Processing of personal data

The controller of the personal data of the www.ramp.ee online shop is Cityramp OÜ (registry code 11415098), located at Suurekivi tee 10, Valingu küla Saue vald Harjumaa, phone +372 5248713 and email info@ramp.ee.

What personal data are processed

• name, phone number and email address;
• delivery address;
• bank account number;
• cost of goods and services and data related to payments (purchase history);
• customer support data.

Why personal data are processed
Personal data are used to manage the customer’s orders and deliver goods.
Purchase history details (date of purchase, goods, quantity, customer’s data) are used for preparing summaries of goods and services purchased and for analysing customer preferences.
The bank account number is used to reimburse payments to the customer.
Personal data such as email, phone number and the customer’s name are processed to handle any issues relating to the provision of goods and services (customer support).
The IP address or other web identifiers of a user of the online shop are processed for the provision of the online shop as an information society service and for web use statistics.

Legal grounds
Personal data are processed for the purpose of performing a contract concluded with the customer.
Personal data are processed for performing legal obligations (such as accounting and the settlement of consumer complaints).

Recipients of personal data
Personal data are transmitted to the customer support of the online shop for managing purchases and purchase history and for settling any problems that the customers may have.
The name, phone number and email addressare transmitted to the transport service provider selected by the customer. When the goods are delivered by a courier, the customer’s address is also transmitted together with the contact details.
The accounts of the web shop are kept by a service provider, the personal data are transmitted to the service provider for performing accounting operations.

Security and access to data
Personal data are stored in the servers of Veebimajutus.ee, which are located on the territory of a member state of the European Union or states of the European Economic Area. Data may be transferred to the countries whose data protection levels have been assessed as adequate by the European Commission and to the companies in the USA who have joined the Privacy Shield framework.
Personal data can be accessed by the staff of the online shop in order to settle technical issues related to the use of the online shop and to provide customer support.
The online shop takes appropriate physical, organisational and IT security measures to protect personal data against accidental or unlawful destruction, loss, alteration or unauthorised access and disclosure.
Personal data are transmitted to the data processors of the online shop (such as the providers of transport, data hosting services, IT service) and processed under contracts concluded between the online shop and the processors. The processors must ensure appropriate safeguards when processing personal data.

View and delete personal data
To view and delete personal data, please contact customer support by email info@ramp.ee.

Storage
The web store stores data as long as the customer has expressed a desire to delete their data. After requesting to delete the information on the website, we will remove any related information that is subject to legal removal.

• pending orders: 6 years;
• unsuccessful orders: 6 years;
• canceled orders: 6 years;
• successful orders: 6 years;

Dispute resolution
Disputes concerning the processing of personal data are settled through customer support info@ramp.ee. The supervisory authority is the Estonian Data Protection Inspectorate (info@aki.ee).