Privacy Policy
PRIVACY POLICY
I. DEFINITIONS
1. Company or Data Controller – UAB “Bimaris,” a private limited liability company established and operating under the laws of the Republic of Lithuania, with a legal entity code 300125124, and a registered office at S. Šimkaus g. 13, LT-92126, Klaipėda.
2. Client or Data Subject – a natural person, a client of the Company (including website visitors), whose personal data is collected by the Company.
3. Online Store – the Company's website https://bakaleja.com.
4. Services – all services provided by the Company, including e-commerce, information services, and customer support activities.
5. Personal Data – any information related to a natural person (Data Subject) whose identity is known or can be directly or indirectly determined using such data as a personal identification code, or one or more characteristics of their physical, physiological, psychological, economic, cultural, or social identity.
6. Processing of Personal Data – any operation performed on personal data, such as collection, recording, storage, classification, grouping, merging, modification (supplementation or correction), provision, publication, use, logical and/or arithmetic operations, search, dissemination, destruction, or any other action or set of actions.
7. Partner – a legal entity providing services to the Company related to the Company's activities, selling goods to the Company, or carrying out joint projects with the Company, including but not limited to marketing campaigns, joint sales campaigns, loyalty programs, etc., in media, websites, the Online Store, retail stores, shopping networks, and others.
8. Cookie – a small piece of text information automatically created while browsing the website and stored on the visitor's computer or other device.
9. Direct Marketing – activities aimed at offering goods or services to individuals by mail, telephone, or other direct means and/or inquiring about their opinion on the offered goods or services.
10. Privacy Policy – this document establishing the principles and rules for processing personal data when using the Online Store's services.
11. Account – the main Client login details for the Online Store, consisting of an email address and a Password.
12. Password – a unique combination of numbers, letters, or numbers and letters, or other symbols created by the Client, which allows access to the Online Store.
II. GENERAL PROVISIONS
13. By purchasing from the Online Store, the Client is deemed to have read and agreed to the current version of the Privacy Policy. If the Client does not agree with any part of the Privacy Policy, they must not place an order or purchase from the Online Store.
14. The Privacy Policy is available on the Online Store and can be printed at any time. The Company may amend, supplement, or update the Privacy Policy at its discretion. The latest version will be published on the Online Store.
15. The Client may place an order in the Online Store without registration or by logging into their Account.
16. During the initial registration, the Client must provide their email address, create a secure Password, and submit accurate Personal Data to the Online Store. The Client is responsible for the accuracy of this information. Upon creating an Account, an identification code is assigned to the Client.
17. When using the Services or making purchases in the Online Store, the Client must always provide accurate Personal Data to the Online Store and is responsible for its accuracy.
III. PRINCIPLES OF PERSONAL DATA PROCESSING
18. Personal data is collected for specific and lawful purposes, with clear information provided to the Data Subject about the need for data collection.
19. All personal data is confidential.
20. Only personal data necessary to achieve the specified purposes is processed and is not used for any other purpose.
21. Personal data is processed lawfully, fairly, and transparently, respecting the rights and interests of the Data Subject. The Client’s Personal Data and private information will not be used for unlawful purposes.
22. The Company implements appropriate technical and organizational measures to ensure the security of personal data, preventing unauthorized use, loss, or disclosure.
IV. COLLECTION, USE, CORRECTION, AND STORAGE OF PERSONAL DATA
23. The Company respects every Client’s right to privacy. The Client’s Personal Data (such as name, surname, email address, phone number, delivery address, age/birth year, payment details, purchase history, and with Client’s consent: age, gender, birth date, and residence location) is collected and processed for the following purposes:
Order administration and fulfillment, including product delivery;
Improving website functionality and personalization;
Ensuring customer service and responding to inquiries;
Sending direct marketing offers (with the Client’s consent);
Fulfilling legal requirements and protecting the Company's rights;
Processing electronic payments via the makecommerce.lt platform (Maksekeskus AS).
24. The Client may consent to the processing of their Personal Data (name, surname, phone number, email, address, age, gender, birth date, residence location) for direct marketing purposes. If the Client withdraws consent, the Company will cease processing Personal Data for this purpose and stop sending marketing messages except for information related to the Client’s order. Personal data used for direct marketing is stored for 5 years from the last login to the Online Store.
25. The Client may withdraw consent at any time by notifying the Company via email at info@bakaleja.com or info@bimaris.lt, stating that they do not want their Personal Data to be used for direct marketing and no longer wish to receive marketing messages.
26. The Client also has the option to refuse direct marketing by clicking the relevant link included in each marketing email.
27. Client's Personal Data is not shared with third parties except:
27.1. When the Client has given consent as specified in this Privacy Policy;
27.2. When data is provided to Partners for e-commerce purposes;
27.3. When required by Lithuanian law and regulations to competent authorities.
28. Electronic payments are processed through makecommerce.lt (Maksekeskus AS, Liivalaia 45, Tallinn 10145, Estonia, reg. no.: 12268475), meaning the necessary payment information will be transmitted to Maksekeskus AS.
29. The Data Subject has the right to:
Receive clear and detailed information about their personal data processing;
Request corrections to inaccurate or incomplete data;
Request data deletion (“right to be forgotten”) if there is no legal basis for further processing;
Restrict data processing in case of accuracy or legality disputes;
Object to data processing for direct marketing purposes and withdraw consent;
File a complaint with the State Data Protection Inspectorate if their rights are violated.
30. The Client agrees that their Personal Data may be transferred to Partners for the fulfillment of Client orders placed in the Online Store, as well as for the provision of Services by the Company to the Client and to the Company's Partners, as specified in section 27.
31. Personal Data is stored only as long as necessary for the specified purposes, but no longer than 5 years from the last use of the Website or order placement.
32. Upon expiration, data is deleted or anonymized unless required for legal obligations.
V. USE OF COOKIES
33. The Website uses cookies to ensure proper functionality, analyze traffic, and enhance user experience.
34. Clients can review, manage, or delete cookies at any time through their browser settings. More information about cookies is available at www.allaboutcookies.org.
VI. DATA PROTECTION
35. The Company applies appropriate technical and organizational measures to ensure the confidentiality and security of personal data, protecting it from unauthorized use, loss, or disclosure.
36. Only authorized employees have access to personal data, subject to strict confidentiality obligations.
VII. CHANGES TO THE PRIVACY POLICY
37. The Company may periodically update this Privacy Policy to comply with the latest legal requirements and business practices.
38. Continued use of the Website after changes implies Client’s acceptance of the updated Privacy Policy.
VIII. CONTACT INFORMATION
For any privacy policy inquiries, contact: info@bakaleja.com or info@bimaris.lt.