Langu Remontas (Langmita, MB) is the data controller responsible for your personal information. We are located in Vilnius, Lithuania, and provide professional window and door repair services in Lithuania. We maintain internal records of all data processing activities as required by GDPR Article 30.
Contact Information
Data Protection Officer: info@langu-remontas.lt
Company Name: Langmita, MB
Registration Number: 306805294
VAT Number: LT100017354519
Address: Kareivių g. 19, Vilnius, Lithuania
2. Information We Collect
Data Minimization Principle
We collect only the minimum personal data necessary to provide our services and fulfill legal obligations. We do not collect excessive or irrelevant information.
Personal Information You Provide
When you contact us for window and door repair services, we collect: your name, phone number, email address, property address, preferred appointment times, description of repair needs, and any special requirements or accessibility needs.
Information Collected Automatically
Our website automatically collects technical information through Google Tag Manager and cookies, including: IP address (anonymized), browser type and version, device information, pages visited, time spent on pages, referring website, and user interactions with our website.
Google Tag Manager Data
We use Google Tag Manager to manage tracking codes and collect analytics data. This includes website usage patterns, conversion tracking, and performance metrics. All data collection through GTM requires your explicit consent and can be controlled through our cookie preferences.
3. Legal Basis for Processing
Consent
We process your personal data based on your explicit consent for marketing communications, website analytics through Google Tag Manager, and non-essential cookies. You can withdraw consent at any time.
Contract Performance
We process your data to fulfill our service contract, including scheduling appointments, providing repair services, processing payments, and post-service follow-up.
Legitimate Interest
We may process data for legitimate business interests such as improving our services, website security, fraud prevention, and business analytics, always balanced against your privacy rights.
Legal Obligation
We process data to comply with legal requirements including tax obligations, business registration requirements, and consumer protection laws.
4. How We Use Your Information
Service Provision
We use your personal information to schedule and provide repair services, communicate about appointments, process payments, and ensure service quality and customer satisfaction.
Website Analytics
Through Google Tag Manager, we analyze website usage to improve user experience, optimize our services, and understand customer needs. This includes tracking page views, user journeys, and conversion rates.
Marketing Communications
With your consent, we may send you information about our services, maintenance tips, special offers, and relevant updates. You can opt out at any time.
Business Operations
We use aggregated, anonymized data to improve our business operations, develop new services, and ensure compliance with legal and regulatory requirements.
5. Data Sharing and Disclosure
Service Partners
We may share necessary information with trusted service partners, suppliers, or subcontractors who assist in providing repair services. All partners are bound by data protection agreements and GDPR compliance requirements.
Google Services
We share anonymized data with Google Analytics and other Google services through Google Tag Manager for website analytics and advertising purposes. This data is processed according to Google's privacy policies and GDPR compliance measures.
Legal Requirements
We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety, or that of our customers or others.
No Sale of Data
We do not sell, rent, or trade your personal information to third parties for marketing purposes. Any data sharing is limited to the purposes outlined in this policy.
6. International Data Transfers
EU-US Data Transfers
Some of our service providers, including Google, may transfer your data outside the European Economic Area (EEA). We ensure all transfers are protected by appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.
Data Protection Measures
All international data transfers are subject to GDPR-compliant safeguards, including encryption in transit and at rest, access controls, and regular security assessments.
7. Data Retention
Service Data
We retain your personal information for as long as necessary to provide our services and fulfill legal obligations. Service records are kept for 7 years to comply with Lithuanian tax law and accounting requirements.
Website Analytics Data
Google Analytics data is automatically deleted after 26 months. Cookie data expires according to the specific cookie's purpose, typically between 1 month and 2 years.
Marketing Data
Marketing consent and communication preferences are retained until you withdraw consent or request deletion. Inactive marketing contacts are automatically removed after 3 years.
8. Your GDPR Rights
Right of Access
You have the right to request copies of your personal data. We may charge a reasonable fee for multiple copies or excessive requests.
Right to Rectification
You have the right to request correction of inaccurate or incomplete personal data.
Right to Erasure (Right to be Forgotten)
You have the right to request deletion of your personal data under certain conditions, such as when the data is no longer necessary or you withdraw consent.
Right to Restrict Processing
You have the right to request restriction of processing under certain conditions, such as when you contest the accuracy of the data.
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller.
Right to Object
You have the right to object to processing based on legitimate interests or for direct marketing purposes.
Rights Related to Automated Decision Making
You have the right not to be subject to decisions based solely on automated processing that significantly affects you.
9. Cookies and Google Tag Manager
What Are Cookies
Cookies are small text files stored on your device when you visit our website. They help us provide a better user experience and analyze website performance.
Google Tag Manager
We use Google Tag Manager (GTM) to manage website tags and tracking codes. GTM itself doesn't collect personal data but enables other services like Google Analytics to function. All GTM-related data collection requires your consent.
Types of Cookies We Use
Essential cookies (required for website functionality), Analytics cookies (Google Analytics for usage statistics), Marketing cookies (for advertising and remarketing), and Preference cookies (to remember your settings).
Cookie Consent
We obtain your explicit consent before placing non-essential cookies. You can manage your cookie preferences through our cookie banner or browser settings.
Google Consent Mode
We use Google Tag Manager and Google Consent Mode to manage cookies and tracking scripts. Non-essential cookies (analytics, marketing) are ONLY activated after you actively consent. You may accept some categories and reject others. Consent is never pre-checked or bundled. We keep records of your consent choices for 5 years. Basic website functionality remains accessible regardless of cookie choices.
10. Data Security
Security Measures
We implement appropriate technical and organizational security measures including encryption, access controls, regular security assessments, staff training on data protection, and incident response procedures.
Data Breach Notification
In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.
11. Children's Privacy
Age Restrictions
Our services are not directed at children under 16. We do not knowingly collect personal data from children under 16 without parental consent. If you believe we have collected data from a child, please contact us immediately.
12. Automated Decision-Making and Profiling
No Automated Decisions
We do not use automated decision-making or profiling that produces legal or similarly significant effects. All service requests, appointments, and customer communications are reviewed and handled by human staff.
Your Rights
If we implement automated decision-making systems in the future, we will update this policy and notify you. You will have the right to request human intervention, express your point of view, and contest any automated decision.
13. Data Accuracy and Correction
Your Responsibility
You are responsible for ensuring that the personal information you provide is accurate and up-to-date. Please notify us immediately of any changes to your contact details.
Correction Process
You may update your information at any time by contacting us at info@langu-remontas.lt. We will correct inaccurate data within one month of your request.
14. Changes to This Policy
Policy Updates
We may update this privacy policy to reflect changes in our practices or legal requirements. We will notify you of significant changes by email or prominent website notice.
Annual Review
We review this privacy policy at least annually and update it as required by law or changes in our business practices.
Effective Date
This policy is effective from August 26, 2025. Continued use of our services after changes constitutes acceptance of the updated policy.
15. Contact Us and Supervisory Authority
Data Protection Inquiries
For questions about this privacy policy or to exercise your GDPR rights, contact our Data Protection Officer at info@langu-remontas.lt.
Response Time
We will respond to your requests within one month. For complex requests, we may extend this period by two months and will inform you of any delay.
Supervisory Authority
You have the right to lodge a complaint with your local data protection authority. In Lithuania, this is the State Data Protection Inspectorate (https://vdai.lrv.lt/).