Privacy policy

Swiss-Latvian Privacy Policy for the Unified Website Platform

Your privacy and data protection are of great importance to the controller of the Unified Website Platform. We assume that if you are reading this policy in connection with your consent, which has been requested regarding the processing of your personal data, you have read this notice and have accepted this data processing before submitting your personal data.

The government advocates for openness and transparency. Therefore, when you provide us with your personal data, we have described how and for what purposes personal data are processed on the Unified Website Platform. Before processing personal data, we assess the legality of data processing activities. We process personal data of individuals based on official mandates and the associated legal obligations.

The purpose of the Unified Website Platform Privacy Policy is to provide general information regarding the processing of personal data organized and conducted by the State Chancellery, in compliance with the principles of personal data processing included in the European Parliament and Council Regulation No. 2016/679 of April 27, 2016, on the protection of natural persons concerning the processing of personal data and the free movement of such data (General Data Protection Regulation, GDPR).

The controller of personal data on the Unified Website Platform is the State Chancellery (VK). The processors of personal data on the Website Platform include the institutions of the websites included in the platform, the platform maintainers – the State Regional Development Agency (VRAA), the technical resource hosts – the Information Center of the Ministry of Interior (IeMIC), and the technical service providers – the Latvian State Radio and Television Center (LVRTC).

On the Unified Website Platform, your personal data will be processed in accordance with the realization of the legal interests of government institutions, the fulfillment of obligations stipulated by regulatory acts, the fulfillment of contractual obligations, the provision of public information, and other previously specified purposes.

The legal basis for personal data processing carried out within the services provided by the Unified Website Platform is determined by the following regulatory acts:

• Article 10 of the Public Administration Structure Law
• Cabinet of Ministers Regulation No. 399 of July 4, 2017, “Procedure for Accounting and Quality Control of Public Administration Services”
• Cabinet of Ministers Regulation No. 402 of July 4, 2017, “Regulations on E-services of Public Administration”
• Cabinet of Ministers Regulation No. 445 of July 14, 2020, “Procedure for Institutions to Publish Information Online”

The employees of the parties involved in the Unified Website Platform process personal data only for the performance of their duties or on behalf of or within the authorization of institutions, following the basic principles of personal data processing and confidentiality requirements established in the institution’s internal documents.

Employees are prohibited from processing personal data obtained during the performance of their duties for personal purposes or those of others. Data processors, when processing personal data within their job duties, minimize the risk as much as possible that personal data will be accessed by unauthorized persons as a result of actions or omissions.

On the Unified Website Platform, your personal data is processed in compliance with confidentiality requirements and with care for the security of the data in our possession. The processors of personal data on the Unified Website Platform use various security measures to prevent unauthorized access to your data, data disclosure, or other inappropriate use of personal data. Proper data processing, storage, and data integrity are ensured with an appropriate level of security. Accordingly, we use reasonable and appropriate physical, technical, and administrative procedures and means to protect the personal data information we collect and process. The implemented security measures are continuously improved in accordance with security requirements, ensuring appropriate data protection security measures to the extent necessary for data processing purposes.

We implement personal data protection through encryption means, firewall protection, and other data network security breach detection solutions. The processors of personal data on the Unified Website Platform ensure data confidentiality and implement appropriate technical and organizational measures to protect personal data from unauthorized access, unlawful processing, disclosure, accidental loss, distribution, or destruction, to the extent necessary for data processing purposes. The security measures for personal data are constantly improved and enhanced to maintain the level of personal data protection.

Personal data processing protection is carried out for:

• Personal data processed in the information technology infrastructure (servers, local computer networks, and application software);
• Personal data transmitted over the data transmission network, if any;
• Information systems used to ensure work, administered by the institutions involved in the Unified Website Platform;
• Developed, registered, and circulated electronic documents containing personal data.

You have the right to withdraw your consent (if such has been requested and provided by you) for the collection, processing, and use of your personal data at any time. The controller of personal data on the Unified Website Platform will evaluate your request in accordance with its legal interests. If personal data is no longer needed for the previously specified processing purposes, it will be deleted.

The controller of personal data on the Unified Website Platform is responsible for and processes personal data using means that should prevent the misuse, unauthorized disclosure, or alteration of personal data.

To improve communication within public administration, the controller of personal data monitors the personal data received. This data may be used in an aggregated form to create summary reports, which may be distributed within the public administration in Latvia. The reports are anonymized and do not include personal data.

The Unified Website Platform contains access data of registered and public users, usernames, information selection parameters, traffic information, and Internet Protocol (IP) access address information. The Unified Website Platform uses cookies that allow for information on visitor activities, page views, sources, and time spent on the site to be collected. We obtain this information to improve the convenience and interests of visitors to the website and to ensure that you receive the best possible service. Personal data processing is carried out to the minimum extent necessary to achieve the processing purpose.

We store your personal data on the website only as long as necessary for the purposes for which it was obtained. The processors of personal data on the Unified Website Platform who have access to this data are trained to handle it properly and in accordance with the regulatory data security regulations.

Personal data is stored as long as there is a legal obligation to do so. After the data storage period ends, the data is securely deleted or depersonalized so that it can no longer be associated with the data subject.

The personal data available on the Unified Website Platform is considered restricted information and is disclosed to third parties only in cases, procedures, and to the extent specified by legal acts or contracts. When transferring personal data to contract partners of the Unified Website Platform (independent controllers), additional provisions regarding personal data processing are included in the contracts.

The websites contain links to other sites with different usage and personal data protection policies.

The institutions involved in the implementation and cooperation of the Website Platform collaborate based on concluded regulatory acts. If you have any questions or complaints about personal data processing and protection, please report them to the State Chancellery at vk@mk.gov.lv, where your submitted information will be registered and evaluated, or contact the State Chancellery’s designated responsible employee for personal data processing. The responsible data controller is Aldis Apsītis (email address: aldis.apsitis@mk.gov.lv).

Data subjects have the right to submit complaints about the use of personal data to the Data State Inspectorate (www.dvi.gov.lv) if the subject believes that the processing of their personal data violates their rights and freedoms in accordance with applicable legal acts.