Privacy Policy
Data Controller: FOREN PRO SIA
Registered Office: Pērnavas iela 6–29, Rīga, Latvia, LV-1012
Registration No.: LV40203661306
Website: https://datagate.lv
Contact: support@datagate.lv
1. Introduction
Welcome to DataGate AI ("we", "us", or "our"). We are committed to protecting your personal data and respecting your privacy rights in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR"), the Latvian Personal Data Processing Law (Fizisko personu datu apstrādes likons), and other applicable data protection legislation.
This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website https://datagate.lv (the "Site"), interact with our services, or submit a request for a demo or consultation.
Please read this policy carefully. We process your personal data only when we have a valid legal ground under Article 6 of the GDPR, as explained in Section 4 below.
2. Who We Are
Data Controller:
FOREN PRO SIA
Address: Pērnavas iela 6–29, Rīga, Latvia, European Union
Email: support@datagate.lv
For all privacy-related inquiries, complaints, or requests to exercise your rights, please contact us at support@datagate.lv.
We do not have a statutory Data Protection Officer (DPO) under Article 37 of the GDPR. For privacy matters, please use the email above.
3. Personal Data We Collect
3.1. Information You Provide Directly
When you submit the demo/consultation request form on our Site, we collect the following personal
| Data Category | Examples | Purpose |
|---|---|---|
| Identity Data | First name, last name | To identify you and personalize communication |
| Contact Data | Professional email address | To respond to your inquiry and send requested materials |
| Professional Data | Company name, industry/sphere of activity, number of employees | To assess your business needs and tailor our service offering |
We do not collect special categories of personal data (e.g., health, biometric, political opinions) through our Site forms.
3.2. Information Collected Automatically
When you visit our Site, certain information is automatically collected but only after you give consent via our cookie banner (except strictly necessary cookies):
| Data Type | Description | Legal Basis |
|---|---|---|
| Usage Data | Pages visited, time spent, clickstream, browser type, OS | Legitimate interest (Art. 6(1)(f) GDPR) |
| Device Data | IP address (anonymized), device identifiers | Legitimate interest + Consent for non-essential cookies |
| Analytics Data | Aggregated statistics via Google Analytics (see Section 7) | Consent (Art. 6(1)(a) GDPR) – obtained before loading GA |
3.3. Information from Third Parties
We do not routinely collect personal data from third parties. If we receive your data from a partner or referral source, we will notify you within 30 days as required by GDPR Article 14.
4. Legal Basis for Processing
We process your personal data only when we have a valid legal basis under GDPR Article 6:
| Processing Activity | Legal Basis |
|---|---|
| Responding to demo/consultation requests | Performance of pre-contractual measures (Art. 6(1)(b)) |
| Retaining contact details for future business development (if no contract is concluded) | Legitimate interest (Art. 6(1)(f)) – you will be informed of this purpose at collection and may object at any time (see Section 10) |
| Sending follow-up communications about our services | Legitimate interest (Art. 6(1)(f)) – you may object at any time (see Section 10) |
| Improving website functionality and user experience | Legitimate interest (Art. 6(1)(f)) |
| Google Analytics tracking (anonymized) | Consent (Art. 6(1)(a)) – obtained via cookie banner before loading GA |
| Compliance with legal obligations (e.g., tax, accounting) | Legal obligation (Art. 6(1)(c)) |
- The legal basis for each processing activity is determined before the processing begins. We do not change legal bases retroactively.
- You may withdraw consent at any time (e.g., for analytics cookies) without affecting the lawfulness of prior processing.
- For processing based on legitimate interest (including business development or follow-up communications), you have an unconditional right to object free of charge (see Section 10).
5. Purposes of Processing
We use your personal data for the following specific purposes:
- To process and respond to your demo/consultation request – including scheduling calls, sending materials, and follow-up communication.
- To evaluate business fit – understanding your company size and industry helps us tailor our Enterprise AI Security Gateway solution.
- To retain contact details for future business development (if no contract is concluded) – based on our legitimate interest in growing our business and offering relevant solutions to potential clients.
- To improve our website and services – analyzing usage patterns to enhance user experience and functionality.
- To ensure security and prevent fraud – monitoring for suspicious activity or abuse of our Site.
- To comply with legal and regulatory obligations – including GDPR record-keeping and cooperation with supervisory authorities.
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:
| Data Type | Retention Period | Rationale |
|---|---|---|
| Demo request data (name, email, company) – where a contract is concluded | Duration of contract + 24 months | To maintain business relationship context and fulfill legal obligations |
| Demo request data – where no contract is concluded | Up to 24 months from submission | Based on legitimate interest in business development (Art. 6(1)(f)). After this period, data is anonymized or securely deleted. |
| Google Analytics data (anonymized IP) | 14 months (default GA4 setting) | Industry standard for analytics retention |
| Server logs (IP, timestamp, user-agent) | 90 days | Security monitoring and troubleshooting |
| Consent records (cookie preferences) | 12 months | To respect your choices without re-prompting excessively |
After the retention period expires, data is securely deleted or anonymized so that it can no longer identify you.
7. Cookies and Tracking Technologies
7.1. What Are Cookies?
Cookies are small text files placed on your device to enhance website functionality, analyze usage, and personalize content.
7.2. Cookies We Use
| Cookie Name | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
_ga, _gid, _gat | Google Analytics | Distinguish users, throttle request rate | 1 min – 2 years | Analytics (requires consent, set only after acceptance) |
cookie_consent | DataGate AI | Store your cookie preferences | 12 months | Strictly necessary |
session_id | DataGate AI | Maintain login session for admin panel | Session | Strictly necessary |
Google Analytics Tracking ID: G-1Y7W6QNXVD
IP Anonymization: Google Analytics 4 does not store full IP addresses. Your IP address is used only for approximate geolocation and is not logged or stored in identifiable form.
7.3. Managing Cookies
You can control cookie preferences via our cookie banner or your browser settings. Disabling non-essential cookies may limit some Site functionality.
- Chrome: Settings → Privacy and security → Cookies
- Firefox: Options → Privacy & Security → Cookies
- Safari: Preferences → Privacy → Manage Website Data
- Edge: Settings → Cookies and site permissions
For Google Analytics opt-out (if you already consented but changed your mind):
https://tools.google.com/dlpage/gaoptout
8. Data Sharing and Recipients
We do not sell, rent, or trade your personal data. We may share your data only in the following circumstances:
| Recipient | Purpose | Legal Basis | Safeguards |
|---|---|---|---|
| Service Providers (hosting, email, analytics) | Site operation, communication, analytics | Art. 6(1)(b)/(f) | GDPR-compliant Data Processing Agreements (DPAs) |
| Google LLC (Analytics) | Aggregated usage insights | Consent + Standard Contractual Clauses (SCCs) | SCCs as adopted by the European Commission; IP anonymization; technical and organizational safeguards |
| Legal Authorities | Compliance with lawful requests | Legal obligation (Art. 6(1)(c)) | Strict necessity and proportionality assessment |
| Business Transfers | Merger, acquisition, or sale of assets | Legitimate interest | Notification and data minimization; successor bound by this policy |
All third-party processors are contractually obligated to process data only on our instructions and to implement appropriate security measures.
9. International Data Transfers
Your personal data is primarily processed within the European Economic Area (EEA). Where transfers outside the EEA occur (e.g., to Google LLC in the U.S.), we ensure compliance with GDPR Chapter V by:
- Using Standard Contractual Clauses (SCCs) approved by the European Commission;
- Conducting Transfer Impact Assessments to evaluate recipient country laws;
- Enabling technical safeguards such as IP anonymization and encryption.
You may request a copy of our SCCs or transfer safeguards by contacting support@datagate.lv.
10. Your Rights Under GDPR
As a data subject in the EEA, you have the following rights:
| Right | Description | How to Exercise |
|---|---|---|
| Access (Art. 15) | Request confirmation of processing and a copy of your data | Email support@datagate.lv with proof of identity |
| Rectification (Art. 16) | Correct inaccurate or incomplete data | Same as above |
| Erasure ("Right to be forgotten", Art. 17) | Request deletion where no overriding legal basis exists | Same as above |
| Restriction (Art. 18) | Limit processing while accuracy or lawfulness is verified | Same as above |
| Portability (Art. 20) | Receive your data in a structured, machine-readable format | Same as above |
| Objection (Art. 21) | Object to processing based on legitimate interest (including business development, follow-up communications, or direct marketing) | Email support@datagate.lv or click "Unsubscribe" in any marketing email — no cost, no conditions |
| Withdraw Consent (Art. 7(3)) | Revoke consent for analytics at any time | Cookie settings or email support@datagate.lv |
| Complaint (Art. 77) | Lodge a complaint with a supervisory authority | Latvian DVI or your local Data Protection Authority |
We aim to respond to all legitimate requests within 30 days. Complex requests may take up to 90 days, with prior notification.
11. Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:
- Encryption: TLS 1.3 for data in transit; AES-256 for data at rest
- Access Controls: Role-based access, multi-factor authentication (MFA) for admin systems
- Network Security: MITM proxy architecture with strict egress filtering
- Regular Testing: Vulnerability scans, penetration testing, and security audits
- Staff Training: GDPR and security awareness for all employees
While we strive to use commercially acceptable means to protect your data, no method of electronic transmission or storage is 100% secure.
12. Children's Privacy
Our services and Site are directed to businesses and professionals. We do not knowingly collect personal data from individuals under the age of digital consent in their jurisdiction (13 years in Latvia). If you believe we have inadvertently collected such data, please contact us immediately for deletion.
13. Changes to This Privacy Policy
We may update this policy periodically to reflect changes in our practices or legal requirements. The "Last Updated" date at the top will indicate revisions. Material changes will be notified via:
- A prominent notice on our Site;
- Email to registered contacts (where applicable);
- Updated cookie banner consent prompt.
Continued use of our Site after changes constitutes acceptance of the updated policy.
14. Contact Us
For questions about this Privacy Policy, your personal data, or to exercise your rights:
📧 Email: support@datagate.lv
📬 Postal Address: FOREN PRO SIA, Pērnavas iela 6–29, Rīga, Latvia
🌐 Website Contact Form: https://datagate.lv/
For technical support: support@datagate.lv
For sales inquiries: sales@datagate.lv
Supervisory Authority (Latvia):
Datu valsts inspekcija (DVI)
Blaumaņa iela 11/13, Rīga, LV-1011, Latvia
https://www.dvi.gov.lv | info@dvi.gov.lv