Privacy policy

Updated 28 12 2023

privatumo-politika privatumo-politika

Privacy policy

Updated 28 12 2023

You can download our privacy policy here

1. What can I find in this Privacy Policy?

This Privacy Policy (hereinafter – “Policy”) contains information on how UAB DPD Lietuva (hereinafter referred – “Company”, “we”) collects, stores and uses your personal data.

We comply with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC General Data Protection Regulation (hereinafter – “GDPR”), and other personal data protection laws.

2. Who is responsible for the security of my personal information?

We are: UAB DPD Lietuva

Our company reg. No.: 111639299

Our address: Liepkalnio Str. 180, Vilnius 02121

Our email: [email protected]

3. How does DPD Lithuania deal with personal data protection issues?

DPD Lithuania, together with other DPD Group companies (GeoPost), takes the protection of your personal data into consideration when developing its new products and services (evaluates the principles for standard and customized protection of personal data). If necessary, products or services are reviewed/updated. In order to ensure the security of your personal data and the proper exercise of your rights, we perform the following:

 - We have established the procedure for exercising your rights in order to identify cases of your personal data security breaches;

 - We complete IT security and GDPR compliance questionnaires when implementing new projects or creating applications;

 - We check the guarantees offered by our partners regarding the implementation of GDPR requirements;

 - We conduct internal audits, and prepare and implement its recommendations;

 - We get consultancy from project managers in order to establish appropriate and reasonable time limits for data storage that do not exceed the time necessary to achieve the purpose of data processing;

 - We keep data processing records;

 - We conduct regular training for our employees;

 - We have appointed data protection officers.

4. What personal data do we collect?

DPD Lietuva undertakes to collect only those personal data that are necessary for the provision of the requested services. When we collect optional personal data, we clearly identify what personal data is required to provide the requested service and what data you would provide on a voluntary basis. Details of the collected data are provided in Paragraph 9 of this Policy.

5. Where do we get your personal data from?

If you send a parcel, we receive your data when you contact us, visit one of our parcel delivery points or send the parcels using our services.

If you are a recipient of a parcel, we receive your data from the sender. Senders provide your details to us together with the packaging information or notification instructions. We need this data to deliver the goods or other parcels you have ordered. We may also obtain your data from other providers of postal services acting on our behalf and delivering parcels, e.g. if you receive a parcel from abroad, and the delivery has been assigned to another postal service provider cooperating with us.

We also obtain data directly from you when you fill in your personal information on your user account.

If you are a visitor to our website, we obtain your data through various website features. For this purpose, we use cookies or directly request information from you using the chatbot. We aim to optimize the operation of our website and provide you with information about our services. More information on cookies and their management is provided in Paragraph 14 of this Policy.

We will use your personal data to offer our services if you have agreed to receive commercial notifications as referred to in Paragraph 9.12 of this Policy. In any case, you have the opportunity to withdraw your consent at any time.

6. Who receives your personal data? Do we transfer your data to non-EU countries?

In order to provide quality services, we transfer your personal data to our partners and other DPD Group companies.

 

DPD Lithuania carries out personal data processing activities within the European Economic Area (EEA). However, we use data processors or other business partners outside the EEA for some specific services. Therefore, some of your personal data may be transferred to them strictly for the purposes of providing the services. In such cases, we require data processors to ensure the safeguards necessary for safe transfer of personal data.

 

Below is the detailed information about the service providers involved and data transfers outside the EEA.

 

Recipients of personal data or recipient categories

Purposes of personal data transfer

Country of personal data recipient

European Commission’s decision on whether the third country ensures proper level of personal data protection

Appropriate protection measures which safeguard personal data when it is transferred outside the European Economic Area

AB Telia Lietuva

For the purpose of recording telephone calls

Republic of Lithuania

N/A

N/A

UAB Creditinfo Lietuva

For the purpose of debt management

Republic of Lithuania

N/A

N/A

Enterprises providing IT maintenance services

For the purpose of infrastructure maintenance

Republic of Lithuania

N/A

N/A

Enterprises which help us conduct parcel transfers

To provide you with high-quality parcel collection and delivery services

Republic of Lithuania

N/A

N/A

Enterprises providing customer support services

For the purpose of handling claims and complaints

Republic of Lithuania

N/A

N/A

Other DPD Group companies (DPD companies in other countries and Geopost S. A.)

For the purpose of management and administration of the international group of companies

EU

N/A

N/A

Lawyers, notaries public, bailiffs

To defend lawful interests of the Company

Republic of Lithuania

N/A

N/A

Law enforcement institutions and courts of the Republic of Lithuania and the European Union

To defend lawful interests of the Company and comply with legal requirements

Republic of Lithuania / EU

N/A

N/A

Facebook, Inc., Facebook Ltd.

To administer social network accounts of the Company

USA / Ireland (EU)

N/A

Data transferred to the USA are stored in accordance with the Standard contract conditions

LinkedIn Corporation, Linkedin Ltd.

To administer social network accounts of the Company

USA / Ireland (EU)

N/A

Data transferred to the USA are stored in accordance with the Standard contract conditions

7. Where do we get your personal data from?

Time limits for storage of personal data as specified in Paragraph 9 apply to different services we provide. We undertake not to store your personal data for longer than is necessary for the specific services or, if applicable, to comply with the time limits for storage arising from the applicable requirements of legal acts.

8. Basic provisions of the agreement of the joint data controllers

8.1. The Company is part of the DPD Group network and uses both the tools of the DPD Group and the established procedures when processing data. Therefore, together with the companies of the DPD Group – Geopost S. A. and DPD companies in other countries (the complete list of companies is available here), we have established the purposes and means of the processing of your personal data as specified in Paragraph 9.2 (provision of parcel collection and delivery services), 9.3 (identification of the recipients of parcels), 9.4 (services of cash collection from recipients), 9.8 (handling of claims and complaints), 9.11 (customer service), 9.12 (execution of direct marketing and surveys), 9.13 (improvement of services provided by DPD Lietuva), 9.16 (customs administration), and 9.17 (administration of compliance with import and export prohibitions) (hereinafter –  Joint Data Controllers)

8.2. Together with the Joint Data Controllers, we have determined the responsibilities for the implementation of obligations stipulated in the applicable data protection laws, primarily including exercising of your rights and informing about data processing performed by Joint Data Controllers

8.3. Every Joint Data Controller undertakes to ensure compliance with the applicable data protection laws, to process jointly controlled data in a correct and lawful manner, not to process the data in any way which causes or may cause any damage to you.

8.4. The Joint Data Controllers together implement appropriate measures of security, integrity, accessibility and confidentiality pursuant to the provisions of the applicable data protection laws and are committed to taking all necessary precautions to ensure that your jointly controlled personal data is safe and confidential, to prevent any accidental or illegal destruction, loss, modification, illegitimate disclosure of or access to personal data transferred, stored or processed.

8.5. In cases where you use our services and the parcel transits several countries, your rights will be ensured by the DPD company which is delivering the parcel to you, and other related Joint Data Controllers undertake to assist in exercising your rights. Please be informed that for the purpose of data processing specified in Paragraph 8.1 of this Policy, to exercise your rights listed in Paragraph 11 herein, you must contact us using the contact details provided in Paragraph 12 or other Joint Data Controllers.

8.6. For the purposes other than those specified in Paragraph 8.1, the Company is your only data controller.

9. Why and how do we manage your personal data?

9.1. For the purpose of selection of candidates for vacancies

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you decide to contact us to participate in the personnel selection

Firsts name, surname, date of birth, telephone number, email address, residential address, education, current and former workplaces, CV; in the case of A courier selection, data on the service providers with whom the courier has concluded an employment contract, the size of the courier uniform, the driving licence category, years of driving experience, other data in your CV and/or other documents provided on a voluntary basis.

Processing in order to take action on the initiative of the candidate before the conclusion of a contract, in cases where you apply directly for a specific vacant position we have announced (Article 6[1][b] of the GDPR).

 

Your consent in cases where you apply for a non-specific position or where we ask for your consent to store your data after the end of a specific competition for a position (Article 6[1][a] of the GDPR).

From you

Yes, because without this information we will not be able to conclude a contract with you and execute it.

Until the end of the selection process for a position.

 

 

9.2. For the purposes of parcel collection and delivery services

We process your personal data in order to provide parcel collection and delivery services. Our services typically include the following actions: collection and marking of a parcel, placing the information about the parcel in the parcel tracking system, managing the ordering and delivery of the parcel, estimating the delivery time, managing the return of the parcel, and measuring the temperature of the parcel containing foodstuffs. The scope of data processed for the purposes referred to in this paragraph depends on your role in the parcel collection and delivery process.

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you send a parcel

First name, surname, address, telephone number, email address, other information you have provided in connection with the delivery of the parcel.

We also process personal data generated by us: the parcel reference number, collection point GPS data, proof of delivery.

Processing for the performance of a contract (Article 6[1][b] of the GDPR).

 

Processing is required to fulfil legal obligations applicable to the data controller (Article 10[2] of the Postal Law of the Republic of Lithuania).

From you, except for the data generated by us

Yes, without this information we will not be able to provide services to you.

Electronic files, records in IT systems and databases are stored for 4 years from the date of receipt of the data.

 

Hard copies of the documents (waybills, manifests, e-parcel  consignment notes) are stored for 1 year and 1 month.

 

Electronic parcel delivery documents or their hard copies are stored for 3 years and 1 month.

 

When you receive a parcel

First name, surname, address, telephone number, email address, signature.

 

We also process personal data generated by us: the parcel reference number, delivery point GPS data, a photo of the front door or another secure location where the parcel is delivered, proof of delivery.

Processing is required to fulfil legal obligations applicable to the data controller (Article 10[2] of the Postal Law of the Republic of Lithuania).

 

Our legitimate interest and the legitimate interest of the sender to deliver the parcel and to identify the person who collects the parcel (Article 6[1][f] of the GDPR).

From the sender, except for the data generated by us

When you collect a parcel on behalf of another person

First name, surname, address, last 5 digits of the number of the ID document, signature

We also process personal data generated by us: delivery point GPS data, a photo of the front door or another secure location where the parcel is delivered, proof of delivery.

From you, except for the data generated by us

 

9.3 For the purpose of identifying the recipient of the parcel

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When a parcel is sent to you, the condition for delivery is assurance of your identity.

First name, surname, address, the number of the ID document, a photocopy of the ID document.

Our legitimate interest and the legitimate interest of the sender to identify the recipient (Article 6[1][f] of the GDPR).

From you and/or the sender

Yes, because without this information we will not be able to provide services to you.

Up to 6 months from the moment such data are recorded.

 

9.4 To provide services of cash collection from recipients

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When a parcel is sent to you for which cash payment is collected

First name, surname, address, telephone number, amount of cash, time of cash collection.

Conclusion and performance of a contract (Article 6[1][b] of the GDPR).

 

Legal obligation to properly maintain accounting in accordance with the Law on Accounting of the Republic of Lithuania (Article 6[1][c] of the GDPR).

 

Our legitimate interest and the legitimate interest of the sender to receive payment for the delivered parcel (Article 6[1][f] of the GDPR).

From you and/or the sender

Yes, without this information we will not be able to provide services to you.

Electronic files, records in IT systems and databases are stored for 10 years from the date of receipt of the data.

 

Cash receipts are stored for 10 years.

 

9.5 For the purposes of leasing and other contracts

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you receive a contract for signing which is sent through our couriers

First name, surname, address, telephone number, email address, date of birth, the number of the ID document, signature, the contract signed by you.

Conclusion and performance of the contract (Article 6[1][b] of the GDPR).

 

Our legitimate interest and the legitimate interest of the sender to properly identify the recipient (Article 6[1][f] of the GDPR).

From you and/or the sender

Yes, because without this information we will not be able to conclude a contract with you and execute it.

 

Electronic files, records in IT systems and databases are stored for 4 years from the date of receipt of the data.

 

Hard copies of the documents are stored within the time limits set out in the “Document Nomenclature (Directory)”:

leasing and other contracts not delivered to the  recipient are stored for 3 months.

 

9.6 For the purposes of the conclusion and performance of contracts

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If you are a sole proprietor

First name, surname, personal ID number, address, telephone number, email address, the number and date of issue of the ID document, details of the bank account, signature, the contract concluded by you.

Conclusion and performance of the contract (Article 6[1][f] of the GDPR).

 

Legal obligation to properly maintain accounting in accordance with the Law on Accounting of the Republic of Lithuania (Article 6[1][c] of the GDPR).

From you

Yes, because without this information we will not be able to conclude a contract with you and execute it.

Electronic files, records in IT systems and databases are stored for 10 years after the expiry of the contract.

 

Parcel delivery contracts and invoices for services are stored for 10 years.

 

9.7 For the purposes of debt management

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If you, as our contractual client, delay payment for our services

First name, surname, telephone number, email address, credit history

Our legitimate interest to receive payment for the services we have provided (Article 6[1][f] of the GDPR).

From you and UAB Creditinfo Lietuva database

No

1 year after the date of debt payment or recovery

If you are the manager or shareholder of our client (legal person) who avoids paying for our services

First name, surname, address, other data provided by UAB Creditinfo Lietuva.

From UAB Creditinfo Lietuva database

 

9.8 For the purpose of handling claims and complaints

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If you have any claims or complaints regarding the services provided to you

First name, surname, address, information contained in the claim or complaint and documents related to it, other information provided by you.

Our legitimate interest in clarifying the circumstances and properly examining claims and complaints (Article 6[1][f] of the GDPR).

From you

No

Electronic files, records in IT systems and databases are stored for 3 years from the date of receipt of the data.

 

User claims are stored for 3 years.

If you are a claimant

First name, surname, address, bank details, information on the contents of the parcel, and details specified in the purchase documents of the items sent and parcel transfer documents.

From you

 

9.9 For the purpose of reporting damaged packaging

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If at delivery of the parcel, it is established that the  packaging is damaged and our couriers prepare a packaging damage report

First name, surname, address, a packaging damage report

Performance of the contract concluded with the sender (Article 6[1][b] of the GDPR).

 

Our legitimate interest in clarifying the circumstances and properly examining claims and complaints (Article 6[1][f] of the GDPR).

From you

Yes, because without this information we will not be able to execute the contract with you.

Electronic files, records in IT systems and databases are stored for 3 years from the date of receipt of the data.

 

Packaging damage reports are stored for 3 years.

 

9.10 For the purposes of issuing invoices for services

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you use our services

First name, surname, address

Performance of the contract with you as the sender (Article 6[1][b] of the GDPR).

 

Legal obligation to properly maintain accounting in accordance with the Law on Accounting of the Republic of Lithuania (Article 6[1][c] of the GDPR).

From you

Yes, without providing this information we will not be able to execute the contract with you and issue an invoice for the services we have provided.

 

Electronic files, records in IT systems and databases are stored for 10 years after the expiry of the contract.

 

Invoices for the services we have provided are stored for 10 years.

 

9.11 For customer service purposes

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you contact us by telephone

Telephone number, your data provided during a telephone call, recording of a telephone call

Our legitimate interest to ensure and improve the quality of customer service, to  train employees, to properly analyse customer complaints regarding the quality of services provided by telephone and to make decisions in case of a dispute with a caller regarding the interpretation of the conversation (Article 6[1][f] of the GDPR).

From you

No

Not more than 3 months

 

We record incoming telephone calls on the following lines:

  • Ordering line – tel. 8 700 55700;
  • Customer service consultancy line – tel. 8 5 2106 777;
  • Sales consultancy line – tel. 8 5 2106 766.

If you wish to contact us, but do not wish your phone call to be recorded, we kindly request that you call us by dialling our administration phone number 85 2106 750, or contact us by email (email addresses are provided in the contact section of the DPD website) or visit our registered office in person.

9.12 Provision of Benefits for Expedited Parcel Retrieval

We process data for this purpose during festive and other peak periods when parcel deliveries surge. Our goal is to ensure optimal loading of parcel terminals, facilitating timely and efficient parcel retrieval for both senders and recipients. During these specific periods, we offer customers the opportunity to avail benefits for prompt parcel retrieval, such as winning prizes. Information regarding these incentives is included in messages sent to customers.

 

When does this apply to me?

What data of mine are you processing?

On what legal basis are you processing my data?

Where do you obtain my data from?

Am I obligated to provide my data to you?

How long will you retain my data?

When parcels are received during times of significantly increased delivery volumes.

Information such as surname, first name, phone number, email address, postal address, parcel number, details about received benefits, and won prizes

Ensuring the legitimate interest of the company, parcel senders, and recipients in maintaining optimal loading of parcel terminals during the specified periods (GDPR Article 6(1)(f))

 

Consent (GDPR Article 6(1)(a)) (when announcing winners on websites)

From You

No

From You No During the periods specified in the benefit provision guidelines. 1 year (data of prize winners)

 

9.13 For the purpose of direct marketing and surveys

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If you are our customer and we provide you information about our services and their changes via email and telephone

First name, surname, email address, telephone number.

If you have used our services, we will process your data in accordance with Article 81(2) of the Law on Electronic Communications of the Republic of Lithuania. If you are a new customer, we will process your data on the basis of your consent (Article 81 of the Law on Electronic Communications of the Republic of Lithuania and Article 6[1][a] of the GDPR).

 

In other cases, we rely on our legitimate interest to inform and ask you about our services and their changes (Article 6[1][f] of the GDPR)

From you

No

In the case of contractual clients, as long as the person is a DPD client.

 

For persons who have given their consent to newsletter subscription, for 5 years after the consent is given.

 

For the purpose of carrying out surveys, 6 months after receipt of the data.

If you receive our surveys to evaluate our service quality

If you are a participant of our loyalty program

 

9.14 For the purpose of improving the services provided by DPD Lithuania

 

For this purpose, we evaluate your data in connection with the sales and operations over a certain period of time in order to evaluate the quality of the services provided by the Company.

 

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you use our services

First name, surname, email address, address, telephone number, the parcel reference number.

Our legitimate interest to ensure and improve the quality of our services provided to you (Article 6[1][f] of the GDPR).

From you

No

6 months (subsequently,  the data is anonymised)

 

9.15 For the purpose of administering social network accounts

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you carry out activities in our social network accounts (e.g. comment posts, send us a message, etc.)

First name, surname, account name, gender, country, photo, comments on the post, sharing posts, reacting to posts, and other data you provide to us.

Your consent (Article 6[1][a] of the GDPR)

From you

No

5 years (unless you withdraw your consent earlier)

 

9.16 For the purpose of administering accounting

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you order our services

First name, surname, payment time, payment status, bank account number (IBAN), type of credit card, expiration date, payment amount, payment date.

Legal obligation as stipulated in the Law on Accounting of the Republic of Lithuania (Article 6[1][c] of the GDPR)

From you

Yes, without this information we will not be able to provide you services under the contract.

Bookkeeping records are stored for 10 years

 

9.17 For the purposes of customs administration

Customs administration generally includes: checking of data against the lists of prohibited countries announced by organizations, generation of search results, and a decision to block/not to block a parcel.

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you order parcels from the countries from which the goods are subject to customs and duty fees

First name, surname, email address, address, telephone number, notifications, the parcel reference number, IP address, content of the parcel and the estimated value of the goods.

Legal obligation as stipulated in the Law on Customs of the Republic of Lithuania (Article 6[1][c] of the GDPR).

From you / the sender

Yes, without this information we will not be able to provide you services under the contract.

6 months in an active database and 5 years in the archives

 

9.18 For the purpose of administration of compliance with the requirements for import and export prohibitions

The management of compliance with import and export prohibitions generally involves: checking of data against the lists of prohibited countries announced by organizations, generation of information on the basis of the results of the verification, and a decision to block/not to block a parcel.

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you send or receive parcels to/from the countries which are subject to prohibitions on import or export of goods

First name, surname, email address, address, telephone number, the parcel reference number, parcel comparison/inspection result

Legal obligation as stipulated in the Law of the Republic of Lithuania on the Implementation of Economic and Other International Sanctions (Article 6[1][c] of the GDPR).

From you / the sender

Yes, without this information we will not be able to provide you services under the contract.

30 days in the active database

From 30 days to 2 years in the limited database

From 2 to 10 years in the archives (due to legal requirements)

 

9.19 For the purpose of video surveillance in the parcel distribution terminals

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

When you enter the field of view of video surveillance cameras in the parcel distribution terminal

Image data, time and date of video data.

Our legitimate interest to ensure the security of the material assets (customer’s parcels) in the parcel distribution terminals and to clarify the causes and circumstances of the damage or loss of parcels (Article 6[1][f] of the GDPR).

From you

No

Not more than 30 calendar days

 

9.20 For the purpose of maintaining relations with legal persons

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If you are a representative of a legal person with whom we have a relationship and we communicate with you in relation to business issues and sign contracts with the legal person you represent

 

First name, surname, email address, phone number, place of employment, position, signature, other information you provide.

Conclusion and performance of the contract (Article 6[1][b] of the GDPR).

 

Our legitimate interest to maintain relations with other legal entities (Article 6[1][f] of the GDPR).

From you / legal person you represent

Yes, without providing this information we will not be able to conclude and execute a contract or maintain business relationship with you.

 

Electronic files, records in IT systems and databases are stored for 10 years after the expiry of the contract.

 

Contracts and invoices for the services are stored for 10 years.

 

9.21 For the purpose of control of access to the site

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If you are entering or leaving the site of our Kaunas division

Registration number of your vehicle.

Legitimate interest to ensure access control to our site (Article 6[1][f] of the GDPR).

From you

No

Not more than 3 months

 

9.22 For the purpose of the protection of legal interests and enforcement of legal requirements

When is this relevant to me?

What data do you process?

On what legal basis do you process my data?

Where do you get my data from?

Must I provide my data to you? 

How long will you process my data?

If we become a party or an interested person in court or other legal proceedings to which you are related, and also when we have to provide information about you in order to comply with the requirements of the law.

Those of the above data, which are related to the specific legal proceedings or a legal requirement, documents of the legal proceedings, other information that you provide to us.

Legitimate interest to represent the Company in legal proceedings (Article 6[1][f] of the GDPR).

 

or

 

The legal obligation to provide information under the law (Article 6[1][c] of the GDPR).

From you / the sender

No

10 years after the expiry of contractual relationship with us or 3 years (in the case of legal proceedings) from the date of entry into force of the decision of the court or authority or the date of full execution of the legally binding decision whichever is longer.

 

 

10 Is my personal data safe?

DPD Lietuva undertakes to take all measures to ensure the security and confidentiality of your personal data, in particular to prevent any damage, erasure or unauthorized access by a third party.

For this purpose, we have an approved the information system security policy at the level of the DPD Group, which defines the guidelines for information security management. The policy includes human, physical, organizational and technical security controls.

If your personal data are subject to a data breach (destruction, loss, alteration or disclosure), DPD Lietuva undertakes to notify the data protection supervisory authority of the personal data breaches and to notify you immediately, as soon as this can be done in accordance with Article 34 of the GDPR.

11 What rights do I have?

Subject to the conditions, limitations and exceptions laid down in the data protection laws, you have the following rights:

 

My right Hwan can I exercise it?

 

Right of access to data

 

When you seek from us confirmation as to whether or not the data concerning you are processed and, if so, access the data and data processing.
Right to rectification When you seek that we should correct the inaccurate data concerning you.
Right to erasure (“right to be forgotten”)

 

1) When the data are no longer necessary in relation to the purposes for which they were collected or otherwise processed, 2) when you withdraw consent on which the processing is based and there is no other legal ground for the processing, 3) when you object to the processing and there are no overriding legitimate grounds for the processing or you object to the processing of data for direct marketing purposes, 4) when data have been unlawfully processed, 5) when the data must be erased in for compliance with the Company's legal obligation, 6) when the data has been collected in the context of the offer for information society services made directly to a child with his consent.
Right to restriction of processing

 

1) When you contest the accuracy of the data, 2) when the processing is unlawful and you object the erasure of the data and request the restriction of their use instead, 3) when we no longer need the data for the purposes of processing, but they are required for the establishment, exercise or defence of legal claims, 4) when you object to the processing.
Right to data portability

 

When you seek to receive the data which you have provided to us in a structured, commonly used and machine-readable format, and to transmit the data to another controller where the processing is based on consent or a contract and is carried out by automated means.
Right to object

 

Where processing is based on a task carried out in the public interest or in order to exercise the functions of a public authority, or on a legitimate interest of the data controller, including profiling, or if you object to the processing of your data for direct marketing purposes.
Right to withdraw consent When processing is based on consent and you seek to withdraw it at any time.
Right to file a complaint When you wish to file a complaint with the supervisory authority, in particular in the Member State where you are domiciled, where you are employed or where the suspected breach of the GDPR took place.

12 Do you profile me and make automated decisions?

We do not make decisions that are based solely on automated processing, which would have legal consequences for you or would have another significant impact on you. Your profiling may only be performed for the purpose specified in Paragraph 9.13.

13 Contact details and data protection officers

If you have any questions related to the protection of personal data, please contact us by email [email protected] (general administration) or contact our Data Protection Officer directly at [email protected].

14 Amendments to this Privacy Policy

This Policy is reviewed on a regular basis and, where necessary, updated at least once every two years. Any supplements or amendments to the Policy shall take effect from the date of their publication on the websites.

15 Information about the cookies we use

We and our partners use cookies or other tracking technologies to facilitate the use of our website, improve the operation and safety of the website and offer you personal advertising. Before activation of cookies, except the necessary cookies, we must obtain your consent. You can manage your choices – our partners and goals – by clicking Cookie Settings. You may withdraw your consent at any time by managing cookies in our website footer.

 

Detailed information on the cookies used on our websites is provided below:

 

Website address Category of a cookie Cookie name Expiry period of a cookie
Dpd.com

 

Necessary cookies c::b

 

until the website is closed
Functional cookies dtSa

 

until the website is closed
yt-player-bandwidth permanent
TC_PRIVACY_IAB_VENDORLIST permanent
yt-player-bandaid-host permanent
Performance (analytical) cookies

 

dtCookie until the website is closed
dtLatC
dtPC
dtSa
rxec
rxvisitid
rxVisitor
rxvt
yt-player-headers-readable permanent
Marketing cookies

 

YSC until the website is closed
yt-remote-fast-check-period
yt-remote-session-app
yt-remote-cast-installed
yt-remote-session-name
test_cookie 1 day
VISITOR_INFO1_LIVE 179 days
IDE 1 year
yt.innertube::nextId permanent
yt-remote-device-id permanent
yt-remote-connected-devices permanent
yt.innertube::requests permanent
Esiunta.dpd.lt Necessary cookies

 

rc::c until the website is closed
XSRF-TOKEN 1 day
__cflb 1 day
laravel_session 1 day
__cfduid 29 days
rc::a permanent
Functional cookies

 

_hjTLDTest until the website is closed
storedObject permanent
Performance (analytical) cookies

 

_gat 1 day
_gid 1 day
_hjid 1 year
_ga 2 years
_hjid permanent
Marketing cookies tr until the website is closed
ads/ga-audiences
_hjIncludedInSample
fr 3 months
_gcl_au 3 months
_fbp 3 months
NID 6 months
Ssa.dpd.lt Necessary cookies JSESSIONID until the website is closed
Myprofile.dpd.lt Necessary cookies JSESSIONID until the website is closed
Atsiveztisiunta.dpd.lt Necessary cookies __cfduid 29 days
PHPSESSID until the website is closed
Manosiunta.lt Necessary cookies JSESSIONID until the website is closed