The purpose of this Privacy Policy is to provide information about the processing of natural persons’ data by this website. This Privacy Policy applies to the processing of personal data of our customers, visitors and business partners.

Controller and its contact details
    1. The controller for the processing of personal data is:
      NAME: SIA “STR INSURANCE BROKERS” (hereafter – We, Us, Our)
      UNIFIED REGISTRATION NO: 40103539149
      REGISTERED ADDRESS: Stabu iela 47-21, Rīga, LV-1011
      CONTROLLER: Svens Sīpols (Tālr.: +371 67 33 88 00)
  • For information about our processing of personal data and other issues related to the processing of personal data, please contact us through the contact channels found in the contact section of this website.

 

Scope of application of the document
  1. Personal data means any information relating to an identified or identifiable natural person.
  2. The Privacy Policy applies to ensure the privacy and protection of personal data relating to:

4.1. Natural persons – customers, subscribers and other users of our services (including potential, former and existing users) and related third parties (contacts, payers, etc.);

4.2. Visitors of our shops, offices and other premises;

4.3. Visitors of our websites and social media profiles, mobile app users and callers to our contact numbers (“Clients”);

4.4. Participants in our marketing campaigns;

  1. The Privacy Policy applies to the processing of data regardless of the form and/or medium in which we process personal data: IT systems, websites, mobile apps, paper, telephone, video conferencing, etc..
  2. Additional, specific rules may apply to certain, specific types of data processing (e.g. the use of cookies), which will be communicated to the Client at the time We obtain the relevant data.

 

Purposes for processing personal data
  1. We process personal data for the following purposes:

7.1. For the provision of services and sale of goods:

– to identify the customer;

– for drafting, concluding a contract and proving the fact of conclusion of the contract;

– for supply of goods and installation and provision of services (performance of contractual obligations);

– for ensuring/maintaining the operation of the services;

– for performance of warranty obligations;

– for improvement of goods and services, development of new goods and services;

– for promotion, advertising and distribution of the use of the service;

– for customer service;

– for handling and processing of complaints and objections;

– for customer retention, loyalty building, satisfaction measurement;

– for billing administration;

– for maintaining and improving websites and mobile apps.

7.2. For ensuring compliance with obligations:

– for credit assessment, credit monitoring;

– for debt recovery and enforcement.

7.3. For business planning and analytics:

– for statistics and business analysis

– for planning and accounting

– for efficiency measurement;

– for data quality assurance;

– for market and public opinion research;

– for reporting;

– for conducting customer surveys;

– for risk management activities.

7.4. For ensuring information, information systems and operating security of the company.

7.5. For the purpose of fulfilling statutory obligations:

– for the provision of retained data;

– for the provision of information to public administrations and operational subjects;

7.6. For other specific purposes, which are notified to the Client at the time the Client provides the relevant data to Us.

Legal basis for processing personal data
  1. We process the personal data of the Client based on the following legal grounds:

8.1. for the conclusion and performance of the contract – to prepare and conclude a contract at the Client’s request and ensure its performance;

8.2. to meet the requirements of laws and regulations – to comply with Our obligations under external laws and regulations;

8.3. in accordance with the consent of the Client – data subject;

8.4. To safeguard Our legitimate interests –  to pursue Our legitimate interests arising from laws, regulations or concluded contracts;

8.5. For ensuring the vital interests of the data subject or another natural person – to ensure the physical and property security of Our employees, Clients and visitors.

  1. Our legitimate interests are:

9.1. to carry out commercial activities;

9.2. to sell goods;

9.3. to verify the Client’s identity before entering into a contract;

9.4. to ensure fulfilment of contractual obligations;

9.5. to avoid undue financial risks to one‘s business (including performance of credit risk assessment before the sale of goods and services and during performance of the contract);

9.6. to store Client applications and requests for the purchase of goods and the provision of services, other applications and requests, and comments thereon, including those made in writing or orally, by telephone, on websites;

9.7. to organise the performance of contractual service obligations;

9.8. to send commercial offers to registered clients by e-mail for promotions, similar products, if the client has not opted out of receiving such messages;

9.9. to analyse the performance of, develop and implement improvements to Our websites, web pages and mobile applications;

9.10. to administer the Client’s account on Our websites, internet sites and mobile applications;

9.11. to take action to retain Clients;

9.12. to segment the client database for more efficient service delivery;

9.13. to design and develop goods and services;

9.14. to promote one‘s goods and services;

9.15. to send other reports on the progress of the Contract and events relevant to the performance of the Contract, and to conduct surveys of Clients on goods and services and their experience of using them;

9.16. to prevent fraud;

9.17. to ensure corporate governance, financial and business accounting and analytics;

9.18. to ensure effective corporate governance processes;

9.19. to ensure efficiency in the provision of services and the sale and delivery of goods;

9.20. to ensure and improve service quality;

9.21.to administer payments;

9.22. to administer outstanding payments;

9.23. to address public administration and law enforcement authorities and the courts to protect one‘s legal interests;

9.24. to inform the public about one‘s activities.

Personal data processing
  1. We take care of the privacy and personal data protection of our Clients, respect the rights of our Clients to lawful processing of personal data in accordance with the applicable legislation – Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the Regulation), the Personal Data Processing Act and other applicable legislation on privacy and data processing.
  2. We process Client Data on the basis of an appropriate legal basis and in accordance with the principles of data minimisation and transparency.

 

Sources of obtaining personal data
  1. We obtain personal data from the following sources:

12.1. from the Client;

12.2. from Our website;

12.3. from the database of registered users;

12.4. from Our cooperation partners.

Categories of recipients of personal data
  1. We shall not disclose to third parties the Client’s personal data or any information obtained in the course of the provision of services and during the term of the Contract, including information about electronic communications, content or other services received, except:

13.1. if the third party in question is required to transfer data within the framework of a contract in order to perform a function necessary for the performance of the contract or delegated by law (e.g. to a bank for billing purposes or to a distribution network operator for electricity service), the Client is informed of this in the relevant service contract;

13.2. subject to the Client’s express and unambiguous consent;

13.3. to persons provided for in external laws and regulations at their reasoned request;

13.4. To protect Our legitimate interests in the manner provided for by laws and regulations.

Duration of storage of personal data
  1. We store and process personal data of Clients for as long as at least one of the following criteria applies:

14.1. the contract with the Client is valid;

14.2. until We or the Client can exercise our legitimate interests in accordance with the procedure established by external laws and regulations;

14.3. as long as one of the parties is legally obliged to keep the data (e.g. according to the Accountancy Law, a company must keep invoices for at least 5 years, etc.);

14.4. as long as the Client’s consent to the data storage is valid (only applies in cases where there is no other legal basis for the storage of personal data (e.g. where the prospective Client‘s data has been obtained as part of marketing activities)).

After none of the legal grounds for data processing exists, the Client’s personal data shall be deleted.
  1. Data of registered clients is stored for 5 years after the end of the service for warranty processes.

 

Access to personal data and other rights of the Client
  1. We provide the Client with all information required by laws and regulations in relation to the processing of his/her data and ensure the exercise of all data subject rights required by laws and regulations.
  2. Some of the information about Client Data is posted on our website, where the Client can access his/her personal data, verify the accuracy of his/her data and, if necessary, manage it, including changing it.
  3. The Client has the right to request access to his/her personal data from Us, to request Us to supplement, rectify or erase the data, to object to the processing of the data or to request the restriction of the processing of the data and to ensure data portability.
  4. We comply with the data subject’s requests insofar as they do not conflict with Our obligations under applicable laws and regulations or with the terms of any contract entered into between Us and the Client.

 

Client’s consent to data processing and right to withdraw it
  1. In certain cases, we process personal data on the basis of the Client’s consent (e.g. for the analysis of data on service usage patterns, receipt of tailor-made advertisements, etc.).
  2. The Client may provide consent to the processing of his/her personal data on Our website service application forms, etc., on Our banners, in person at Our shop or by writing to Our email address which can be found in the contact section of this website.
  3. The Client shall have the right to withdraw the consent to data processing at any time in the same manner in which it was given. In the event of withdrawal of consent, no further processing of data based on the consent previously given for the specific purpose will be carried out.
  4. Withdrawal of consent shall not affect the lawfulness of data processing carried out at the time when the Client’s consent was valid.
  5. After withdrawal of the Client’s consent to data processing, We have the right to process the Client’s data for which there is another legal basis.
  6. By opting out of direct marketing communications, We will continue to provide you with information about the services you have ordered (e.g. order updates)

 

Communication with the Client
  1. We communicate with the Client using the contact details provided by the Client (telephone number, email address, postal address, chat, online communication platforms), on Our website.

 

Commercial notifications
  1. We communicate about commercial notifications in accordance with the Client’s consent or on the basis of our legitimate interests where permitted by law or regulation.
  2. Consent given by the Client to receive commercial communications is valid until revoked (including after termination of the service contract).
  3. The Customer may at any time opt-out of receiving further commercial notifications in any of the following ways:

29.1. by sending Us an email (see the Contacts section of the website);

29.2. by calling Us (see the Contacts section of the website);

29.3. in person in Our shop (see the Contacts section of the website);

29.4. using the automated opt-out option provided in the commercial notification to unsubscribe from receiving further communications by clicking on the unsubscribe link at the end of the relevant commercial communication (email);

  1. We stop sending commercial communications as soon as the Customer’s request is processed. The processing of the request is carried out online and is executed immediately. In some cases, it may take up to 24 hours to process a request.

 

Website visits and cookie processing
  1. Our website uses cookies. For the terms of use of cookies, please see the Cookie Policy page of our website.

 

 Other provisions
  1. We have the right to make additions to the Privacy Policy.
  2. This Privacy Policy shall take effect on January 01, 2026.

 

ANNEX No. 1:

Comments on the website

When visitors leave comments on our website, we collect the data displayed in the comment form, as well as the visitor’s IP address and web browser user agent string, to help fight spam.

An anonymised string created from your email address (also called a hash) may be provided to Gravatar to see if you are using it. The Gravatar Privacy Policy is available here: https://automattic.com/privacy. Once your comment has been approved, your profile picture is publicly visible in the context of your comment

Website files (media)

When uploading images to Our website, make sure they do not include location data (EXIF GPS). Otherwise, visitors to this website may be able to extract any location data from the images on the website when downloading these images.

Embedded content from other sites

Our website content may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites works exactly as if the visitor had visited another website. These sites may collect data about you, use cookies, embed additional third-party statistics, and monitor your interactions with this embedded content, including tracking your interactions with the embedded content if you have an account on their site and are logged in.

With whom we share your data

If you request a password reset, your IP address will be included in the reset email.

How long we keep your data

If you leave a comment, it and its metadata are stored indefinitely. This is so that we can automatically recognise and approve all future comments, rather than keeping them in an adjustment queue.

For users who register on Our Site (if any), We also store the personal information they provide in their user profiles. All users can see, edit or delete their personal information at any time (except to change their account username). Site administrators can also see and edit this information.

Where your data is transferred

Visitor comments can be checked using an automated spam detection service.