Privacy Policy

Last updated: 2026-03-20

This Privacy Policy explains how ETFCompass may collect, use, store, share, and protect personal data when you visit this website, submit a form, leave a comment, or otherwise interact with the site. ETFCompass is operated by a private individual based in Lithuania, European Union.

1. Data Controller

Data Controller: Andrius Simonaitis
Website name: ETFCompass
Country: Lithuania, European Union
Contact email for privacy matters: info@etfcompass.eu
General contact page: Register / Contact

ETFCompass is operated by a private individual and is not presented as a registered company unless explicitly stated elsewhere on the site.

2. What personal data may be processed

• Contact or registration data: name, email address, and any message or question you choose to send.
• Comment data: name, comment text, timestamp, and related moderation or anti-spam metadata.
• Technical and security data: IP address, browser or device information, request time, requested URL, referrer, and basic server log data.
• Cookie and consent data: consent choices, consent timestamps, and records needed to respect your privacy preferences.
• Analytics data: site usage information, page views, approximate device or browser information, and interaction statistics, where analytics tools are enabled.
• Advertising-related data: data needed to display ads, measure ad performance, prevent fraud, and manage consent for advertising technologies, where ads are enabled.

3. Why data may be processed and the legal basis

• To operate the website and respond to messages: GDPR Article 6(1)(b) or 6(1)(f), depending on the nature of the request.
• To moderate comments, prevent abuse, and maintain site security: GDPR Article 6(1)(f).
• To keep technical logs and protect the site against misuse, spam, or attacks: GDPR Article 6(1)(f).
• To comply with legal obligations: GDPR Article 6(1)(c).
• To use optional analytics, advertising cookies, or similar technologies where consent is required: GDPR Article 6(1)(a).

Where legitimate interests are relied upon, those interests generally include operating the site safely, answering user enquiries, preventing abuse, improving reliability, and maintaining normal website operations in a proportionate way.

4. Cookies, consent, analytics, and advertising

ETFCompass may use essential cookies and similar technologies needed for basic site functionality, security, navigation, and remembering consent choices.

If optional analytics or advertising technologies are enabled, they should only be used where the required consent has been obtained under applicable law. This is especially relevant for users in the EEA, the UK, and Switzerland.

If Google AdSense or other advertising services are used, those services may process personal data, use cookies or local storage, and measure ad performance, subject to your consent choices where legally required.

You can manage your preferences through the site’s consent interface, where available, and through your browser settings. Blocking or deleting cookies may affect some features of the website.

5. Data sharing and service providers

Personal data is not sold.

Personal data may be shared only where necessary with service providers that support the operation of ETFCompass, such as:

• hosting and infrastructure providers,
• website security and anti-spam services,
• analytics providers, if enabled,
• advertising providers, including Google AdSense, if enabled,
• email or contact-processing providers, if used.

Depending on the service, those providers may act as processors or as independent controllers under their own privacy terms.

6. International transfers

Some service providers may process data outside the European Economic Area. Where that happens, appropriate safeguards should be used under GDPR, such as Standard Contractual Clauses or other lawful transfer mechanisms, where required.

7. Data retention

• Contact form data: typically up to 12 months after the last relevant communication, unless longer retention is needed for follow-up, legal reasons, or dispute handling.
• Comment data: retained until the comment is deleted, the feature is discontinued, or removal is requested and granted where applicable.
• Server and security logs: typically up to 12 months, unless longer retention is needed for security incident handling or legal reasons.
• Consent records: typically up to 24 months or for as long as needed to demonstrate compliance with consent obligations.
• Analytics and advertising-related records: retained according to the configured service settings and only where legally permitted.

Certain data may be kept longer where necessary to comply with law, resolve disputes, establish or defend legal claims, or investigate abuse or security incidents.

8. Your rights under GDPR

You may have the right to:

• be informed about how your data is processed,
• access your personal data,
• request correction of inaccurate or incomplete data,
• request deletion of personal data,
• request restriction of processing,
• object to processing based on legitimate interests,
• request data portability, where applicable,
• withdraw consent at any time, where processing is based on consent.

To exercise your rights, contact: info@etfcompass.eu. Identity verification may be needed before certain requests are completed.

9. Complaints

If you believe your data protection rights have been violated, you may contact ETFCompass first. You also have the right to lodge a complaint with the State Data Protection Inspectorate of the Republic of Lithuania (Valstybinė duomenų apsaugos inspekcija, VDAI).

Official website: https://vdai.lrv.lt/en/

10. Security

Reasonable technical and organizational measures are applied to protect personal data against unauthorized access, disclosure, alteration, or loss. These measures may include HTTPS, access restrictions, logging, backups, and security monitoring appropriate to the scale of the site.

11. Children’s privacy

ETFCompass is not intended for children, and personal data from children is not knowingly collected where such collection would require special consent or protection under applicable law. If you believe a child has provided personal data through this website, please make contact so the information can be reviewed and, where appropriate, removed.

12. Changes to this policy

This Privacy Policy may be updated from time to time to reflect legal, technical, or operational changes. The latest version will always be published on this page together with the updated revision date.

This Privacy Policy is written for transparency and practical website operation. It should still be checked against the site’s real tools, providers, consent setup, and actual data flows before being treated as a final legal document.