Using the collected personal data, we ensure the smooth provision of services and the improvement of operation of the Elinta Charge mobile app (hereinafter the “Mobile App”). If we do not receive the requested personal data, we are not able to grant access to the activation of the Charging Stations and payment for the charging services (hereinafter the “Services”), as well as provide other services related to their use.
I. WHO IS RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA?
The data controller processing the personal data submitted in the Mobile App is as follows:
Elinta Charge, UAB, company number 304847412, Terminalo g. 3, Kaunas FEZ, 54469 Kaunas district.
You can contact us about personal data protection issues via e-mail firstname.lastname@example.org or by phone +370 653 66633.
II. WHAT LEGAL BASIS WE RELY ON TO PROCESS YOUR PERSONAL DATA?
Personal data are processed under the Personal Consent(s) provided by the users of the Mobile App expressly confirming their consent:
- by installing the Mobile App on their device;
- by indicating their contact details at the time of registration;
- by allowing the Mobile App to access the geolocation data on their device.
III. WHAT PERSONAL DATA DO WE COLLECT?
The main categories of personal data and data processed by the Company are as follows:
▪ identification data: name, surname;
▪ contact details: address, telephone number, e-mail address;
▪ vehicle data: vehicle model, license plate number;
▪ data related to the provision of Services: information on the currently provided and completed Services, data received by the Company when communicating with persons directly or by means of remote communication (telephone, e-mail), etc.;
▪ payment data: payment history, etc.;
other data processed by the Company in accordance with the legal bases established by legal acts.
IV. FOR WHAT PURPOSES DO WE USE PERSONAL DATA?
The Company processes personal data in order to ensure the proper provision of Services:
Payment administration. The Company processes personal data related to the payment for the provided Services on the basis of agreement performance and/or requirements of legal acts.
Resolution of submitted questions. The Company processes personal data when handling and resolving submitted questions and/or complaints on the basis of agreement performance, consent or requirements of legal acts.
Other purposes. The Company may process personal data for other purposes, provided that it has obtained the consent of the person, and must process the personal data in compliance with the requirements of legal acts or has the right to process the data for a legitimate interest.
In all of the above-mentioned cases, the Company processes personal data only to the extent necessary to achieve the relevant clearly defined and legitimate purposes, taking into account the requirements of personal data protection.
V. WHAT PERSONAL DATA MAY BE PROVIDED TO OTHER RECIPIENTS?
In adherence to the requirements of legal acts, the Company may transfer the processed personal data to the following data recipients:
Service providers. The Company may transfer the processed personal data to third parties acting on behalf of and/or at the instruction of the Company and providing the Company with customer service, payment administration via PayPal (Europe) S.à.r.l. et Cie, S.C.A., (R.C.S. Luxembourg B 118 349) and other services in order to ensure the proper provision, management and development of the Company’s Services.
Authorities and supervisory bodies. The Company may submit the processed personal data to government, law enforcement or supervisory authorities where this is required under the applicable legal acts or in order to ensure the Company’s rights or the safety of customers, employees and property of the Company.
Other third parties. The Company may submit personal data to other data recipients on the legitimate grounds defined by legal acts.
VI. HOW LONG WILL WE STORE PERSONAL DATA?
The Company processes personal data no longer than required by the specified purposes of data processing or provided for by the applicable legal acts if they provide for a longer data storage period. In order to determine the data storage period, the Company applies criteria that comply with the duties specified in legal acts, also taking into account the established rights of a person, for example, applies a data storage period during which the requirements related to the performance of an agreement, if any, may be submitted, etc.
Personal data storage terms are as follows:
▪for administration purposes (i.e. customer registration and accounting, agreement management and control, debt collection, etc.): 5 years after the date of expiry of the agreement;
▪for data recovery purposes (i.e. if a person deletes their account or erases it by mistake and submits a request to the Company to restore the data): 3 months after the deletion of the account. Data on customers who have not fulfilled their financial and/or property obligations or caused damage to the Company will be stored for an additional period of 5 years.
VII. WHAT ARE THE RIGHTS OF THE PERSONS?
Having contacted the Company and after the Company has established the identity of a person, the person shall have the right to:
▪access his/her personal data processed by the Company;
▪correct the incorrect, incomplete or inaccurate personal data;
▪request to destroy personal data or suspend the processing of personal data, except for storage, if this is performed in violation of the requirements of the applicable legal acts;
▪receive personal data related to the person, which the person has submitted himself/herself, in a structured, commonly used and machine-readable format;
▪request to erase personal data processed by the Company where the personal data are processed in violation of the requirements of the applicable legal acts or the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
▪restrict the processing of his/her personal data in accordance with the applicable legal acts, e.g., for the period during which the Company will assess whether the person has the right to request the erasure of his/her personal data;
▪object to the processing of his/her personal data and/or, in the case of personal data processed on the basis of consent, to withdraw the provided consent to the processing of his/her personal data without affecting the lawfulness of processing based on consent before its withdrawal.
Persons may contact us in writing regarding these Rules or the processing of personal data by the Company at Partizanų g. 63M, 50306 Kaunas, by e-mail email@example.com or by telephone +370 653 66633.
In case of a failure to resolve the issues related to the processing of personal data by the Company and/or personal rights, a person also has the right to contact and file a complaint with the State Data Protection Inspectorate.
VIII. WHAT ARE THE MEASURES TO ENSURE THE SECURITY OF PERSONAL DATA?
Appropriate organisational and technical measures are used to ensure the security of personal data, including the protection against unauthorised or unlawful processing and against accidental loss, destruction or damage. These measures have been selected taking into account the risks to the rights and freedoms of a person as a data subject.
Access to the processed personal data is controlled; it is granted only to those employees of the Company who require personal data for the performance of their work. Employees of the Company who have access to personal data are familiarised with the personal data protection requirements and ensure the confidentiality of the processed personal data.
IX. CONTACT DETAILS
If you have any additional questions, please contact us via e-mail firstname.lastname@example.org or by phone +370 653 66633.