Privacy policy

1. Data controller

Foundation “European Investors Network”, Reg. No. 40008341457, address: Marijas street 18A, Riga, Latvia, LV-1011; email: member@european-investors-network.com; website address: https://www.european-investors-network.com
You may contact us by email at member@european-investors-network.com.

2. Contact information for personal data protection matters

If you have any questions regarding this Privacy Policy or the processing of your personal data, you may contact us using the communication channels indicated in Section 1 above or by reaching out to our Data Protection Office at the following email address: member@european-investors-network.com.

3. General description of our personal data processing activities

This Privacy Policy explains how we process the personal data of our clients, their representatives or contact persons, business partners, website visitors, portal users, and other individuals whose data may come into our possession during our business activities.

We assume that, before using our website or becoming our client, you have read this Privacy Policy and accepted its terms. This is the current version of our Privacy Policy. We reserve the right to amend and update this notice when necessary.

The purpose of this notice is to provide you with general overview of our personal data processing activities and purposes. Please note that additional information about how we process your personal data may also be provided in other documents, such as our Cookie Policy and Portal Terms of Use.

Please be aware that the personal data processing rules described in this Privacy Policy apply only to the processing of personal data of natural persons.

We recognise that your personal data represent an important value, and we process them in accordance with confidentiality requirements, taking appropriate measures to ensure the security of the personal data in our possession.

4. Why we process your personal data and on what legal grounds?

Purposes and legal basis for processing your personal data

a) Initiating and Providing Services, and Fulfilling Contractual Obligations

For this purpose, we may need to identify you, calculate and process payments, communicate with your regarding service delivery and/or contract performance (including issuing invoices), and share your data with our partners to achieve the objectives of our agreements.
The following personal data may be required for this purpose and its sub-purposes: identification data, contact details, payment data, and information about the selected service.

Primary legal basis:

  1. Performance of a contract with the data subject (Article 6(1)(b) of the GDPR);
  2. Compliance with a legal obligation (Article 6(1)(c) of the GDPR);
  3. Legitimate interests of the controller (Article 6(1)(f) of the GDPR), such as identifying the client or a contact person and maintaining communication.

b) Registration on the portal to use the offered services

For this purpose, we may need to identify you, contact you, and verify your role in relation to the service being provided.

The following personal data may be required: identification data, contact details, and data related to the project you represent.

Primary legal basis:

  1. Performance of a contract with the data subject (Article 6(1)(b) of the GDPR);
  2. Consent of the data subject (Article 6(1)(a) of the GDPR);
  3. Legitimate interests of the controller (Article 6(1)(f) of the GDPR), such as identifying the client or a contact person and maintaining communication.

c) Compliance with legal and regulatory requirements

For this purpose, we must comply with applicable legal and regulatory obligations, including requirements under accounting laws, archival laws, and other relevant legislation.

The following personal data may be required: identification data, contact details, payment data, and data related to service provision.

Primary legal basis:

  1. Compliance with a legal obligation (Article 6(1)(c) of the GDPR).

d) Conducting marketing activities

For this purpose, we may send you commercial messages, inform you about updates, and communicate important changes to our portal or services.

The following personal data may be required: identification data and contact details.

Primary legal basis:

  1. Consent of the data subject (Article 6(1)(a) of the GDPR);
  2. Legitimate interests of the controller (Article 6(1)(f) of the GDPR), such as maintaining contact with clients and partners.

e) Ensuring security and protecting legitimate interests

For this purpose, we may use data processors to support various functions, disclose information to courts or public authorities when required, exchange information within our corporate group, and exercise legal rights to protect our legitimate interests.

The following personal data may be required: identification data, registration data, audit logs, service-related data, and data related to service execution.
Primary legal basis:

  1. Legitimate interests of the controller (Article 6(1)(f) of the GDPR), for example, detecting unlawful activities or pursuing debt recovery.

f) Ensuring proper service delivery

For this purpose, we may maintain and improve our technical systems and IT infrastructure, implement technical and organisational measures that may involve the use of your personal data (such as cookies), to ensure the proper provision of services.

Primary legal basis:

  1. Legitimate interests of the controller (Article 6(1)(f) of the GDPR).

5. Who may have access to your personal data?

We implement appropriate measures to process your personal data in accordance with applicable laws and to ensure that no third parties without a valid legal basis gain access to your personal data.

Where necessary, access to your personal data may be granted to:

  1. Our employees or duly authorised persons who need such access to perform their job duties;
  2. Data processors, in line with the services they provide and only to the extent necessary;
  3. State and municipal authorities in the cases provided by law (e.g., law-enforcement bodies, tax authorities);
  4. Third parties, after carefully assessing that there is a valid legal basis for such disclosure (e.g., investors).

6. Which cooperation partners or data processors do we engage in the processing of personal data?

We take appropriate measures to ensure that the processing, protection, and transfer of your personal data to data processors are carried out in accordance with applicable laws and regulations. We carefully select our data processors and, when transferring data, assess both the necessity of such transfers and the scope of data to be shared. Any transfer of data to processors is carried out in compliance with confidentiality obligations and secure data processing requirements.

At present, we may cooperate with the following categories of data processors:

  1. External service providers, such as accountants, auditors, financial management and legal consultants;
  2. IT infrastructure providers, including database owners, developers, and technical maintenance providers;
  3. Other entities involved in ensuring the provision of our services.

The list of data processors may change from time to time, and any updates will be reflected in this Privacy Policy.

7. Are your personal data transferred to countries outside the European Union (EU) or the European Economic Area (EEA)?

We do not transfer personal data to countries outside of the European Union (EU) or the European Economic Area (EEA). However, if it becomes necessary to transfer data outside the EU/EEA while providing our services, we will ensure that all requirements and safeguards set out in the GDPR are fully met.

8. How long will we retain your personal data?

Your personal data are retained for as long as necessary to fulfil the purposes for which they were collected, as well as in accordance with applicable legal requirements.

When determining the appropriate retention period for personal data, we consider the applicable legal obligations, the nature and duration of our contractual relationship with you, your instructions (for example, when processing is based on consent), and our legitimate interests. Once your personal data are no longer required for the specified purposes, we will securely delete or destroy them.
Below are the most common retention periods we apply:

  1. Data necessary for the performance of the contractual obligations – retained until the service has been provided and for as long as other applicable retention periods remain in effect (see below).
  2. Data required to comply with legal obligations – retained for the period prescribed by applicable legislation. For example, under the Accounting Law, supporting documents must be kept as long as necessary to identify and trace each transaction, but not less than five (5) years.
  3. Data retained to demonstrate the fulfilment of obligations – stored for the general statutory limitation period as set out in applicable laws: ten (10) years under the Civil Law, three (3) years under the Commercial Law, and other periods as provided by the Civil Procedure Law for bringing claims.

9. Contact Information for Personal Data Protection Matters

Updating your personal data

If any of the personal data you have provided to us change – for example, your personal identification number, contact address, phone number, or email address – please contact us and provide the updated information so that we can continue to fulfil the relevant purposes of personal data processing.

Your rights to access and correct your personal data

In accordance with the GDPR, you have the right to request access to your personal data held by us, as well as to request their rectification, erasure, restriction of processing, to object to the processing of your data, and to exercise your right to data portability, as provided for in the GDPR.

We respect your right to access and control your personal data. Upon receiving your request, we will respond within the time limits set by applicable laws – generally no later than one month after receiving your request, unless a specific or complex request requires a longer response period. Where possible, we will correct or delete your personal data accordingly.

You may obtain information about the personal data we hold about you or exercise your data subject rights in one of the following ways:

  1. By submitting a written request by post to: Marijas street 18A, Riga, Latvia, LV-1011;
  2. By sending a written request to our email address: member@european-investors-network.com, preferably signed with a secure electronic signature.

Upon receiving your request, we will assess its content and verify your identity. Depending on the circumstances, we may ask you to provide additional identification to ensure the security of your data and prevent unauthorised disclosure.

Withdrawal of Consent

If the processing of your personal data is based on your consent, you have the right to withdraw your consent any time. Following the withdrawal, we will no longer process your personal data for the purpose for which the consent was originally given.

Please note, however, that the withdrawal of consent does not affect the lawfulness of data processing carried out prior to its withdrawal, nor does it affect the processing of personal data that is necessary for compliance with legal obligations, for the performance of a contract, for our legitimate interests, or for other lawful bases as defined by applicable legislation.

You also have the right to object to the processing of your personal data where such processing is based on legitimate interests or carried out for marketing purposes (for example, the sending of commercial communications).

10. Where can you submit a complaint regarding personal data processing?

If you have any questions or concerns regarding our processing of your personal data, we encourage you to contact us first so that we can address the issue directly.

However, if you believe that we have not been able to resolve your concerns and that your rights under data protection laws have been violated, you have the rights to lodge a complain with the Data State Inspectorate of the Republic of Latvia.

For more information on how to contact the authority, please visit: www.dvi.gov.lv

11. Why are you required to provide us with your personal data?

We primarily collect your information to fulfil our contractual obligations, to comply with our legal responsibilities, and to pursue our legitimate interests. In such cases, obtaining certain personal data is necessary to achieve these purposes. Consequently, failure to provide the required information may prevent us from establishing or performing a contractual relationship.

If providing certain data is not mandatory but may help us improve our services or offer you more favourable contractual terms and/or offers, we will clearly indicate that the submission of such data is voluntary at the time of collection.

12. How do we obtain your personal data?

We may collect your personal data in the following ways:

  1. during the process of entering into a mutual agreement, by obtaining the data directly from you;
  2. if a contract is concluded with a third party who has designated you as a contract person;
  3. directly from you when you submit any requests, send us emails, or contact us by phone;
  4. from you when you register on our website;
  5. through our website https://www.european-investors-network.com, using cookies and similar technologies.

13. Do we use your personal data for automated decisions?

We do not use your personal data for automated decision-making.