Legal

Privacy Policy

Last updated: March 2026 · Applies to: liaudanskas.lt

Contents

Data Controller
What Data We Collect
Legal Basis for Processing
How We Use Your Data
Data Retention
Third-Party Processors
International Data Transfers
Cookies
Your Rights Under GDPR
How to Exercise Your Rights
Supervisory Authority
Changes to This Policy

Section 1

Data Controller

The data controller responsible for the personal data collected through this website is:

Dovydas Liaudanskas
Vilnius, Lithuania
Contact: via the contact form on this website

As a data controller, Dovydas Liaudanskas determines the purposes and means of processing your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Lithuanian data protection law.

Section 2

What Data We Collect

We collect only the data necessary to operate this website and respond to genuine business inquiries. We do not collect sensitive personal data.

Data you provide directly

Contact form submissions: name, email address, and the content of your message.
Any additional information you choose to include in a message.

Data collected automatically

Technical log data: IP address, browser type, operating system, referring URL, pages visited, and time of visit — collected automatically by the web server and analytics tools.
Cookies: see Section 8 for a full list.

Section 3

Legal Basis for Processing

Purpose	Legal basis (GDPR Art. 6)
Responding to contact form inquiries	Art. 6(1)(b) — necessary for pre-contractual steps at your request; or Art. 6(1)(f) — legitimate interest
Website analytics and performance monitoring	Art. 6(1)(a) — consent (via cookie banner)
Maintaining website security and preventing fraud	Art. 6(1)(f) — legitimate interest
Complying with legal obligations	Art. 6(1)(c) — legal obligation

Section 4

How We Use Your Data

To read, assess and respond to your inquiry submitted via the contact form.
To follow up on a potential business conversation if you have expressed interest.
To understand how visitors use the website and improve its content and performance.
To maintain the security and correct functioning of the website.

We do not use your data for automated decision-making or profiling. We do not sell your data to third parties. We do not send marketing communications unless you have explicitly requested them.

Section 5

Data Retention

Data type	Retention period
Contact form submissions	Up to 2 years from the date of submission, or until the business relationship ends — whichever is earlier. Deleted upon request.
Server log files	Up to 30 days, then automatically deleted or anonymised.
Analytics data	As configured in the analytics tool — typically up to 26 months (anonymised).
Cookie consent records	Up to 12 months.

Section 6

Third-Party Processors

We use a limited number of trusted third-party services to operate this website. Each acts as a data processor under a data processing agreement or equivalent safeguard.

Processor	Purpose	Location
Hostinger International Ltd.	Web hosting and server infrastructure	Lithuania / EU (Cypriot registered, EU-based servers)
Automattic Inc. (WordPress.org)	Content management system (self-hosted)	USA — SCCs in place
WPForms LLC	Contact form processing (data stored on our server)	USA — data stored server-side in EU
Google LLC	Analytics (if enabled), Fonts delivery	USA — SCCs in place; adequacy decisions where applicable

SCCs = Standard Contractual Clauses approved by the European Commission under Art. 46 GDPR.

Section 7

International Data Transfers

The data controller operates across multiple regions including Europe, the Middle East and Southeast Asia. However, personal data collected through this website is processed and stored on EU-based servers (Hostinger, Lithuania).

Where third-party tools transfer data outside the European Economic Area (EEA) — for example, Google Analytics — such transfers are conducted under Standard Contractual Clauses (SCCs) approved by the European Commission, which provide appropriate safeguards for your data under Article 46 GDPR.

You may request information about specific transfer mechanisms by contacting us via the contact form.

Section 8

Cookies

This website uses cookies — small text files stored on your device. You will be presented with a cookie consent banner on your first visit. Non-essential cookies are only placed with your consent.

Strictly necessary cookies

Cookie	Purpose	Duration
wordpress_*	WordPress session management (active only when logged in)	Session
wordpress_logged_in_*	Authenticates WordPress admin users	Session
wp-settings-*	Stores user preferences for the WordPress admin interface	1 year
cookie_consent	Stores your cookie consent choice	12 months

Analytics cookies (consent required)

Cookie	Purpose	Duration
_ga	Google Analytics — distinguishes unique visitors	2 years
_ga_*	Google Analytics 4 — session and campaign data	2 years
_gid	Google Analytics — stores and updates a unique value for each page visited	24 hours

You can withdraw or change your consent at any time by clearing your browser cookies and revisiting the site. You can also manage cookies through your browser settings.

Section 9

Your Rights Under GDPR

As a data subject in the European Union, you have the following rights under the General Data Protection Regulation:

Right of access (Art. 15)

Request a copy of the personal data we hold about you.

Right to rectification (Art. 16)

Ask us to correct inaccurate or incomplete data.

Right to erasure (Art. 17)

Request deletion of your personal data ("right to be forgotten").

Right to restriction (Art. 18)

Ask us to restrict processing of your data in certain circumstances.

Right to data portability (Art. 20)

Receive your data in a structured, machine-readable format.

Right to object (Art. 21)

Object to processing based on legitimate interests at any time.

Right to withdraw consent

Withdraw consent for analytics or marketing at any time, without affecting prior processing.

Right not to be subject to automated decisions (Art. 22)

We do not use automated decision-making or profiling.

We will respond to all rights requests within 30 days. In complex cases this may be extended by a further two months; you will be informed if this is the case.

Section 10

How to Exercise Your Rights

To exercise any of the rights listed above, please contact us using the contact form on this website. Please include:

Your full name and the email address you used when contacting us.
A description of the right you wish to exercise.
Any relevant reference or context to help us locate your data.

We may need to verify your identity before acting on a request. This is to protect your data from unauthorised access. We will not charge a fee for handling your request unless it is manifestly unfounded or excessive.

Section 11

Supervisory Authority

If you believe we have not handled your personal data in accordance with applicable data protection law, you have the right to lodge a complaint with the competent supervisory authority.

The lead supervisory authority for this website is:

State Data Protection Inspectorate of Lithuania (Valstybinė duomenų apsaugos inspekcija — VDAI)
L. Sapiegos g. 17, Vilnius LT-10312, Lithuania
Website: vdai.lrv.lt
Email: ada@vdai.lrv.lt
Phone: +370 5 279 1445

You also retain the right to lodge a complaint with the supervisory authority in your country of residence or place of work if different from Lithuania.

Section 12

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations. When we make changes, we will update the "Last updated" date at the top of this page.

We encourage you to review this policy periodically. Continued use of the website after any changes constitutes acceptance of the updated policy for activities that do not require explicit consent.

For material changes affecting how we process your personal data, we will make reasonable efforts to notify you — for example, through a notice on the website.