HomePersonal Data Processing

Personal Data Processing

The controller of the personal data of the online store klaasissepa.ee is Klaasissepa OÜ, registry code 10223053, address Kadaka tee 2, Tallinn 10621, Harjumaa, phone +372 648 5868 and e-mail kadri@klaasissepa.ee.

What personal data is processed

You can read more about the use and storage of cookies on this page.

For what purpose personal data is processed

Personal data is used to manage customer orders and deliver goods.

Purchase history data (date of purchase, goods, quantity, customer data) is used to compile an overview of purchased goods and services and to analyse customer preferences.

The bank account number is used to return payments to the customer.

Personal data such as e-mail, phone number, customer name are processed in order to resolve issues related to the provision of goods and services (customer support).

The IP address of the online store user or other network identifiers are processed for the provision of the online store as an information society service and for compiling web usage statistics.

How cookie consent works

To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool “Real Cookie Banner”. Details on how “Real Cookie Banner” works can be found at https://devowl.io/rcb/data-processing/.

The legal basis for the processing of personal data in this context are Art. 6 (1) lit. c GDPR and Art. 6 (1) lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.

The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

Legal basis

Personal data processing takes place for the purpose of fulfilling a contract concluded with the customer.

Personal data processing takes place to comply with a legal obligation (e.g. accounting and resolution of consumer disputes).

Recipients to whom personal data is transferred

Personal data is transferred to the online store customer support to manage purchases and purchase history and to resolve customer issues.

The name, phone number and e-mail address are transferred to the transport service provider chosen by the customer. If the goods are delivered by courier, the customer’s address is also transferred in addition to the contact details.

Personal data may be transferred to information technology service providers if this is necessary to ensure the functionality or data hosting of the online store.

Security and access to data

Personal data is stored on servers located in the territory of a Member State of the European Union or in countries that have joined the European Economic Area. Data may be transferred to countries whose level of data protection has been deemed adequate by the European Commission and to US companies that have joined the Privacy Shield framework.

Access to personal data is granted to employees of the online store who can access personal data in order to resolve technical issues related to the use of the online store and to provide customer support services.

The online store implements appropriate physical, organisational and IT security measures to protect personal data against accidental or unlawful destruction, loss, alteration or unauthorised access and disclosure.

The transfer of personal data to the authorised processors of the online store (e.g. transport service provider and data hosting) takes place on the basis of contracts concluded between the online store and the authorised processors. Authorised processors are required to ensure appropriate safeguards when processing personal data.

Access and correction of personal data

Personal data can be accessed through customer support.

Withdrawal of consent

If personal data processing is based on the customer’s consent, the customer has the right to withdraw the consent by notifying customer support via e-mail.

Retention

Purchase history is retained for three years.

In the case of disputes related to payments and consumer disputes, personal data is retained until the claim is fulfilled or until the end of the limitation period.

Personal data necessary for accounting is retained for seven years.

Deletion

To delete personal data, customer support must be contacted by e-mail. The deletion request will be answered no later than within one month and the data deletion period will be specified.

Transfer

A request for the transfer of personal data submitted by e-mail will be answered no later than within one month. Customer support will verify the identity and inform about the personal data that will be transferred.

Direct marketing messages

The e-mail address and phone number are used for sending direct marketing messages if the customer has given the respective consent. If the customer does not wish to receive direct marketing messages, the respective link must be selected in the footer of the e-mail or customer support must be contacted.

If personal data is processed for direct marketing purposes (profiling), the customer has the right to object at any time to both the initial and further processing of their personal data, including profiling related to direct marketing, by notifying customer support via e-mail.

Dispute resolution Disputes related to the processing of personal data are resolved through customer support: kadri@klaasissepa.ee. The supervisory authority is the Estonian Data Protection Inspectorate (info@aki.ee).

    Request a quote

    Contact us so we can find the most suitable glass solution for you together!