NNorex IT Systems
Get a quote
HomePromoBusinessOnline StoreContact
Home · Privacy Policy

Privacy Policy

Plain-language explanation of how we collect, use and protect your data — fully aligned with the EU General Data Protection Regulation (GDPR).

Last updated: 11 May 2026

1. Who we are

Norex IT Systems SIA ("Norex", "we", "us") is a Latvian limited liability company. We are the data controller for personal data processed via this website and our services.

  • Registered address: Latgales iela 81 - 1, Ludza, Ludzas novads, LV-5701, Latvia
  • Registration number: 40203743960
  • Contact: hello@norexsystems.lv

2. What data we collect

We only process data that you provide voluntarily or that is necessary to deliver our services.

Information you give us

  • Contact data: name, email address, phone number (optional)
  • Project data: company name, project description, requirements you share
  • Billing data: legal address, registration number, VAT ID (when applicable)

Information collected automatically

  • Technical: IP address, browser type, device, referrer
  • Usage: pages visited, time on page, interactions — only via analytics if you accept

3. Why we process your data

  • To respond to your inquiry — legal basis: pre-contractual measures at your request (GDPR Art. 6(1)(b)).
  • To deliver our services — legal basis: performance of contract (GDPR Art. 6(1)(b)).
  • To issue invoices and meet tax obligations — legal basis: legal obligation (GDPR Art. 6(1)(c)).
  • To improve our website — legal basis: consent for analytics cookies (GDPR Art. 6(1)(a)).

4. How long we keep your data

  • Inquiries that don't lead to a contract: deleted after 12 months
  • Client project files: kept for 5 years after project completion
  • Invoices and accounting records: 10 years (Latvian Accounting Law)

5. Who we share data with

We never sell your data. We share it only with processors strictly necessary to run our business:

  • Hosting providers (EU-based) for our website and your project
  • Email provider for transactional communication
  • Accounting software / accountant for invoicing
  • Authorities, when legally required

All processors are bound by written data processing agreements and are located within the EU/EEA, or under adequacy decisions where applicable.

6. Your rights

Under GDPR you have the right to:

  • Access — request a copy of the data we hold about you
  • Rectification — correct inaccurate or incomplete data
  • Erasure — request deletion (subject to legal retention requirements)
  • Restriction — limit how we process your data
  • Portability — receive your data in a structured, machine-readable format
  • Object — to processing based on legitimate interest
  • Withdraw consent — at any time, where processing is consent-based

To exercise any right, email us at hello@norexsystems.lv. We respond within 30 days.

7. Complaints

If you believe we've mishandled your data, you can lodge a complaint with the Latvian Data State Inspectorate (Datu valsts inspekcija) — www.dvi.gov.lv.

8. Security

We apply industry-standard technical and organizational measures: encrypted transport (HTTPS), access controls, minimum-data principle, and secure storage with EU-based providers.

9. Changes to this policy

We may update this policy occasionally. The "last updated" date at the top of this page always reflects the latest version. Material changes will be communicated by email to active clients.