1. General provisions

1.1. This Privacy Policy sets out:

• what personal data about you we collect and process;
• where we obtain personal data from;
• how we handle personal data;
• how we protect personal data;
• to whom we transfer and disclose personal data;
• how we ensure your rights in the field of personal data protection;
• how we comply with the requirements of personal data protection legislation.

1.2. All personal data are collected and processed in accordance with
the Law on Legal Protection of Personal Data of the Republic of Lithuania
and the General Data Protection Regulation
(Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016).

2. Definitions used in the Privacy Policy

Data Processor – service providers who provide services to the Data Controller
and process personal data on behalf of the Data Controller only in accordance
with its instructions.

Data Subject – a natural person who is interested in the services provided
by the Data Controller, submits an inquiry, enters into a contract, or otherwise
uses the website woodi.lt.

Personal Data – any information relating to a natural person whose identity
is known or can be identified directly or indirectly.

Processing of Personal Data – any operation performed on personal data,
such as collection, recording, storage, use, transfer, deletion, etc.

Direct Marketing – activities aimed at directly offering services
or requesting opinions.

3. Personal data we process

3.1. We process personal data necessary to administer client inquiries,
provide services, conclude and perform contracts, maintain communication
with clients, and carry out marketing activities.

3.2. Processed personal data:

• first name;
• last name;
• phone number;
• email address;
• content of inquiries;
• IP address and technical browsing data.

3.3. Personal data are obtained directly from data subjects,
as well as from public sources and technical systems (cookies, server logs).

4. Use of personal data

4.1. Personal data are used for the following purposes:

• responding to inquiries;
• providing services;
• contacting clients;
• carrying out direct marketing (with consent);
• ensuring the operation and security of the website.

4.2. Personal data are processed only on a lawful basis –
the consent of the data subject, performance of a contract,
or compliance with legal obligations.

4.3. Personal data may be provided only by persons aged 18 years or older.

5. Storage of personal data

5.1. Personal data are stored no longer than necessary to achieve the purposes
for which they were collected or as required by law.

5.2. Upon expiration of the storage period, personal data are securely
and irreversibly destroyed.

5.3. Organizational and technical security measures are applied to protect
data against unauthorized access or loss.

6. Transfer of personal data

6.1. Personal data may be transferred to data processors
(hosting, IT, advertising service providers) only to the extent necessary.

6.2. Personal data may be transferred to public authorities
only in accordance with procedures established by law.

7. Rights of the data subject

7.1. The data subject has the right to:

• be informed about the processing of their personal data;
• access their personal data;
• request correction or deletion of data;
• restrict the processing of data;
• withdraw consent;
• submit a complaint to the State Data Protection Inspectorate.

8. Amendments to the Privacy Policy

8.1. The Data Controller has the right to amend this Privacy Policy.
The updated version is published on the website woodi.lt.

8.2. Continued use of the website constitutes acceptance of the updated
Privacy Policy.

9. Final provisions

9.1. All inquiries regarding the processing of personal data should be submitted
by email to info@woodi.lt.