Privacy Policy

Privacy Policy

Last updated: 13 February 2026

Last updated: 13 February 2026

This Privacy and Cookies Policy (the “Policy”) explains how we collect, use, disclose, and protect personal data when you visit www.gudd.eu or contact UAB “GUDD”. By using the website, you agree to this Policy. It applies each time you access our content or services, regardless of the device you use.

This Policy is prepared in accordance with Regulation (EU) 2016/679 (GDPR) and applicable laws of the Republic of Lithuania. We process website visitor data in line with EU and Lithuanian legal requirements and guidance from competent supervisory authorities.

This Privacy and Cookies Policy (the “Policy”) explains how we collect, use, disclose, and protect personal data when you visit www.gudd.eu or contact UAB “GUDD”. By using the website, you agree to this Policy. It applies each time you access our content or services, regardless of the device you use.

This Policy is prepared in accordance with Regulation (EU) 2016/679 (GDPR) and applicable laws of the Republic of Lithuania. We process website visitor data in line with EU and Lithuanian legal requirements and guidance from competent supervisory authorities.

Definitions

Definitions

Terms such as personal data, data subject, controller, processor, and processing are understood as defined in Article 4 of the GDPR.

  • Website: www.gudd.eu, where clients and visitors may submit inquiries.

  • Controller: UAB “GUDD”, legal entity code 307131158, email: info@gudd.eu.

  • Data subject: any person who provides personal data to us or whose data is collected automatically through website use.

  • Processor: a third party that processes personal data on our behalf under our instructions.

  • Personal data: information that identifies or can identify a person (e.g., name, email, phone number, CV details, etc.).

  • Direct marketing: contacting individuals by email, phone, or other direct means to offer goods/services or request feedback.

  • Supervisory authority: the State Data Protection Inspectorate of Lithuania (VDAI).

Terms such as personal data, data subject, controller, processor, and processing are understood as defined in Article 4 of the GDPR.

  • Website: www.gudd.eu, where clients and visitors may submit inquiries.

  • Controller: UAB “GUDD”, legal entity code 307131158, email: info@gudd.eu.

  • Data subject: any person who provides personal data to us or whose data is collected automatically through website use.

  • Processor: a third party that processes personal data on our behalf under our instructions.

  • Personal data: information that identifies or can identify a person (e.g., name, email, phone number, CV details, etc.).

  • Direct marketing: contacting individuals by email, phone, or other direct means to offer goods/services or request feedback.

  • Supervisory authority: the State Data Protection Inspectorate of Lithuania (VDAI).

What data we collect

What data we collect

We may collect:

  1. Data you provide: e.g., name, surname, email, phone number, CV, photo, and any information you submit to us.

  2. Website usage data: information about how you use our website and its features (see “Cookies”).

  3. Data from third parties: where permitted by law, from public/commercial sources or social networks (e.g., when you connect via platforms such as Facebook).

  4. Technical and device data: IP address, device and browser details, approximate location, advertising identifiers (e.g., IDFA), visit date/time, duration and frequency, referral source, and browsing activity (where applicable and subject to your consent).

You may choose not to provide certain information, but this may limit your ability to use some website features.

We may collect:

  1. Data you provide: e.g., name, surname, email, phone number, CV, photo, and any information you submit to us.

  2. Website usage data: information about how you use our website and its features (see “Cookies”).

  3. Data from third parties: where permitted by law, from public/commercial sources or social networks (e.g., when you connect via platforms such as Facebook).

  4. Technical and device data: IP address, device and browser details, approximate location, advertising identifiers (e.g., IDFA), visit date/time, duration and frequency, referral source, and browsing activity (where applicable and subject to your consent).

You may choose not to provide certain information, but this may limit your ability to use some website features.

How we collect your data

How we collect your data

We collect personal data when:

  • You share it with us (e.g., sending a CV, communicating by email/phone/in meetings, completing questionnaires, tasks, or tests). We may retain correspondence records.

  • You use our website, where certain data is collected automatically (e.g., IP address, device, browser, pages viewed, time spent, and referring websites).

  • We receive it lawfully from others, as permitted by applicable law and/or this Policy.

We collect personal data when:

  • You share it with us (e.g., sending a CV, communicating by email/phone/in meetings, completing questionnaires, tasks, or tests). We may retain correspondence records.

  • You use our website, where certain data is collected automatically (e.g., IP address, device, browser, pages viewed, time spent, and referring websites).

  • We receive it lawfully from others, as permitted by applicable law and/or this Policy.

Why we use your data (purposes and legal grounds)

Why we use your data (purposes and legal grounds)

We process personal data for the following purposes:

  1. Contract performance / pre-contract steps (GDPR Art. 6(1)(b)): to respond to inquiries and take steps related to potential or existing service relationships.

  2. Candidate database administration: after a recruitment process ends, we may retain candidate data to offer future roles and assess suitability for positions.

  3. Employment administration: to manage employee-related matters as required or permitted by law.

  4. Website improvement and service optimization: to operate, maintain, and improve the website and user experience.

  5. Direct marketing (where applicable): to send updates, personalized ads, promotions, surveys, and to analyze our market, clients, products, and services (only where required legal basis/consent applies).

  6. “Contact us” messages: to respond to your request (typically: name, phone number, email address).

  7. Other purposes with your consent, where required.

We do not process personal data for purposes incompatible with those described above.

You may object to or withdraw consent for processing where consent is the legal basis.

We process personal data for the following purposes:

  1. Contract performance / pre-contract steps (GDPR Art. 6(1)(b)): to respond to inquiries and take steps related to potential or existing service relationships.

  2. Candidate database administration: after a recruitment process ends, we may retain candidate data to offer future roles and assess suitability for positions.

  3. Employment administration: to manage employee-related matters as required or permitted by law.

  4. Website improvement and service optimization: to operate, maintain, and improve the website and user experience.

  5. Direct marketing (where applicable): to send updates, personalized ads, promotions, surveys, and to analyze our market, clients, products, and services (only where required legal basis/consent applies).

  6. “Contact us” messages: to respond to your request (typically: name, phone number, email address).

  7. Other purposes with your consent, where required.

We do not process personal data for purposes incompatible with those described above.

You may object to or withdraw consent for processing where consent is the legal basis.

Cookies

Cookies

We use cookies and similar technologies to support website functionality and improve performance.

Cookies are small files stored on your device that help recognize returning visitors, remember preferences, and enable features. Cookies may collect: IP address, device and browser details, visits, pages viewed, time spent, and referring websites.

We use cookies for essential website functionality, analytics and performance measurement, website improvement and development, service development, targeted marketing (where applicable).

Cookie categories may include: Essential (technical) cookies, functional cookies, analytics cookies (typically aggregated/anonymous), targeting/advertising cookies, social media cookies.

We may use third-party technologies including (but not limited to): Meta/Facebook Pixel, Google Analytics, Google Ads, Google Remarketing, and others.

You can consent to cookies via the cookie banner (e.g., clicking “I agree”) and can withdraw consent at any time by changing your browser settings or adjusting cookie preferences. Disabling certain cookies may affect website functionality.

We use cookies and similar technologies to support website functionality and improve performance.

Cookies are small files stored on your device that help recognize returning visitors, remember preferences, and enable features. Cookies may collect: IP address, device and browser details, visits, pages viewed, time spent, and referring websites.

We use cookies for essential website functionality, analytics and performance measurement, website improvement and development, service development, targeted marketing (where applicable).

Cookie categories may include: Essential (technical) cookies, functional cookies, analytics cookies (typically aggregated/anonymous), targeting/advertising cookies, social media cookies.

We may use third-party technologies including (but not limited to): Meta/Facebook Pixel, Google Analytics, Google Ads, Google Remarketing, and others.

You can consent to cookies via the cookie banner (e.g., clicking “I agree”) and can withdraw consent at any time by changing your browser settings or adjusting cookie preferences. Disabling certain cookies may affect website functionality.

Data sharing

Data sharing

We do not sell your personal data. We may disclose data only to service providers (processors) who support website/IT operations under confidentiality and data protection obligations, and/or where required by law, court order, or lawful requests by authorities.

We do not sell your personal data. We may disclose data only to service providers (processors) who support website/IT operations under confidentiality and data protection obligations, and/or where required by law, court order, or lawful requests by authorities.

Retention

Retention

We retain personal data no longer than necessary for the purposes described or as required by law.

As a general rule, we retain your data for up to 3 years after your last use of our services or content, after which it is deleted in a way that prevents restoration, unless longer retention is required or permitted by law.

We retain personal data no longer than necessary for the purposes described or as required by law.

As a general rule, we retain your data for up to 3 years after your last use of our services or content, after which it is deleted in a way that prevents restoration, unless longer retention is required or permitted by law.

Security

Security

We use appropriate technical and organizational measures to protect personal data from loss, unauthorized access, misuse, or alteration. However, no internet transmission or system is completely secure.

If we become aware of a personal data breach likely to result in a high risk to your rights and freedoms, we will notify you without undue delay.

We use appropriate technical and organizational measures to protect personal data from loss, unauthorized access, misuse, or alteration. However, no internet transmission or system is completely secure.

If we become aware of a personal data breach likely to result in a high risk to your rights and freedoms, we will notify you without undue delay.

International transfers

International transfers

Your data is generally processed within the European Union, but may be transferred or stored outside the EU in certain cases. Where this occurs, we implement appropriate safeguards to ensure lawful and secure processing.

Your data is generally processed within the European Union, but may be transferred or stored outside the EU in certain cases. Where this occurs, we implement appropriate safeguards to ensure lawful and secure processing.

External links and social media

External links and social media

Our website may link to third-party websites (including partners). Their privacy practices are governed by their own policies, and we are not responsible for them.

Interactions on social media (e.g., messages, likes, follows) are controlled by the relevant platform provider. We maintain accounts on:

  • Facebook (see Facebook privacy information)

  • LinkedIn (see LinkedIn privacy information)

Our website may link to third-party websites (including partners). Their privacy practices are governed by their own policies, and we are not responsible for them.

Interactions on social media (e.g., messages, likes, follows) are controlled by the relevant platform provider. We maintain accounts on:

  • Facebook (see Facebook privacy information)

  • LinkedIn (see LinkedIn privacy information)

Your rights

Your rights

You have rights under the GDPR to be informed and access your data; request rectification; request erasure (where applicable); restrict processing; object to processing; withdraw consent (where processing is based on consent); request data portability (where applicable).

We may decline requests where necessary to comply with legal obligations or protect important public interests (e.g., national security, defense, public order, crime prevention) or the rights and freedoms of others.

We respond to requests within 30 calendar days of receiving the request and any necessary supporting information.

You have rights under the GDPR to be informed and access your data; request rectification; request erasure (where applicable); restrict processing; object to processing; withdraw consent (where processing is based on consent); request data portability (where applicable).

We may decline requests where necessary to comply with legal obligations or protect important public interests (e.g., national security, defense, public order, crime prevention) or the rights and freedoms of others.

We respond to requests within 30 calendar days of receiving the request and any necessary supporting information.

Contact and complaints

Contact and complaints

For questions or requests related to this Policy, contact: info@gudd.eu. We encourage you to contact us as soon as you have any concerns.

For questions or requests related to this Policy, contact: info@gudd.eu. We encourage you to contact us as soon as you have any concerns.

Changes to this Policy

Changes to this Policy

We may update this Policy from time to time. Changes will be published on the website and, where required, communicated to you. Publication date: 13 February 2026.

We may update this Policy from time to time. Changes will be published on the website and, where required, communicated to you. Publication date: 13 February 2026.