The controller of the personal data of the online shop shop.pihtlapruul.ee is OÜ Taako, with the registration code 10296214 and the address Õlleköögi, Pihtla küla, Saaremaa parish, 94101. Phone +3725208010 and e-mail firstname.lastname@example.org.
The data necessary for making payments is transferred to Maksekeskus AS, which is the authorized processor of this data. The data necessary to send the goods is transmitted to Itella Estonia OÜ or AS Eesti Post, which is the authorized processor of this data.
– name, phone number and e-mail address;
– delivery address of the goods;
– Bank account number;
– cost of goods and services and data related to payments
– customer support details.
Personal data is used to manage customer orders and deliver goods.
Purchase history data (purchase date, product, quantity, customer data) is used to create an overview of purchased goods and services and to analyze customer preferences.
The bank account number is used to return payments to the customer.
Personal data such as e-mail, phone number, customer name are processed in order to resolve issues related to the provision of goods and services (customer support).
The online store user’s IP address or other network identifiers are processed for the provision of the online store as an information society service and for online usage statistics.
Personal data is processed for the purpose of fulfilling the contract concluded with the customer.
Personal data is processed to fulfill a legal obligation (e.g. accounting and consumer dispute resolution).
Data processing takes place with the customer’s consent to send direct marketing messages.
Personal data is transferred to the customer support of the online store to manage purchases and purchase history and to solve customer problems.
The name, phone number and e-mail address will be forwarded to the transport service provider chosen by the customer.
Personal data may be transferred to information technology service providers if this is necessary to ensure the functionality of the online store or data hosting.
Security and access to data Personal data is stored on Elkdata OÜ’s servers, which are located in the territory of a member state of the European Union or countries that have joined the European Economic Area.
Employees of the online store have access to personal data, who can access personal data in order to solve technical issues related to the use of the online store and to provide customer support services.
The online store implements appropriate physical, organizational and IT security measures to protect personal data from accidental or illegal destruction, loss, modification or unauthorized access and disclosure.
The transfer of personal data to authorized processors of the online store (e.g. transport service provider and data hosting) takes place on the basis of contracts concluded with the online store and authorized processors. Authorized processors are required to ensure appropriate protection measures when processing personal data.
Since the purchase was made without a user account, personal data can be viewed through customer support.
If the processing of personal data takes place on the basis of the client’s application, the client has the right to withdraw his consent by informing about this via the client’s e-mail.
If a purchase is made in the online store without a customer account, the purchase history is stored for three years.
In the case of disputes related to payments and consumer disputes, personal data will be stored until the claim is fulfilled or the expiry period ends.
Personal data necessary for accounting are stored for seven years.
To delete personal data, you must contact customer support by e-mail. The deletion request will be answered no later than within a month, and the data deletion period will be specified.
The request for the transfer of personal data submitted by e-mail will be answered within a month at the latest. Customer support identifies the identity and informs about the personal data that is subject to transfer.
The e-mail address and phone number are used to send direct marketing messages if the customer has given their consent. If the customer does not wish to receive direct marketing messages, he must select the corresponding reference in the footer of the e-mail or contact customer support.
If personal data is processed for the purpose of direct marketing, the customer has the right to object to both the initial and further processing of his personal data, including profile analysis related to direct marketing, at any time by notifying customer support by e-mail.
Disputes related to the processing of personal data are resolved through customer support (tel. +3725208010 and e-mail email@example.com). The supervisory authority is the Estonian Data Protection Inspectorate (firstname.lastname@example.org).