LV RU EN
Back to homepage

Privacy Policy

Last updated: 18 February 2026

This Privacy Policy (the Policy) explains how SIA FROST GROUP processes personal data when you use our website or contact us.

1. Data Controller

Data Controller: SIA FROST GROUP
Registration number: 40203525056
Legal form: Limited Liability Company (SIA)
Registered address: Jasmuižas iela 9B, Rīga, LV-1021, Latvia
Postal address: Jasmuižas iela 9B, Rīga, LV-1021, Latvia

Email for data protection matters: info@frostgroup.lv

2. Personal Data We Process

2.1. Data processed when visiting our website

When you visit our website, certain technical data may be processed automatically in server log files for technical and security reasons, including:

  • IP address
  • date and time of the request
  • browser type and operating system
  • requested page or resource (URL)
  • technical error information (if applicable)

Purposes of processing:

  • ensuring proper operation of the website
  • ensuring information system security and stability
  • preventing and investigating security incidents and malicious activities

Server log data is stored for no longer than 30 days and is then deleted or anonymised, unless a longer retention period is required, for example, to investigate a security incident.

2.2. Communication with us (email, contact form)

If you voluntarily contact us, we may process the following personal data:

  • name and surname (if provided)
  • email address
  • message content and any other information you choose to provide

This data is processed in order to:

  • respond to your enquiry
  • communicate with you regarding the relevant matter
  • fulfil contractual obligations or legal requirements, where applicable

Personal data related to communication is stored for as long as necessary to handle the enquiry and ensure further communication, as well as for periods required by applicable laws.

3. Cookies and Similar Technologies

We do not use cookies, tracking pixels, browser local storage or other similar tracking technologies for user behaviour tracking, marketing purposes or profiling.

If, in the future, the use of cookies or similar technologies becomes necessary, we will:

  • update this Policy
  • provide clear and transparent information about such technologies
  • request your consent where required by applicable law

4. Legal Basis for Processing

Personal data is processed on the following legal bases under the General Data Protection Regulation (GDPR):

  • Article 6(1)(b) – processing is necessary for the performance of a contract or to take steps at your request prior to entering into a contract
  • Article 6(1)(f) – processing is necessary for our legitimate interests in ensuring website operation, security and protection of our rights
  • Article 6(1)(c) – processing is necessary for compliance with legal obligations

Where processing is based on your consent, you have the right to withdraw your consent at any time.

5. Data Recipients and Transfers

We do not disclose personal data to third parties, except where:

  • disclosure is required by applicable law
  • disclosure is necessary to protect our legitimate interests
  • processing is carried out by service providers acting on our behalf (for example, hosting, email or accounting service providers)

Such service providers process personal data only in accordance with our instructions and under appropriate data processing agreements.

Personal data is generally processed within the European Union or the European Economic Area (EU/EEA). If personal data is transferred outside the EU/EEA, appropriate safeguards are ensured in accordance with GDPR requirements.

6. Data Retention Periods

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by applicable laws. After the retention period expires, personal data is securely deleted or anonymised.

7. Your Rights as a Data Subject

Under the GDPR, you have the right to:

  • obtain information about the processing of your personal data and access to it
  • request correction of inaccurate or incomplete data
  • request deletion of your personal data in certain circumstances
  • request restriction of processing
  • object to processing based on legitimate interests
  • request data portability, where applicable
  • withdraw your consent at any time, where processing is based on consent

To exercise your rights, please contact us at info@frostgroup.lv.

8. Complaints to the Supervisory Authority

If you believe that your personal data has been processed in violation of data protection laws, you have the right to lodge a complaint with a supervisory authority.

In Latvia, the supervisory authority is:

Data State Inspectorate (Datu valsts inspekcija)
https://www.dvi.gov.lv

9. Data Security

We implement appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised access or disclosure.

Such measures include, for example, secure servers, access control, encrypted connections (HTTPS) and regular system maintenance.

10. Changes to This Policy

We may update this Policy from time to time. The current version of the Policy is always available on our website.