This Online Store is using cookies. A cookie is a small text file that a browser automatically is storing from a device which is used by a customer. Cookies are used to collect information about how the customer is using the Online Store in order to provide a better user experience for the customer.
The Online Store is using following cookies:
• session cookies with the purpose to enable the use of the Online Store;
• persistent cookies with the purpose to remember the customer's choices in the Online Store;
• first-party and / or third-party cookies with the purpose to display personalized advertising and offers for the customer.
• Third-party analysis cookies with the purpose to optimize marketing communications.
The customer may delete or block the stored cookies on their devices by modifying the specific settings on their browser. If not using cookies, the Online Store may not work as intended and some of the functionality may not be available to the customer.
In addition to the use of analysis cookies, the Online Store is also using pixels (pixel tags, web-beacons) to monitor the use of the seller's website. In doing so the identifiable information will not be processed.
PROCESSING OF PERSONAL DATA
The chief processor of personal data of the GEAL´s Online Store is Kollane Disain OÜ (14054590) located at Pirni tänav 5, in Tallinn, e-mail firstname.lastname@example.org.
WHICH PERSONAL DATA IS BEING PROCESSED
• name, telephone number and e-mail address;
• delivery address;
• bank account number;
• the cost of goods and services and the data related to the payments (purchase history)
IN WHICH PURPOSE THE PERSONAL DATA IS BEING PROCESSED
Personal data is only being used to manage the customer orders and to deliver the packages. The bank account number is being used if the payments need to be returned to the customer. Personal data such as e-mail, telephone number and customer´s name are being processed to resolve issues related to the provision of the goods. E-mail is being used to send invoices and the telephone number is being used to notify the goods that have arrived at the parcel machine.
The purchase is made without a user account. Direct marketing notifications will not be sent.
The processing of personal data is taking place for the purpose of filling the contract concluded with the customer (management of the customer's orders, delivery, return of goods and payments). The processing of personal data is carried out in order to fulfill a legal obligation (eg accounting).
Kollane Disain OÜ does not disclose the buyer's data to third parties except for transport service providers to deliver the order to the buyer and when paying for purchases via PayPal (the name of the payer and the purchase amount). When the package is being sent to parcel machine, it is necessary to know the name and the phone number to whom to send (you can choose the specific parcel machine that is nearest to you to pick it up). When the goods have arrived in the parcel machine, your phone number will receive the notification. When sending via a post office, then the destination address is also needed to send the package out.
The purchase is made without a user account therefore the personal data can be found out more via customer support. If the request for access to personal data is submitted electronically then the information will be also provided back by publicly available electronic means.
RECIPIENTS WHO RECEIVE THE PERSONAL DATA
Personal information is passed on to the Online Store's customer support to manage purchases, purchase history and to resolve customer issues.
The name, telephone number and e-mail address will be forwarded to the transport service provider which is chosen by the customer.
The accounting of the Online Store is performed by the service provider. Personal data is transmitted to the service provider for accounting operations.
SECURITY AND ACCESS TO DATA
Personal data is being stored on ShopRoller.com servers that are located in the territory of a Member State of the European Union or countries that have joined the European Economic Area. Data may be transferred to the countries whose level of data protection has been assessed as adequate by the European Commission and to US companies who have joined in the Privacy Shield framework.
The employees of the Online Store have access to personal data. It is needed to resolve technical issues related to the use of the Online Store and to provide customer support services.
The Online Store implements appropriate physical, organizational and IT security measures to protect personal data from accidental or unlawful destruction, loss, alteration, unauthorized access and disclosure.
The transfer of personal data to the authorized processors of the Online Store (eg transport service providers and data hosting) takes place on the basis of agreements concluded with the Online Store and the authorized processors. Authorized processors are required to ensure appropriate safeguards for the processing of personal data.
ACCESS AND CORRECTION OF PERSONAL DATA
Since it is only possible to order the purchase without a user account then personal data can be accessed via customer support.
After the completion of the order-related process: the above personal data and / or order-related information will be deleted, except for personal data (purchase history data) that needs to be retained for accounting or to resolve consumer disputes.
Since it is only possible to order from this Online Store without a customer account therefore the purchase history will be stored for three years.
In the case of payments and customer disputes, personal data is being kept until the claim is fulfilled or the limitation period expires.
For accounting purpose the personal data is required to keep for seven years.
DIRECT MARKETING NOTIFICATIONS
Direct marketing notifications will not be sent.
The disputes related to the processing of personal data are being resolved through customer support email@example.com. The supervisory authority is the Estonian Data Protection Inspectorate (firstname.lastname@example.org).