Free delivery within latvia for orders over €50
SIGN UP FOR 10% OFF YOUR FIRST ORDER
Secure payments

PRIVACY POLICY

 

 

1. GENERAL PROVISIONS

1.1. This Privacy Policy describes how SIA “YOT”, registration number 50203652841, registered address: Enerģētiķu iela 7-17, Salaspils, LV-2121 (hereinafter — the “Data Controller”, “we”, or “us”), collects, processes, and stores personal data obtained from its customers and from individuals visiting the website www.yotstore.eu (hereinafter — the “Data Subject” or “you”).

1.2. Personal data means any information relating to an identified or identifiable natural person. Processing of personal data refers to any operation performed on such data, including collection, recording, storage, disclosure, or deletion.

1.3. The Data Controller complies with the principles of the General Data Protection Regulation (Regulation (EU) 2016/679) and applicable laws of the Republic of Latvia.

2. COLLECTION, PROCESSING, AND STORAGE OF PERSONAL DATA

2.1. The Data Controller collects personal data when you:

  • place an order in the online store;
  • contact us via email;
  • subscribe to newsletters or other marketing activities.

2.2. By using the services of www.yotstore.eu, you agree that the personal data you provide will be processed for the purposes specified in this Policy.

2.3. You are responsible for the accuracy and completeness of the information you provide. Submitting false information is considered a violation of this Policy. If your personal data changes, please notify the Data Controller immediately.

2.4. The Data Controller is not liable for any losses arising from the submission of inaccurate or incomplete data.

3. PROCESSING OF CUSTOMER PERSONAL DATA 

3.1. We may process the following categories of personal data:

  • Name and surname;
  • Date of birth (if necessary, e.g., for age restrictions);
  • Contact information: email address, phone number;
  • Order details: purchased goods, delivery address, price, payment information;
  • Any other information you provide during communication with us.

3.2. We reserve the right to verify the accuracy of provided data using public registers, where necessary, to protect our legitimate interests.

3.3. The legal bases for processing personal data are defined in Article 6(1)(a), (b), (c), and (f) of the GDPR:

  • (a) your consent;
  • (b) performance of a contract or steps prior to entering into a contract;
  • (c) compliance with a legal obligation;
  • (f) legitimate interests (e.g., order processing, customer support).

3.4. The Data Controller processes and stores personal data only for as long as at least one of the following conditions applies:

  • The data is necessary for the purpose for which it was collected (e.g., contract performance or service provision);
  • Retention is required by applicable legal acts (e.g., the Accounting Law);
  • Retention is necessary to protect legitimate interests, such as during dispute resolution periods;
  • The Data Subject’s consent for processing is still valid, and no other lawful basis applies.

Once these circumstances cease to exist, personal data will be permanently deleted or anonymized.

3.5. In order to fulfill our obligations to you, the Data Controller has the right to transfer your personal data to cooperation partners and data processors who perform the necessary data processing on our behalf, such as accountants, courier services, and others. Data processors act on behalf of the Data Controller. Payment processing is provided by the payment platform makecommerce.lv, therefore our company transfers the personal data necessary for payment processing to the platform owner Maksekeskus AS.

Upon request, we may also transfer your personal data to public authorities and law enforcement agencies in order to protect our legal interests, if necessary, by preparing, submitting, and defending legal claims.

3.6. We do not collect or store debit or credit card information. We may transfer personal data to the following third parties to fulfill our contractual obligations:

  • Payment service providers: Maksekeskus AS;
  • Logistics partners: Omniva, Venipak, and other couriers;
  • Accounting and IT support providers;
  • Public authorities, where required by law.

3.7. The Data Controller implements appropriate technical and organizational security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction.

4. DATA SUBJECT RIGHTS

4.1. In accordance with the GDPR and Latvian legislation, you have the right to:

  • access your personal data;
  • receive information about how your data is processed;
  • request the rectification of inaccurate, incomplete, or outdated data;
  • request the deletion of your personal data (“right to be forgotten”);
  • withdraw your previously given consent to data processing;
  • request restriction of processing;
  • lodge a complaint with the Data State Inspectorate.

4.2. To exercise your rights, you may submit a request:

5. FINAL PROVISIONS 

5.1. This Privacy Policy has been prepared in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation), the laws of the Republic of Latvia, and related legal acts.

5.2. The Data Controller reserves the right to amend or supplement this Privacy Policy at any time without prior notice. Any changes will take effect upon publication on the website www.yotstore.eu.