Get in Touch

    Privacy Policy

    Effective Date: 21st of August 2025

    This policy explains how we (SIA “IPRO”) use your personal data and what measures we take to protect it and keep it secure.
    This policy applies to you if you are an individual and you receive our services or otherwise interact with us, including using our website www.ipro.lv or communicating with us on social media.
    If you are a customer of ours, details of how we process your personal data may also be set out in the contract we have with you. Whenever we collect your personal data, we may provide you with additional notices which will set out the specific uses we intend to make of your personal data, together with information on how you can opt in or opt out of those specific uses.

    1. Information about us as a data controller
    SIA “IPRO”
    unified registration number: 40003521916
    legal address: Gunāra Astras iela 8B, Rīga, LV-1082
    e-mail: info@ipro.lv
    telephone: 67873279

    2. What personal data we collect and the basis for processing
    Contact and direct communication:
    data: name, surname, email, phone, title
    source: information provided by you
    basis: legitimate interest to respond to requests and establish a contractual relationship; pre-contractual activities if you request an offer

    Newsletter:
    data: email (if provided—name, company)
    source: data entered on our website
    basis: your consent (revocable at any time using the “unsubscribe” link or by writing to info@ipro.lv)

    Sales, service provision, partnerships:
    data: name, title, company, work email, phone; correspondence, meeting/offer history
    sources: information you provide, business events/conferences, public registers and professional networks (e.g. LinkedIn)
    basis: legitimate business interest; contract performance; legal obligations (accounting)

    Contracts, invoices and accounting records:
    data: name, surname, personal identification number, telephone, e-mail, address, payment/accounting information
    sources: information provided by you, public registers
    basis: performance of contract and legal obligations (accounting)

    Event photos and videos:
    data: names of event participants (if registered), company, title, photos/videos from public events
    sources: photos and videos taken at events
    basis: legitimate interest to reflect our activities; consent if material is close-up/portrait or event is not public
    Note: we always provide the possibility to object/refuse by on-site notification or email to info@ipro.lv

    Candidate selection:
    data: name, surname, telephone, e-mail, education and employment history
    sources: CV, motivation letter, application, references
    basis: pre-contractual activities; consent to reference checks

    Social networks (e.g. LinkedIn page management)
    data: profile name, public comments/messages, interaction data
    sources: social networks
    basis: legitimate interest in maintaining our presence and responding to messages/comments

    3. Cookies
    We use cookies on our website for site operation, statistics and (with consent) marketing. You can choose which cookies you accept during your first visit; you can change your consent at any time.
    Cookie manager: Cookiebot
    Read more: Link to Cookie Policy

    4. Recipients and categories of data
    We may transfer data to the following categories of recipients, subject to the principle of necessity and the conclusion of data processing agreements:

    • hosting and IT maintenance service providers
    • shipping service providers and carriers
    • email/marketing and CRM tools (“Salesforce” (EU))
    • accounting, banking and auditing services
    • legal advisers and public authorities where required by law

    5. Disclosure of data outside the EU/EEA
    We mainly process data within the EU/EEA. If we use service providers in third countries (e.g. USA), we ensure appropriate safeguards (EC standard contractual clauses, etc.) and carry out an impact assessment.

    6. Data retention periods
    Contact and direct communication: up to 2 years from the last communication if no contractual relationship is established
    Receipt of newsletters: until withdrawal of consent; up to 1 year after withdrawal—minimum for traceable consent management
    Sales and customer relationship information: for as long as necessary for the purposes and traceability of the communication; if a contractual relationship is established, the periods below apply
    Sales, provision of services, partnerships: as long as necessary for the purposes and traceability of the communication; if a contractual relationship is established, 3 years after the contractual obligations are fulfilled, unless a longer period is provided for by law
    Contracts, invoices and accounting records: subject to retention periods provided for by law;
    Events, photos and videos: up to 10 years or until consent is withdrawn
    Candidate selection: until the end of selection; with consent—1 year for other potential vacancies

    7. Your rights
    You have the following rights in relation to the protection of your personal data:
    Right to access your data—When exercising your right to access your data, you need to specify a specific time period and the data you want to obtain from us. You have the right to request information from us about what data we hold about you, why we are processing it, how we obtained it and to whom we have transferred it, how long it will be kept and to receive a copy of your data. It will be possible to comply with your request more quickly if the time period is as short as possible and the request for information about your data is as detailed as possible.
    Right to rectification—If you need to update or correct your personal data that we hold, you must clearly indicate which data needs to be updated and what the updated information is. If the data has not been obtained from you, please include a justification as to why the information to be rectified is considered inaccurate in order to facilitate a faster and more relevant assessment of accuracy.
    Right to erasure—In order for us to erase your data, you must specify exactly which personal data needs to be erased and provide a justification for this request. Please note that in all cases it may not be possible to erase the data.
    Right to restrict processing—If you are not sure whether we are processing data appropriately, you can ask us to restrict the processing of certain data. The request for restriction of processing must include an indication of why you think it is necessary to restrict that processing.
    Right to object to processing—In certain cases, you may have the right to object to processing on your individual grounds. In such a request, it is important to specify your individual circumstances for objecting to processing.
    Right to data portability—If you want us to collect and transfer the personal data we hold about you to another controller or to send it to you, it is important to specify what data you want to transfer.This right is subject to certain exceptions in order to protect the public interest (such as the prevention or detection of crime) and our interests (such as ensuring legal confidentiality) and may not apply in the country where you are located.

    Please contact us at info@ipro.lv if you wish to make a request to exercise your rights. We will consider your request without undue delay and will reply on whether or not to comply with your request no later than one month from the date of receipt. In the event that it takes us longer to comply with your request, we have the right to extend the time for compliance by a further two months, but in any event you will be informed of this.

    We have the right not to comply with your request:

    • if it is not formulated in a comprehensible manner
    • if we cannot identify you
    • if we have already responded to such a request
    • if the amount of information requested is disproportionate
    • if the request is unfounded (not applicable to our company, no explanation given as to why the request should be complied with)
    • if the laws and regulations state that we are not entitled to provide such information or we are obliged to keep certain of your data.

    8. Data security
    We take all steps reasonably necessary to ensure that your personal data is processed securely and in accordance with this privacy policy. To this end, we provide access controls, encryption, backups, access logs, employee training, processor evaluation. ISO 27001 standard is applied to ensure data security.

    9. Children’s data
    Our services are not aimed at children; we do not knowingly collect children’s data. If you believe that a child’s data has been inadvertently passed to us, please contact info@ipro.lv for deletion/restriction.

    10.Third party websites and plugins
    Our website and social media pages may, from time to time, include links to and from the websites of our partner networks and other third parties. When you click on a link to any of these sites, please note that these sites have their own privacy policies and that we do not accept responsibility or liability for these policies. Please read their privacy policies before sharing your personal data with these websites.

    11. Changes to the Policy
    We may update this Policy from time to time; the current version will always be posted on our website with an indication of when the last change was made.

    12. Complaint
    If you are not satisfied with our use of your personal data or our response to your exercise of your rights, you have the right to complain to the Data Protection Inspectorate (www.dvi.gov.lv).
    We invite you to submit questions, comments and requests about this privacy policy. Address them to us at info@ipro.lv.
    You can also contact us using the following contact information:
    SIA “IPRO”
    Gunāra Astras iela 8B, Rīga, LV-1082
    Telephone: (+371) 67873279