On this privacy policy and cookies page, you can find out what information we collect about you when you visit our website www.mioki.com

We also provide information on what we do with this information and where it is obtained. In addition, we provide information about the use of cookies on the website.

The controller of your personal data as a website visitor is:

SALUT LTD
Company code: 10302334
Registered office and correspondence address: 84 Whyteville Road,E7 9LT London
Email e-mail address: info@mioki.com

Processing of your personal data

Your data is processed for the following purposes:

• In marketing.
• Sending newsletters (newsletters are not sent without your consent).
• In order to ensure the functionality of the website, to offer you better website browsing solutions.
• We use cookies to improve the provision of services on the website www.mioki.com.
• In order to successfully complete your order in the online store of our website.
• For successful delivery of goods through intermediaries (e.g. courier services, Lithuanian Post, bus shipments).
• In order to answer your questions through the contact forms provided on our website, e-mail by post

Data that is collected and processed on the website www.mioki.com

SALUT LTD collects the following data for the purposes mentioned above:

• Basic data is obtained through contact forms: IP address, name, phone number, e-mail. post office, city, other data specified by you.
• Data is received by e-mail. by mail that you provide as the sender: IP address, first name, last name, e-mail postal address, telephone number, other additional data.
• Data we receive if you purchase our e-mail. in the store www.: ip address, name, address, contact details.
• The data we receive during the conversation can also be collected and processed in order to fulfill your desired order.

To whom we provide your data

We guarantee that your data will not be sold to anyone, provided to be transferred to third parties, for purposes other than the consent given. We use your data only as provided on this page. Of course, there is a situation when we must provide your data about you in accordance with the procedure provided by law or if we are required to do so by law enforcement authorities or an institution conducting criminal prosecution.

The information transferred to third parties can only be as provided on this page:

• Services for sending newsletters to a special platform through which news about our products will be sent to you.
• Third-party services provided for data storage and website hosting purposes.
• A third party such as Google Analytics, which allows us to collect information about you to check our website’s overall traffic and errors.
• Courier service, Lithuanian Post or other institution so that we can deliver your order.

How long are data about you stored?

Data is stored on our website for no longer than is required by law, if a longer storage time is set. Your data is stored on the website for the period indicated below:

Contact form data – no longer than 24 months.
email store order – no longer than 24 months. after the order is fulfilled.
Additional data provided through other possible communication channels – no longer than 24 months. after contact with you and our company’s employees.

Newsletters

You can get an offer on our website by submitting an e-mail. email address, you will receive newsletters from our company about the latest products and services.

By receiving your consent to send newsletters, we get the full right to do so. You can unsubscribe from newsletters at any time by clicking on the “Unsubscribe” button in the e-mail you receive and confirming the refusal in the next e-mail.

Your e-mail Your email address will be processed for the purpose of sending newsletters until you opt out. When a newsletter is sent and you click on the newsletter link, data may be collected.

Your e-mail the email address may be transferred to third parties providing special newsletter sending services only so that we can send it to you through their platform.

Types of cookies used on the website

The cookies used on our website www.mioki.com can be of several types:

• Necessary cookies – the most necessary cookies work, thanks to which the website itself works.
• Functional cookies – are not very necessary, but provide additional functionality to make everything as convenient as possible for your browsing and ensure a user experience.
• Statistical cookies – cookies that collect information about you as a visitor, what actions you perform on the website. It measures time, sees where you visited the website, how many visitors there are at the moment, and it is possible to prepare a general report on website traffic.

The consents you give as a visitor to the use of cookies on our website

• Without changing your browser settings to prevent it from accepting cookies.
• In the table that appears at the beginning of the website, click the “I agree” button about the cookies used and the privacy policy.
• If you do not want the website to collect data about you

You can use additional browser add-ons, guides on how to do this can be found below:

• https://tools.google.com/dlpage/gaoptout/  Your visit statistics will no longer be collected in the Google Chrome browser.
• https://addons.mozilla.org/en-US/firefox/addon/cookie-autodelete/  – Automatically deletes cookies in the Firefox browser.
• Deleting Internet Explorer browser cookies https://support.microsoft.com/lt-lt/help/17442/windows-internet-explorer-delete-manage-cookies  (information provided).
• Deleting Firefox browser cookies (English) https://support.mozilla.org/lt/kb/Slapuk%C5%B3%20%C5%A1alinimas
• Deleting Google Chrome cookies https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=en

You can cancel the collection of cookies at any time by changing your browser settings so that it does not collect cookies by using browser add-ons or by finding information about it among search engines.

List of cookies on our website

Title	Protected information	Purpose	Valid
PHPSESSID		For session identification	1 session
Cookieconsent_status	Choice	Cookie confirmation of the choice of storage	1 year
SID, SAPIS, APIS, SSID, HSID, NID, PREF	Various unique variables apart from PREF which stores your preferences eg: zoom level.	Google assigns cookies on any page that uses Google Maps. We have no control over Google cookies. These cookies collect information about the behavior of Google Maps users.	Most cookies are valid for 10 years after visiting the page containing the Google map.
_ga	randomly generated ID	Google Analytics: Segments users	2 years
_gid	randomly generated ID	Google Analytics: Segments users	1  day
_gat	Number	Google Analytics: Used to increase query speed	1 minute
act,c_user,datr,fr,pl,presence,sb,wd,xs		Cookies are used for the interface with the Facebook platform and with the user account if the user is logged in to Facebook.	1 year
1P_JAR	A short randomly generated ID	These cookies are used to collect website statistics and track conversion rates.	1 week
SIDCC		A security cookie that helps protect user information from unauthorized access.	1 day

Ability to view cookies

Cookies are simple text files. You can view them with any text editor. Below is information on how you can view them:

•  „Firefox“
• „Chrome“
• „Internet Explorer 8–11“

Unintended cookies

Due to the way the Internet and websites work, we are not always aware of cookies placed by third parties through our website. This applies in particular to cases where our website contains so-called embedded elements: texts, documents, images or short video clips that are stored on another party’s website but displayed on or via our website.
Therefore, if you come across such cookies on our website that we have not previously specified, please let us know. Alternatively, contact the relevant third party directly and ask what cookies they have placed, why they do so, how long the cookie lasts and how they protect your privacy.

General provisions

The personal data processing rules (hereinafter – the Rules) regulate the actions of the Company and its employees when processing personal data, using automatic and manual personal data processing tools installed in the Company, as well as determine the data subject’s rights, personal data protection implementation measures and other issues related to personal data processing .

The purpose of the rules for processing personal data in the Company is to regulate the processing of personal data in the Company in accordance with the General Data Protection Regulation of the European Union no. 2016/679, the Law on Legal Protection of Personal Data of the Republic of Lithuania and to ensure compliance and implementation of other related legal acts.

The Company collects personal data that a person voluntarily provides by e-mail, registered mail, fax, telephone, directly coming to the Company’s store, registering on the Company’s website and becoming a registered user (when the Company provides such an opportunity), purchasing goods in the Company’s online store or using The company’s website.

Concepts

Terms used in the document:

Personal data  – any information about an identified or identifiable natural person (data subject). An identifiable natural person is an individual whose identity can be determined, in particular by some identifier, such as name, personal identification number, location data and Internet identifier, or by one or more of that natural person’s physical, physiological, signs of genetic, mental, economic, cultural or social identity;

Data subject  – means a natural person from whom the Company receives and processes personal data;

Employee  – means a person who has concluded an employment or similar contract with the Company and is appointed to process Personal Data by the decision of the Company’s manager or whose personal data is being processed;

Data recipient  – the person to whom personal data is provided;

Provision  of data – disclosure of personal data by transmission or otherwise making them available (except for publication in public information media);

Data processing  – any action performed with personal data: collection, accumulation, storage, recording, classification, grouping, connection, change (addition or correction), provision, publication, use, logical and/or arithmetic operations, search, dissemination, destruction or other action or set of actions;

Automatic processing  of data – data processing actions that are fully or partially performed by automatic means;

Data controller  – a legal or natural person (who is not an employee of the data controller) authorized by the data controller to process personal data. The data processor and/or the procedure for its appointment may be determined by laws or other legal acts;

Data controller  – a legal or natural person who, alone or together with others, determines the goals and means of processing personal data. If the purposes of data processing are determined by laws or other legal acts, the data controller and/or the procedure for his appointment may be determined in those laws or other legal acts;

Consent  – any freely given, specific and unambiguous expression of the will of a properly informed data subject by means of a statement or unequivocal actions by which he agrees to the processing of personal data related to him;

Direct marketing  – activities aimed at offering goods or services to individuals by mail, telephone or other direct means and/or asking for their opinion on the offered goods or services;

Third party  – a legal or natural person, excluding the data subject, data controller, data processor and persons who are directly authorized by the data controller or data processor to process data;

Other concepts used in these Rules are understood as they are defined in the Law on Legal Protection of Personal Data of the Republic of Lithuania and other legal acts regulating the processing of personal data.

Principles of personal data processing

• When processing personal data, the company is guided by the following principles:
• The Company processes personal data only to achieve the legal purposes defined in the Rules;
• Personal data is processed accurately, honestly and legally, in compliance with the requirements of legal acts;
• The company processes personal data in such a way that the personal data is accurate and is constantly updated in the event of a change;
• The company processes personal data only to the extent necessary to achieve the goals of personal data processing;
• personal data is stored in such a form that the identity of data subjects can be determined no longer than is necessary for the purposes for which these data were collected and processed.
• The personal data of the data subject can be accessed only by employees of the Company with the relevant competence and/or third parties that the Company has used to provide the service, and only in cases where it is necessary to provide the service.
• The Company respects the Data Subject’s privacy and undertakes to constantly comply with the Data Subject’s data protection principles specified in these Rules.

Purposes of processing personal data

• Personal data are processed and used in accordance with the purposes for which the Data Subject provided them to the Company or for other purposes approved by the Data Subject.
• Purposes of using personal data of the data subject:
• For the processing and administration of the purchase (order) of goods or services performed by the data subject;
• For the identification of the data subject in the Company’s information systems;
• For the identification of the data subject when logging in to his account on the Company’s website (when the Company provides such an opportunity);
• for issuing and submitting coupons, confirmations, invoices and other financial documents for purchased (ordered) goods or services;
• for the resolution of problems related to the execution of the contract;
• for contacting the Data Subject, in the event of a change in the conditions of goods or services purchased by the Data Subject;
• for the fulfillment of other contractual obligations;
• For the Company’s Direct Marketing purposes;
• for security, health, administrative, crime prevention disclosure and legal purposes;
• business analysts, for general research that allows improving the quality of goods or services;
• for contact with the Data Subject, in order to receive customer feedback on purchased goods or services;
• for the assessment of a person’s candidacy for a job position, contact with the relevant candidate, etc.;
• I heard

By voluntarily submitting his personal data to the Company, the Data Subject confirms and voluntarily agrees that the Company will manage and process the Data Subject’s personal data in accordance with these Rules, applicable laws and other normative legal acts.

The rules must be followed by all employees of the Company who process personal data in the Company or come to know them while performing their functions, data processors used by the Company or third parties used by the Company to provide the data processing service, and only to the extent necessary to provide the service.

The Company undertakes not to disclose personal data information to third parties without the Data Subject’s consent, with the exception of ensuring the proper performance of the contract, other services related to the proper performance of the services ordered by the Data Subject. The Company may also transfer the personal data of the Data Subject to third parties who act as Data Processors on behalf of the Company. Personal data may be provided only to those Data Processors with whom the Company has signed relevant Data Processing Agreements. It is considered that the Data Subject is informed about it, agrees with it and the Company does not assume responsibility for damage arising from the use of the Data Subject’s data by third parties to the extent permitted by law. In all other cases,          

Collection and processing of personal data

The personal data information collected by the company may be: Name, surname, telephone number, e-mail address of the data subject, address of receipt of purchased goods or services, postal code, name of the company on whose behalf it is acting, credit/debit card or other payment data, information about the Data goods purchased by the subject (quantities, dates of purchase, prices of purchased goods, purchase history), the data subject’s login name and password coded form on the Company’s website (if the Company provides such an opportunity). Video recordings may be made in the premises of the company’s store in accordance with the procedure established by legal acts, this information is used only in the manner and for the purposes prescribed by legal acts to ensure security. The Company’s website may collect certain information about the Data Subject’s visit, for example: Internet Protocol (IP) address, using which the Data Subject accesses the Internet; Date and time of the data subject’s visit to the Company’s website; other web pages that the Data Subject visits while on the Company’s web page; the browser used; information about the Data Subject’s computer operating system; versions of mobile apps; language settings and more. If the Data Subject uses a mobile device, data may also be collected to identify the type of mobile device, device settings, as well as geographic (longitude and latitude) coordinates. This information is used to improve the Company’s website, analyze trends, improve products and services, and administer the Company’s website.

All personal data specified and received by the Data Subject are collected, stored and processed in accordance with the requirements stipulated in the Personal Data Protection Law of the Republic of Lithuania and other legal acts regulating the protection of personal data in the Republic of Lithuania. The Company ensures that the data provided by the Data Subject is protected against any illegal actions: illegal alteration, disclosure or destruction of personal data, identity theft, fraud, and that the level of personal data protection meets the requirements of the legal acts of the Republic of Lithuania.

Persons authorized to process personal data of employees adhere to the principle of confidentiality and keep secret any information related to personal data that they have become familiar with in the course of their duties, unless such information is made public in accordance with the provisions of applicable laws or other legal acts. The obligation to keep personal data confidential also applies after moving to another position, ending the employment or contractual relationship.

Documents containing personal data must not be kept in a visible place accessible to all. Personal data contained in the texts of relevant documents (agreements, orders, requests, etc.) are stored according to the terms specified in the General Document Storage Terms Index, approved by order of the Chief Archivist of Lithuania. Other personal data are stored no longer than is necessary to achieve the purposes set out in this procedure. The terms of storage of individual personal data are determined by the Head of the Company.

Rights of the subject of personal data

Rights of data subjects and means of their implementation:

to know about the collection of your personal data. When collecting personal data, the Company must inform the Data Subject what personal data the Company will process, for what purpose the relevant data will be processed, to whom and for what purpose they may be provided and/or what are the consequences of not providing personal data. The data subject has the right to get acquainted with his personal data, to demand correction, clarification or addition of incorrect or incomplete personal data. The data subject may also object to the processing of certain optional personal data;

get to know your personal data and how it is handled. The data subject has the right to contact the Company with a request to provide information about what and for what purpose his personal data is being processed. After the Company receives the Data Subject’s request in writing (registered mail or e-mail), no later than within 30 calendar days from the date of receipt of the Data Subject’s request, it provides the requested data in writing (registered mail or e-mail) or indicates the reasons for refusing to fulfill such a request. The answer is provided to the Data Subject in the same form in which the request was received, unless the Data Subject’s request expresses a wish to receive information in another way;

demand correction, destruction of your personal data or suspension of processing of your personal domains;

to receive the Data provided by you read in a structured form, if it meets the criteria defined by law;

in exceptional circumstances, the Data Subject has the right to refuse Data Processing when the data processed is optional data. When Data is processed for direct marketing purposes, the Data Subject may object to such Processing (right to object). The company, upon receiving a request to stop the processing of optional personal data, immediately stops such processing, unless it contradicts the requirements of legal acts, and informs the employee about it;

at any time to withdraw any consent given by the Data Subject when registering or using the services provided by the Company. Such refusal will not affect the legality of the Data Processing carried out prior to the refusal and based on the consent given;

refuse to provide personal data;

file a complaint with the supervisory authority if the Data Subject’s rights are violated;

view and edit personal information provided on the Company’s website and contact details of the Data Subject (if the Data Subject is a registered user of the Company’s website). The Data Subject can do this by visiting the relevant sections of the Company’s website.

Personal data security measures

1. Access rights to personal data and authorizations to process personal data are granted, deleted and changed by order of the head of the Company.
2. Personal data is processed manually and automatically using the personal data processing tools applied by the Company.
3. When protecting personal data, the company implements and ensures appropriate organizational and technical measures to protect personal data from accidental or unlawful destruction, alteration, disclosure, as well as from any other unlawful processing.
4. In the company, only those persons who have been authorized to access such data have the right to access the personal data of the subjects of personal data, and only when it is necessary to achieve the goals set out in the Rules.
5. The company ensures the security of the premises where personal data is stored, proper arrangement and review of technical equipment, compliance with fire safety rules, proper network management, maintenance of information systems and the implementation of other technical measures necessary to ensure the protection of personal data.
6. The company takes measures to prevent accidental or illegal destruction, alteration, disclosure of personal data, as well as any other illegal processing, by storing the documents and data files entrusted to it properly and safely.
7. If an employee or other Data Processor doubts the reliability of the installed security measures, he must contact his direct supervisor to assess the available security measures and, if necessary, initiate the purchase and installation of additional measures.
8. An employee or other Data Processor processing personal data must:
9. process personal data in strict accordance with the laws of the Republic of Lithuania, other legal acts, instructions and Rules;
10. keep personal data confidential. Such an employee must observe the principle of confidentiality and keep secret any information related to personal data that he has become familiar with in the course of his duties, unless such information is made public in accordance with the provisions of applicable laws or other legal acts. The Company’s employee must observe the principle of confidentiality even after the end of the employment relationship;
11. not to disclose, transfer or provide access to personal data to persons who are not authorized to process personal data;
12. store documents and data files properly and avoid making unnecessary copies. Copies of company documents containing personal data must be destroyed in such a way that these documents cannot be reproduced and their contents cannot be identified;
13. to immediately notify the head of the Company or the responsible person appointed by him about any suspicious situation that may pose a threat to the security of personal data and to take measures to avoid such a situation.
14. destroy copies of unnecessary documents containing personal data so that these documents cannot be reproduced and their contents cannot be recognized.
15. Employees or other responsible persons who automatically process personal data or from which computers can access areas of the local network where personal data are stored, use passwords created in accordance with the relevant rules. Passwords are changed periodically, at least once every three months, as well as when certain circumstances arise (for example: when an employee changes, when there is a threat of hacking, when there is a suspicion that the password has become known to third parties, etc.).
16. An employee working on a particular computer can only know his password. The employee hands over the password in a sealed envelope to the responsible person authorized by the Company. Passwords are stored in a safe or other safe place and used only in case of necessity.
17. At least once a month, an appointed employee or other Data Processor makes copies of personal data on computers.
18. The employee responsible for computer maintenance must ensure that personal data files are not “visible” (shared) from other computers, and antivirus programs are updated periodically.
19. The employee responsible for computer maintenance makes copies of the data files on the computers. If these files are lost or damaged, the responsible employee must restore them within a few working days at the latest.
20. The employee loses the right to process personal data when the employee’s employment or similar contract with the Company expires, or when the head of the Company cancels the appointment of the employee to process personal data.
21. In order to ensure the protection of personal data, the Company implements or plans to implement the following personal data protection measures:
22. administrative (establishing the procedure for the safe handling of documents and computer data and their archives, as well as the work organization of various fields of activity, familiarization of personnel with personal data protection, etc.);
23. hardware and software protection (administration of information systems and databases, maintenance of workplaces, Company premises, protection of operating systems, protection against computer viruses, etc.);
24. protection of communications and computer networks (filtering of shared data, programs, unwanted data packets, etc.).
25. Personal data protection technical and software measures must ensure:
26. installation of storage for copies of operating systems and databases, determination of copying techniques and compliance control;
27. continuous data management (processing) process technology;
28. authorized use of data, their non-vulnerability.

The employee or other Data Processor, having detected violations of personal data processing, immediately informs the direct manager so that the Company can take immediate measures to prevent illegal processing of personal data and, if necessary, inform the supervisory authority of personal data processing and the Data Subject about the situation.

Failure to comply with these Rules, depending on the severity of the violation, may be considered a gross violation of work duties.

REQUESTS AND COMPLAINTS  “You can submit a request/complaint regarding a service purchased on our website to the State Consumer Rights Protection Service (Vilnius St. 25, 01402 Vilnius, e-mail tarnyba@vvtat.lt, tel. 8 5 262 67 51, fax. ( 8 5) 279 14 66, website www.vvtat.lt), as well as to territorial units of the State Consumer Rights Protection Service in counties or to fill out the application form on the EGS platform http://ec.europa.eu/odr/”.