top of page

Candidate Privacy Policy

5. IMPLEMENTATION OF THE RIGHTS OF DATA SUBJECTS

 

You, as a data subject, have the right to contact the Company regarding issues related to the processing of your personal data, i.e. i.e. you have the following rights:

  • the right to receive information about data processing;

  • the right to access data;

  • the right to demand correction of data;

  • the right to demand deletion of data ("right to be forgotten");

  • the right to restrict data processing;

  • the right to data portability (when data is processed by automated means);

  • the right to request that a decision based solely on automated data processing, including profiling, not be applied.

 

The data subject has the right to apply to the Company for the exercise of the rights of the data subject orally or in writing, by submitting a request in person, by mail or by e-maildap@legator.lt.   If the exercise of the data subject's rights is requested orally or the request is submitted in writing in person, the data subject must confirm his/her identity by submitting an identity document. Failure to do so will not enforce the data subject's rights.

 

When applying in writing for the implementation of the data subject's rights, it is recommended to submit the Personal Data Processing Rules in this formrequest .

 

The company, upon receiving the data subject's request, no later than within 1 (one) month from the receipt of the request, provides the data subject with information on what actions were taken based on the received request. If there will be a delay in providing information, the data subject is informed about it within the specified period, indicating the reasons for the delay and the possibility of filing a complaint with the State Data Protection Inspectorate.

 [AM1]The link must be active: clicking on the word "request" must open the request

4. TRANSFER OF PERSONAL DATA

 

The information received from you, as a data subject, is administered and used only to achieve the purposes specified in the Personal Data Processing Rules.

 

The information received from you, as a data subject, cannot be disclosed to third parties without a legal basis, with the exception of persons who participate or contribute in any way to the performance or provision of services ordered by the data subject.  The data subject's personal data may also be transferred to data processors or general data controllers with whom the Company has entered into Personal Data Processing or other contracts that discuss Personal Data Processing and their security requirements. In such a case, the legal responsibility for the violation or loss of Personal Data processing rests with the data processor or data controller responsible for the violation or damage. In other cases, personal data may be disclosed to third parties only in the event that this is stipulated or required by legal acts. Personal data may also be transferred to public administration and law enforcement institutions, when such an obligation is established for the Company in legal acts.

3. PERSONAL DATA PROCESSED IN THE COMPANY AND PERIOD OF THEIR STORAGE

 

The Company, as a data controller, processes the following personal data of the data subject for the purpose of performance of the Assignment Agreement on the provision of insurance brokerage services (depending on the type of insurance contract and the scope of the assignment of the data subject to the Company):

  1. identification and contact data (name, surname, personal identification number, duties, duties of the representative, first and last name, residential address, phone number, e-mail address, etc.);

  2. data needed to assess the need for insurance  (depending on the desired type of insurance contract: health data, active leisure/sports activities, information on trips to foreign countries (territory, duration) and data needed to assess the risk of travel insurance, information on the level of working ability, data on income, etc.);

  3. insurance contract and insurance certificate data (data and copies of the insurance contract and insurance certificate and related documents, type of insurance, series and number of the insurance certificate, effective date, expiration date of the insurance certificate, expiration of the granted power of attorney, insurance amount, premium amount, date of payment of insurance premiums, amount of insurance premiums received, premium payment document number, insurance period, name of the insurance company (insurer), etc.);

  4. insurance premium payment and account details (name of the payer, purpose of the premium, payment term, premium amount, date of payment, payment order number, whether the premium is paid directly to the insurance company (insurer), bank account number, the policyholder's debt, whether the premium is deferred , data on the validity of certificates (valid/invalid/suspended protection/terminated, amount of debt, etc.);

  5. Data of the report prepared by the company for insurers (insurance certificate number, date, type of insurance, name of the policyholder, personal identification number, paid/unpaid premiums, how premiums were paid (cash, transfer, card), etc.);

  6. data of the insured object  (depending on the type of insurance contract: list of insured property, address of the insured property, unique number, year of construction, vehicle license plates, vehicle registration certificate data and copy, vehicle make/model, type, engine capacity , engine cylinder capacity, registration number, body number and type, identification number, year of manufacture, purpose of use, number of doors and seats, alarm level, security system, vehicle technical inspection report, photos of prohibited property, data on property damage , extracts from the real estate register and the data contained therein, property valuation reports and the data contained therein, information on property protection, etc.);

  7. identification and contact data of the owner of the insured property (name, surname, address of the place of residence, telephone number, e-mail address, etc.);

  8. data of the insured event (actual circumstances of the event, related certificates of institutions, services, institutions, declarations of events, extracts from health care institutions, etc.);

  9. identification and contact data of the insured and beneficiaries (insured's name, surname, personal identification number, date of birth, age, residential address, telephone number, e-mail address, bank account number (to which the insurance benefit must be paid), title of the document , etc.).

 

The company, as a data controller, processes the following data of the data subject for the purpose of concluding and executing other contracts:

  1. person's name, surname, date of birth date, residential address, e-mail address, mobile or landline telephone number, information/financial data transferred together with the payment (payment account number, transaction amount);

  2. the name and surname of persons who are authorized to represent the legal entity in its relations with third parties, as well as persons who participate in the administration, supervision and/or control of the legal entity,  e-mail address, mobile or landline telephone number.

 

The Company, as a data processor, processes the following personal data of the data subject for the purpose of concluding and executing an insurance contract (depending on the type of insurance contract and the instructions of the insurance company, as a data controller, to the Company):

  1. identification and contact data (name, surname, personal code, position, position of the representative, first name, surname, residential address, phone number, e-mail address, etc.);

  2. data required for submitting an insurance offer from an insurance company and concluding an insurance contract (depending on the desired type of insurance contract: health data, active leisure/sports activities, information about trips to foreign countries (territory, duration) and data needed to assess travel insurance risk, information about level of work capacity, data on income, etc.);

  3. data of the insured object  (depending on the type of insurance contract: list of insured property, address of the insured property, unique number, year of construction, purpose of the object, construction method, area, vehicle license plates, vehicle registration certificate data and copy, vehicle brand /model, type, engine capacity, engine cylinder capacity, registration number, body number and type, identification number, year of manufacture, purpose of use, number of doors and seats, alarm level, security system, property protection information, vehicles technical inspection results report, photographs of the insured property, data on property damage, extracts from the real estate register and the data contained therein, property valuation reports and the data contained therein);

  4. insurance premium payment, account request and debt obligations data (name of the payer, purpose of the premium, payment term, premium amount, payment date, payment order number, whether the premium is paid directly to the insurer, bank account number, the policyholder's debt, whether the premium is deferred , the amount of the policyholder's debt, the amount of the discount granted; etc.);

  5. identification and contact data of the owner of the insured property (name, surname, address of the place of residence, telephone number, e-mail address, etc.);

  6. insurance contract/insurance certificate data  (depending on the type of insurance contract: deductible amount, risk factors, insured risks, insurance period, insurance place, insurance amount, insurance deductible amount, insurance premium amount, insurance certificate number, certificate ID number, insurance risks type/group, insurance group, territory of validity of insurance, date of issue of insurance certificate, insured events, driving experience, whether the contract was concluded through the mediation of an insurance broker, insurance options, additional conditions of insurance coverage, destination, name of destination country, risk group, number of payments made , number of insured persons, additional risk, insurance contract number, amount of unused money balance, whether the payment will be offset when terminating the insurance contract, building insurance option, data on the validity of insurance contracts (valid/invalid/suspended protection/terminated, etc.).

 

The Company processes Personal Data, which the Data Subject voluntarily submits to the Company by ordinary mail, registered mail, e-mail, telephone, directly arriving at the Company's place of service provision.

 

When the company acts as a data controller, the personal data of the data subject is stored for the purpose of the performance of the assignment contract for the provision of insurance mediation services, if an insurance contract was concluded between the data subject and the insurance company, as well as for the purpose of concluding and performing other contracts, during the period of validity of the contract and for 10 years from the end of the contract . If the insurance contract between the data subject and the insurance company has not been concluded - personal data is stored for 1 year from the moment of receipt of personal data. At the end of the storage term of the document containing these data, a decision is made regarding its destruction and the document is destroyed in accordance with the procedure established by the Law on Documents and Archives of the Republic of Lithuania. Permanently stored documents containing personal data are transferred to the state archives for safekeeping in accordance with the procedure established by the Law on Documents and Archives of the Republic of Lithuania.

 

The company, acting as a data processor, stores personal data for the period determined by the data controllers.

2. PURPOSES OF PERSONAL DATA PROCESSING IN THE COMPANY AND CONDITIONS OF LEGAL PROCESSING

 

The company, acting as a data controller, processes your personal data as a data subject for the following purposes:

  • For the conclusion and execution of an assignment contract for the provision of insurance mediation services (Article 6, paragraph 1, point b) of the GDPR):

    1. For the conclusion of an assignment contract for the provision of insurance brokerage services;

    2. For the assessment of the data subject's insurance needs and the submission of a proposal for the conclusion of an insurance contract;

    3. For the administration of insured events according to the insurance contract concluded by the Data subject;

    4. for the fulfillment of other obligations assumed under the concluded Assignment Agreement for the provision of insurance mediation services.

  • For the conclusion and performance of other contracts (Article 6, paragraph 1, point b) GDPR).

 

The company, acting as a data processor, processes your personal data as a data subject for the following purposes:

 

  • For the conclusion and execution of an insurance contract (Article 6, paragraph 1, point b) of the GDPR):

  1. For the submission of the insurance company's proposal for the conclusion of an insurance contract;

  2. For the conclusion of an insurance contract between the insurance company and the Data Subject;

  3. For the administration of the insurance contract concluded by the data subject;

  4. for the fulfillment of other obligations assumed by the Company under the concluded insurance contract.

1. CONTROLLER OF PERSONAL DATA

UADBB "Legator" (hereinafter, the Company) is the controller of personal data processed by it, which ensures that personal data is processed in the Company in compliance with the personal data protection requirements applicable to data controllers.

Information about the Company: UADBB "Legator", legal entity code 145347184, Žemaitės st. 60, 76301 Šiauliai, Lithuania. Website address www.legator.lt,  e-mail mail info@legator.lt, tel. +370(695)18 200.

The rules for processing personal data have been prepared in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27/04/2016 on the protection of natural persons in the processing of personal data and on the free movement of such data and which repeals Directive 95/46/EC (General Data Protection Regulation ) (hereinafter referred to as GDPR).

The personal data processing rules contain information about the purposes of processing personal data in the Company, legal conditions, personal data processed by the Company, their origin, storage terms, purposes of provision, the procedure for implementing the rights of data subjects, data recipients.

bottom of page