Privacy Policy


Data Controller

If you are a client of AmberBit, then we are your personal data controller. You become our client from the moment you have entered into a service agreement with AmberBit. Our company data are available here -


2. Data Operator

AmberBit offers to register domain names at various top-level domains, in the capacity of representing our clients in the relevant top-level domains we are data operators, and the relevant top-level domain registry are data controller (unless otherwise specified by the registry). More about top-level domain registry data processing can be found here -


3. Why Do We Need Your Data

Your data processing is required to:

  • ensure that your domain names are registered at the top level domains of your choice,
  • conclude an agreement with you on the services of AmberBit and top level domain registers,
  • ensure invoicing,
  • ensure the protection of our services and rights.

We use website cookies only to ensure that you receive the service on the online system of AmberBit.


4. Types of Data That We Process

The exact set of personal data to be processed depends on the requirements of the top-level domain registry you have chosen.

Our processed personal data includes the following types of data:

  • Identification data such as - name, surname, personal identity number, date of birth, tax identification number;
  • contact information such as - address, telephone number, email address;
  • electronic communication data such as - username, IP address.


5. Who Can Access Data

Personal data can be obtained by:

  • data subject himself/herself;
  • top-level domain Registry of your domain name;
  • another Registrar of your choice, in case of Registrar transfer;
  • state or local government institutions in the cases and according to the procedures specified in the regulatory enactments of the Republic of Latvia.


6. Your Rights as a Data Subject

You are entitled to:

  • find out who has received your personal data, except if the laws and regulations in force in the Republic of Latvia prohibits the disclosure of the fact;
  • access your data, correct it on our client’s online system or by contacting us;
  • receive your data in structured, widely used and machine-readable form;
  • request to send your data to another data controller or processor (Registrar transfer);
  • request the deletion of your data or limitation of processing thereof;
  • oppose personal data processing for specific purposes;
  • submit a complaint to the supervisory authority.


7. Valid Data and Data Updates

You are responsible for providing us with true, valid and complete data for both the conclusion of the agreement and the performance of the agreement.

If data is outdated and inaccurate you are obliged to update the data immediately by informing us of the necessary changes.

If your data is false, obsolete or incomplete, we will send a request to you to update your data within a certain time limit. If the data will not be updated or we will find out that the data is false, then we and the relevant top-level domain registry have the right to terminate the agreement on the use of the domain name.


8. For How Long Data is Stored and When We Delete Them

Personal data are stored in accordance with the applicable law and no longer than necessary. The data are deleted after the expiration date. Please note that the applicable law storage time may change.

The agreement and the data included therein, including client requests, are kept for 10 years from the date when the agreement is terminated. Basis is the Article 1895 of the Civil Law: “All obligation rights which have not been expressly exempted from the impact of prescription and the use of which is not by law subject to shorter terms, shall terminate if the party entitled to them does not use them within a ten-year time period.”

Accounting documents are kept in accordance with the accounting and tax regulations (for example, Article 10 of the Law “On Accounting”, Article 15 of the Law “On Taxes and Duties”, Article 133 of the Value Added Tax Act), which shall not exceed 10 years from the end of the financial year or from 1 January of the year following the year in which the documents were drawn up and received.

The log files are being stored for at least one year but no longer than two years after their creation.

The cookies are deleted after each finished session or after 30 minutes of session being idle.

After the end of the storage period, all data is permanently deleted within 6 months.