PRIVACY NOTICE FOR PARTICIPANTS OF THE 2026 LTG INFRA CONFERENCE FOR MARKET PARTICIPANTS

This Privacy Notice is intended for participants of the LTG Infra Conference for market participants, which will take place on 26 February 2026. In this Privacy Notice (the Privacy Notice), we provide answers to key questions on how we collect, use, and protect your personal data. Please read this information carefully.

  1. About the LTG Infra Conference for market participants

On 26 February 2026, LTG Infra, together with AB Lietuvos geležinkeliai (hereinafter we or the Data Controller) is organizing the LTG Infra Conference for market participants. The conference is intended for representatives of companies that supply materials, perform construction and contracting work, or provide other services. The conference will present LTG Infra's business plans, projects, their scope, relevant legal and public procurement news, and share best practices and experiences.

The number of participants at the event is limited; therefore, advance registration is required to ensure the smooth organization of the event. Photography and video recording will take place during the event.

  1. Data Controller

We, the event organiser LTG Infra, legal entity code 305202934, registered office at Geležinkelio g. 2, 02100 Vilnius, together with the controlling company AB Lietuvos geležinkeliai, legal entity code 110053842, registered office address Geležinkelio g. 16, 02100 Vilnius, are responsible for the processing of your personal data.

We process your personal data in accordance with the EU General Data Protection Regulation (GDPR1) and other applicable data protection legislation.

We have appointed a Data Protection Officer, who can be contacted by email at dap@ltg.lt.

If you have any questions regarding how we collect, use, or store your personal data, please contact us or our Data Protection Officer.

  1. How we process your personal data

Purpose

Personal data processed

Legal basis

Retention period

Registration of participants for a public Event with a limited number of attendees, to ensure smooth organization.

Name, surname, organisation represented, email address.

GDPR Article 6(1)(f) – legitimate interests.

Our legitimate interest in planning and organising events with limited attendance, registering participants, compiling participant lists, and contacting participants where necessary for organisational purposes.

Until the end of the Event.

Photography and video recording of the public Event for the purpose of informing the public via LTG Infra social media accounts, websites, newsletters, printed publications, media outlets, and partner websites.

Participant’s image captured in photographs and/or video recordings taken during the event.

GDPR Article 6(1)(a) – consent.

Voluntary posing for the camera shall be considered as consent to photography, filming, and publication of the captured image.

Participants have the right to withdraw their consent at any time by informing the Data Controller.

2 years from the date of the Event or until consent is withdrawn.

  1. Source of personal data

We receive your personal data directly from you.

  1. Recipients of personal data
  • Your personal data may be processed by photographers, videographers, and other service providers engaged by us to support the organisation of the Event.
  • Selected high-quality photographs and video excerpts from the event may be published by the Data Controller LTG Infra free of charge and made publicly available to an unlimited audience via public communication channels, including websites, newsletters, social media accounts (Facebook, Instagram, LinkedIn, Youtube), printed publications, and media outlets.
  1. Guidance if you do not wish to be photographed or filmed

If you do not wish to be photographed or filmed, you may:

  • clearly inform the photographer or videographer of your preference;
  • turn away from the camera and avoid posing;
  • move away from areas where photography or filming is taking place;
  • contact us directly.

Please note that we are not responsible for photographs or recordings made by other event participants for personal purposes, or for any subsequent publication of such content by them.

  1. Your rights and how to exercise them

You have the right to:

  • receive information about the processing of your personal data;
  • access your personal data processed by us;
  • request rectification of inaccurate or incomplete personal data;
  • request erasure of your personal data (‘right to be forgotten’);
  • request restriction of processing;
  • object to the processing of your personal data;
  • withdraw your consent at any time.

Requests to exercise your rights must be submitted in writing (including by email) using the contact details of the Data Controller or Data Protection Officer provided above. We recommend using the standard data subject rights request form.

To process your request, we must be able to verify your identity. This may require:

  • presenting an identity document in person;
  • submitting a legally certified copy of an identity document by post; or
  • submitting a request signed with a qualified electronic signature by email.

If submitting a request through a representative, proof of authorisation must also be provided.

We aim to resolve all requests and questions amicably. If you disagree with our decision regarding your request, you have the right to lodge a complaint with a supervisory authority—primarily in the EU Member State of your habitual residence, place of work, or where the alleged infringement occurred—or to seek judicial remedies.

In Lithuania, the supervisory authority is the State Data Protection Inspectorate (L. Sapiegos g. 17, Vilnius; email: ada@ada.lt).