The controller of NOOLEMÄNG websites and service environments is:
Drump Group OÜ
Tel +372 5322 5397
Protection of personal data
Personal data is data that NOOLEMÄNG collects in order to provide a service, identify a person, contact a person to provide a service or resolve issues.
NOOLEMÄNG does not process sensitive personal data as defined in REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (General Data Protection Regulation or GDPR or EU Regulation 2016/679).
NOOLEMÄNG is committed to protecting the personal information of customers and users and their privacy. NOOLEMÄNG activities on the Internet are in accordance with all relevant activities and the relevant legislation of the European Union and the laws of the Republic of Estonia, including REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL. DRUMPDARTS takes all precautions (including administrative, technical and physical measures) to protect the personal data collected. Only authorized persons have access to change and process the data.
All personal data obtained in the course of visiting the NOOLEMÄNG websites and making purchases in the service environments will be treated as confidential information. An encrypted data communication channel with banks ensures the security of the purchaser's personal data and bank details.
The following are NOOLEMÄNG 's privacy policies regarding the collection, processing, use, disclosure, transmission, modification, forgetting and deletion of personal data.
These principles do not apply to the processing of data of legal entities and other companies / institutions, nor does it cover the processing of personal data on the websites / service environments to which our websites / service environments refer (external links).
The person representing the company (as the contracting authority) is not a natural person, it is an authorized representative of a legal person whose processing of personal data is not regulated by REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL.
1. What data is collected?
When visiting websites, non-personalized technical data about the visitor is collected.
In service environments, personal data is also collected for the provision of services and the identification of persons.
The technical data is limited to the Internet address (IP address) of the computer or computer network used, the software version of the computer's web browser and operating system, the time of the visit (time, date, year). IP addresses are not associated with personally identifiable information.
Data is collected on website visits and stays in order to improve websites and service environments and make them more convenient for visitors.
In service environments (incl. E-shop), personal data is collected for the fulfillment of contracts and data on topics of interest to persons (incl. Shopping cart content, preferences, attitudes, behaviors, etc.) to improve the delivery of expected information
In the case of natural persons, the data to be collected are, if necessary, first name, surname, e-mail address and telephone number in order to identify uniqueness.
The personal data processed by NOOLEMÄNG customers uploaded to the NOOLEMÄNG environment within the service is protected by the confidentiality requirement, which applies when the customer signs the service agreement. NOOLEMÄNG services can be used only after accepting the contract. Acceptance of the agreement is checked by software, in its absence, acceptance is requested.
All NOOLEMÄNG service providers who come into contact with personal data are trained to comply with REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL and to use security measures in their work concerning DRUMPDARTS customer service.
Consent to the collection of personal data related to and necessary for the service is given by the subscriber at the time of ordering the service. By ordering the service, the consent is considered to have been given with the corresponding time stamp.
2. Retention of collected data
Non-personalized technical data collected by websites and service environments will be stored indefinitely.
Personal data related to personalized inquiries and / or transactions are stored for up to 7 years after the last interaction with the service provider due to the obligation to certify transactions in the Accounting Act. An interaction is considered to be, among other things, responding to direct marketing by viewing or clicking on a link.
3. Transmission of collected data
Personal data processed by NOOLEMÄNG may only be transferred without the consent of the person to an authority or person who has a direct legal right to do so (such as a court or pre-trial proceeding) and a justified need.
The personal data processed by the customers within the NOOLEMÄNG service is treated as confidential and the right to process, release or transmit this data is the sole responsibility of the data owner (customer).
NOOLEMÄNG provides technical assistance in data processing at the request of the customer, but this does not change the ownership and responsibility of the data.
NOOLEMÄNG is the chief processor of personal data, NOOLEMÄNG forwards the personal data necessary for making payments to the authorized processor Maksekeskus AS.
4. What rights does the person have to the data collected?
The right to inspect, correct and terminate the processing of your data
By default, personal data will not be published unless confirmed (participation in trainings / seminars / conferences).
All persons have the right to access their personal data in service environments.
If improvement is possible, depending on the service and service environment, it can be done immediately.
If personal information is not editable, accessible, disclosed on a website or in service environments, we should be provided with a personally identifiable request to obtain or correct the information. If possible, the data will be issued or corrected within 7 working days.
If you wish to opt out of direct marketing offers for all or some of the topics, you can do so immediately via the link in the footer of each marketing email you send. The change will take effect immediately.
If there is (no longer) a legal basis for processing, disclosing or providing access to personal data, termination or deletion of the use of the data, termination of disclosure of the data or termination of granting access to the data may be required. To prevent misuse of customer data and rights, applications may only be submitted in a form where the applicant's identity is identifiable (digitally signed or personally signed at the agency). We have the right to respond to such requests within 30 days.
The application shall not be granted if:
it may prejudice the rights and freedoms of another person;
it may impede the provision or non-provision of the service;
this may hamper the work of law enforcement agencies;
it is not technically necessary and / or possible;
the identity of the applicant is not legally bound by the data;
it is not possible to identify the applicant.