Privacy policy

Last updated: [date]

This Privacy Policy (hereinafter referred to as the “Policy”) describes how [Company Name] (hereinafter “Company”, “we”, “us”, or “our”) collects, uses, and protects your personal data when you use our website [website URL] (the “Site”).

1. Information We Collect

We may collect and process the following categories of personal data:

Contact Information: name, email address, phone number.
Account Data: username, password (stored in encrypted form).
Payment Data: transaction information, but not banking details.
Technical Data: IP address, browser type, device, cookies.
Usage Data: visited pages, session duration, and site behavior.

2. How We Use Your Data

We process your personal data for the following purposes:

To register and manage your user account.
To process and fulfill orders for workshops and services.
To handle payments and issue invoices.
To send informational and marketing messages (with an opt-out option).
To improve site functionality and personalize your experience.
To ensure security and prevent fraud.

3. Legal Basis for Data Processing

We only process your personal data where there is a legal basis under the General Data Protection Regulation (GDPR):

Contractual necessity – to provide the services you request.
Legitimate interests – to ensure the security and usability of the website.
Consent – for sending marketing communications (you may withdraw consent at any time).
Legal obligation – to comply with applicable laws.

4. Sharing Your Data

We do not share your personal data with third parties without legal justification. However, in certain cases, your data may be shared with:

Payment processors (e.g., Stripe, PayPal) to handle transactions.
Marketing partners – only with your consent.
Government authorities – when required by law.

5. Data Retention

We retain personal data only as long as necessary:

Contact data – until your account is deleted.
Payment data – for the period required by law.
Marketing data – until you unsubscribe.
Cookies – according to the retention terms in our Cookie Policy.

6. Your Rights

Under the GDPR, you have the following rights:

The right to access your personal data.
The right to correct inaccurate data.
The right to request deletion (“the right to be forgotten”).
The right to restrict processing.
The right to data portability.
The right to object to processing.
The right to lodge a complaint with a supervisory authority – State Data Protection Inspectorate of Lithuania (VDAI): www.vdai.lrv.lt

7. Data Security

We implement appropriate security measures to protect your data from unauthorized access, alteration, or loss, including:

SSL encryption.
Restricted internal access to data.
Regular security audits.

8. Cookies

We use cookies to enhance your user experience. For more details, please see our Cookie Policy.

9. Contact Information

If you have any questions about this Policy, you may contact us at:

[Company Name]
Address: [legal address]
Email: [email address]
Phone: [phone number]

10. Changes to This Policy

We may update this Policy from time to time. The updated version will be published on our Site with the revision date indicated.