Privacy Policy

This Privacy and Cookie Policy explains how Gavort (www.gavort.com) processes personal data when you visit our website, contact us, or use our services. We are committed to protecting your privacy and ensuring transparent, lawful data processing in line with the General Data Protection Regulation (GDPR).

1. Introduction

Data protection is an integral part of Gavort’s daily operations. Secure handling of personal data is essential for the continuity of our business and the quality of our services. This Privacy Policy defines principles, practices, roles, and responsibilities to ensure high standards of data protection for our customers, partners, and employees.

This Policy applies to all personal data processing activities, regardless of whether the data is in electronic, written, or other form. All processing follows the GDPR and other applicable data protection laws.

2. Roles and Responsibilities

Data protection is a shared responsibility across Gavort. Management is responsible for ensuring compliance, but every employee is personally accountable for handling personal data securely and reporting any incidents. Outsourced functions must also comply with Gavort’s data protection requirements.

3. Principles of Data Protection

  • Personal data is processed lawfully, fairly, and transparently.
  • Data is collected only for specified, explicit, and legitimate purposes.
  • Data is kept accurate and up to date.
  • Data is retained only as long as necessary for its purpose.
  • Security measures are applied to protect against unauthorized access, loss, or alteration.
  • Access to personal data is limited strictly to those who need it to perform their duties.

4. Purposes and Legal Bases for Processing

Gavort processes personal data only when there is a valid legal basis under GDPR:

  • Inquiries and contact administration – responding to requests, providing information about services and projects (contract performance or legitimate interest).
  • Recruitment – processing CVs, cover letters, and related data to evaluate candidates (consent or contract performance).
  • Legal and contractual obligations – fulfilling accounting, tax, labor, and compliance requirements (legal obligation).
  • Website functionality and improvement – maintaining security, analyzing traffic, and enhancing user experience (legitimate interest or consent).

5. Data Retention

Personal data is stored only as long as necessary for the defined purposes:

  • Inquiries and communication data: up to 3 years
  • Contractual and accounting data: up to 10 years (legal requirement)
  • Recruitment data: for the duration of the recruitment process, or longer if consent is given for future opportunities
  • Technical and cookie data: up to 24 months

Payroll and employment records are retained according to applicable legislation. After expiry, data is securely deleted or anonymized.

6. Data Sharing and Transfers

Personal data may be shared only when necessary:

  • With service providers (e.g., IT, hosting, cloud services) under data processing agreements
  • With cooperation partners when required to provide services (e.g., shipyards or clients)
  • With public authorities, if required by law
  • To protect Gavort’s legitimate interests (e.g., legal claims)

Third parties may not use the data for any other purposes than those defined by Gavort and must ensure an adequate level of security. Data transfers outside the EU/EEA, if any, will always follow GDPR safeguards.

7. Data Subject Rights

You have the right to:

  • Access your personal data
  • Request rectification or deletion
  • Restrict or object to processing
  • Withdraw consent at any time (where applicable)
  • Data portability (where applicable)
  • Lodge a complaint with a supervisory authority

Requests can be submitted via info@gavort.com. We respond within one month, unless legal grounds allow for an extension.

8. Cookies

We use cookies to ensure proper website functionality, improve user experience, and analyze traffic. Cookies do not directly identify visitors.

Types of cookies used:

  • Essential cookies – required for website operation (e.g., session management)
  • Functional cookies – remember visitor preferences (e.g., language settings)
  • Analytics cookies – collect aggregated data on site usage (e.g., Google Analytics)
  • Session cookies – temporary cookies that expire once the browser is closed

Examples of cookies used on www.gavort.com:

Type

Name

Purpose

Duration

Essential

PHPSESSID

Maintains visitor session

Session

Functional

pll_language

Stores visitor language preference

1 year

Analytics

_ga

Google Analytics tracking ID

2 years

Analytics

_gid

Tracks browsing session for analytics

24 hours

Analytics

_gat

Limits request rate to Google Analytics

1 minute

Consent

cookieconsent_status

Stores cookie consent decision

6 months

You can change cookie settings in your browser at any time. Disabling cookies may affect site functionality.

9. Security

We implement appropriate technical and organizational measures to protect data against unauthorized access, alteration, disclosure, or destruction. Paper records containing personal data, where applicable, are stored securely and destroyed after the retention period ends.

10. Changes to This Policy

We may update this Privacy and Cookie Policy as needed. The latest version is always available on www.gavort.com.

Contact
If you have questions about this policy or your data, please contact us at info@gavort.com.