal information

We operate and process data within the European Union. At the same time, in certain cases, if you are individually informed and/or agree to this, the data obtained from you may be transferred and stored at a destination outside the European Economic Area (EEA). For example, if it relates to an order for the performance of a contract (e.g. an order from a manufacturer or supplier outside the EU / EEA or product registration),or if you have agreed to third party cookies and these cookies are managed by a third party outside the EU / EEA.

 

Security and retention periods of personal data

The controller implements and maintain appropriate administrative, technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access.

The controller keeps the personal data for no longer than is reasonably necessary for the purposes for which the personal data are processed. The terms of personal data storage are determined based on applicable regulatory enactments or the legitimate interests of the Controller. At the end of the personal data storage period, the personal data is deleted. If there are obstacles to the deletion of personal data (for example, an order prohibiting the deletion of personal data),the storage of personal data shall be ensured until the obstacles are solved or removed. We reserve the right to delete or permanently anonymize your data if the legal basis for their use has been lost or is not necessary for the provision of further service.

Normally, we destroy forms and requests for concluded purchases and orders within 3 months of the completion of the transaction. Accounting documents (e.g. invoices, bills of lading) are required to be kept unchanged by the applicable laws for a longer period- usually 5 years after the transaction. Transaction documents in which we have warranty obligations or possible claims from consumers in connection with the conformity of goods or services with the terms of the contract we keep for the entire warranty or statutory liability period, which is usually 2 years, but in some cases 5 years. For the purposes of proof of consent, we retain it during its validity and for another 5 to five years after it is revoked, however, we may digitize or destroy it more quickly if it is not considered necessary to retain the consent. For statistical purposes, the data are anonymised.

Please remember that you are responsible for storing and deleting the data on your terminal (use the appropriate settings of your internet browser to clear the cache and cookies).

 

Security of access properties

If you are a registered user of the website and you have been provided with access details (password) that allow access to certain parts of our website, you are obliged to keep this password secret and not pass it on to any other person. You are responsible for maintaining your password and please do not share your password with others. Change your password immediately and let us know if you have reason to believe that your password or other access details have been compromised.

 

Use of information (categories of personal data processed)

We use the following personal data (their categories) for the following purposes:

  • Conclusion and performance of the contract (sale of goods, provision of services and administration of related processes)

When you request information about our goods or services, place an order, purchase goods on a website or in a store, we need to process your personal data in order to enter into or perform a contract (including providing delivery, if any). We may also need to process personal data to ensure warranty obligations and their administration (including product registration, inspection, detect defects),as well as to meet consumer regulatory requirements regarding claims for non-conforming goods and services.

Categories of personal data

Legal basis

  • Personal information (name, surname)
  • E-mail address
  • Phone number
  • address
  • method of delivery of goods, process
  • a description of the product or service
  • payment type
  • payment information (e.g., current -account number, payment card details)
  • IP address
  • basic information about third parties receiving the goods

Agreement between you and SIA Zinva on the purchase of goods or provision of services, or activities for concluding these agreements.

To conclude an agreement on the purchase of goods at your invitation or interest (including when preparing and sending an offer).

Our legitimate interest is to provide administration of sales and service processes.

Our legitimate interest in selling goods, providing information, and providing goods sales service.

Fulfilment of obligations specified in regulatory enactments (incl., Keeping of accounting and recording of settlements, ensuring the conditions of conformity of goods).

 

Data you provide when communicating with Morex

When you contact us or we need to inform you to respond to your request, process your application or contact you in the cases specified in applicable law, we may identify you and contact you using the contact information (telephone number, e-mail address, address),to request additional identifying information, if necessary, to adequately protect your privacy or to fulfil our obligation, and to inform our partners so that we can better respond to your wishes or improve our products and services.

Categories of personal data

Legal basis

  • Personal information (name, surname)
  • Other identifying information
  • Contact information (residential address, e-mail address or mobile phone number)

To fulfil a legal obligation under applicable law.

Our legitimate interest in doing business, providing proper customer service and efficient business management processes, ensuring, and improving the quality of service, protecting our interests during the period of possible claims or requirements.

 

- Investigation and prevention of illegal activities against us

To detect and prevent illegal actions taken by the Manager (such as investigating and preventing violations and thefts, protecting and improving our IT systems, preventing attacks and intrusions, or unauthorized editing or blocking access to the Website, preventing spam, phishing, or other unauthorized activities),we may collect and process the data available to us, including by passing it on to law enforcement or information technology security incident prevention authorities.

Categories of personal data

Legal basis

  • User-generated data, visit history, data related to the devices used and their settings, such as language settings, time zone, operating system and platform, IP and MAC addresses, browser settings, other information about the use of the website and Morex services, other identifying information, closed transactions received, details of goods or services and information contained in transaction documents.

Our legitimate interest is to prevent abuse of services or disruption of the provision of services, sale of goods, or to investigate and prevent criminal offenses (e.g., theft, damage to property) against the company.

To fulfil a legal obligation under applicable law.

 

- Direct marketing, advertising and information materials

After receiving your consent, we inform you about various news and current events related to our services, promotions, competitions, offers and lotteries. If you wish to receive our newsletter, you must indicate it on our website or by applying in another offered way.

Categories of personal data

Legal basis

  • Personal information (name, surname)
  • Contact information (residential address, e-mail address, mobile phone number)

Our assent

In addition, we may use anonymized personal data to analyse our customer profiles and statistics. We may share this anonymized statistical information with third parties as part of market research procedures. The controller warrants that it will not transfer or sell customer lists to any other organization or third party.

 

Data accuracy

If your data that you have provided to us has changed (for example, contact information for news),you must notify us immediately by correcting incorrect or inaccurate data. You may update and refine the information provided to us at any time to ensure that it is accurate.

 

Video surveillance

The manager performs video surveillance at the goods delivery point, Maskavas Street 418B.

Categories of personal data subjects: Persons entering the reception area of ​​the video surveillance camera (Manager's employees, customers and other persons). We process your personal data to prevent, control and detect criminal offenses and investigate incidents involving your property and assets, as well as to protect the essential interests of individuals, including security (customers, employees, documents, information),burglary, theft, attacks, damage, etc.

Categories of personal data

Legal basis

  • Your image and recordings, as well as all other personal data and activity that is visible at the place where the video surveillance takes place.

Protection of legitimate interests and vital interests, including health and life.

 

Cases in which data may be made available to third parties

  • Service providers and partners

To fulfil our obligations to you, to ensure the operation of the website and the services and sales of goods provided by the Manager, we transfer your personal data to companies and institutions that provide services to us. Such as website maintenance and operation, or direct marketing message; sending to ensure the progress of the purchase of goods and the delivery of goods, such as to a payment service provider, goods delivery or insurance service provider.

Cookies are processed and received by us and our partners, who ensure the operation of the website, collect and analyse your activities on the website.

If you use any information exchange facility or tool on the Website, your data may be transferred to the appropriate partner associated with your chosen information exchange or transfer facility, as well as to messaging service providers.

Personal data may be so disclosed (transferred) to another person in connection with the transfer of companies, any merger, acquisition, sale of assets, transfer of business to another merchant, etc. In such cases, the customer database is not sold (transferred) separately, unless it is related to the transfer of the entire company.

We make reasonable efforts to verify all service providers who process your personal data on our behalf and duty. We assess whether the cooperation partners (processors of personal data) apply appropriate security measures so that the processing of your personal data takes place in accordance with our tasks, instructions, directions and the requirements of regulatory enactments. These companies are not entitled to use your personal data for any other purpose. We transfer your personal data to third parties who are involved in the execution of the transaction of your choice.

If we have an obligation to disclose your personal data to fulfil any legal obligation or to protect the rights, property or security of us, our customers or others, the data may be disclosed. This includes exchanging information with other companies and organizations for fraud protection and credit risk mitigation purposes. Your data may also be transferred at the request of the competent authorities (law enforcement authorities, state and local authorities) (e.g., the supervisory authority responsible for personal data protection or the police).

 

Changes to the Privacy Policy

We may change or supplement this Privacy Policy from time to time by posting changes on the Website. Any amendment and recast shall enter into force immediately upon publication, unless otherwise provided for in the entry into force. When using this website, you must check the current version of the privacy policy.

Rights of the data subject regarding the processing of personal data

The data subject has the following rights regarding his or her personal data:

  • Receive from the Controller information on whether his/ her personal data is processed. If so, access his/ her personal data and receive information on the purpose (s) of processing of personal data to be processed, category of personal data, recipient of personal data (- the period of retention of personal data, the automatic decision-making process, including profiling, and its consequences, information on other sources of personal data if the personal data are obtained from a third party, information on guarantees when personal data are transferred to a third country or international organization, as well as information on the rights of the data subject;
  • receive information on whether the provision of personal data is related to the requirements of the contract or regulatory enactments, whether the provision of personal data is a precondition for concluding a contract, as well as information on the obligation of data subjects and consequences if such personal data will not be submitted.
  • request the correction of your personal data if they are inaccurate, incorrect or incomplete.
  • request a restriction on the processing of your personal data.
  • object to the processing of your personal data.
  • request the deletion of your personal data.
  • withdraw their consent to the processing of personal data.
  • not be the subject of a decision based solely on automated processing, including profiling, which has legal consequences for the data subject or which similarly has a significant effect on the data subject. These conditions shall not apply if the decision is necessary for the conclusion or performance of the contract between the data subject and the controller, or is based on the data subject's explicit consent, or is permitted under the applicable law.
  • the portability of personal data in relation to the personal data submitted by the data subject to the Company in a structured, commonly used and machine-readable format.
  • Contact the controller with a complaint about the processing of personal data. In cases when the Manager is not satisfied with the complaint, submit a complaint regarding the processing of personal data to the State Data Inspectorate (contact information of the Data State Inspectorate is available on the website: www.dvi.gov.lv).

The rights of the data subject are ensured by the Company in compliance with the requirements of the Regulation for the implementation of these rights.

If the data subject withdraws his or her consent to the processing, this shall not affect the lawfulness of the processing which took place before the withdrawal of the consent.

 

Data processing on other linked websites

The website of the Manager www.morex.lv may contain links to third party websites, which have their own terms of use and personal data protection, for which Morex is not responsible.

 

Manager and contact information

The manager is SIA Zinva, Reg.nr. 40003946631, Legal address: Riga, Latgales Street 418B, LV-1063, Latvia. If you have any questions, comments or requests related to the privacy policy or the processing of your personal data, please contact us by writing to e-mail info@morex.lv or sending a letter to Riga, Latgales Street 418B, LV-1063.

 

Version 1.1.

April 20, 2021