Data Protection and Privacy Policy
1. General
Netsport OU is committed to protecting the privacy of its customers and suppliers. This Privacy Notice sets out what personal data we collect, how we process it, and how you can exercise your rights as a data subject (such as the right to access or modify your data). To use the services offered by Netsport OU, both the customer and the service provider must agree to the terms of this Privacy Notice.
This Privacy Policy applies only to data processing for which NetSport OÜ is the data controller.
2. Contact information for the responsible employee
Data controller: Netsport OÜ. If you would like more information about data protection and the processing of personal data, please contact us directly. You can find our contact information on our website at www.netspordihall.ee
3. Data Collection
In order to fulfill our contractual obligations and legal obligations, we need to collect the following data:
Information provided by the customer, the supplier, or a third party authorized by the data subject: identification details, such as name and title; contact information, such as postal and email addresses and phone numbers; payment and billing information; the IP address of the computer used to visit our website; public information from a Facebook profile, such as the friends list and email address. The primary source of information is the client or supplier themselves. We may also obtain additional information from our partners.
4. Use of Data
Personal data is used for the following purposes:
to maintain customer relationships; to provide ordered services and products; to deliver and track orders; for post-order procedures; to develop our operations and services; to issue invoices to customers; and to market our products and services.
The legal basis for data processing is the customer relationship between the data subject and Netsport OÜ, an agreement, the use of our website, the customer’s explicit consent, or legal obligations.
We also process data that you voluntarily provide to us. This may include the following:
- information you provide to us when browsing and using our services; marketing consents and opt-outs; information you provide to us by phone, email, or when visiting our locations.
- Analytical data.
Although we do not typically use analytical data to identify individuals, this data may sometimes be traceable to specific individuals, either on its own or in combination with or in connection with user information. In such cases, analytical data is considered personal data as defined by applicable laws and is processed as personal data.
Kasutame analüütiliste andmete kogumiseks erinevaid tehnoloogiaid, kui kasutaja külastab meie veebisaiti. Need võivad hõlmata küpsiseid ja veebimajakaid.
A cookie is a small text file that is sent to and stored on a user’s computer. It allows the website administrator to identify site visitors, make it easier for users to use our services, and compile statistics on website usage. With this feedback, we can continuously improve our products and tailor our services to users. Cookies do not harm users’ computers or files. We use them to provide our customers with information and services tailored to their individual needs. You can block the use of cookies in your browser or configure your browser to warn you when cookies are being installed.
Web beacon technology is a technology that allows us to identify website users who read marketing emails. For example, we can use web beacons to determine whether an email has been read or not.
Our services use Google Analytics and other web analytics tools to collect analytical data and generate reports on how visitors use our website. For more information about Google Analytics, visit the Google Analytics website. To opt out of data collection by Google Analytics, download the following add-on to your browser: Google Analytics opt-out add-on.
5. Data Protection and Data Storage
We use administrative, organizational, technical, and physical security measures to protect the data we collect and process. All personal data is protected against unauthorized access and against accidental or unlawful destruction, alteration, disclosure, transmission, or other unauthorized processing.
Netsport OÜ stores personal data, and this data is never disclosed outside the EU or the European Economic Area. Server security complies with best security practices. The servers are protected against intrusions and denial-of-service attacks. We follow best practices in data security when it comes to the processing of personal data and technical solutions.
All access to personal data is monitored in accordance with best practices. If, despite our security measures, a security breach is reported that is likely to have a negative impact on users’ privacy, we will notify the data subject, other affected individuals, and authorities as required by applicable laws.
6. Data Processing
Personal data is accessible only to Netsport OÜ employees. Employees must handle it securely.
In the course of the data processing required to provide our services, we use only trusted contractual partners who allow us to share information with third parties. These include Montonia, Stripe, and Smaily. All partners comply with the requirements of the EU General Data Protection Regulation.
We share your personal information only within our organization and only to the extent reasonably necessary for the purposes of this privacy statement.
7. Data Expiration
We retain personal data only for as long as necessary to fulfill the purposes described in this privacy notice. Certain information may be retained for a longer period, as long as it is necessary to comply with legal obligations.
At the request of a customer or supplier, Netsport OÜ may remove personal data associated with them from its records. The removal process is irreversible, and we cannot restore the deleted personal data.
8. Rights of the Data Subject
Customers and suppliers have the following rights: to access their personal data, including the right to receive a copy of the personal data stored about them; to request the correction or deletion of their personal data; to request restrictions on processing under certain conditions or to object to the processing of personal data. If the processing is based on separate consent, the data subject may also withdraw their consent. However, this does not affect the lawfulness of such data processing that took place prior to the withdrawal of consent. You can change your consent by contacting us. Your request must be sufficient for us to verify your identity. We will notify you if we are unable to fulfill your request in some respect, such as removing information that we are legally required to retain.
At the request of a customer or supplier, Netsport OÜ may remove personal data associated with them from its records. The removal process is irreversible, and we cannot restore the deleted personal data.
9. Access to our stored data
You can request access to the data stored in the Netsport OÜ system by contacting us. Our current contact information can be found on our website at www.netspordihall.ee
10. Disclosure of Data to Third Parties
We may disclose necessary information to third parties to ensure high-quality service and for marketing purposes. If necessary, we will also provide information to government authorities. We will always inform the customer of any information requests, provided that this is permitted by law.
We provide the following information to third parties: contractual and billing information required for financial management.
Netsport OÜ handles data transmission and manages high-level security and protection in accordance with EU privacy policies.
Privaatsusteatise muutmine Oma teenuste arengute ja õigusaktide muudatuste tõttu jätame endale õiguse muuta privaatsusteatist. Tingimuste ajakohastamisel teavitatakse registreerunud kliente märkimisväärsetest muudatustest.
NetSport OÜ’s Data Protection and Privacy Policy was approved on August 1, 2023.