Portal

Privacy Policy

Last updated: January 2026

This Privacy & Cookie Policy explains how personal data is collected, used, and protected when you visit or interact with xam.lt (the “Website”).

We are committed to protecting your privacy and processing personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Lithuanian and EU laws.

1. Data Controller

The data controller responsible for processing your personal data is:

Website: xam.lt
Email: info@xam.lt
Address: Vilnius st. 33, Vilnius, Lithuania

If you have any questions regarding this policy or your personal data, you may contact us using the email above.

2. Personal Data We Collect

Depending on how you use the Website, we may collect the following categories of personal data:

  • Contact data (such as email address and any information you provide when contacting us)
  • Technical data, including:
    • IP address
    • Browser type and version
    • Device information
    • Date and time of access
  • Usage data relating to how the Website is accessed and used

We do not intentionally collect special categories of personal data (such as health, biometric, or political data).

3. How We Collect Data

Personal data may be collected through:

  • Direct communication (e.g. when you email us)
  • Automatic technical processes (e.g. server logs, essential cookies)

4. Purposes and Legal Bases for Processing

We process personal data only when there is a lawful basis under Article 6 of the GDPR, including:

PurposeLegal Basis
Responding to enquiriesLegitimate interest
Operating and securing the WebsiteLegitimate interest
Ensuring technical functionalityLegitimate interest
Compliance with legal obligationsLegal obligation

5. Cookies

What Are Cookies

Cookies are small text files that are stored on your device (computer, smartphone, tablet) when you visit a website. Cookies are widely used to make websites work efficiently, enhance user experience, and provide information to website owners.

Types of Cookies We Use

The Website may use the following categories of cookies:

Essential Cookies

These cookies are necessary for the basic operation and security of the Website. They enable core functionality such as page navigation, access to secure areas, and protection against misuse.

Consent required: No

Functional Cookies

Functional cookies allow the Website to remember choices you make and provide enhanced or personalised features.

Consent required: Yes

Analytics Cookies

Analytics cookies collect information about how visitors use the Website, such as which pages are visited most often and how users navigate the Website. This information is used to improve the performance and functionality of the Website.

Consent required: Yes

Marketing Cookies

Marketing cookies are used to track visitors across websites and may be used to display content or advertisements that are relevant to users’ interests.

Consent required: Yes

Third-Party Cookies

Some cookies may be set by third parties whose services are used on the Website. These third parties may use cookies to collect information about your online activities over time and across different websites.

Consent required: Yes

Cookie Consent

When you visit the Website for the first time, you are presented with a cookie consent notice that allows you to:

  • Accept all cookies
  • Reject non-essential cookies
  • Manage cookie preferences

Non-essential cookies are used only after you have provided your consent. You may withdraw or modify your consent at any time through the cookie settings available on the Website.

Managing Cookies

You can also control or delete cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of the Website.

6. Data Sharing and Third Parties

We do not sell or rent personal data.

Personal data may be processed by trusted service providers (e.g. hosting providers) only where necessary to operate the Website. Such providers are bound by data protection agreements and process data solely on our instructions.

7. International Data Transfers

We aim to process personal data within the European Union.

If data is transferred outside the EU/EEA, appropriate safeguards required by GDPR (such as standard contractual clauses) will be applied.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes described in this policy or to comply with legal obligations.

When data is no longer required, it is securely deleted or anonymised.

9. Your Rights Under GDPR

As a data subject, you have the right to:

  • Access your personal data
  • Rectify inaccurate or incomplete data
  • Request erasure (“right to be forgotten”)
  • Restrict processing
  • Object to processing
  • Request data portability
  • Withdraw consent (where applicable)
  • Lodge a complaint with a supervisory authority

In Lithuania, the supervisory authority is the State Data Protection Inspectorate.

You may exercise your rights by contacting: info@xam.lt

10. Data Security

We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or misuse.

11. Changes to This Policy

We may update this Privacy & Cookie Policy from time to time.
Any changes will be posted on this page with an updated revision date.

12. Contact

For privacy-related questions or requests, contact:

Email: info@xam.lt
Address: Vilnius st. 33, Vilnius, Lithuania