Protection of personal data.
Ecorun OÜ is the controller of personal data (registry code 14265819) and e-mail email@example.com. Ecorun OÜ shall forward the personal data necessary for the execution of payments to the data processor AS ESTO (banklinks, partial payments), Stripe (Visa, Mastercard, Maestro) and Paypal (safe net payments). Ecorun OÜ shall forward the personal data necessary for the execution of deliverys to Pakipoint OÜ.
What personal data will be processed
– name, phone number and email address;
– address of delivery of goods;
– cost of goods and services and payment data (purchase history);
– customer support data.
For what purpose is personal data processed
Personal data is used to manage customer’s orders and to deliver goods.
Purchase history data (purchase date, goods, quantity, customer data) is used to compile an overview of purchased goods and services and to analyse customer preferences
The bank account number is used to return payments to the customer.
Personal data such as email, phone number, customer name, are processed to resolve issues related to the delivery of goods and services (customer support).
The online store user IP address or other network identifiers are processed for providing the services of the online store as an information society service and for making web usage statistics.
The processing of personal data is carried out for the purpose of performance of the contract entered into with the customer, for the performance of a legal obligation (e.g., accounting and settlement of consumer disputes).
Recipients to whom personal data are transmitted
Personal data are transmitted to the online store’s customer support to manage purchases and purchase history and resolve customer issues.
The name, phone number and email address will be sent to the transport service provider of the customer’s choice. In the case the goods are delivered by courier, in addition to the contact details, the customer’s address is also forwarded.
If the online store accounts are made by the service provider, the personal data is transferred to the service provider for accounting purposes.
Personal data may be transferred to information technology service providers if this is necessary to ensure the functionality or data hosting of the online store.
Security and access to data
Personal data is stored on Web Hosting Servers located within the territory of a Member State of the European Union or the countries that have joined the economic area of the European Union. Data may be transferred to countries whose data protection level has been assessed by the European Commission as sufficient and to US companies that are members of a data protection shield (Privacy Shield).
Access to personal data is granted to the online store employees who can access personal data in order to resolve technical issues related to using the online store and provide customer support service.
The online store implements appropriate physical, organizational, and IT security measures to protect personal data from accidental or unlawful destruction, loss, alteration, or unauthorized access and disclosure.
The transfer of personal data to authorized processors of the online store (e.g., transport service provider and data hosting) is processed on the basis of contracts concluded with the online store and the authorized processors. Authorized processors are required to ensure appropriate safeguards for the processing of personal data.
The transfer of personal data to authorized processors of the online store (e.g., transport service provider and data hosting) takes place on the basis of contracts concluded with the online store and the authorized processors. Authorized processors are required to ensure appropriate safeguards for the processing of personal data.
Inspection and correction of personal data
Personal data can be inspected and corrected in the online shop user profile. If the purchase is made without a user account, the personal data can be inspected via customer support.
Withdrawal of consent
If the processing of personal data is carried out with the consent of the customer, the customer has the right to withdraw the consent by informing the customer support thereof by e-mail.
Personal data will be deleted when the online store customer account is closed unless such data needs to be kept for accounting or to resolve consumer disputes. If a purchase has been made in the online store without a customer account, the purchase history will be retained for three years. In the case of disputes relating to payments and consumer disputes, personal data shall be kept until the claim is fulfilled or until the expiry of the limitation period. Personal data necessary for accounting purposes shall be kept for seven years.
Customer support must be contacted by email to delete personal data. The application for the deletion shall be answered no later than within one month and the period of the deletion shall be specified.
An application for the transmission of personal data by e-mail shall be replied to within one month at the latest. Customer support identifies the person and informs them about the personal data that are subject to the transfer.
Settlement of disputes
Disputes related to the processing of personal data are resolved through customer support (firstname.lastname@example.org). The Supervisory Authority is the Estonian Data Protection Inspectorate (email@example.com).
Cookies and other web technologies
Ecorun OÜ may collect data about visitors to websites and other information society services using cookies (small pieces of information stored by the website’s browser on the hard drive of the visitor’s computer or other device) or other similar technologies (IP address, device information, location information etc.) and process this data.
Ecorun OÜ uses the collected data to enable the provision of the service according to the habits of the visitor or customer; ensure the best quality of service; inform the visitor and the client about the content and make recommendations; make ads more relevant and enhance your marketing efforts; facilitate login and data protection. The collected data is also used to count visitors and record their usage habits.
Ecorun OÜ uses session, persistent and advertising cookies. The session cookie is automatically deleted after each visit; Persistent cookies are retained when the website is used repeatedly. Third-party cookies are used by the websites of Ecorun OÜ partners (Facebook, Google, etc.). Ecorun OÜ does not control the occurrence of these cookies, so you can get information about these cookies from third parties.
With regard to cookies, visitors agree to their use on the website, in the settings of the Information Society service or in a web browser. Most web browsers allow cookies. Without fully enabling cookies, website features will not be available to visitors.
Enabling or disabling cookies and other similar technologies is under the visitor’s control through their web browser settings, information society service settings, and such privacy enhancing platforms.
The texts and photos of our e-shop are protected by copyright, and unauthorized copying or printing is prohibited. If you wish to use the texts, ideas or photos presented on our website, please let us know at firstname.lastname@example.org