1. General Provisions
1.1. This Privacy Policy regulates the principles of collection, processing, and storage of personal data. The responsible processor of personal data is Smart Home Office OÜ, Kadakamarja Street 23-7, Saue City, 76506 Saue Parish, Harju County, Harjumaa, 75106, registration code 16906470 (hereinafter the Data Processor).
For questions related to the processing of personal data, please contact us:
- By writing to our email address: info@smarthomeoffice.eu
- By calling: +372 5618 7453
1.2. The Data Subject, in terms of this Privacy Policy, is a Client or any other natural person whose personal data is processed by the Data Processor.
1.3. A Client, in terms of this Privacy Policy, is anyone who purchases goods from the Data Processor’s website.
1.4. The Data Processor adheres to the principles of data processing set out in the legislation, including the lawful, fair, and secure processing of personal data. The Data Processor is capable of confirming that personal data has been processed in accordance with the provisions of the legislation.
2. Collection, Processing, and Storage of Personal Data
2.1. The personal data that the Data Processor collects, processes, and stores are collected electronically, primarily through the website and email.
2.2. By sharing their personal data, the Data Subject grants the Data Processor the right to collect, arrange, use, and manage the personal data that the Data Subject shares directly or indirectly with the Data Processor when purchasing goods on the website, for the purpose defined in the Privacy Policy.
2.3. The Data Subject is responsible for ensuring that the data they submit are accurate, correct, and complete. Deliberately submitting false data is considered a violation of the Privacy Policy. The Data Subject is obliged to immediately notify the Data Processor of any changes to the submitted data.
2.4. The Data Processor is not responsible for any damage caused to the Data Subject or third parties due to the submission of false data by the Data Subject.
3. Processing of Clients’ Personal Data
The Responsible Processor of Personal Data is Smart Home Office OÜ.
Smart Home Office forwards the necessary Personal Data for making payments to Transport Companies and Companies dealing with Payment Management.
3.1. The Data Controller may process the following Personal Data of the Data Subject:
3.1.1. First and Last Name;
3.1.2. Date of Birth;
3.1.3. Phone Number;
3.1.4. Email Address;
3.1.5. Delivery Address;
3.2. In addition to the above, the Data Controller has the right to collect Data about the Client that is available in Public Registers.
3.3. The Legal Basis for the Processing of Personal Data is Article 6 (1) (a), (b), (c) and (f) of the General Data Protection Regulation:
- a) The Data Subject has given Consent to process their Personal Data for one or more Specific Purposes;
- b) The Processing of Personal Data is necessary for the Performance of a Contract to which the Data Subject is party or to take steps at the request of the Data Subject before entering into a Contract;
- c) The Processing of Personal Data is necessary for Compliance with a Legal Obligation to which the Controller is subject;
- f) The Processing of Personal Data is necessary for the Legitimate Interests pursued by the Controller or by a Third Party, except where such Interests are overridden by the Interests or Fundamental Rights and Freedoms of the Data Subject which require the Protection of Personal Data, in particular where the Data Subject is a Child.
3.4. Processing of Personal Data according to the Purpose of Processing:
3.4.1. Order Processing Maximum Retention Time of Personal Data: until the Client withdraws their Consent for Personal Data Processing or until the Deadlines arising from the Law from the last Purchase made on the Website.
3.4.2. Ensuring the Functioning of the E-Store Maximum Retention Time of Personal Data: until the Client withdraws their Consent for Personal Data Processing or until the Deadlines arising from the Law from the last Purchase made on the Website.
3.4.3. Customer Management Maximum Retention Time of Personal Data: until the Client withdraws their Consent for Personal Data Processing or until the Deadlines arising from the Law from the last Purchase made on the Website.
3.4.4. Financial Activities, Accounting Maximum Retention Time of Personal Data: according to the Deadlines specified in the Law.
3.4.5. Marketing
With the help of Collected Personal Data, we can inform Clients about Product News, Campaigns, and Upcoming Events. Clients who do not want to be on our Newsletter List can remove themselves from the Recipients at any time. The Client has the opportunity to opt out of Offers and Newsletters sent by Email, by notifying us by Email or by following the instructions contained in the Offer Email, which are located in the Footer of the Email.
Maximum Retention Time of Personal Data: until the Client withdraws their Consent for Personal Data Processing or until the Deadlines arising from the Law from the last Purchase made on the Website.
3.4.6. Security and Safety Maximum Retention Time of Personal Data: according to the Deadlines specified in the Law.
3.5. The Data Controller has the right to share Clients’ Data with Third Parties, such as Authorized Data Processors, Accountants, Transport and Courier Companies, and Companies providing Transfer Services. The Data Controller is the Responsible Processor of Personal Data. The Data Controller implements Organizational and Technical Measures that ensure the Protection of Personal Data against Accidental or Unlawful Destruction, Alteration, Disclosure, and any other Unlawful Processing.
4. Data Subject’s Rights
4.1. The Data Subject has the right to access their Personal Data and familiarize themselves with it.
4.2. The Data Subject has the right to receive information about the Processing of their Personal Data.
4.3. The Data Subject has the right to supplement or correct inaccurate data.
4.4. If the Data Processor processes the Personal Data of the Data Subject based on the Consent of the Data Subject, then the Data Subject has the right to withdraw their Consent at any time.
4.5. To exercise their rights, the Data Subject can contact the e-store customer support at info@smarthomeoffice.eu
4.6. The Data Subject has the option to file a complaint with the Data Protection Inspectorate (www.aki.ee) to protect their rights.
5. Final Provisions
5.1. These data protection conditions have been prepared in accordance with the European Parliament and Council Regulation (EU) No 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (General Data Protection Regulation), the Personal Data Protection Act of the Republic of Estonia, and the legal acts of the Republic of Estonia and the European Union.
5.2. The Data Processor has the right to change the data protection conditions partially or completely at any time, notifying the Data Subjects of the changes through the website www.smarthomeoffice.eu.