Published: 21.09.2023.

General Privacy Policy of the Single Website Platform

Your privacy and data protection is very important to the webmaster of the Single Website Platform. We assume that if you are reading this Policy in connection with the consent required of you in connection with the processing of your personal data, you have read this statement and agreed to the processing of your personal data before submitting your personal data.

Public administration is committed to openness and transparency, so by providing us with your personal data, we have described how personal data is processed on the Single Website Platform and for what purposes. Before processing personal data, we evaluate the lawfulness of the data processing activity. We process personal data on the basis of official authority and legal obligations applicable to it.

The purpose of the privacy policy of the Single Website Platform is to comply with the principles of personal data processing contained in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation) (hereinafter - GDPR), to provide general information regarding the processing of personal data organised and performed by the State Chancellery.

The personal data controller of the Single Website Platform shall be the State Chancellery (SC). The personal data processors of the Website Platform shall be the institutions of the websites included on the platform, the maintainers of the platform - the State Regional Development Agency (SRDA), the hosts on technical resources - the Information Centre of the Ministry of the Interior (ICMI) and the technical service providers - Latvian State Radio and Television Centre (LSRTC).

Your personal data on the Single Website Platform shall be processed in accordance with the implementation of the legal interests of public administration institutions, for the fulfilment of obligations specified in the laws and regulations, fulfilment of contractual obligations, provision of public information, as well as other previously provided purposes.

The legal basis for the processing of personal data performed within the framework of the services managed by the Single Website Platform shall be determined by the following laws and regulations:

Employees of the parties involved in the operation of the Single Website Platform shall only process personal data for the performance of their official duties or on behalf of or under the instruction of the authorities, in compliance with the basic principles of personal data processing and confidentiality requirements set out in the institution's internal documents.

An employee shall be prohibited to process personal data obtained within the framework of the performance of official duties for his or her own or other persons' personal purposes. By processing personal data in the course of their official duties, processors of personal data shall, as far as possible, reduce the risk of personal data coming into the possession of unauthorised persons as a result of actions or omissions.

On the Single Website Platform, your personal data shall be processed in accordance with the requirements of confidentiality and taking care of the security of the data we hold. The processors of personal data on the Single Website Platform shall take various security measures to prevent unauthorised access to your data, disclosure of data or use of other inappropriate personal data. Proper data information processing, storage, data integrity shall be ensured with an appropriate level of security. Accordingly, we use proportionate and appropriate physical, technical and administrative procedures and means to protect the personal data we collect and process. The implemented security measures shall constantly be improved in accordance with the security requirements, subject to appropriate data protection safeguards and to the extent necessary for the purposes of the processing.

We carry out personal data protection with data encryption tools, firewall protection, as well as other data network security breach detection solutions. The data controllers of the Single Website Platform shall ensure the confidentiality of the data and take appropriate technical and organisational measures to protect personal data against unauthorised access, unlawful processing, disclosure, accidental loss, distribution or destruction, subject to appropriate data protection safeguards and to the extent necessary for the Data processing purposes. Personal data security measures shall constantly be improved and refined in order not to lower the level of personal data protection.

Protection of personal data processing shall be performed:

  • in the information technology infrastructure (servers, local computer networks and application software) for the personal data processed;
  • for personal data transported in the data transmission network, if any;
  • in the information systems used for the provision of work, which are administered by the institutions involved in the Single Website Platform;
  • for electronic documents developed, registered and in circulation, containing personal data.

You may withdraw your consent (if requested from you and you have given it) to the collection, processing and use of your personal data at any time. The personal data controller of the Single Website Platform shall assess your claims based on his/her legal interests. If personal data are no longer needed for pre-defined processing purposes, it shall be deleted.

The administrator of the Single Website Platform shall be responsible and processes personal data by means that must prevent the misuse, unauthorised disclosure, alteration of personal data.

In order to improve the communication of public administration institutions, the personal data controller shall monitor the received personal data. This data in an aggregated form can be used to create overview reports that can be disseminated to the public administration in Latvia. Messages shall be anonymised and not contain any personal data.

The Single Website Platform shall contain access data of the registered and public users, usernames, information selection parameters, traffic information, and Internet Protocol (IP) access address information. Single Website Platform shall use cookies to provide information about visitor activity, pageviews, sources, and time spent on the site. We collect this information to improve the convenience and interests of website visitors to ensure that you receive the best possible service. The processing of personal data shall be carried out as little as possible, only to achieve the purpose of the processing.

We only store your personal data on websites for as long as it is necessary for the purposes for which it was collected. The processors of the personal data of the Single Website Platform who have access to this data are trained to handle it properly and in accordance with the regulatory data security framework.

Personal data shall be stored for as long as there is a legal obligation to store personal data. At the end of the data retention period, the data shall be securely deleted or depersonalised so that it can no longer be linked to the data subject.

Personal data held by the Single Website Platform shall be considered as restricted information and shall only be disclosed to third parties in the cases, in accordance with the procedure and to the extent specified in laws and regulations or concluded agreements. When transferring personal data to the contractual partners of the Single Website Platform (independent controllers), additional provisions regarding the processing of personal data shall be included in the agreements.

Links to other sites with different terms of use and personal data protection rules shall be included on websites.

The institutions involved in the implementation and cooperation of the website platform shall cooperate with each other on the basis of the adopted regulations. If you have any questions or complaints regarding the processing and protection of personal data, report it to the State Chancellery by writing to the e-mail vk@mk.gov.lv, where the information submitted by you will be registered and evaluated, or contact the responsible person for data processing appointed by the State Chancellery. The responsible personal data controller shall be Aldis Apsītis (e-mail address: aldis.apsitis@mk.gov.lv. Data subjects may submit complaints regarding the use of personal data to the Data State Inspectorate (www.dvi.gov.lv ), if the subject considers that the processing of his or her personal data violates his or her rights and freedoms in accordance with the applicable laws and regulations.

This document was last modified on June 28, 2024.

This document provides information about the processing of personal data in our company and what data the company can process. If you need more detailed information or have any ambiguities after reading this Privacy Policy, please contact us.

  1. Contact information of the data controller.

Name: Data State Inspection (Inspection)

Address: Elijas iela 17, Riga, LV-1050

Phone number for communication: +371 67223131

Email for communication: pasts@dvi.gov.lv

For questions about the protection of personal data in our company, as well as for the consideration of your complaint/submission, please contact our data protection specialist, whose contact information is: das @dvi.gov.lv

 

 

  1. Types of personal data collected, how we obtain your personal data and why we have it.

We process your personal data for one of the following purposes:

2.1. Processing No. 1

2.1. Purpose/Objective: To provide training and certification to registered participants.

2.2. Types of processed data:

A) For registered training participants - first name, last name, e-mail address, IP address of the phone/computer or other device used, city, country.

B) For unregistered study participants - the IP address of the telephone/computer or other device used (to ensure free access to the study).

2.3. In accordance with the General Data Protection Regulation (Data Regulation), we will process the personal data provided on the basis of:

Article 6, paragraph 1, subparagraph a) of the Data Regulation (consent of the data subject).

You can withdraw your consent at any time by notifying the Inspectorate by e-mail: pasts@dvi.gov.lv .

2.4. Source of data collection: Study participant himself.

2. 5. Data recipients or their categories; processors authorized employees of the Manager (Inspection), server maintainers.

2.6. Duration of storage:

A) For registered users - Until withdrawal of consent or until the participant of the study obtains a certificate.

B) For unregistered participants - until the end of the session.

2.7. Data is not sent to third countries or international organizations.

 

  1. Data subject rights

You have the following rights regarding the protection of personal data:

Right to access your data - When exercising your right to access data, you need to specify a specific period of time and the data you want to receive from us. You have the right to request information from us about what data we have about you, why we process it, how we obtained it and to whom it was transferred, how long it will be stored and to receive a copy of your data. It will be possible to fulfill the request faster if the period of time is as short as possible and the request to provide information about your data is formulated in as much detail as possible. Giving you an answer will help us if we know for what purpose you want to access the data.

Right to data correction - If you need to clarify or correct your personal data that we have, you must clearly indicate which data needs to be corrected and what the current information is. If the data has not been obtained from you, please add a justification why the information to be corrected is considered inaccurate, in order to facilitate a faster and more appropriate assessment of accuracy.

Right to data deletion - In order for us to delete your data, you must specify exactly which personal data needs to be deleted and attach a justification for this request. We remind you that it may not be possible to delete data in all cases.

Right to restrict processing - In case you are not sure whether We are processing the data appropriately, you can ask us to restrict the processing of certain data. The request for restriction of data processing must indicate why, in your opinion, it is necessary to restrict this processing.

Right to object to processing - In certain cases, you may have the right to object to processing for your individual reasons. In such a request, it is important to indicate your individual circumstances, due to which you object to the processing.

Right to data portability - If you want us to collect your personal data in our possession and transfer it to another controller or send it to you, it is important to indicate what data you want to transfer.

Please contact us at pasts@dvi.gov.lv if you want to submit a request for the exercise of your rights (indicate the purpose for which the information is required, a detailed description of the situation, the deadline for which the information is required will help us to give you an answer faster).

We will consider your request without undue delay and we will provide an answer regarding the fulfillment or non-fulfillment of the request no later than within one month from the date of its receipt. In the event that it will take us longer to fulfill the request, we have the right to extend it for another two months, but in any case, you will be informed about it within one month.

We have the right not to fulfill your request:

  1. If it is not formulated intelligibly;
  2. if we cannot identify you;
  3. if we have already provided an answer to such a request;
  4. if the amount of requested information is disproportionate;
  5. if the request is unfounded (not applicable to our company, no explanations are provided as to why the request must be fulfilled);
  6. if the regulatory acts stipulate that we are not entitled to provide you with such information or we are obliged to store certain of your data.

5. Submission of complaints

If you have any concerns about how we use your personal data, you can submit a complaint to us by post (Elijas iela 17, Rīga, LV-1050), electronic mail - pasts@dvi.gov.lv (signed with a secure electronic signature documents) or using the state administration service portal Latvija.lv, and they can also be left in the mailbox on the 1st floor of Elijas iela 17, Riga, LV-1050.