Privacy Policy

UAB “TSG Holdings” PRIVACY POLICY

Privacy Policy (hereinafter referred to as the “Policy”) regulates the principles of collection, processing and storage of personal data of natural persons visiting the website www.business-link.pro by UAB “TSG Holdings”, company code 306047337, Jovarų g. 2A, LT-47193 Kaunas (hereinafter referred to as the “Company”), and establishes the purposes and means of processing personal data.

This Policy has been prepared in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the “Regulation”).

By means of this Policy, natural persons visiting the Company’s website www.business-link.pro are informed about the processing of personal data.

TERMS USED

Personal Data means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name and surname, identification number, location data, online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Personal Data Breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.

Data Subject means a natural person, visitor of the Company’s website, candidate for a vacant position.

Consent of the Data Subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by a statement or by a clear affirmative action signifying agreement to the processing of personal data relating to him or her.

Rights of the Data Subject means the possibilities of the data subject to participate in and control the activities of the data controller and/or processor when their personal data are processed: to know and be informed about the processing of their personal data in the Company; to access their personal data processed in the Company and information on how they are processed; to request rectification, destruction of personal data or suspension, except storage, of personal data processing actions where data are processed in violation of legal requirements; to object to the processing of personal data; to request deletion of personal data; to receive personal data concerning them that they have provided to the data controller; to lodge a complaint with the supervisory authority (State Data Protection Inspectorate).

Data Processing means any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, sorting, organization, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination with other data, restriction, erasure or destruction.

Automated Data Processing means data processing operations carried out wholly or partly by automated means. These include any information and communication technologies enabling the processing of personal data, such as computers, communication networks, etc.

Data Controller means a natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. In this case, UAB “TSG Holdings”, legal entity code 306047337, address: Jovarų g. 2A, LT-47193 Kaunas, phone No. +370 688 79300, e-mail: info@business-link.pro.

Data Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the data controller.

Data Recipient means a natural or legal person, public authority, agency or other body to which personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with European Union or Member State law shall not be regarded as recipients.

Cookie means a small text file stored on a computer or mobile device when visiting a website.

Other terms used in this Policy shall be understood as defined in the Regulation and other legal acts regulating the processing of personal data.

SECTION I

PRINCIPLES OF PERSONAL DATA PROCESSING

  1. The Company processes personal data in accordance with the following principles:

1.1. The Company processes personal data only for lawful purposes defined in this Policy and does not further process them in a manner incompatible with those purposes (purpose limitation principle);

1.2. Personal data are processed accurately, fairly and lawfully, in compliance with legal requirements (lawfulness, fairness and transparency principle);

1.3. The Company processes personal data in such a way that they are accurate and updated when necessary (accuracy principle);

1.4. The Company processes personal data only to the extent necessary for achieving the purposes of processing (data minimization principle);

1.5. Personal data are stored in a form permitting identification of data subjects for no longer than necessary for the purposes for which the personal data were collected and processed (storage limitation principle);

1.6. The Company applies appropriate technical and organizational measures ensuring adequate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage (integrity and confidentiality principle);

1.7. The Company is responsible for compliance with the principles specified in this Policy and must be able to demonstrate such compliance (accountability principle).

SECTION II

PURPOSES AND LEGAL BASES FOR PERSONAL DATA PROCESSING

  1. The Company processes your personal data:

2.1. for recruitment and internal administration purposes (personnel management, document administration, use of material and financial resources);

2.2. for administration of requests and/or complaints, including but not limited to examination and preparation of responses, and ensuring the quality of services provided;

2.3. for administration of inquiries submitted by e-mail, telephone, through the Company’s website or other communication channels, including but not limited to examination and preparation of responses;

2.4. for proper management and administration of the website, including but not limited to ensuring its operation and security, collection of statistical information.

  1. For the purposes specified in Clause 2 of this Policy, the Company collects and processes the following personal data:

3.1. For recruitment and internal administration purposes, the Company processes the following personal data of job applicants: name, surname, telephone number, e-mail address, information on when you wish to start working, preferred type of work, spoken languages, information on ADR certificates held, and other additional information provided in the application form.

3.2. For administration of requests and/or complaints and ensuring service quality, the Company processes the following personal data of persons submitting requests and/or complaints: name, surname, e-mail address and other data provided in the request and/or complaint.

3.3. For administration of inquiries received through the Company Group’s website, e-mail, telephone or other communication channels, the Company processes the following personal data of persons submitting inquiries: e-mail address, telephone number and other personal data provided in the inquiry.

3.4. For proper management and administration of the website, including ensuring its operation and security and collecting statistical information, the Company processes the following personal data of visitors to the Company Group’s website: unique randomly generated identifier, login time, network and location data.

SECTION III

COLLECTION AND PROCESSING OF PERSONAL DATA

  1. Personal data are collected directly from you when visiting the website, filling in recruitment forms, submitting inquiries through the website, or contacting the Company by telephone, e-mail or other communication means. By submitting an inquiry to the e-mail address indicated on the website, info@business-link.pro, you agree that your personal data will be used for the purpose of handling your request/complaint or responding to your inquiry.
  2. Where your consent is required for the processing of personal data, such consent is expressed through your active actions, i.e. contacting the Company with an inquiry, ticking the consent box before submitting personal data electronically, pressing the consent button, or replying “I agree” to an e-mail sent by the Company.
  3. Where the Company processes your personal data on the basis of consent, you have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. Consent may be withdrawn by contacting the Company via e-mail at info@business-link.pro.
  4. You may choose not to provide certain personal data to the Company; however, in such cases, your ability to use the Company’s services may be limited.
  5. Only persons whose job functions and/or contractual obligations require it may process your personal data within the Company, and only where necessary to achieve the purposes specified in this Policy.
  6. Regardless of how your personal data are collected, they shall be stored only to the extent and for the period necessary to achieve the purposes established, but no shorter than required by applicable legal acts and internal Company regulations.

9.1. Your personal data as a candidate applying for a position at the Company are stored until the end of the recruitment process, and if you are not selected, the data are deleted. The personal data of the successful candidate are stored in their personnel file in accordance with legal requirements applicable to employee data retention. If you are not selected, with your consent, your personal data may be stored for 1 (one) year after the end of the recruitment process for the purpose of informing you about future vacancies at the Company.

9.2. If you submit a request and/or complaint to the Company, your personal data shall be stored for 1 (one) year after the request or complaint has been examined and/or a response has been provided.

9.3. If you submit an inquiry to the Company, your personal data shall be stored until withdrawal of your consent, but no longer than 1 (one) year after the inquiry has been examined and/or a response has been provided.

9.4. The storage periods for personal data collected through cookies are defined in the section “Use of Cookies” of this Policy.

  1. Your personal data may be stored longer than specified in Clause 9 where:

10.1. it is necessary for the Company to defend its rights and legitimate interests (to defend against claims, complaints or legal actions and exercise its rights);

10.2. there are reasonable suspicions of unlawful activity and an investigation is being conducted;

10.3. the personal data are necessary for proper resolution of a dispute or complaint;

10.4. other grounds established by legal acts apply.

  1. Upon expiry of the storage period of your personal data or documents containing your personal data, the personal data and/or documents shall be destroyed in such a way that they cannot be restored or their contents recognized.

SECTION IV

TRANSFER OF PERSONAL DATA AND DATA RECIPIENTS

  1. Your personal data may be disclosed to third parties only if at least one lawful basis for processing personal data under Article 6(1) of the Regulation exists, taking into account the purpose of processing and the scope of personal data disclosed.
  2. Personal data processed by the Company may be disclosed without your separate consent to:

13.1. state and municipal institutions, authorities and other recipients/data registers and information systems to whom the Company is obliged to provide personal data under the laws of the Republic of Lithuania and other legal acts;

13.2. law enforcement authorities;

13.3. the Company’s business partners, to the extent necessary for proper performance of a contract concluded between the Company and you or your represented company/employer.

  1. Personal data processed by the Company may also be disclosed to data processors processing personal data on behalf of the Company.
  2. Your personal data may be transferred to recipients located in European Union Member States and other European Economic Area countries under the same conditions and procedures applicable to recipients located in the Republic of Lithuania.

SECTION V

RIGHTS OF THE DATA SUBJECT

  1. You, as a data subject, have the right:

16.1. to know / be informed about the processing of your personal data;

16.2. to access your personal data and information about their processing;

16.3. to request correction of inaccurate or incomplete personal data;

16.4. to request deletion of your personal data (“right to be forgotten”);

16.5. to request restriction of processing of your personal data;

16.6. to object to the processing of personal data;

16.7. to data portability;

16.8. to lodge a complaint with the supervisory authority.

  1. The rights of data subjects are implemented in accordance with the Regulation and the internal procedure approved by the Company.
  2. To exercise your rights, you must submit a written request to the Company personally, through a representative, by registered mail or electronically. You must confirm your identity.
  3. The rights of data subjects are exercised free of charge. However, where requests are manifestly unfounded or excessive, the Company may charge a reasonable fee.

SECTION VI

MEASURES ENSURING SECURITY OF PERSONAL DATA

  1. The Company implements appropriate organizational and technical measures to protect personal data against unauthorized processing, destruction, loss, alteration or disclosure.
  2. Security measures are established in accordance with the Regulation and other applicable legislation.
  3. Employees and other authorized persons having access to personal data are obliged to maintain confidentiality.
  4. The Company ensures secure premises, proper maintenance of technical equipment, network security, antivirus software, firewalls and other technical measures necessary for data protection.
  5. The Company engages only such data processors that ensure appropriate organizational and technical security measures.

SECTION VII

USE OF COOKIES

  1. Information collected through cookies helps the Company Group improve website performance.
  2. Main cookies used on www.business-link.pro:

Essential cookies:
These cookies are necessary for the website to function properly. They enable core functions such as page navigation and access to secure areas of the website.

Analytical cookies:
These cookies help us analyze how visitors use the website so we can measure and improve website performance.

Marketing cookies:
These cookies are used for marketing purposes, such as tracking user behavior, personalizing advertisements and analyzing website activity.

  1. Personal data of website visitors are collected through “Google Analytics”.
  2. Consent to cookies is given by clicking “I AGREE” on the website.
  3. Consent may be withdrawn at any time by changing browser settings and deleting stored cookies.

SECTION VIII

SOCIAL NETWORKS

  1. Information you provide to the Company through social media is controlled by social network operators.
  2. The Company currently maintains an account on Facebook, whose privacy policy is available at facebook.com/policy.php.
  3. Since the Company cannot control third-party websites and the cookies they use, it is recommended to review their privacy policies.

SECTION IX

CHANGES TO THE PRIVACY POLICY

  1. This Policy is regularly reviewed and updated. Changes are published on www.business-link.pro.
  2. This Privacy Policy was last updated on 2026 01 01.

SECTION XX

CONTACT INFORMATION

If you have any questions, comments or complaints regarding the personal data collected, used and stored by the Company, please contact us at info@business-link.pro.