Privacy Policy

Tõsta OÜ

Privacy Policy Rules,

updated on July 24, 2023 in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data.

 

TERMS

  1. Tõsta OÜ, company registration code 14499240, address Tänassilma tee 29, Tänassilma, Saku vald, Harjumaa, 76406. General email: tosta@tosta.ee +372 5346 1322.
  2. Website tosta.ee
  3. Social media accounts providing information about the devices offered by the company can be found on Facebook and Instagram.
  4. Personal data – any information related to a natural person. Data subject – an individual who can be identified directly or indirectly, in particular by reference to an identifier such as a personal identification number or factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that individual.
  5. Privacy Policy – this document containing the basic rules for collecting, storing, and processing personal data through the tosta.ee website.
  6. IP address – a unique number assigned to each internet-connected computer, known as an Internet Protocol (IP) address, which can be used to identify a person.

GENERAL PROVISIONS

  1. The Privacy Policy establishes the basic rules for the collection, storage, and processing of personal data for users accessing the www.tosta.ee website. www.tosta.ee is accessible only when providing personal data for the purpose of renting equipment for working at heights.
  2. The purpose of the Privacy Policy is to protect the personal data of users of www.tosta.ee from unauthorized use.
  3. The aim of the Privacy Policy rules is to regulate the processing of personal data on the company’s website www.tosta.ee in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals concerning the processing of personal data and the free movement of such data, as well as compliance with the Personal Data Protection Act of the Republic of Estonia and other related regulations.
  4. The company’s website www.tosta.ee may contain links to websites of the company’s partners, advertising suppliers, and other affiliated entities. By accessing other parties’ websites through the www.tosta.ee site, Tõsta OÜ does not take responsibility for the privacy policies of those entities. Users are advised to review the privacy policies of other websites before providing personal data.

COLLECTION, STORAGE, AND USE OF PERSONAL DATA

The company’s website www.tosta.ee allows users to submit a request for machine rental by providing personal data: name, personal identification code, email, phone number, address. Users who do not consent to providing data have the right to refrain from submitting data and leaving the application form incomplete.

  1. The above-mentioned data will be retained until the expiration of the contract.
  2. The company undertakes not to disclose user’s personal data to third parties except in the following cases:
  • With the user’s consent for the disclosure of personal data;
  • To the company’s partners providing services related to the proper execution of services requested by the user;
  • The company may disclose user’s personal data to third parties acting as data processors on behalf of the company. Personal data may only be disclosed to those data processors with whom the company has concluded respective agreements or cooperation agreements containing provisions on the transfer/disclosure of personal data, and the data processor ensures adequate protection of the transmitted personal data;
  • In all other cases, the company may disclose user’s personal data to third parties only in accordance with the procedures established by the laws of the Republic of Estonia. The company may disclose user’s personal data to government or law enforcement authorities upon their request.

 

  1. Despite the company’s reasonable efforts to protect personal data, the company cannot guarantee secure data transmission to the website. All data transmission operations are solely at the user’s risk. The company implements strict procedures from the moment of data acquisition to protect user’s personal data and technical and organizational measures to ensure protection against unauthorized access to personal data.
  2. The company uses user’s personal data for:
  • Providing the content of the tosta.ee website to the user in the most effective and suitable manner;
  • Providing information to the user about services and equipment requested by the user or that may be of interest to the user, provided the user has consented to be informed for this purpose.
  1. The company’s website may collect certain information about user’s visits: IP address used by the user to access the internet; date and time of the user’s visit to the company’s website; other websites visited by the user while on the company’s website; browser used; information about the user’s computer operating system; versions of mobile applications; language settings. If the user uses a mobile device, data may also be collected to determine the device type, device settings, and geographical coordinates (latitude and longitude). This information is used to improve and analyze the company’s website, enhance products and services, and manage the company’s website. The user voluntarily provides this data by using the services offered by the company, registering as a user on the company’s website, or visiting the company’s website.
  2. Tõsta OÜ is the responsible processor of personal data, Tõsta OÜ transfers the personal data necessary for making payments to the authorized processor Maksekeskus AS.

USER RIGHTS

  1. Users have the following basic rights on the website tosta.ee:
  • The right to receive information about the processing of their personal data;
  • To access their personal data and how it is processed;
  • To request the correction or deletion of their personal data held by the company;
  • The right to refuse the processing of personal data;
  1. Users who have submitted a written request (together with an identity document) have the right to access the user’s personal data processed on the tosta.ee website and receive information about the sources and purposes of collecting user’s personal data, the entities to whom it is disclosed. Upon receiving the user’s request, the company shall provide the requested data or indicate the reasons for refusing such a request no later than 30 calendar days from the date of receipt of the user’s request in the same format as requested by the user or, with the user’s consent, in any other manner offered by the company.
  2. Users can submit a request to access, correct, or delete the personal data collected by the company via email to tosta@tosta.ee
  3. Complaints about inappropriate or unlawful processing of personal data by individuals shall be reviewed by the Estonian Data Protection Inspectorate.

 

FINAL PROVISIONS

  1. The Privacy Policy can be read and printed at any time at the address tosta.ee
  2. The company is not responsible for connectivity issues preventing users of the company’s website and other individuals from accessing the website or using the services.
  3. The company cannot guarantee completely uninterrupted operation of its website and that the website is fully protected from viruses or other harmful components. The user acknowledges that all materials read, downloaded, or otherwise obtained through the use of the company’s website are done solely at the user’s discretion and risk, and the user is solely responsible for any damages caused to the user or the user’s computer system.
  4. Questions, comments, and requests related to the Privacy Policy should be sent to the email address tosta@tosta.ee