Privacy Policy and GDPR Compliance
Last updated: July 28, 2025
This Privacy Policy describes how YUKON SIA, registration number 42103088542, VAT number LV42103088542, legal address: Jaunā ostmala 2, Liepāja, LV-3401 (hereinafter – “We”, “inBaltic.eu” or “Data Controller”), collects, uses, stores, and protects information about users of our website inbaltic.eu (hereinafter – “Website”).
We are committed to protecting your privacy and processing your personal data in accordance with the provisions of the General Data Protection Regulation (EU Regulation 2016/679, hereinafter – “GDPR”) and applicable Latvian legislation.
1. General Provisions and Our Role
InBaltic.eu is a search platform that aggregates offers from various online stores. We serve as a link between visitors looking for products and online stores. We do not collect or store personal data of visitors for the purpose of their direct identification or sale. Our main goal is to provide relevant information and drive traffic to our partners.
Within the scope of this Privacy Policy, YUKON SIA is the Data Controller for:
- Data we collect about visitors to our Website (through cookies and similar technologies).
- Data provided by clients (online stores) when registering and using our platform.
2. Data We Collect, Purposes, and Legal Basis
We collect various types of information to ensure the Website functions, improve user experience, analyze traffic, and provide advertising services.
2.1. Data about Website Visitors (via cookies and similar technologies)
We use cookies and other tracking technologies (e.g., pixels, web beacons) to collect information about how you interact with our Website.
| Data Category | Purpose of Collection | Legal Basis (GDPR) | Examples of Data Collected |
|---|---|---|---|
| Strictly Necessary Cookies | Ensuring basic Website functionality, navigation, and security (e.g., remembering cookie consent settings). | Legitimate Interest (Article 6(1)(f) GDPR) – ensuring the safe and efficient operation of the Website. | IP address (for technical purposes), browser type, operating system, consent settings. |
| Analytical Cookies | Analyzing Website usage, understanding visitor preferences, measuring content effectiveness to improve Website functionality and design. | Your Consent (Article 6(1)(a) GDPR) – obtained via Cookie Consent Banner. | Anonymized IP address, pages visited, time spent on site, navigation paths, entry/exit points, device used. |
| Functional Cookies | Enhancing Website usability, remembering your preferences (e.g., language, region). | Your Consent (Article 6(1)(a) GDPR) – obtained via Cookie Consent Banner. | Selected interface settings, preferred language. |
| Advertising (Targeting) Cookies | Providing you with relevant advertising on our and third-party websites, measuring the effectiveness of advertising campaigns. | Your Consent (Article 6(1)(a) GDPR) – obtained via Cookie Consent Banner. | User ID (anonymized), data on products viewed, advertising interactions. |
Important Note: All statistical information collected through analytical and advertising cookies is stored in an anonymized form, containing no identifying features, and does not allow us to directly identify you as an individual.
2.2. Data about Clients (Online Stores)
We collect data from legal entities (online stores) that register on our platform to display their products and services.
| Data Category | Purpose of Collection | Legal Basis (GDPR) |
|---|---|---|
| Identification Data | Account registration, client identification, conclusion and execution of the contract. | Contract Performance (Article 6(1)(b) GDPR) and Legal Obligation (Article 6(1)(c) GDPR). |
| Contact Data | Communication with the client regarding service matters, notifications, support. | Contract Performance (Article 6(1)(b) GDPR) and Legitimate Interest (Article 6(1)(f) GDPR) – maintaining communication for service provision. |
| Payment Data | Invoicing, payment processing, accounting. | Contract Performance (Article 6(1)(b) GDPR) and Legal Obligation (Article 6(1)(c) GDPR). |
3. Managing Cookies and Your Consent
Upon your first visit to our Website, you will be presented with a Cookie Consent Banner, managed by the service cookie-script.com. You will be able to:
- Accept all cookies (except strictly necessary ones).
- Decline all except strictly necessary ones.
- Customize your preferences by choosing which cookie categories you allow (e.g., allow analytical but decline advertising).
Your consent is voluntary, specific, informed, and unambiguous. We will keep a record of your consent for reporting and GDPR compliance purposes.
You can change your cookie settings at any time by clicking on a special icon or link, which is usually provided by cookie-script.com and located, for example, in the bottom corner of our Website.
You can also manage cookies through your browser settings:
- Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
- Mozilla Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
- Microsoft Edge: https://support.microsoft.com/en-us/windows/manage-cookies-in-microsoft-edge-view-allow-block-delete-and-use-168dab11-0753-043d-7c16-ede5947fc64d
- Apple Safari: https://support.apple.com/en-us/guide/safari/sfri11471/mac
To opt out of targeted advertising, you can also visit the following websites:
- www.networkadvertising.org
- www.youronlinechoices.com (for European users)
4. Data Transfer to Third Parties
We may transfer your data (primarily anonymized or pseudonymized) to certain categories of third parties for the purposes stated above. Data transfer occurs strictly in accordance with GDPR requirements.
4.1. Service Providers and Partners
| Recipient Category | Examples of Services / Companies | Purpose of Transfer | Transfer Outside EU/EEA |
|---|---|---|---|
| Analytics Providers | Google Analytics | Analysis of user behavior, Website improvement. | Yes (USA) – using EU Standard Contractual Clauses (SCCs). |
| Advertising Platforms and Networks | Google Ads, AdSense, Facebook Pixel, Adnet Media, Smartad, Facebook (including Instagram), Google (including YouTube) | Displaying relevant advertisements, measuring the effectiveness of advertising campaigns, managing advertising campaigns. | Yes (USA) – using EU Standard Contractual Clauses (SCCs). |
| Tag Management Platforms | Google Tag Manager | Managing and deploying scripts and tags for analytics and advertising without direct collection of personal data by GTM. | Yes (USA) – using EU Standard Contractual Clauses (SCCs). |
| Payment Systems | VISA, MASTERCARD, MAESTRO, DISCOVER, Stripe | Processing payments from clients (online stores). | Yes (USA) – using EU Standard Contractual Clauses (SCCs). |
| Consent Management Platforms | Cookies Script (cookie-script.com) | Managing user consent for cookie usage. | Yes (USA) – using EU Standard Contractual Clauses (SCCs). |
| IT Infrastructure and CDN Providers | Cloudflare Inc. | Ensuring Website security, optimizing performance (CDN), protecting against DDoS attacks. Cloudflare processes traffic data, including IP addresses, for these purposes. | Yes (USA and other countries – using EU Standard Contractual Clauses (SCCs) and their data transfer mechanisms). |
| Hosting Providers | Our main website is hosted by a provider registered in Latvia, with the server located in one of the Baltic countries. | Ensuring Website operation, data storage. | No (data is processed within the EU/EEA). |
| Cloud Service Providers (for translation) | Microsoft Azure | Providing machine translation services for Website content. | Yes (USA and other countries – using EU Standard Contractual Clauses (SCCs) and their data transfer mechanisms). |
| Legal and Accounting Consultants | Professional consultants providing legal and accounting services. | Ensuring compliance with legislation, maintaining records. | No |
We are committed to entering into Data Processing Agreements (DPAs) with such third parties, requiring them to adhere to high data protection standards and to use data only for the agreed purposes.
4.2. Government Authorities
We may disclose your data if required by law or in response to a lawful request from government authorities (e.g., courts, law enforcement agencies) in accordance with applicable law.
5. Data Retention Periods
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations.
- Data obtained through analytical and advertising cookies: Stored in an anonymized form in accordance with the policies of the respective services (e.g., Google Analytics, which by default store aggregated data for up to 26 months, and individual user data for up to 14 months).
- Registration and payment data of clients (online stores): Stored for the duration of the contract with us and up to 10 years after its termination for accounting purposes and compliance with Latvian tax legislation.
- Records of cookie consent: Stored for up to 12 months for the purpose of proving consent.
Upon expiration of the retention period, data will either be deleted or anonymized in such a way that it can no longer be linked to an identified or identifiable natural person.
6. Your Rights as a Data Subject
In accordance with the GDPR, you have the following rights regarding your personal data:
- Right of Access (Article 15 GDPR): You have the right to request a copy of the personal data we hold about you, as well as information on the purposes and legal basis of processing.
- Right to Rectification (Article 16 GDPR): You have the right to request the correction of inaccurate or incomplete personal data.
- Right to Erasure ("Right to be Forgotten") (Article 17 GDPR): You have the right to request the deletion of your personal data if there are no legitimate grounds for its continued processing.
- Right to Restriction of Processing (Article 18 GDPR): You have the right to request the restriction of processing of your data in certain cases (e.g., if you dispute the accuracy of the data).
- Right to Data Portability (Article 20 GDPR): You have the right to receive your personal data in a structured, commonly used, and machine-readable format and transmit it to another controller.
- Right to Object (Article 21 GDPR): You have the right to object to the processing of your personal data if it is based on legitimate interest or for direct marketing purposes.
- Right to Withdraw Consent (Article 7(3) GDPR): If processing is based on your consent, you have the right to withdraw it at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before its withdrawal.
- Right to Lodge a Complaint (Article 77 GDPR): If you believe your rights have been violated, you have the right to lodge a complaint with a supervisory authority, such as the Data State Inspectorate of Latvia (Datu valsts inspekcija) (www.dvi.gov.lv) or the European Data Protection Board (edpb.europa.eu).
To exercise any of these rights, please contact us by email: [email protected]. We will respond to your request within one month of receipt, in accordance with GDPR requirements.
7. Data Security
We implement all reasonable technical and organizational security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:
- Using encryption (SSL/TLS) to protect data transmission on the Website.
- Access control to our systems and databases; only authorized employees who need access to perform their duties have it.
- Regular data backups.
- Implementing physical security measures for our servers.
- Staff training on data protection issues.
8. Changes to the Privacy Policy
We reserve the right to make changes to this Privacy Policy. Any changes will be published on this page with the date of the last update. In case of significant changes, we may notify you by email (for registered clients). We recommend that you regularly review this Privacy Policy to stay informed about how we protect your information.
9. Contact Information
If you have any questions or concerns about this Privacy Policy or the processing of your data, please contact us:
YUKON SIA
Legal address: Jaunā ostmala 2, Liepāja, LV-3401
Email: [email protected]