Vilnius · Tallinn · Visakhapatnam · Kathmandu
+370 666 54199 · contact@jegosuab.eu
Home Privacy Policy
Legal · GDPR

Privacy Policy.

How we collect, use, store and protect your personal data — fully compliant with the EU General Data Protection Regulation (GDPR).

Last updated: May 2026 · Effective immediately

1. Who we are

This privacy policy is issued by Jegos Personalo Paslaugos UAB ("Jegos," "we," "us," "our"), a workforce supply company registered in the Republic of Lithuania.

Registered address: Vilnius, Lithuania
Company registration: No. 305340006
Data controller contact: contact@jegosuab.eu

For all data protection enquiries, including access requests and complaints, please contact us at the email address above with the subject line "Privacy Request."

2. What personal data we collect

We collect personal data only when you actively provide it to us, primarily through our contact form on jegos.eu. The data we collect includes:

Data categoryExamples
IdentificationFull name
Contact detailsEmail address, phone number (optional)
Professional detailsCompany name, job role (if provided)
Project detailsWorksite country, trade categories, workforce volumes, start date, project description
Technical dataIP address (for spam prevention), browser language

We do not collect special categories of personal data (such as health, ethnicity, religious beliefs, or political opinions) through our website.

3. Why we collect your data (lawful basis)

Under Article 6 of the GDPR, we process personal data on the following lawful bases:

  • Consent (Art. 6(1)(a)) — when you submit our contact form, you provide explicit consent to be contacted regarding your enquiry.
  • Legitimate interests (Art. 6(1)(f)) — to respond to commercial enquiries, prevent fraud and spam, and operate our business. We balance these interests against your rights and freedoms.
  • Contract performance (Art. 6(1)(b)) — if your enquiry leads to a commercial agreement, we process data necessary to fulfil that contract.

4. How we use your data

We use the personal data you provide for the following specific purposes:

  • To respond to your workforce enquiry within 48 hours
  • To prepare an indicative proposal, rate card and feasibility assessment
  • To follow up on commercial discussions, including via email or telephone
  • To prevent spam, fraud and abuse of our contact form
  • To comply with our legal and regulatory obligations

We do not use your data for automated decision-making, profiling, or behavioural advertising.

5. Who has access to your data

Your data is accessed only by:

  • Authorised Jegos personnel — limited to staff in our Vilnius headquarters and relevant regional offices (Tallinn, Visakhapatnam, Kathmandu) who need it to respond to your enquiry.
  • Email service providers — our hosting (Hiox India) and, where used, transactional email relays (such as Brevo) process emails strictly to deliver them. They do not retain or use your data for any other purpose.
  • Legal and regulatory authorities — where required by law (e.g., court orders, regulatory investigations).

We never sell, rent, or trade your personal data with third parties for marketing or any other purpose.

6. International data transfers

Some of our offices are located outside the European Economic Area (specifically India and Nepal). When your data is transferred to or accessed from these locations, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Internal data protection policies binding on all Jegos personnel globally
  • Restricted access — only personnel directly involved in your enquiry have visibility

7. How long we keep your data

We retain personal data only for as long as necessary for the purposes for which it was collected:

Data typeRetention period
Contact form submissions (no engagement)12 months from receipt
Active commercial discussionsDuration of discussion + 24 months
Signed contracts & service recordsDuration of contract + 7 years (legal/tax requirements)
IP addresses (rate-limit logs)1 hour

After the retention period expires, your data is securely deleted or anonymised.

8. Your rights under GDPR

As a data subject under the GDPR, you have the following rights regarding your personal data:

Right of access Request a copy of all personal data we hold about you (Art. 15)
Right to rectification Correct inaccurate or incomplete data we hold (Art. 16)
Right to erasure Request deletion of your data ("right to be forgotten") (Art. 17)
Right to restriction Limit how we process your data in specific circumstances (Art. 18)
Right to portability Receive your data in a structured, machine-readable format (Art. 20)
Right to object Object to processing based on legitimate interests (Art. 21)
Withdraw consent Withdraw consent at any time, without affecting prior processing
Right to complain Lodge a complaint with the Lithuanian DPA (VDAI) or your local supervisory authority

To exercise any of these rights, email contact@jegosuab.eu with the subject line "GDPR Request — [right you wish to exercise]." We will respond within 30 days as required by GDPR.

9. Cookies and tracking

Our website uses minimal cookies, only those strictly necessary for the website to function:

CookiePurpose & duration
jegos_langRemembers your language preference. Stored in localStorage indefinitely until cleared.
jegos_consentRecords your cookie consent choice. localStorage, 12 months.
PHPSESSIDSession cookie used only on the admin area. Expires when browser closes.

Third-party services

Our website may load resources from third parties:

  • Google Fonts — for typography. May log IP addresses for analytical purposes by Google.
  • Cloudflare Turnstile — for spam prevention on the contact form. Privacy-preserving by design (no user tracking, no cookies).
  • IP geolocation services (ipapi.co, ipinfo.io) — to detect your country and show the website in your language. Your IP may be processed by these providers; consult their privacy policies for details.

We do not use Google Analytics, Facebook Pixel, advertising trackers, or any behavioural profiling tools.

10. Data security

We implement appropriate technical and organisational measures to protect your personal data:

  • HTTPS encryption (TLS) for all website traffic
  • Secure SMTP (SSL/TLS) for all email transmissions
  • Server-side input validation and sanitisation on all form submissions
  • Rate limiting and CAPTCHA verification to prevent automated attacks
  • Restricted access to systems containing personal data — limited to authorised personnel
  • Regular security updates to our hosting infrastructure

While we take all reasonable steps to protect your data, no method of internet transmission is 100% secure. In the event of a personal data breach, we will notify the Lithuanian DPA (VDAI) within 72 hours and affected individuals where there is a high risk to their rights and freedoms, as required by GDPR Articles 33–34.

11. Children's data

Our services are exclusively B2B and are not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has submitted personal data through our website, please contact us immediately and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The "Last updated" date at the top of this page will indicate when changes were made. For material changes, we will provide reasonable notice (e.g., a banner on the website).

13. Contact & complaints

For all privacy-related enquiries:

If you are not satisfied with our response, you have the right to complain to the Lithuanian Data Protection Inspectorate (VDAI):

Valstybinė duomenų apsaugos inspekcija (VDAI)

L. Sapiegos g. 17, 10312 Vilnius, Lithuania
📧 ada@ada.lt · 📞 +370 5 271 2804
🌐 vdai.lrv.lt

If you reside in another EU member state, you may also contact your local supervisory authority.