Afiaera Logo

    GDPR Compliance Statement

    Effective Date: July 07, 2025

    Meaningful Technology UAB - Afiaera

    Company Information

    Company Name: Meaningful Technology UAB

    Product Name: Afiaera

    Registered Address: Giruliu g. 10, Vilnius 12112, Lithuania

    Company Registration Number: 306726441

    Introduction

    Afiaera, a product of Meaningful Technology UAB, is fully committed to complying with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and ensuring the lawful, fair, and transparent processing of all personal data.

    This GDPR Compliance Statement outlines our practices and your rights under the Regulation. As a data controller (and in some cases a data processor) of personal data, we strictly adhere to the data protection principles defined under the GDPR.

    1. Lawful Basis for Data Processing

    We only collect and process personal data where we have a valid legal basis to do so, including:

    • Consent – When you explicitly allow us to use your data for specific purposes (e.g., marketing).

    • Contractual necessity – To fulfill our obligations to you under the service agreement.

    • Legal obligation – To comply with applicable laws (e.g., accounting, fraud prevention).

    • Legitimate interest – To improve our platform, monitor abuse, and protect our systems, while respecting your rights and freedoms.

    2. Data Minimization and Purpose Limitation

    We only collect personal data that is:

    • Adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.

    • Used solely for specified, explicit, and legitimate purposes, including account creation, communication, billing, and platform security.

    We do not use your data for any purposes that are incompatible with those originally stated.

    3. Transparency and Fair Processing

    We provide clear and detailed information on:

    • What personal data we collect

    • Why and how we collect it

    • Who we share it with

    • How long we retain it

    • How you can exercise your rights

    You can access this information in our Privacy Policy or by contacting us directly at legal@afiaera.com.

    4. Your GDPR Rights

    As a data subject, you have the following rights under GDPR:

    4.1. Right to Access

    You can request access to your personal data and obtain a copy of the information we hold about you.

    4.2. Right to Rectification

    You have the right to request correction of inaccurate or incomplete data.

    4.3. Right to Erasure ("Right to be Forgotten")

    You may request that we delete your personal data when there is no legal or contractual reason for its continued processing.

    4.4. Right to Restrict Processing

    You may request temporary restriction of processing in certain circumstances (e.g., during dispute resolution).

    4.5. Right to Data Portability

    You have the right to receive your data in a structured, machine-readable format, and to transmit it to another controller where feasible.

    4.6. Right to Object

    You may object to processing based on legitimate interest or direct marketing.

    4.7. Right to Withdraw Consent

    If processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing done prior to withdrawal.

    5. Data Retention

    We retain personal data only for as long as necessary to:

    • Fulfill the purposes for which it was collected

    • Comply with legal, accounting, or regulatory requirements

    After the retention period, data is securely deleted or anonymized in accordance with best practices.

    6. Data Transfers

    If we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards such as:

    • Standard Contractual Clauses (SCCs) approved by the European Commission

    • Binding corporate rules (if applicable)

    • Transfer to countries recognized by the EU as providing an adequate level of data protection

    All third-party partners and vendors undergo a rigorous review for data protection compliance.

    7. Data Security

    We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risks, including:

    • Encryption of data in transit and at rest

    • Access controls and user authentication

    • Regular vulnerability scanning and security patching

    • Employee training on privacy and data handling

    8. Data Protection Officer (DPO)

    While we are not currently required by law to appoint a Data Protection Officer under Article 37 of GDPR, we have designated a Privacy Compliance Lead responsible for overseeing data protection and ensuring ongoing compliance.

    You may contact this person directly at: legal@afiaera.com

    9. Complaints and Supervisory Authority

    If you believe your rights under the GDPR have been violated, you may lodge a complaint with:

    State Data Protection Inspectorate

    L. Sapiegos g. 17, 10312 Vilnius, Lithuania

    Website: https://vdai.lrv.lt

    10. Contact Us

    If you have any questions about this GDPR Compliance Statement or our data practices, please contact:

    Email: legal@afiaera.com

    Questions about GDPR compliance?

    For any questions about our GDPR compliance or your data rights, contact us at legal@afiaera.com