Privacy policy

GENERAL 

This Privacy Policy provides information about how CORVUS (“we”) collect and process your personal data and for what purpose they are used, their protection measures and the rights of you as a data subject in relation to Personal data processing performed by CORVUS. 

This Privacy Policy shall be subject to all Personal data, collected and processed by CORVUS about you as the Customer of CORVUS. 

Depending on the Service selected by you, one or several companies registered in the Republic of Latvia (hereinafter referred to as – CORVUS) may operate as your Personal data controller. 

• ZAB Corvus Vanags Legal SIA, reg. No. 40203352796, legal address Elizabetes iela 45/47, Riga, LV-1010; 
• SIA Corvus Accounting, reg. No. 44103037436, legal address Elizabetes iela 45/47, Riga, LV-1010; 
• SIA Corvus Audit & Tax, reg. No. 40203431367, legal address Elizabetes iela 45/47, Riga, LV-1010; 
• SIA Corvus Capital, reg. No. 50203436031, legal address Elizabetes iela 45/47, Riga, LV-1010. 

DATA TO BE PROCESSED 

We can obtain your Personal data from different sources, including data that we collect directly from you (for example, when you contact us as the Customer, or provide services to us), and information that we collect about you from other sources, including from commercially available sources, such as public databases (when regulatory enactments permit). 

Certain personal data are required as a result of contractual relations that we have with you or the person authorized by you, in order to permit us to fulfil our contractual obligations towards you or the person authorized by you. Failure to provide such Personal data may prohibit or delay fulfilment of such duties. 

1. DATA COLLECTED BY US (DIRECTLY FROM YOU OR FROM PUBLICLY AVAILABLE SOURCES) 

Types of data that we could collect directly from you, shall include the following types of data: 

• Information about the Customer, person acting on behalf of the Customer, and transaction, such as identification information – for natural persons: name, surname, date of birth, information of the identification document, contact information, address, information about legal persons related to the Customer, for example, the firm’s name, registration number, authorizations, information related to the transaction and any information available in the case, for example, information about business, employees or representatives of the Customer, the opposite party, as well as personal data of other persons if we process such when providing legal services, which may also include the Personal data of special categories (or sensitive data); 
• information about the beneficial owner and politically exposed persons; 
• information about the transaction and payment information; 
• other information necessary for provision of the Service. 

2. PURPOSE AND BASIS FOR DATA PROCESSING

We process your personal data in accordance with this Policy and in accordance with the applicable regulatory enactments, including the General Data Protection Regulation (2016/679) (GDPR) and Data Protection Law, in order to: 

• perform study of any conflict, provide Services and fulfil our legal duties to perform due diligence (KYC) and examination of compliance with sanctions; 
• provide Services in accordance with provisions of the Service Agreement; 
• contact you on the issues and other information in relation to the Services we provide to you; 
• ensure that the information available at your disposal is correct and up-to-date, when implementing the AML/KYC and Sanctions compliance verification procedures; 
• ensure that we issue correct invoices about the Services provided by us. 

We should have a legal basis to process your personal data. In the majority of cases, the legal basis will be one of the following: 

• to fulfil contractual obligations to you; 
• to comply with our legal duties to you; 
• to provide our legitimate interests in a way that we could provide you the Services requested by you, in order that our Services would comply with your commercial activity, you would be informed in a timely manner about any complaints and concerns, we could reply to questions and concerns that you could have, we could perform study and analysis to ensure that the products and services offered by us are necessary for you and and the information available at our disposal is current and correct; and 
• to send you direct electronic advertising notices in the amount you have agreed, in accordance with the applicable regulatory enactments. 

3. YOUR RIGHTS ASSOCIATED WITH YOUR PERSONAL DATA 

You may exercise the following rights at any time with regard to processing of your Personal data:

• access rights: 

You have the right to request access to any data considered as your Personal data. That includes, for example, the right to be informed about whether we process your Personal data, what categories of Personal data we process and what the purpose of data processing is; 

• right to rectification:

You have the right to request us to rectify any of your personal data that are inaccurate or incomplete; 

• right to erasure of data: 

You may also request that your Personal data are erased (except certain cases provided for in regulatory enactments), if the Personal data are not necessary anymore for the purposes they were obtained, or if you consider that the processing is illegal, or if you consider that the Personal data should be erased so that we could fulfil legal duties;

• right to data portability:

if we process your Personal data, on the basis of your consent or mutual contractual relations, you may request us to issue to you the relevant Personal data in a structured, broadly used and machine-readable format. Furthermore, you may ask us to transfer the Personal data to another data controller. Please take into account that it can be performed only if it is technically feasible; 

• the right to revoke you consent:

in cases when the basis of processing is your consent, you have the right at any time to revoke your consent for such processing. 

When we provide Services to our Customers, situations are possible when our legal duties, arising from legal acts governing the Personal data processing (including regulations of the Latvian Collegium of Sworn Advocates) prohibit us to disclose or erase data that we store and process. 

Please inform us if any of your personal data available at our disposal change so that we could rectify and update the data in our systems. 

In certain cases you can object to processing of certain personal data, require us to limit processing of your personal data and require us to deliver your personal data in a usable form to any other company. If you have agreed with a certain type of processing, you can revoke this consent at any time. 

4. TRANSFER OF DATA

4.1. TO THIRD PARTIES

We do not perform exchange related to your data with third parties (who are not persons providing services to us), unless we have a legal basis to do so. 

We entrust third parties to provide the use of various services in favour of us, for example, such as maintenance of the Website, delivery of electronic messages, payment processing, data analysis, research, performance of translations etc. That means that we have to exchange your personal data with such third persons. When we exchange your personal data in such a way, we use appropriate means in order to make sure that our service providers store your data safely. 

Other cases when we can disclose your personal data to third persons, are: 

• in order to receive other services that we request from our service providers; 
• in cases permitted by regulatory enactments, in order to protect and defend our rights and property; and 
• in cases determined in the regulatory enactments and/or pursuant to a request of state authorities. 

We have taken care to ensure that all service providers that are third parties and to whom we forward your Personal data comply with our instructions regarding how your Personal data should be processed. 

Transfer of your Personal data is governed by data processing contracts or data processing regulations, in force between us and the service providers that are third persons. All service providers who are third persons, when performing processing of your Personal data, shall ensure the same level of care and prudence as we ensure, and they shall bear legal responsibility to you and us about data processing that fails to comply with the above-mentioned requirements. Further to this, these service providers who are third persons shall be obliged to perform technical and organizational measures, ensuring the level of data protection that is equal to the protection provided for data processing activities implemented by us. 

We can deliver any information collected by which it is not possible to identify you for general business analysis, for example, we can disclose the number of visitors of the Website or number of receivers of assistance. 

4.2. OUTSIDE OF LATVIA/THE EU

Your personal data can be delivered, stored and processed in a country which is not the country where the data were received. When we act like this, we transfer the data in accordance with the applicable regulatory enactments governing data protection. 

When we transfer personal data outside the EEA, we use the standard clauses approved by the European Commission, in compliance with the decision of the European Commission on the ensured adequate level of protection, as well as using other possible cautionary measures and exemptions provided under the Data Protection laws.

Additionally, when transferring data to any other third country that is not subject to the EU decision on the ensured adequate level of protection, we comply with the largest possible protection and transfer only those personal data that are absolutely necessary for the provision of legal services. In addition, we transfer such data in an encrypted form so that they would not be usable in the case of interception. 

5. DATA SAFETY

We have introduced generally recognized technological and operational safety standards to protect personal data from loss, misuse, transformation or destruction. Access to personal data shall be granted only in the scope required for performance of the work. 

We will store your personal data as long as we have contractual relations with you. As soon as our contractual relations have ended, we will store your personal data for the period of time that will enable us: to analyse the results of our business and/or comply with auditing provisions; to comply with the requirements of the law regarding preservation of records; to protect or bring any legal claims; and review all complaints. 

We will erase your personal data as soon as they are not required anymore for these purposes. Should there be any information that we cannot erase due to technical reasons from all our systems, we will introduce appropriate measures in order to eliminate further data processing or use. 

6. COMMUNICATION WITH US

If you have any questions about how your personal data are processed or if you wish to use your rights as a data subject, please contact us via e-mail birojs@corvusfirm.com or by using the application form in the section “Contacts”. 

We undertake to cooperate with you in order to reach a fair solution with regard to any issue or concern on privacy issues. However, if you still consider that we have not been able to provide assistance on your issue or in relation to your concerns, you have the right to submit a complaint to the State Data Inspectorate of the Republic of Latvia http://www.dvi.gov.lv/lv/. 

7. CHANGES IN PRIVACY POLICY 

You can request a copy of this Privacy Policy from us by using the specified contact information. We can change or update this Privacy Notice from time to time. You will be able to see when we have made the most recent updates to the Privacy Notice as we will specify the date of changes. Changes and supplementation to the Privacy Notice shall be in force as of the moment of notification. Please review this Privacy Policy in order to verify whether we have made any changes to personal data processing. 

Date of the last update: 23.01.2025