Who are we?

UAB Larochė / LAROCHÉ, company code: 304952484, address: Linkuvos g. 58, Kaunas, Lithuania. Contact details for inquiries: contact form. You are on our website: https://www.laroche.lt

Why do we process your data? We collect and process your personal data based on the following legal grounds:
Conclusion and performance of the contract: so that we can accept and fulfill your dessert orders.
Legitimate interest: in order to ensure high-quality customer service through our website inquiry forms and social network integrations.
Agreement: which you provide when you subscribe to our newsletter or agree to the use of cookies.
Data profiling is not performed: automated decision-making or profiling is not carried out.

Comments

When visitors leave comments on the website, we collect the data provided in the comment form, as well as the visitor's IP address and the browser's user agent string, in order to make it easier to detect unwanted emails.

An anonymous string created from your email address (also called a hash) may be provided to the Gravatar service to determine whether you are using it. You can view the Gravatar service's privacy policy here: https://automattic.com/privacy/. 
Once your comment has been approved, your profile picture will be visible publicly, depending on the context of your comment.

Your data may be transferred to our service providers (data processors) who provide us with customer relationship management (CRM) systems and server rental services. These partners are committed to ensuring the security of your data.

Media

If you upload images to the website in comments or other publicly visible places, you should avoid uploading images with embedded location data (EXIF GPS). Visitors to the website can download and extract any location data from images on the website. Not valid for files you submit on contact forms.

Cookies

If you leave a comment on our website, you can consent to your name, email address and website being stored in cookies. This is for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies are valid for one year.

If you visit our login page, we will set a temporary cookie to determine whether your browser accepts cookies. This cookie does not contain any personal data and is discarded when you close your browser.

When you log in, we will also set a few cookies to store your login information and screen display preferences. Login cookies are valid for two days and display preference cookies are valid for one year. If you choose "Remember me", your login details will remain for two weeks. If you leave your account, your login cookies will be removed.

Changing your password

If you are asked to reset your password, your IP address will be included in the reset password email.

How long we keep your data

If you leave a comment, the comment and its metadata are kept indefinitely. This is so that we can automatically recognise and approve all subsequent comments instead of keeping them in the moderation queue.

We store order data for as long as required by accounting laws (usually 10 years).

We also protect the personal information provided by users who register on our website (if any) in their user profiles. All users can view, edit or delete their personal information at any time (except that they cannot change their username). Site administrators can also view and edit this information.

What rights you have over your data

If you have an account on this website or have left comments, you can request that we send you an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we delete any personal data we hold about you. This does not include any data that we are required to keep for administrative, legal or security purposes.

You have the right to request the deletion of all your personal data we hold, including that obtained through Facebook Messenger or WhatsApp integrations, at any time. Requests can be sent via this website. contact form by clicking here. We undertake to remove data from our systems within a reasonable period of time (i.e. within 30 days) if its storage is not required by law. If you believe that your data is being processed unlawfully, you have the right to contact the State Data Protection Inspectorate (VDAI).

Order management and communication

In order to provide high-quality customer service, the data received in inquiry forms and via Messenger/WhatsApp is transferred to our internal order management systems (CRM) managed by our partners or us. This system is used only for direct order fulfillment and communication with you. We ensure that all our technology partners comply with GDPR standards.

Communication via Meta platforms

When you contact us via Facebook Messenger, Instagram, or WhatsApp, or fill out an inquiry form on our website, we use Meta API (Application Programming Interface) tools.
Data processed: Your first name, last name (as listed in your Meta profile), phone number, message content, and order information.
Objective: Respond to your inquiries, provide information about the status of your order, and offer assistance.
Data storage: This data is stored in a secure Meta infrastructure and in our order management system in accordance with GDPR requirements.
Third parties: We use technical infrastructure providers (e.g., GitHub servers) for data processing, which ensure the functioning of the system.

Where we send your data

Our website uses technologies from Meta Platforms, Inc. (including Facebook Messenger and WhatsApp Business API). When you contact us using these tools or fill out a contact form, your data (name, profile information, phone number) is processed using secure application programming interfaces (APIs). This allows us to manage orders efficiently and provide you with the necessary information about our products.

Some of your data may be stored on servers outside the European Economic Area (EEA) (e.g., in the US). In such cases, we ensure that service providers comply with the EU-US Data Privacy Framework or use standard contractual clauses (SCCs).

Visitor comments and data entered into contact forms may be checked using third-party plugins that perform automatic spam detection services.