1. General Terms

1.1This Privacy Policy describes how SIA SAM MARTIN GROUP, Reg. No. 40203520646, legal address: Riga, Matīsa iela 16-2, LV-1001 (hereinafter referred to as the “Data Controller”), processes personal data obtained from clients and visitors using the website www.sammartingroup.com (hereinafter referred to as the “Data Subject” or “You”).

1.2. Personal data is any information related to an identified or identifiable natural person. The processing of personal data includes data collection, storage, usage, transfer, deletion, and other processes related to the data.

1.3. The Data Controller undertakes to ensure that personal data is processed in accordance with applicable legal regulations, including GDPR and the laws of the Republic of Latvia.

1.4. Conversations with our company’s representatives may be recorded for quality control and legal protection purposes. These recordings are made to improve customer service and ensure possible dispute resolution. If you do not want your conversations to be recorded, please contact us using the email addresses available in our contact section or use the available chat option.

---

2. Collection and Use of Personal Data

2.1. Personal data is obtained when the Data Subject:

• Visits and uses the online store;

• Makes a purchase or registers on the online store website;

• Participates in surveys, contests, or promotions;

• Contacts customer support via email, phone, or other communication channels;

• Subscribes to newsletters or other information.

2.2. The Data Controller may process the following personal data:

• Identification Data: Name, surname;

• Contact Information: Email address, phone number, delivery address;

• Payment Information: Credit card number, bank account details (if applicable);

• Transaction Information: Order history, purchased products, payment methods, delivery details;

• Technical Data: IP address, cookies, browser type, visited website pages, browsing time, and session data.

2.3. Personal data is processed for the following purposes:

• Processing purchases and contract execution: To ensure order acceptance, processing, and delivery;

• Providing customer support: To assist with inquiries and resolve complaints;

• For marketing purposes: To send offers if you have given consent or entered into an agreement to receive marketing materials;

• To comply with legal obligations: To fulfill the requirements of Latvian and European Union regulatory acts, such as accounting and tax legislation;

• For security purposes: To protect the company’s legitimate interests, such as preventing fraud or ensuring system security.

---

3. Storage and Protection of Personal Data

3.1. The Data Controller ensures that personal data is stored only as long as necessary for achieving data processing purposes or as required by regulatory laws.

3.2. Personal data is stored in a secure environment, using technical and organizational measures that prevent unauthorized access, data modification, or destruction.

3.3. The Data Controller implements security measures such as data encryption, firewalls, and secure network connections to ensure a high level of personal data protection.

---

4. Transfer of Data to Third Parties

4.1. To provide services and fulfill obligations to clients, the Data Controller may transfer personal data to the following third parties:

• Courier and logistics companies: To ensure the delivery of orders and facilitate the shipment process;

• Payment processing companies: For payment processing through UAB REVOLUT BANK , Adress : Konstitucijos ave. 21B, 08130, Vilnius, Lithuania

• Accounting and financial service providers: To fulfill regulatory obligations such as tax accounting and bookkeeping;

• State and law enforcement authorities: To comply with legal obligations or protect our legitimate interests.

4.2. All third parties to whom personal data is transferred are bound by data processing agreements, ensuring that personal data is protected in accordance with GDPR and Latvian legislation.

---

5. Data Subject Rights

5.1. As a Data Subject, you have the following rights under GDPR and the laws of the Republic of Latvia:

• Right to access data: You may request information about what personal data we process and obtain a copy of your data.

• Right to rectify data: You may request the correction of any inaccurate or incomplete personal data.

• Right to erasure: You may request the deletion of your personal data if it is no longer needed or if you withdraw consent for its processing.

• Right to restrict processing: You may request that we restrict the processing of your personal data if its accuracy is disputed, processing is unlawful, or we no longer need it.

• Right to data portability: You may request your personal data in a structured, commonly used, and machine-readable format and request its transfer to another controller.

• Right to object to processing: You may object to the processing of your personal data if it is based on our legitimate interests.

5.2. To exercise these rights, you may submit a request by writing to support@sammartingroup.com.

---

6. Cookies

6.1. Our website uses cookies to improve website functionality, analyze visitor behavior, and offer personalized marketing materials.

6.2. Types of cookies used:

• Essential cookies: Necessary to enable the core functionality of the website.

• Analytics cookies: Help us understand how users interact with the website and improve functionality.

• Marketing cookies: Used to provide personalized offers and advertisements based on your browsing history.

6.3. You can manage cookie settings in your browser and modify them at any time.

---

7. Data Retention Period

7.1.Personal data is stored for as long as necessary for the purposes set out in this policy or as required by applicable laws, such as the Accounting Act.

7.2. Once the retention period expires, personal data is permanently deleted or anonymized.

---

8. Changes to the Privacy Policy

8.1.The Data Controller reserves the right to make changes or additions to this Privacy Policy at any time. Any changes take effect upon publication on the website www.sammartingroup.com.

8.2. Changes will be clearly indicated with an updated policy date, and Data Subjects will be informed of significant changes if they directly impact data processing.

---

9. Call Recording

To ensure service quality, staff training, transaction security, and the protection of client interests, telephone conversations with our representatives may be recorded.

9.1. Legal Basis

Call recording is carried out based on our legitimate interests pursuant to Article 6(1)(f) of the General Data Protection Regulation (GDPR). Recordings may be used for:

• dispute resolution and legal protection;

• verifying transactions or verbal agreements;

• ensuring high-quality customer service.

9.2. Notice to Individuals

We provide information about possible call recording in our privacy policy and encourage clients to review it prior to initiating communication. If you do not wish for your conversation to be recorded, we invite you to contact us in writing at: support@sammartingroup.com].

9.3. Retention Period

Call recordings are stored for up to 14 days, unless a longer retention period is required due to legal proceedings or regulatory investigations.

9.4. Data Subject Rights

You have the right to request access to your personal data, rectification, erasure, restriction of processing, and to object to processing in accordance with applicable data protection legislation.