1. Introduction
Zenvorunion.cloud ("we," "our," or "us") is committed to protecting the privacy of our visitors and users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website zenvorunion.cloud.
We comply with the General Data Protection Regulation (GDPR) and applicable data protection laws of the Republic of Latvia and the European Union.
We respect your privacy. We collect minimal data, never sell your personal information, and give you full control over your data.
2. Information We Collect
2.1 Information You Provide
We may collect information that you voluntarily provide to us when you:
- Subscribe to our newsletter: We collect your email address
- Contact us: We collect your name, email address, and any message content you provide
- Interact with our website: Any feedback, comments, or information you submit through forms
2.2 Information Automatically Collected
When you visit our website, we may automatically collect certain information about your device and usage, including:
- Device information: Browser type, operating system, device type
- Usage data: Pages visited, time spent on pages, click patterns
- Connection data: IP address, approximate geographic location (country/city level)
- Referral data: The website or source that referred you to our site
3. How We Use Your Information
We use the information we collect for the following purposes:
- Newsletter delivery: To send you our editorial newsletter about waterfront cafés and travel content
- Communication: To respond to your inquiries and provide customer support
- Website improvement: To analyze usage patterns and improve our content and user experience
- Security: To detect and prevent fraudulent activity and protect our website
- Legal compliance: To comply with applicable laws, regulations, and legal processes
4. Legal Basis for Processing (GDPR)
Under the GDPR, we process your personal data based on the following legal grounds:
- Consent: When you subscribe to our newsletter or submit a contact form, you give explicit consent for us to process your data for those specific purposes
- Legitimate interest: We may process data for website analytics and security purposes based on our legitimate interest in maintaining and improving our service
- Legal obligation: We may process data when required to comply with applicable laws
5. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:
- Service providers: We may share data with trusted third-party service providers who assist us in operating our website (e.g., email delivery services, web hosting). These providers are bound by contractual obligations to keep personal information confidential
- Legal requirements: We may disclose information if required to do so by law or in response to valid legal requests from public authorities
- Business transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction
6. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected:
- Newsletter subscribers: Until you unsubscribe or request deletion
- Contact form data: For up to 2 years after the last interaction
- Analytics data: Aggregated and anonymized data may be retained indefinitely
- Server logs: Automatically deleted after 90 days
7. Your Rights Under GDPR
If you are a resident of the European Economic Area (EEA), you have the following data protection rights:
- Right to access: You can request a copy of the personal data we hold about you
- Right to rectification: You can request that we correct inaccurate or incomplete personal data
- Right to erasure: You can request that we delete your personal data ("right to be forgotten")
- Right to restrict processing: You can request that we restrict the processing of your personal data
- Right to data portability: You can request a machine-readable copy of your personal data
- Right to object: You can object to the processing of your personal data
- Right to withdraw consent: You can withdraw consent at any time where we rely on consent to process your data
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
8. International Data Transfers
Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ. We ensure that any such transfers comply with GDPR requirements through appropriate safeguards such as Standard Contractual Clauses.
9. Security Measures
We implement appropriate technical and organizational security measures to protect your personal information, including:
- SSL/TLS encryption for data transmission
- Secure storage with access controls
- Regular security assessments and updates
- Employee training on data protection
While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
10. Children's Privacy
Our Website is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we discover that we have collected personal information from a child under 16, we will promptly delete that information.
11. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Changes are effective when they are posted on this page.
12. Data Protection Officer
For any questions about this Privacy Policy or our data practices, you may contact our Data Protection Officer:
You also have the right to lodge a complaint with the Data State Inspectorate of Latvia (Datu valsts inspekcija) if you believe your data protection rights have been violated.