ISTOC | High-quality packaging solutionsinfo@istoc.eu
ISTOC.EU

Privacy policy

This privacy policy explains how UAB ISTOC processes personal data when you visit istoc.eu, submit an enquiry or contact us.

Privacy policy

This privacy policy explains how UAB ISTOC processes personal data when you visit istoc.eu, submit an enquiry or contact us.

Last updated: 7 June 2026

Data controller

UAB ISTOC, company code 304843606, VAT code LT100011674812, Laisvės pr. 60, LT-05120 Vilnius, Lithuania. Email: info@istoc.eu, phone: +370 602 12090.

Personal data we process

When you submit an enquiry, we may process your name, email address, phone number, message, selected product name and product code. The web server may also record technical data such as IP address, browser type, request time and security logs.

Purposes and legal bases

We process enquiries, respond and prepare offers to take steps before entering into a contract or on the basis of our legitimate interest in communicating with customers (GDPR Art. 6(1)(b) and (f)). Legal obligations are processed under Art. 6(1)(c). Non-essential cookies or similar technologies rely on consent under Art. 6(1)(a).

Retention periods

Enquiries and correspondence are generally retained for up to 24 months after the last communication, unless longer retention is needed for a contract, accounting, legal claims or a dispute. Server and security logs are retained only as reasonably necessary for security and incident investigation.

Recipients and service providers

Data may be accessed by authorised staff and service providers needed for hosting, email, IT security and maintenance. Hostinger services are currently used for website and email infrastructure. Providers process data under contractual safeguards and our instructions.

Transfers outside the EEA

We aim to process data within the European Economic Area. Where a provider transfers data outside the EEA, an appropriate mechanism such as an adequacy decision or Standard Contractual Clauses must be used.

Your rights

Depending on the circumstances, you may request access, correction, deletion, restriction, portability, object to processing and withdraw consent at any time. Send requests to info@istoc.eu. We respond within the GDPR deadline, normally one month.

Data security

We use reasonable organisational and technical measures to protect data against unauthorised access, loss, alteration or disclosure. No internet transmission method can guarantee absolute security.

Right to lodge a complaint

You may complain to the Lithuanian State Data Protection Inspectorate (vdai.lrv.lt) or the supervisory authority in your EU country.

Changes to this policy

We may update this policy when services or legal requirements change. The latest version is published on this page.