Privacy Policy
Last updated: 2026-05-21
1. Data controller
Dūriai sodyba (hereinafter – "we", "Dūriai")
Email: info@duriai.lt
Phone: +370 61100007
2. What data we collect
2.1. During booking
- First and last name
- Email address
- Phone number
- Country
- Check-in/check-out dates
- Special requests
2.2. During payment
Payment data (card number etc.) is processed by payment service provider Stripe, Inc. We do not see or store your card number. Stripe privacy policy: stripe.com/privacy
2.3. Automatically collected data
- IP address
- Browser type and version
- Operating system
- Device type (desktop/phone/tablet)
- Visited pages and time
- Referrer URL
- Selected language
3. Cookies
We use the following cookies:
| Cookie | Type | Duration | Purpose |
|---|
| PHPSESSID | Essential | Session | Required for site to function (session management) |
| lang | Functional | 1 year | Saving selected language |
We do not collect or use third-party advertising or analytics cookies. We do not use Google Analytics.
4. Data usage purposes
- Booking fulfillment – your data is used to process, confirm and manage your order (GDPR Art. 6(1)(b) – contract performance)
- Communication – emails with confirmation, reminders, invoices (GDPR Art. 6(1)(b))
- Site improvement – anonymous visitor statistics (GDPR Art. 6(1)(f) – legitimate interest)
- Chatbot – conversations stored for service quality (GDPR Art. 6(1)(f))
5. Data retention
- Booking data is kept for 3 years after departure
- Payment records are kept for 10 years (accounting requirements)
- Visitor statistics are kept for 1 year
- Chatbot conversations are kept for 6 months
6. Data transfer
We may transfer your data to:
- Stripe, Inc. – payment processing (USA, EU standard contractual clauses)
- Booking.com – if you booked via Booking.com platform
- Email services – for sending confirmation and reminder emails
We do not transfer data to any advertising or marketing companies.
7. Your rights
Under GDPR you have the right to:
- 🔍 Receive information about stored data
- ✏️ Correct inaccurate data
- 🗑️ Delete data (right to be forgotten)
- 📦 Transfer data to another service provider
- ⛔ Object to data processing on legitimate interest grounds
To exercise your rights, write to: info@duriai.lt
8. Data protection
We use the following measures to protect your data:
- SSL/TLS encryption (HTTPS)
- Database password protection
- Access control (authorized personnel only)
- Regular backups
9. Contacts
Privacy questions:
📧 info@duriai.lt
📞 +370 61100007