- what personal data are;
- which of your personal data we collect;
- how and why we use them;
- to whom we deliver your personal data;
- how we protect your privacy of your personal data;
- how to contact us ad whom to contact if you have questions about processing of your personal data.
Statement on personal data protection
We seriously regard the issue of protecting personal data of our clients, therefore we strive to protect privacy of your personal data. Insight Out undertakes to take all necessary measures to prevent improper use of your personal data which become known to us. We will process your personal data in strict compliance with the requirements set forth by the applicable legislation, and only if we have legal grounds for doing it.
We control the ways of collecting your personal data, and determine goals for which “Insight Out: uses personal data. We are a “data controller” within the meaning of the General Data Protection Regulation (EU) 2016/679 (hereinafter referred to as “GDPR”) and other application European laws pertaining to data protection.
We process your personal data only if at least one of the following, but nor limited to, terms stipulated by Article 6 of GDPR applies:
- you have given consent to the processing of your personal data;
- processing is necessary for rendering services to you.
Main notions (definitions)
Personal data means any personal information allowing a third party to identify a natural person (data subject).
Identifiable natural person means one who can be identified, directly or indirectly, in particular, by reference to an identifier (such as, a name, surname, document number, or any other identifier), or through analysis of several factors specific to the physical, genetic, mental, economic, cultural or another identity of that natural person.
Personal data subject means a natural person to whom personal data are related, and who can be identified by means of such personal data, or who has been identified.
Personal data controller means a natural or legal person which determines the purposes and means of the processing of personal data, and bears the primary responsibility for their processing.
Personal data processor means a natural or legal person which based on the controller’s instructions (directives, orders) processes personal data for the controller.
Personal data processing means any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, alteration, adjustment, retrieval, use, dissemination or otherwise making available to third parties, including, staff of the personal data controller or processor, or destruction.
Laws regulating personal data processing
Your personal data procession is regulated, in particular, by the General Data Protection Regulation (EU) 2016/679 (hereinafter referred to as “GDPR”).
Goals of personal data processing
We need to have your personal data in order for us to provide you with our services, in particular:
- make a booking for our services;
- make adjustments in booking;
- provide you with the whole range of our services;
- have a possibility to familiarize you with all our special offers and news;
- give consultations on our services provision;
- get your review on the level of services provided;
- provide information support.
In order to send you commercial (marketing) information, you get this specific consent of yours which can be canceled at any time.
We ask you to inform us only about such personal data that are required to render the service or newsletters you chose, or a reply to you special request/claim. At the same time, if you decide to inform us about any additional personal data, we will be able to process them with due level of protection.
In order to provide you abovementioned services, we may disclose your personal data to the following companies:
- Pipedrive – client relation management system (CRM-system), which is used to identify clients.
- TripAdvisor Review Express – TripAdvisor business tool used for collecting reviews on the client’s satisfaction from service.
- MailChimp – is a marketing automation platform and an email marketing service, which we use for sending e-mails.
Please, be advised that this list can be not complete.
Personal data which we process
Please see the table below to find out which of your personal data we process to provide your services to you:
- Booking service:
- telephone number (-s)
- Filling the inquirer before the service provision:
- date of birth
- During and after the game
- video record of the game
- photo of players after the game
In addition to the aforesaid, we can process any other personal data if you decide to provide them to Insight Out.
If storage of your personal data is not necessary for the provision of services to you, or is not required under applicable legislation, we will delete them.
Place of personal data storage
To ensure personal data safety, we use Pipedrive CRM system. Data stored by Pipedrive are kept at data processing centers in Germany.
Technical, organizational and other measures of data protection
“Insight Out” observe the principle of personal data minimization. We process only the information we need, or the information you provide of your own free will beyond the required processing range.
Personal data processing (storage) time
We will not store your data longer than it is necessary to fulfill the purpose for which they are processed, or to comply with the statutory requirements.
To determine the appropriate storage period, we identify the nature and category of personal data, the purposes for which we process them, and if we can achieve purpose through other means.
The time limit for personal data processing in our company is 1460 days from the date of service provision.
In case of any query regarding our services or at regular interaction with Insight Out without service provision and without giving us explicit consent to your personal data processing, we will not retain such personal information.
Over time, we can minimize your personal data that we use, or can even make your data anonymous, for them not to be any more associated with you personally. In this case, we can use this information without further notice to you.
Privacy notice cookies
A cookie is a small text file that is saved to, and, during subsequent visits, retrieved from your computer or mobile device. If you use our services, we will assume that you agree to the use of such cookie.
We use permanent cookies to store your choice of start page. We use both first- and third-party cookies to collect statistics and user data in aggregate and individual form in analysis tools to optimize our site and to present you with relevant marketing material.
Some third-party cookies are set by services that appear on our pages and are not in our control. They are set by social media providers such as Twitter, Facebook and Vimeo and etc. relate to the ability of users to share content on this site, as indicated by their respective icon.
We also use third-party cookies which performs cross-site tracking in order for us to give you marketing in other sites/channels.
How long do we save your data?
“Insight Out” does not save your personal data. You can easily erase cookies from your computer or mobile device using your browser. For instructions on how to handle and delete cookies please look under “Help” in your browser. You can choose to disable cookies, or to receive a notification each time a new cookie is sent to your computer or mobile device. Please note that if you choose to disable cookies, you will not be able to take advantage of all our features.
Rights of personal data subjects
We are pleased to inform you about your rights regarding the processing of personal data in accordance with GDPR.
Right to information
We are ready to give data subjects the information on their personal data which we process.
If you want to know which of your personal data we process, you can request this information at any time contacting us via email: firstname.lastname@example.org. You can find the list of data we must provide you in Articles 13 and 14 of the GDPR. Thus, when applying you must state your specific requirements, so we could legitimately consider your request and provide a response.
Please note that if we are unable to verify your identity by e-mail messages or phone call, or in the case of reasonable doubts concerning your identity, we may ask you to provide a proof of identity, including by personal appearance in “Insight Out” office. This is the only way we can avoid disclosing your personal data to a person who can perpetrate your identity.
We will process your request in the shortest possible time, but at the same time please remember that it is a complex process to provide you a full and legitimate answer in relation to your personal data, that can take up to a month.
Right to correct your personal data
If you find that some personal data which we process about you are incorrect or outdated, please inform us about it. In this case, we may ask you to provide a proof of identity, including by your personal appearance in Insight Out office.
Withdrawal of consent to personal data processing and right to be forgotten
If “Insight Out” processes your personal data subject to a consent to personal data processing (in particular, for the purpose of transmitting commercial newsletters), further processing can be terminated at any time. All you must do is to withdraw your consent to such processing.
You may also exercise your right to be forgotten. In cases stipulated in Article 17 of GDPR, “Insight Out” will delete your personal data it processes, except for those personal data which we are obliged to store in accordance with the requirements set forth by the applicable legislation.
Totoriu g. 21A, Vilnius