Scantank OÜ is committed to protecting the privacy of its customers. The company’s activities on the Internet are in compliance with all the relevant activities, legislation of the European Union, and the laws of the Republic of Estonia.
PROCESSING OF PERSONAL DATA
The personal data controller of the online store Scantank.ee is Scantank OÜ (registry code 14775808), located in Harju County, Tallinn, Türi 6/3, 11313, Estonia, phone +372 58362871 and email email@example.com. Scantank OÜ is the personal data controller. Scantank OÜ transmits personal data which are necessary for making payments to the data processor Maksekeskus AS.
TYPES OF PROCESSED PERSONAL DATA
The Scantank.ee website processes the following personal data:
- name, phone number, and email address;
- delivery address;
- bank account number;
- cost of goods and services, and payment-related data;
- customer support details.
PURPOSES OF THE PROCESSING OF PERSONAL DATA
Scantank OÜ is the personal data controller. Submitted personal data are used for managing the customer’s orders and delivering the goods. Purchase history data (date of the purchase, goods, quantity, customer details) are used for preparing an overview of the purchased goods and services and for analysing customer preferences. The bank account number is used for making refunds to the customer. Contact details such as the customer’s e-mail address, phone number and name are processed for resolving any issues related to the provision of the goods and services (customer support). The IP address and other network identifiers of a user of the online store are processed for providing the online store service as an information society service as well as for producing web usage statistics.
Submitted personal data are processed for the performance of the contract concluded with the customer. Submitted personal data are processed for compliance with legal obligations (for example, accounting and settlement of consumer disputes).
RECIPIENTS OF TRANSMITTED PERSONAL DATA
Submitted personal data are transmitted to the customer support team of the online store for managing purchases and purchase histories as well as resolving any customer issues. Personal data may be transmitted to information technology service providers, if it is necessary for the functionality or data hosting of the online store.
SECURITY AND ACCESS TO DATA
Submitted personal data are stored on servers of Semiway OÜ which are located within the territory of the member states of the European Union or countries that have joined the European Economic Area. The data may be transmitted to countries wherein the level of data protection has been deemed sufficient by the European Commission as well as to U.S. companies which have joined the Privacy Shield framework. Access to submitted personal data is granted to the employees of the online store for resolving technical issues related to the use of the online store and for providing customer support. The online store shall implement appropriate physical, organisational and information technology security measures to protect the personal data against accidental or unlawful destruction, loss and alteration as well as unauthorised access and disclosure. Personal data are transmitted to the online store’s data processors (for example, transport and data hosting service providers) under agreements concluded between the online store and the data processors. Data processors are required to ensure that appropriate security measures are taken when processing the personal data.
ACCESSING AND AMENDMENT OF PERSONAL DATA
Personal data shall be available for accessing and amendment in the user profile in the online store. Personal data related to purchases made without a user account shall be accessible via customer support.
WITHDRAWAL OF CONSENT
In cases where the processing of personal data is carried out on the basis of the consent of the customer, the customer has the right to withdraw their consent by notifying customer support by e-mail.
Upon closure of a customer account in the online store, any personal data shall be deleted, unless the retention of the data is required for accounting purposes or for the resolution of consumer disputes. Histories of purchases made without a customer account shall be retained for 3 years. In the event of disputes relating to payments or consumer disputes, related personal data shall be retained until the settlement of the claim or the end of the validity period. Personal data which are necessary for accounting shall be retained for 7 years.
If you wish to have your personal data deleted, please contact our customer support team by e-mail. Requests for deletion shall be answered no later than within one month and shall include a specification of the data deletion period.
Requests submitted by e-mail for the transfer of personal data shall be answered no later than within one month. In such cases, customer support shall verify the requester’s identity and notify the requester about the personal data to be transferred.
SETTLEMENT OF DISPUTES
Disputes relating to the processing of personal data may be resolved via customer support by email firstname.lastname@example.org. The supervisory authority is the Estonian Data Protection Inspectorate (email@example.com).