Privacy Policy

The data controller for the Pathlys website and service is Sabiedrība ar ierobežotu atbildību "Viedais" (SIA "Viedais"), registered in Latvia. Pathlys is the trading name under which we offer the platform.

For privacy and data-protection requests, contact us at info@pathlys.com. For general questions you may also use our contact form.

Depending on how you use Pathlys, we may process:

• Account and identity: details you provide when you register or sign in (e.g. email, name), and identifiers from our authentication provider.
• Profile and content: bio, photo, guide contact details you choose to publish, routes, comments, likes, and other material you submit.
• Usage and operations: data needed to run the service (e.g. moderation, support tickets), and aggregated or pseudonymous statistics such as route views stored in our database for product insights.
• Technical data: IP address, device and browser type, timestamps, and similar data from server logs and infrastructure.
• Contact form: name, email, message, and related fields you send via Contact.
• Cookies and similar technologies: as described under Cookies below.
• Spam protection (when enabled): when you submit the contact form, our security provider may process technical signals to help detect abuse, under its own terms and privacy notice.

We rely on the following bases, as applicable:

• Performance of a contract (Article 6(1)(b)): providing accounts, routes, profiles, and features you request.
• Legitimate interests (Article 6(1)(f)): securing the platform, preventing fraud and abuse, improving the service, measuring aggregated usage, and internal reporting—balanced against your rights.
• Consent (Article 6(1)(a)): where required for non-essential cookies and similar technologies (e.g. analytics and marketing/partner tools), managed through our cookie banner and consent tool.
• Legal obligation (Article 6(1)(c)): where we must retain or disclose data to comply with the law.

We use a consent management tool to show a cookie banner, record your choices, and control certain third-party scripts where required.

In broad categories:

• Strictly necessary: required for the site to function (e.g. security, load balancing, remembering cookie preferences).
• Analytics: only after consent where applicable—third-party analytics to understand how the site is used, controlled through the analytics category in your consent settings.
• Marketing / partners: only after consent where applicable—partner widgets or scripts that may set or read cookies; their use is governed by their own notices.

You can change or withdraw consent via the cookie banner or your saved consent preferences. Blocking some categories may limit certain features (e.g. embedded partner content).

For a dedicated list of technologies and categories, see our Cookie Policy.

We use categories of service providers who process personal data on our instructions and only to the extent needed to run Pathlys. These include, for example:

• Hosting, cloud infrastructure, and database services.
• Authentication and account security services.
• Consent and preference management for cookies and similar technologies.
• Analytics, performance measurement, and (where you consent) marketing or partner tools—as described in our Cookie Policy.
• Abuse prevention and spam protection on forms, where used.
• Other processors we engage for customer support or operational needs.

We do not sell your personal data. Personal data may be processed in the European Economic Area and in other countries. If we transfer data outside the EEA, we apply safeguards required under applicable data protection law.

We keep personal data only as long as needed for the purposes above: for example, for the lifetime of your account and a reasonable period afterwards (backups, legal claims), or as required by law. Aggregated statistics may be kept in a form that does not identify you.

Under the GDPR, you may have the right to:

• Access your personal data.
• Rectify inaccurate data.
• Erase data ("right to be forgotten") in certain cases.
• Restrict processing in certain cases.
• Data portability, where applicable.
• Object to processing based on legitimate interests.
• Withdraw consent at any time, without affecting earlier processing that was lawful.

To exercise these rights, email info@pathlys.com. You may also lodge a complaint with a supervisory authority. In Latvia, this is the Data State Inspectorate (DVI).

We do not use solely automated decision-making that produces legal or similarly significant effects on you. Tools such as reCAPTCHA may assign risk scores to help prevent spam; that does not replace human review of your relationship with us.

Pathlys is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have, please contact us at info@pathlys.com.

We may update this policy from time to time. We will post the new version on this page and adjust the "Last updated" date. For material changes, we may provide additional notice (e.g. on the site or by email where appropriate).

We do not sell your personal data.