PRIVACY AND PERSONAL DATA PROCESSING AT MACTE DESIGN OÜ’S ONLINE STORE

Customer privacy and data protection are very important to Macte Design OÜ and we are committed to protecting the privacy of personal data. We work regularly for both data protection and security, and if necessary, we will develop our operations to improve these aspects.

We will provide information on the privacy and processing of personal data on our website and, if necessary, we will provide the information to the registered user. We have defined and documented the processing of personal data in Macte Design OÜ.

We will update the Privacy Policy as needed and make changes on our website. The change date will always be mentioned.

THE REGISTRY ADMINISTRATOR

The registry controller in the Customer Register is Macte Design OÜ. Contact information can be found on our website and data protection issues can be accessed through a form found on the website.

DEFINITIONS OF PERSONAL DATA PROCESSING

We have analyzed what personal data processing means for e-commerce customers. We have determined, among other things, what information is collected and stored, and how long information is stored. Personal data will not be processed or stored unnecessarily, and all unnecessary data will be deleted. When determining the conservation periods for personal data, other legislation has been taken into account as well as other such factors that might and are affecting the obligation to retain any personal data.

Processing of personal data is very limited, and handling of any data is carried out in accordance with established principles such as lawfulness, fairness and transparency, purposefulness, minimization and punctuality as well as confidentiality.

DISCLOSURE OF PERSONAL DATA

Personal data will only be processed outside Macte Design OÜ by contractual partners such as an accountancy or ICT partner. The agreements with such partners specifically take into account data protection and processing of personal data.

Personal data may only be disclosed in accordance with the law, or in situations where disclosure is mandatory for the benefit of the client.

Data is not transmitted outside the European Union or the European Economic Area unless there is an immediate need for transfer, for example because of the technical implementation of the service. In this case, the controller maintains the level of data protection as required by law and ensures a high level of protection also through contracts.

PRIVACY EXPERTISE 

We actively follow the industry’s privacy practices and take care of the level of privacy protection as well as see that it is kept up to date.

OUR OPERATION MODELS 

We have analyzed the approaches of personal data processing and have updated our operating models to meet the requirements of data protection legislation. In addition to processes, we have paid attention to technical solutions for both data protection and data security. We have audited our security activities for both operational models and technical solutions. We only apply secure technologies and we also take security into account in our device management.

Data protection, data security and personal data processing are taken into consideration by our subcontractors, partners and contract partners and we oblige them all to meet our quality requirements.

Processing of personal data is mainly digital. 

REGISTERED USER RIGHTS

A registered user may exercise all their rights under the Privacy Policy in accordance with instructions available on the website. We will respond to data requests as soon as possible and if for any reason we are unable to complete the request within a month, we will immediately notify the party concerned. 

THE USE AND PURPOSE OF REGISTRY

Personal data of the customer is processed only when needed and all events for user information access are defined in advance. The register information is used: 

  • To maintain the online store 
  • Customer relationship management 
  • For billing and payment management 
  • Communication E-commerce analysis and statistics 

DATA CONTENT OF THE REGISTER 

The registry stores only necessary personal data for specific and pre-disclosed purpose, such as: 

  • Contact information (name, address, phone number, e-mail address) 
  • System login information such as usernames and passwords 
  • Ordering information 
  • Wish list information 
  • Billing information
  • Made changes / Logs of previous, singled details of data 

COLLECTION OF PERSONAL INFORMATION 

Personal data is collected from customers themselves during the customer relationship. Log information is collected from systems when updating data. 

PROTECTION OF PERSONAL DATA 

Databases containing personal information are protected by technical means such as firewalls and passwords. All data is stored in secured spaces and access to premises is restricted. Also manual archives are in kept in a locked state with limited access. 

Technical solutions are kept up-to-date and regularly updated either by automatic or manual updates. Antivirus is enabled, and all threats will be reacted to. Also, the deviations detected by the firewall are responded. 

MORE INFORMATION 

We will always gladly help with issues concerning personal data usage and access. Up-to-date contact information is available on our website. We will continue to update data protection information, be sure to check if the answer to your question can be found within the Macte Desing OÜ’s website.

COMPANY DETAILS

Macte Design OÜ

Reg. Number: 14102939

VAT: EE14102939

Estonia, Harju maakond, Tallinn,

Mustamäe linnaosa,

Kadaka tee 48, 12915