Privacy policy

GRIFS OÜ information about processing personal data

GRIFS OÜ (henceforth GRIFS) follows the requirements of the regulation 2016/679 (henceforth the regulation) and other regulations enforced in Estonia.

Contact information of the administrator: Tatari 64, Tallinn 10134, Estonia. E-mail: info@grifsag.ee, tel. 6488020.

This privacy policy explains how GRIFS processes personal data, also how the rights of the data subjects are ensured, and matters related with personal data protection. GRIFS privacy policy covers all personal data which is processed by GRIFS.

Aim and legal basis for processing personal data

GRIFS processes personal data for the following purposes:

  • human resources management and calculations;
  • accounting;
  • information sheet;
  • ensuring customer service;
  • preventing crimes.

Legal basis for processing personal data

GRIFS processes personal data on the following legal bases:

  • data subject’s consent;
  • signing or performing a contract;
  • performing legal obligations provided in a legal act;
  • ensuring legitimate interest.

Data subject’s right to withdraw consent

If the processing of personal data has begun and it is done with the data subject’s consent, the data subject has the right to withdraw the consent at any time. For this purpose, you need to submit an application to GRIFS address Tatari 64, Tallinn 10134. To obtain the application form, please contact us by calling 6488020 or by e-mail at info@grifsag.ee.

Withdrawal of consent does not affect the processing of the data that was processed during the validity of the client’s consent.

Withdrawal of consent does not stop the processing of data done for any other legal reasons.

Personal data preservation term

GRIFS preserves personal data according to the aims and legal bases determined during processing of personal data if at least one of the following criteria is valid:

  • GRIFS has a legal obligation to preserve the data;
  • GRIFS must secure its own legitimate interests;
  • GRIFS must perform contractual obligations;
  • there is valid consent for processing personal data from the data subject.

Cookies

Cookies are text files the web browser stores in the computer of the homepage visitor to improve the website’s functioning. Saved cookies allow us to recognise your computer. If you visit the GRIFS website again and use such website sections that are accessible only with password, the cookies eliminate the need to re-enter your personal data.

Why does GRIFS uses cookies

GRIFS uses cookies for the following reasons:

  • for session administration and authenticating users;
  • to ensure the website’s functioning;
  • to obtain data about the website users – time spent on the website, number of visitors;
  • to improve the effectivity of the website.

The server housing the GRIFS website registers the inquiries the visitors send to the website (opened internet addresses, used devices and internet browser, IP address, access time). This data is used only for technical purposes to ensure the proper functioning of the website and safety. Legal basis for processing such personal data is the legitimate interest of GRIFS.

GRIFS does not use cookies to monitor user habits which is why GRIFS informs you of using cookies but does not require your consent for installing cookies according to law.

Third party cookies

Third party cookies, especially Google Analytic’s cookies can be installed on GRIFS website. Google Analytics tool is provided by Google Inc. (USA) that has access to the data gathered using this tool.

Cookies’ check

The data subject has the right to delete cookies at their own discretion. More information is available here: www.youronlinechoices.com/ee

GRIFS website user can erase all the cookies already saved on their computer and forbid the internet browser from saving these. In that case the preference not to save the cookies must be manually specified each time you visit the GRIFS website, however, some of the website services and functions may not function in this case.

Personal data receivers

In cases provided by the law, GRIFS can forward data to third persons. Additionally, GRIFS can use third party services to improve effectivity.

GRIFS does not forward data into third countries, where sufficient personal data protection levels are lacking.

Access to one’s own personal data and other rights of the data subject

To obtain information about data processed by GRIFS, you need to submit an application to GRIFS at Tatari 64, Tallinn 10134. To obtain the application form, please contact us by calling 6488020 or by e-mail at info@grifsag.ee.

The data subject has the right to apply for removing the personal data, limit the processing of personal data, contest the processing of personal data or apply for correcting the personal data according to the regulation provisions by submitting a respective application.

You can receive the applied information only at the GRIFS office by presenting an identification document.

Address of the personal data processing contact person: Tatari 64, Tallinn 10134, Estonia. E-mail: info@grifsag.ee, tel. 6488020.

If you believe your rights concerning personal data protection have been breached, you can submit a complaint to the personal data supervisory authority of your permanent place of residence.

This document is valid from 5 July 2018.

GRIFS has the right to amend this document at any time, the respective amendments will be published at www.grifsag.ee.

Apply for our services