1. Who processes your data

The data controller is the person operating under the trade name “Baltava” (the “Operator”, “we”, “Service”), available via the mobile app and related web pages (https://baltava.com).

Official legal entity or sole trader registration details will be published in the app once commercial registration is completed. Until then, contact info@baltava.com for all privacy matters.

2. Who this Policy applies to

This Policy applies to users in the European Union and European Economic Area (EU/EEA) and to everyone who uses the Service. You must be at least 16 years old, or act with parental or legal guardian consent.

3. Data we process

4. Why we process data and legal bases (GDPR)

5. Who we share data with

We use trusted contractors (processors) who act on our instructions and must protect your data:

Where data is transferred outside the EU/EEA, we use EU Standard Contractual Clauses (SCC) or other GDPR-compliant mechanisms.

6. How long we keep data

7. Your rights

Under GDPR you may:

Email info@baltava.com with subject “Personal data” and include your account email. We respond within 30 calendar days. You may also lodge a complaint with the supervisory authority in your country of residence or work.

8. Recommendations and ranking

The Service may order listings and businesses by category, location, activity, and paid promotion. This does not produce legal effects concerning you under Art. 22 GDPR (automated decision-making).

9. Security

We apply risk-appropriate measures: TLS encryption, Firebase access rules, role separation, and backups. No internet transmission is 100% secure — use a strong password and do not share account access with others.

10. Policy changes

The current version is always available in the app (Settings → Privacy Policy). Material changes will be notified via the app or email at least 14 days in advance where possible.