Privacy policy

Last updated: April 21, 2022

Privacy Policy may be changed from time to time and is effective immediately upon posting such changes on this Site.

1. TO WHOM THIS POLICY APPLIES?

This Privacy Policy (“Policy“) sets out the terms and conditions for the collection and use of your personal data when you use UAB SneakyBox (“we” or “SneakyBox”) services and is applicable to all visitors of this Site and our social network presence on Facebook, Instagram, Twitter and Linkedin. This Policy is also applicable to our clients and other individuals whose data we process in the course of our business. Please read this document carefully as it informs you about the processing of your personal data.

This Policy is subject to change without notice so please check each time you visit our Site. You will find the latest version of this Policy here: https://sneakybox.biz

UAB SneakyBox acts as the Data Controller in respect of all personal data described in this Policy. Our contacts:

UAB SneakyBox
Legal entity code: 302900542
Address: K. Donelaičio str. 60, LT-44248 Kaunas
E-mail: info@sneakybox.biz

2. WHAT PERSONAL DATA WE COLLECT AND WHY?

For what purpose do we collect personal data? What exactly data do we collect? What provision of the General Data Protection Regulation (GDPR) do we use to process your personal data? How long do we retain this data?
2.1. To handle your requests, queries and discuss your projects We collect your full name and your e-mail address along with any information, documents and/or communication (including the time they were received / submitted) you send to us. We have a legitimate interest to handle your requests (Article 6 (1) (f) GDPR) We retain this data for 10 years after your your last request or query. We may continue to retain some information, even after this time if we are required to do so in order to comply with specific laws or on the basis of justified interests (e.g. retention for asserting claims).
2.2. To recruit the best candidates for our job or internship positions We collect your full name, e-mail address, phone number, information about your education, link to your portfolio, CV/Resume, motivation letter and any other information you provide to us. We have a legitimate interest to select the most suitable candidate for our job/internship positions (Article 6 (1) (f) GDPR) We retain your personal data for 4 months after the job/internship offer for a position you applied for has been closed or inactivated.
2.3. To facilitate potential future recruitments (candidate database) We collect your full name, e-mail address, phone number, information about your education, link to your portfolio, CV/Resume, motivation letter and any other information you provide to us. Your consent (Article 6 (1) (a) GDPR) We retain your personal data for 2 yearsfrom the date of your consent.
2.4. To manage our accounts on social networks We collect your name, contact information (if you provide it), comments you leave under our posts, post shares, information about “like” and “follow” clicks on our profile, post reactions (including information about when you started following or liked our social network account), your photo, any feedback you left and your ratings of SneakyBox. Your consent (Article 6 (1) (a) GDPR) 10 years
2.5. To improve our website, ensure its performance, increase its security and adapt both its content and form to the needs of our users When you visit our Site, we collect the following data from you automatically:

IP address, operating system, user ID and other information about your activities on our and other websites. We collect and store this information as part of log entries or through the use of cookies. Read more about the use of cookies in the Section 7 of this Policy.

Personal data collected with cookies is processed on the basis of our legitimate interest (Article 6 (1) (f) GDPR) Read more about the retention periods in the Section 7 of this Policy

3. WHO DO WE DISCLOSE YOUR PERSONAL DATA TO WITHIN AND OUTSIDE THE EEA?

Where necessary, SneakyBox may transfer and/or otherwise disclose your personal data to the law enforcement authorities, courts and other authorised governmental bodies.

To the extent necessary to ensure the proper provision of our services, SneakyBox also may transfer and/or otherwise disclose personal data to third parties involved in the processing activities – partners and external service providers (e.g., software, IT infrastructure maintenance, cloud service providers, web hosting and web support, servers rent and maintenance, electronic communications, parcel delivery, accounting, archiving, marketing service providers, etc.). For all of these service providers, we will only provide as much data as is necessary to perform a particular service.

We are currently collaborating and disclosing your personal data to the following service providers (acting as Data Processors):

In the EEA:

  • Website development service provider;
  • UAB Interneto vizija (server resources provider);

When you communicate with us via social networks, you should inquire about their applicable data protection terms and conditions and read their privacy policy. All personal information you provide to us via social networks is controlled and managed by that particular social network (e.g., Facebook, Twitter).

Outside the EEA:

  • Facebook, Inc. (USA). Please find the respective data protection policy here. Facebook no longer relies on the Privacy Shield as a transfer mechanism for the EU as a result of the Schrems II decision but continues to have appropriate safeguards and compliance measures to ensure an adequate level of protection of personal data transferred outside the EEA. Facebook’s existing measures include the EU Commission’s approved Standard Contractual Clauses (SCCs) to accommodate international data transfers.
  • Google LLC (USA). Please find the respective data protection policy here. We use Google products (Google Drive, Google Workspace and Google cookies). Google no longer relies on the Privacy Shield as a transfer mechanism for the EU as a result of the Schrems II decision but continues to have appropriate safeguards and compliance measures to ensure an adequate level of protection of personal data transferred outside the EEA. Google’s existing measures include the EU Commission’s approved Standard Contractual Clauses (SCCs) to accommodate international data transfers.
  • Inc. (USA). Please find the respective data protection policy here. Twitter no longer relies on the Privacy Shield as a transfer mechanism for the EU as a result of the Schrems II decision but continues to have appropriate safeguards and compliance measures to ensure an adequate level of protection of personal data transferred outside the EEA. Twitter’s existing measures include the EU Commission’s approved Standard Contractual Clauses (SCCs) to accommodate international data transfers.
  • LinkedIn Corporation (USA). Please find the respective data protection policy here. Linkedin no longer relies on the Privacy Shield as a transfer mechanism for the EU as a result of the Schrems II decision but continues to have appropriate safeguards and compliance measures to ensure an adequate level of protection of personal data transferred outside the EEA. Linkedin’s existing measures include the EU Commission’s approved Standard Contractual Clauses (SCCs) to accommodate international data transfers.

4. HOW DO WE PROTECT YOUR PERSONAL DATA?

When processing and storing your personal data, we implement organisational and technical measures to ensure that personal data is protected against accidental or unlawful destruction (e.g., backups on a regular schedule), alteration, disclosure, and any other unlawful processing. Secure use of our Site is ensured by the SSL (Secure Socket Layer) certificate. With an SSL certificate, the information sent between the user’s browser and our server is encrypted. Details of the certificate can be found at www.ssls.com.

5. YOUR RIGHTS

Each data subject has the following rights:

  • Know (be informed) about the processing of your personal data (Articles 12-14 of the GDPR);
  • Access your personal data that is being processed (Article 15 of the GDPR);
  • Request the correction of inaccurate personal data relating to you (Article 16 of the GDPR);
  • Request the deletion of personal data relating to you (“the right to be forgotten”) (Article 17 of the GDPR).

Please note! You have the right to be forgotten only if it can be justified by one of the following reasons:

  • personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
  • you do not consent to the processing under Article 21 (1) of the GDPR and there are no overriding legitimate reasons for processing.
  • Restrict data processing (Article 18 of the GDPR):

Please note! You have the right to restrict the processing of your data only if:

  • personal data is inaccurate;
  • the processing of personal data is unlawful, but you do not consent to the erasure of the data;
  • the controller no longer needs personal data to fulfil their purpose, but it is necessary for you to assert, enforce or defend legal requirements;
  • you object to the processing under Article 21 (1) of the GDPR unless the legitimate reasons of the controller override your own.
  • Transfer your personal data when the processing is based on consent or contract and the data is processed by automated means(Article 20 of the GDPR);
  • Object to the processing of personal data for reasons specific to your case where the processing is in the legitimate interests of the controller or of a third party, unless the controller proves that the processing is for compelling legitimate reasons overriding your interests, rights and freedoms, or for the purpose of asserting, enforcing or defending legal requirements (Article 21 of the GDPR).

If you believe that SneakyBox is unlawfully processing your personal data or is not implementing your rights, you have the right to file a complaint with the State Data Protection Inspectorate of Lithuania (L. Sapiegos street 17, 10312 Vilnius, (8 5) 271 2804, 279 1445, ada@ada.lt).

You can exercise rights over your data by reaching out to info@sneakybox.biz

6. THIRD-PARTY ADVERTISING AND ANALYTICS

Our Site may contain links to other websites. If you click on a third-party link, you will be directed to that site. Please note that we are not responsible for the content of such websites or the privacy policies they use. If you decide to visit them, you should look separately at their Privacy Policy.

7. COOKIES

This website uses strictly necessary, functional, statistics and marketing cookies. These cookies present our Site in an attractive way, ensure its functionality and convenient navigation. More information on how cookies work may be found at www.cookiecentral.com.

Information related to cookies is not used to personally identify you and the collected data is controlled by us. We do not associate the visitor’s IP address and/or email address with data that identifies the visitor. This means that the visit session of each visitor will be registered, but the visitor of our Site will remain anonymous.

Cookies used on SneakyBox Site

Name Category Description Expiration date
cookie_notice_accepted Functional Used by Cookie Notice for GDPR to read if cookies can be placed. Persistent
_wpfuuid Preferences Used by WPForms to store a unique user ID. 11 years
_lfa Marketing/Tracking Used by Leadfeeder to to store and track audience reach. 2 years
_ga Statistics Google Analytics are used exclusively to evaluate your use of our Site. These cookies are used to collect information and report site usage statistics without personally identifying individual visitors.

More information on Google Analytics cookies:

https://policies.google.com/technologies/partner-sites

2 years
_gat_gtag_UA_48356090_1 Statistics 1 minute
_gid Statistics 1 day


CONTACT US

If you have any questions regarding your personal data, please contact us via info@sneakybox.biz