Privacy policy

Last updated: July 5, 2025

1. WHO WE ARE

This Privacy Policy explains how SIA “STABBURAG” (trading as ADRplus, “we”, “us”, “our”) collects, uses and protects the personal data of visitors and customers of the website https://shop.adr.plus (the “Site”) and all related services, including e-commerce, customer support, newsletters and online-course delivery (collectively, the “Services”).

2. PERSONAL DATA WE COLLECT
  • Contact and account data – name, address, phone, email, login credentials.
  • Business identification data – company name, company address, EU VAT number (to apply 0% intra-EU VAT).
  • Order and payment data – products, totals, delivery choice, masked card details (Stripe token).
  • Course data – progress, test scores, PDF certificates bearing your name.
  • Marketing preferences – newsletter opt-ins, campaign interactions (Mailchimp).
  • Technical data – IP address, browser, device type, language, cookies and similar IDs.
  • Usage data – pages viewed, clicks, session length (Google Analytics, Meta Pixel).
3. PURPOSES AND LEGAL BASES
  • Contract – to process orders, deliver goods, issue invoices and provide customer support.
  • Consent – for marketing emails, analytics cookies, retargeting and online advertising.
  • Legal obligation – for tax, accounting and consumer-protection requirements, including VAT validation.
  • Legitimate interest – for improving service quality, security and fraud prevention.
4. COOKIES AND SIMILAR TECHNOLOGIES

Essential cookies are used to maintain security, support checkout and remember your preferences. Optional cookies (analytics, advertising) are used only with your consent. You can manage your choices via our cookie banner or browser settings. See our Cookie Policy for full details.

5. DATA SHARING

We share data only with trusted partners under written agreements, as required for processing, communication and compliance.

  • Stripe – for secure card payments.
  • Scaleway – for website hosting and backups within the EU.
  • Mailchimp – for newsletters and email analytics.
  • Google – for analytics and bot protection (reCAPTCHA).
  • Meta – for advertising and performance tracking.
  • Couriers (Omniva, DHL, DPD) – for delivery logistics and notifications.
  • EU VAT validation systems – for verifying business status and applying correct VAT rate.

In the event of a business sale or reorganisation, your data may transfer under safeguards equivalent to this policy.

6. INTERNATIONAL TRANSFERS

Some providers process data outside the European Economic Area. Transfers are protected by Standard Contractual Clauses or equivalent mechanisms to ensure adequate protection.

7. DATA RETENTION
  • Orders, invoices and VAT-related records – 10 years.
  • Course completion and certificates – 5 years after expiry.
  • User accounts – deleted 24 months after inactivity or sooner upon request.
  • Newsletter consent logs – 3 years from last engagement.
  • Analytics and cookie data – up to 26 months.
8. INFORMATION SECURITY
  • TLS encryption on all pages and data transfers.
  • PCI-compliant payment system (via Stripe).
  • Restricted internal access with role-based controls and two-factor authentication.
  • Daily backups and secure server infrastructure (Scaleway).
9. YOUR RIGHTS

You have the right to access, update, delete or export your personal data. You may also object to processing or withdraw consent at any time without affecting prior use.

  • Request access to your data (“data copy”).
  • Request correction or deletion of inaccurate data.
  • Restrict or object to certain processing activities.
  • Withdraw any consent previously given.
  • File a complaint with the Latvian Data State Inspectorate or your national authority.

To exercise your rights, email [email protected]. We may ask for identity confirmation before proceeding.

10. CHILDREN

We do not knowingly collect data from children under 18. If we become aware of data collected without parental consent, we will delete it immediately.

11. AUTOMATED DECISION-MAKING

We do not use personal data to make decisions with legal or similarly significant effects without human involvement.

12. CHANGES TO THIS POLICY

We may revise this Privacy Policy from time to time. Any significant updates will be posted on this page. Please check the date at the top for the latest version.

13. CONTACT

If you have any questions about privacy or how your data is handled, contact us at  [email protected]