Privacy Policy

1. Data manager

1.1. Purpose

As we treat personal information, we have adopted the following Privacy Policy, which describes how we handle information about you.

In order to protect your personal data as much as possible, we constantly assess the risk of our data processing negatively affecting your fundamental rights. We are particularly aware of the risk of discrimination, identity theft, financial loss, loss of reputation and confidentiality of data.

1.2. Contact information

Brandweb OÜ as data manager ensures, that your personal information is processed in accordance with the law.

Brandweb OÜ
Ojakääru tee 7,
76912 Harku vald,

Reg. code: 14274296
VAT no: EE101981905

Telephone: (+372) 5887 4631
E-mail: [email protected]

1.3. We ensure fair and transparent data processing

If we ask you to submit your personal information to us, we will inform you about what information we process and to what purpose we process them. You can get information about this at the time of submitting personal data.

In the case of us collecting data from a third party (e.g., partners, suppliers, or authorities), we will notify you within 14 days of receiving your personal information. We will also announce the purpose of the data collection and the legal basis that allows us to collect your personal information.

2. What data is collected

We collect information about you to improve our service, to ensure the quality of our products and services, and to enable us to communicate with you. The data collected includes:

2.1. Automatically collected data

Our digital solutions are based on a variety of technologies to ensure user-friendliness and security. These technologies are able to automatically collect data and provide the best possible solution either directly by us or by a third party on our behalf. An example of this is the analysis of websites’ clicking data and cookies.

All visits to any digital solutions lead to information from your browser being sent to a server. For the optimization of our digital solutions, we analyze these data. Data is collected through third parties, on our behalf. From your computer, data can be collected for system management and internal marketing analysis. These data are statistical information on user behavior in digital solutions. Examples of collected and analyzed data:

  • Date and time of visit.
  • Visited pages in our digital solution.
  • Visitors IP address.
  • Geographical location.
  • Information about the browser and computer you are using (type, version, operating system, etc.)
  • Referral location URL (page from which the visitor reached our website)

We use Google Analytics as a web analytics solution in our digital solutions. In this regard, the web analytics data collected by our digital solutions is sent to the service offered by Google Analytics. Google Analytics acts as an “authorized data processor” for data that we are data administrators. We are responsible for providing these data only by agreement and complying with legal requirements.

Read more about the privacy policies we use: Google’s Privacy Policy

2.2. Your submitted data

In addition to automatically collecting data, we also process data that our users are actively providing us with.

The data that users are actively presenting are, for example:

  • Information sent via social media
  • Information sent via email
  • Information we receive from you in the contact form
  • Information shared at polls, events and shows
  • etc.

3. Use and storage of collected data

3.1. The purpose of the collection

Below are examples of using the information we collect:

  • Execution of webshop orders.
  • Sales follow-up.
  • Communication regarding your booking or other inquiries.
  • Making communication with us easy and safe for you.
  • Continuous optimization of digital solutions.
  • In some cases participation in customer surveys, competitions, give-aways and other digital solutions.
  • Ability to target sales offers and campaigns based on user behavior history and demographic information with third-party solutions and data.

3.2. Storage

We will keep records of you if we have a legitimate and purposeful legal basis for this, including in order for us to be able to serve you as good as possible.

3.3. Disclosure of information

We will disclose customer information to third parties only in accordance with this Privacy Policy.

We may disclose your information if we have to do so in order to comply with a legal obligation. Transmission may also take place at the discretion of the court or other authority or to protect trademarks, rights or property. This includes the exchange of information with other companies and organizations for anti-fraud protection.

We use service providers and data processors who work on our behalf. Services may be, for example: web hosting and system maintenance, analyzes, payment solutions, email services, etc. These collaborators will be able to access the necessary data for the provision of services. The partners are contractually bound to treat all information with strict confidentiality and therefore the data may not be used for anything other than what is covered by the contractual obligation. We check that our partners are fulfilling their responsibilities. When we disclose your information to a service provider or reporting agent outside the European Union, we will ensure that we comply with the regulatory requirements for such transfers. We will never collect personal information unless you have given us permission when ordering, purchasing, or participating in surveys, and so on.

4. Security

We will protect your personal information and comply with our internal data protection rules.

We have taken into use an Internal Data Protection Policy that contains guidelines and measures on how to protect your personal information in the event of destruction, loss, unauthorized disclosure and unauthorized access.

We have created rules for regulating the control of our employees’ access to personal data that is sensitive and to data that shows information about personal interests and habits. We control their actual access by activity logs and monitoring.

To avoid data loss, we will continuously back up our databases. We also protect the confidentiality and authenticity of your data by encryption. In the event of a security breach leading to a high level of discrimination risk, identity theft, financial loss, reputation or other significant inconvenience, we will notify you as soon as possible.

5. Your rights

5.1. General

If you wish to access, modify or delete your data, or file a complaint against our data processing, we will investigate if / how this is possible and we will respond to you as soon as possible and no later than one month after your request has been sent.

5.2. You have the right to access your personal data

You have the right at any time to control what data we store about you, where it came from and for what purpose we use it. You can also check how long we will store your personal information and who will receive it in case we need to disclose your information.

If you wish for it, we can give you access to your data that we process. However, access may be restricted to protect the privacy of others, business secrets and intellectual property rights.

Contact us if you want to exercise your rights. Our contact details are at the top. 1.2.

5.3. You have the right to correct or erase inaccurate personal information.

If you believe that the personal data handled is inaccurate, you are entitled to correct it. In this case, you need to contact us to show which data is inaccurate and how we can fix it.

In some cases, we are required to delete your personal information. This applies, for example, if you want to reject your consent. If you think your data is no longer necessary for your goals, you can request that it would be deleted. You can also contact us if you believe that your personal data will be processed against any laws or other legal obligations.

When you call for a correction or deletion of your personal information, we will investigate if the conditions are met and then apply changes in this case or delete the data as soon as possible.

5.4. You have the right to object to the processing of your personal data.

You have the right to object to the processing of your personal data. You may also oppose to the disclosure of data for marketing purposes. You can use the contact information at the top to send the complaint. If your opposition is justified, we will stop processing your personal data.

5.5. In certain cases, you may be entitled to get your information delivered.

You have the right to receive your personal data that you have made available to us and collected from other parties with your consent. If we process information about you as part of the contract, you can also request your information. You also have the right to transfer these personal data to another service provider.

If you want to exercise your right to transfer data, you will receive your personal information from us in a public format.

6. Version

This Privacy Policy was last changed on Febuary 19th, 2021.