This privacy policy (the Privacy Policy) contains information about how attorney-at-law Giedrė Rimkūnaitė-Manke (the Attorney-at-Law) processes your personal data in the course of her activities as an attorney-at-law as well as in her website https://giedre.legal (the Website).
You can contact the Attorney-at-Law using the following contacts:
Tel..: +37061812528
E-mail: giedre@giedre.legal
Capitalized terms not defined in the Privacy Policy shall have the meanings set out in the General Terms and Conditions of Provision of Legal Services of the Attorney-at-Law.
What personal data does the Attorney-at-Law process?
In the course of her activities as an attorney-at-law and on the Website, the Attorney-at-Law processes personal data for the following purposes:
1. Purpose: Provision of Legal Services
Personal data processed: personal data of the Client (where the Client is a natural person) or personal data of the Client's (legal person's) representative: name, surname, e-mail address, telephone number, address, other personal data contained in the Legal Services agreement; as well as other personal data provided by the Client (for example, information about their activities, relations with other persons) and data collected by the Attorney-at-Law from other sources in the course of providing Legal Services (for example, publicly available sources, registers, etc.).
Legal basis: contract and/or taking action at the request of a person prior to entering into a contract (where the Client is a natural person), and/or statutory obligation, and/or legitimate interest in carrying on business and providing Legal Services.
Special categories of personal data: for the purpose of providing Legal Services, the Attorney-at-Law may also process special categories of personal data. This is done only with your explicit consent and/or for the establishment, exercise or defence of your legal claims and/or in cases where you have manifestly made this data public.
Retention period: 10 years after the expiry of the Legal Services contract, unless such personal data are subject to a longer retention period by law and/or regulation.
2. Purpose: Anti-money laundering and sanction control
Personal data processed: name, surname, e-mail address, telephone number, personal identification number, nationality, residential address, identity document data (name, number, expiry date, country of issue), information on whether the person or their family members are politically exposed, source of income and other data.
Legal basis: performance of a legal obligation and/or legitimate interest in carrying out the activities.
Retention period: 8 years after the expiry of the Legal Services contract, unless a longer retention period for such personal data is prescribed by law and/or regulation.
The Attorney-at-Law may be subject to an obligation to report information to the competent authorities in the cases prescribed by law.
3. Purpose: Communication with visitors to the Website
Personal data processed: name, surname, telephone number, email address.
Legal basis: acting at the request of the data subject prior to the conclusion of a contract or legitimate interest in performance and/or quality assurance.
Retention period: 1 year after the date of resolution of the request.
4. Purpose: Providing suggestions, news, information on events
Personal data processed: name, surname, email address, telephone number.
Legal basis: consent or legitimate interest to offer similar services to customers.
Retention period: the period of validity of the Legal Services contract and 6 months after its expiry (when processed on the basis of consent given by executing a Legal Services contract); 2 years after the consent (when processed on the basis of consent given otherwise) or the period of validity of the Legal Services contract (when processed on the basis of legitimate interest).
Personal data may be transferred by the Attorney-at-Law to the newsletter solution provider.
5. Purpose: Services of the business document creation tool Dokas
When you use the services of the business document creation tool Dokas, the Attorney-at-Law processes your personal data jointly with Dokas legal, MB (legal entity code 306627895, registered office address šv. Antano g. 15-1, Didžiasalis, Vilnius district), as joint controllers of personal data. Detailed information on the processing of personal data using the services of the business document creation tool Dokas is available at https://dokas.legal/privatumo-politika/.
6. Purpose: Managing social media accounts
Personal data processed: unique ID, IP address, device information.
Legal basis: consent or legitimate interest to communicate with (potential) customers.
Retention period: as long as the visitor of the social network is a follower of the accounts.
The information that you provide via social media when visiting the accounts of the Attorney-at-Law (including messages and other communications) is jointly controlled by the Attorney-at-Law and the social media managers as joint controllers of personal data.
Currently, the Attorney-at-Law has the following social media accounts:
- Linkedin - https://www.linkedin.com/in/grimkunaite/, whose privacy notice can be found at https://www.linkedin.com/legal/privacy-policy
- Facebook - https://www.facebook.com/giedrerm/, whose privacy notice can be found at https://www.facebook.com/privacy/explanation
Please read the privacy notices of third parties and contact the service providers directly if you have any questions about how they use your personal data.
To whom can the Attorney-at-Law transfer your personal data?
The Attorney-at-Law may transfer the personal data obtained in the course of the provision of the Legal Services to the following persons for the purpose of providing the Legal Services: (a) to third parties against whom the Client is represented or who are otherwise involved in the provision of the Legal Services; (b) to a court, bailiff, state or local authority, institution and/or organisation; or (c) to third parties engaged by the Attorney-at-Law or the Client for the provision of the Legal Services or related services (for example, other lawyers, law firms or professional associations, foreign lawyers or other professionals, tax consultants, auditors, engineers, translators, property valuers, etc.).
The Attorney-at-Law may transfer personal data to state bodies or institutions, other persons performing functions assigned to them by law. The Attorney-at-Law may also disclose information in other cases if she is required to do so by law or in order to protect her rights or interests (including the disclosure of personal data to third parties for the purpose of recovering debts owed to the Attorney-at-Law).
The Attorney-at-Law may also transfer the personal data processed by her to data processors - service providers providing services to the Attorney-at-Law, such as companies or persons providing information technology, accounting, archiving, marketing services, if reasonably necessary for those purposes, as specified in this Privacy Policy. Processors have the right to process personal data only on the instructions of the Attorney-at-Law and only to the extent necessary. When using data processors, the Attorney-at-Law shall take all necessary measures to ensure that the data processors have implemented appropriate organisational and technical measures to ensure the security of personal data and to maintain the secrecy of personal data.
How is your personal data processed?
Your personal data is processed in accordance with the General Data Protection Regulation (the GDPR), the Law on Legal Protection of Personal Data of the Republic of Lithuania, the Bar Law of the Republic of Lithuania, and other legal requirements. The Attorney-at-Law, both when establishing measures for the processing of personal data and during the processing of the data itself, implements appropriate technical and organisational data protection measures as provided for in the legislation, in order to protect the processed personal data against accidental or unlawful destruction, damage, alteration, loss, disclosure, as well as against any other unauthorised processing. The appropriate measures shall be determined taking into account the risks arising from the processing of personal data.
Please note that the Attorney-at-Law is subject to the guarantees and duties of an attorney-at-law provided for in the Bar Law of the Republic of Lithuania and the Code of Ethics of the Lithuanian Bar, including the duty to protect information constituting a professional secrecy. Therefore, where the GDPR or the law requires the provision of certain information, the Attorney-at-Law may provide it only to the extent that it does not disclose the lawyer's professional secrecy.
What are your rights?
The following provides information about your rights in relation to the processing of your personal data by the Attorney-at-Law and when you can exercise these rights. If you would like more information about your rights or to exercise them, please contact the Attorney-at-Law at the email address set out in this Privacy Policy.
You can contact the Attorney-at-Law at any time to ask if she processes any of your personal data. If the Attorney-at-Law stores or uses your personal data in any way, you have the right to access it. To do so, please submit a written request to the Attorney-at-Law at the email address set out in this Privacy Policy. The Attorney-at-Law may ask you to confirm your identity in order to comply with your request. In making such a request, please observe the principles of fairness and reasonableness.
If you have given your consent to the Attorney-at-Law for the processing of your data, you may revoke it at any time at the e-mail address specified in this Privacy Policy.
You have the right to ask the Attorney-at-Law to correct any inaccuracies in the data held. In this case, the Attorney-at-Law may ask you to confirm the corrected information.
You have the right to ask the Attorney-at-Law to delete your personal data. This right shall be exercised in the cases provided for in Article 17 GDPR.
You have the right to ask the Attorney-at-Law to restrict the processing of your personal data or not to process them.
You have the right to the transfer of data processed by automated means and obtained from you by the Attorney-at-Law with your consent or for the purpose of concluding a contract. If you exercise this right, the Attorney-at-Law will transfer a copy of the data provided by you at your request.
You have the right to object to the use of your personal data by the Attorney-at-Law in accordance with the procedure set out in Article 21 GDPR.
How can you exercise your rights?
In order to exercise your rights, please submit your requests, complaints or claims in writing to the Attorney-at-Law at the contacts specified in this Privacy Policy.
The Attorney-at-Law will respond in writing to any requests, complaints or demands received in accordance with the procedures and deadlines established by law. The Attorney-at-Law shall endeavour to provide you with the information as soon as possible, but no later than 30 days after receipt of your request.
If, upon receipt of a request, complaint or demand, the Attorney-at-Law has any suspicions as to the identity of the applicant, she shall have the right to ask for the applicant's identity document.
Complaints
If you believe that your rights as a data subject have been and/or may be violated, please contact the Attorney-at-Law immediately at the e-mail address specified in this Privacy Policy. The Attorney-at-Law assures you that upon receipt of your complaint, the Attorney-at-Law will contact you within a reasonable period of time and inform you of the progress of the investigation of the complaint and, subsequently, of the result. If you are not satisfied with the outcome of the investigation, you may lodge a complaint with the supervisory authority, the State Data Protection Inspectorate (https://vdai.lrv.lt/).
Responsibility
You are responsible for ensuring that the data you provide to the Attorney-at-Law is accurate, correct and complete. If there is any change in the data you have provided, you must inform the Attorney-at-Law immediately by e-mail. In no event shall the Attorney-at-Law be liable for any damage caused to you as a result of your providing incorrect or incomplete personal data or your failure to inform the Attorney-at-Law of any change in the data.
Privacy Policy updated on 6 March 2024