Privacy Policy

1. Introduction

Welcome to Security Consultants OÜ. This policy explains how we handle and use your personal data and your rights regarding that information.

Under the GDPR of May 2018,  Security Consultants OÜ with its registered address at Tiskrevälja tn 59-12, Tallinn, 13516, Estonia, is the controller in relation to any personal data processed through its website.

The Security Consultants OÜ (“we”, “our” or “us”) is committed to protecting and respecting your privacy.

This Privacy Policy explains why and how we will use the personal information that we have obtained from you or others with whom we share it, and the rights you have in connection with the information we use. Please read the following carefully.

This policy outlines how we collect and use the personal information we receive from various interactions with our business, such as visiting our website at [please include link here] and when you contact us.

We are the controller for the processing activities described below. This means that we decide why and how your personal information is processed. Please see the section at the end of this policy for our contact and legal information.

This policy was last updated on the date that appears at the top of this page.

 

2. Personal Information We Collect About You

We receive personal information about you that you give to us, that we collect from your visits to our website and social media pages, and that we obtain from other sources. We only collect personal information that we need and that is relevant for the purposes for which we intend to use it.

 

Information that we collect about you:

  1. Your name, title, job title, and contact details (email address, telephone number, postal address);
  2. Any information you include in correspondence you send to us or in forms you submit to us;
  3. Details of your orders and purchases;
  4. Your marketing preferences;
  5. Your identification information when exercising the rights that you have in relation to our processing of your personal data (see further Your rights in relation to your personal information);
  6. Details of any transactions between you and us;
  7. Your payment card details and, in relation to certain refunds, your bank account details;

 

When you visit our website may we automatically collect:

  1. Details of your use of our Site, namely traffic data, weblogs and statistical data, including where and when you clicked on certain parts of our Site and details of the webpage from which you visited it;
  2. The date and time you used our website;
  3. The pages you visited on our website and how long you visited us for;
  4. The website address from which you accessed our website;
  5. Cookie, pixels, and beacon identification information (for more information, please see our Cookie Policy).
 
3. Use of Your Personal Information

We use your personal information for a variety of reasons. We rely on different legal grounds to process your personal information, depending on the purposes of our use and the risks to your privacy. You will only receive emails from us if:

  1. we have obtained your contact details in the course of a sale or negotiation for a sale of our products or services and you have not objected to receiving such direct email from us. Of course, we will only use your contact details to send you marketing emails that are based on similar products or services that you purchased from us and you will always have the opportunity to opt out at any time or
  2. if you have consented to receiving marketing from us (you can opt-out of receiving them at any time). We do not share your personal information with companies that would send their marketing to you.

We use your personal information in the following ways:

 

3.1 Where You Have Provided Consent

We may use and process your personal information for the following purposes where you have consented for us to do so:

To contact you via email, online or by post (as you have indicated) with marketing information about our products, events, product launches, exciting offers and services.

You may withdraw your consent for us to use your information in any of these ways at any time. Please see the ‘YOUR RIGHTS IN RELATION TO YOUR PERSONAL INFORMATION’ section below for further details.

 

3.2 Where Necessary To Comply With Our Legal Obligations

We will use your personal information to comply with our legal obligations:

  • To keep a record relating the exercise of any of your rights relating to our processing of your personal information.
  • To take any actions in relation to health and safety incidents required by law.
  • To handle and resolve any complaints we receive relating to the services and products we provide.
 

3.3 Where Necessary for us to Pursue a Legitimate Interest

We may use and process your personal information where it is necessary for us to pursue our legitimate interests as a business for the following purposes:

  • Processing necessary for us to promote our business, brands and products and measure the reach and effectiveness of our campaigns;
  • For analysis and insight conducted to inform our marketing strategies, and to enhance your visitor experience;
  • To tailor and personalise our marketing communications based on your attributes;
  • To fulfil and complete your orders, purchases and other transactions entered into with us;
  • To send you electronic marketing information after you have purchased a product or service from us, made a purchasing enquiry or requested information of interest. At the time we first collect your details we will give you a simple way to opt out and object to our using your contact details to send you electronic marketing information and this option will be repeated in every subsequent marketing message we send you. We will only contact you with information about our own similar products and services, which we hope you will like. You have the right to object to us sending you this information at any time;
  • To identify and record when you have received, opened or engaged with our website orot her electronic communications (please see our   for more information);
  • In some cases, we may use automated methods to analyse, combine and evaluate information that you have provided to us. We collect and analyse this information in this way so that we can deliver the most appropriate customer experience to you by tailoring and making relevant all our service and communications;
  • Processing necessary for us to support you with your enquiries;
  • To respond to correspondence, you send to us and fulfil the requests you make to us;
  • To analyse, evaluate and improve our products and services so that your visit and use of our website, is more enjoyable (we will generally use data statistical data from many people so that it does not identify you personally);
  • To undertake market analysis and research (including contacting you with customer surveys) so that we can better understand you as a customer;
  • For product development purposes;
  • Processing necessary for us to operate the administrative and technical aspects of our business efficiently and effectively;
  • To administer our website and for internal operations, including troubleshooting, testing, and statistical purposes;
  • For the prevention of fraud and other criminal activities;
  • To verify the accuracy of data that we hold about you and create a better understanding of you as an account holder or visitor;
  • For network and information security in order for us to take steps to protect your information against loss or damage, theft or unauthorised access;
  • To comply with a request from you in connection with the exercise of your rights (for example where you have asked us not to contact you for marketing purposes, we will keep a record of this on our suppression lists in order to be able to comply with your request);
  • For the purposes of corporate restructure or reorganisation or sale of our business or assets;
  • For efficiency, accuracy or other improvements of our databases and systems, for example, by combining systems or consolidating records we hold about you;
  • To enforce or protect our contractual or other legal rights or to bring or defend legal proceedings;
  • To inform you of updates to our terms and conditions and policies;
  • For other general administration including managing your queries, complaints, or claims, and to send service messages to you.

 

3.4 Where Necessary For us to process Orders

We will use your personal information where this is necessary for us to perform our contract with you or to carry out any pre-contract steps you’ve asked us to so that you can enter into that contract, for the following purposes:

  • To process your payment card or bank details when taking payment for your orders or when providing a refund
  • To process, fulfil and complete your orders, purchases and other transactions entered into with us and deliver your order and
 

3.5 Marketing Communications

If we have requested your consent and you give your consent, we may use your personal information to contact you by email, online or by post to notify you of special offers, promotions or new products and services.

If you do not wish to receive communications from us, please inform us by using the unsubscribe link in the marketing email or by filling our Privacy Policy Contact Form.

 

4. Disclosure of Your Personal Information by us

We only disclose your personal information outside our business in limited circumstances. If we do, we will put in place a contract that requires recipients to protect your personal information, unless we are legally required to share that information. Any contractors or recipients that work for us will be obliged to follow our instructions. We do not sell your personal information to third parties.

We may disclose your information to our third-party service providers, agents and subcontractors (Suppliers) for the purposes of providing services to us or directly to you on our behalf, including the operation and maintenance of our website.

When we use Suppliers, we only disclose to them any personal information that is necessary for them to provide their services and only where we have a contract in place that requires them to keep your information secure and not to use it other than in accordance with our specific instructions.

 

5. Transfers of Your Personal Information Outside of Europe

We do not transfer your personal information outside of Europe. If we do so in the future, we’ll let you know and take measures to protect your personal information.

All information you provide to us is stored on our secure servers which are located within the European Economic Area (EEA).

If at any time we transfer your personal information to, or store it in, countries located outside of the EEA (for example, if our hosting services provider changes) we will amend this policy and notify you of the changes. We will also ensure that appropriate safeguards are in place for that transfer and storage as required by applicable law. This is because some countries outside of the EEA do not have adequate data protection laws equivalent to those in the EEA. If we transfer your personal information to the United States of America, we will only send the personal information to USA entities subject to Standard Contractual  Clauses or where we have an alternative safeguard in place in accordance with applicable law. Where they apply to our data transfer activities, we may rely on adequacy decisions by the European Commission about certain countries for data transfers to countries outside the EEA.

 

6. Security and Links to Other Websites

We take the security of your personal information seriously and use a variety of measures based on good industry practice to keep it secure. Nonetheless, transmissions over the internet and to our website, and our social media pages may not be completely secure, so please exercise caution. When accessing links to other websites, their privacy policies, not ours, will apply to your personal information.

We employ security measures to protect the personal information you provide to us, to prevent access by unauthorised persons and unlawful processing, accidental loss, destruction and damage.

We use Internet-standard encryption technology (“SSL” or “Secure Socket Layer” technology) to encode personal data that you send to us through our website. Before sending personal information to us, please check that you are in a secure area of the Site by looking at the bottom right of your website browser and checking that it displays an image of a closed padlock or an unbroken key. 

The transmission of information via the internet is not completely secure. Although we will do everything possible to protect your personal information, we cannot guarantee the security of any personal information during its transmission to us online. You accept the inherent security implications of using the internet and will not hold us responsible for any breach of security unless we are at fault.

If you are using a computer or terminal in a public location, we recommend that you always log out and close the website browser when you complete an online session for your security. In addition, we recommend that you take the following security measures to enhance your online safety:

  • When creating a password, we recommend use at least 8 characters with a combination of letters and numbers.
  • We recommend you frequently change your password.
  • Keep your passwords private. Remember, anyone who knows your password may access your account.
  • Avoid using the same password for multiple online accounts.
  • We will never ask you to confirm any account or credit card details via email. If you receive an email claiming to be from Organisation.
  • If you receive such an email claiming to be from the Organisation asking you to do so, please ignore it and do not respond and report it to us.

Our website may contain links to other websites run by other organisations which we do not control. This policy does not apply to those other websites, so we encourage you to read their privacy policies.

 

7. The Periods For Which We Retain Your Personal Information

We must retain certain information to ensure accuracy, maintain service quality, and for legal, regulatory, fraud prevention, and legitimate business purposes.

If you disclose Personal Data to us in connection with a general inquiry through our website, for example, when you enter your details into a website form or send us an email, that Personal Data will be retained for up to 5 years, depending on the scope of the inquiry.

Other information will be retained for no longer than is necessary for the purpose for which it was obtained by us or as required or permitted for legal, regulatory, fraud prevention, and legitimate business purposes. In general, we (or our service providers on our behalf) will hold this information for a period of seven years, unless we are obliged to hold it for a longer period under law or applicable regulations.

We will not hold your personal information in an identifiable format for any longer than is necessary for the purposes for which we collected it. For certain purposes we retain your personal information indefinitely (e.g. to supress marketing messages).

 

8. Your Rights in Relation to Your Personal Information

You have certain rights in respect of your personal data and we have processes to enable you to exercise these rights. If you wish to make use of any of the rights below you can fill our Privacy Policy Contact Form:  

 

8.1 Right of Access

This is known as a Data Subject Access Request, or DSAR for short. If you want to find out if we are processing personal data related to you and to access any such personal data, you can make such a request. In order to give you a copy of your personal data that we hold, we will need to verify your identity.

You have the right to access any personal information that we process about you and to request information about:

  • What personal data we hold about you
  • The purposes of the processing
  • The categories of personal data concerned
  • The recipients to whom the personal data has/will be disclosed
  • How long we intend to store your personal data for
  • If we did not collect the data directly from you, information about the source

 

8.2 Right to Rectification

If you believe that we hold any incomplete or inaccurate data about you, you have the right to ask us to correct and/or complete the information. We will strive to do so as quickly as possible unless there is a valid reason for not doing so, at which point you will be notified.

Depending on the type of personal data you believe is inaccurate, we may ask you for further proof to ensure that the personal data is being corrected properly.

 

8.3 Right to Erasure

You also have the right to request erasure of your personal data or to restrict processing (where applicable) in accordance with the data protection laws; as well as to object to any direct marketing from us. Where applicable, you have the right to data portability of your information and the right to be informed about any automated decision-making we may use.

You have a right to ask for your personal data to be erased in certain circumstances. However, this right does not apply where we have to comply with a legal obligation or where we need personal data for the establishment, exercise or defence of legal claims. In addition, if you opt out of marketing communications or have previously opted out of marketing communications, we have to keep a record, or such opt out to ensure that we don’t contact you in the future.

 

8.4 Right to Restriction

You have a right to request that processing of personal data is restricted in certain circumstances. However, we shall still continue to process the personal data for storage purposes, for the establishment, exercise or defence of legal claims or with your consent.

 

8.5 Right to Object

Where we are relying on legitimate interests as a legal basis to process your data, you have a right to object to such processing on grounds relating to your particular situation.

 

8.6 Right to Portability

In certain circumstances, you can request that we provide to you your personal data in a commonly used format.

 

8.7 Right to Complain to the Supervisory Authority

You can lodge a complaint with the Estonian Data Protection Inspectorate.  

If you are unhappy about how your personal data has been used, please refer to the complaints section on the website.

If you object to our use of your personal data for marketing purposes, we will opt you out of marketing.

If we receive a request from you to exercise any of the above rights, we may ask you to verify your identity before acting on the request; this is to ensure that your data is protected and kept secure.

 

9. Changes to Our Privacy Policy

Please check this page regularly for changes to this policy.

You can contact us by  email with your queries about this policy or for any other reason.

You can also contact our Data Protection Officer by filling our Privacy Policy Contact Form.

 

02/ Contact Us

Reach out to us