JUMEK AS is committed to protecting the privacy of its customers and users. Accordingly, we have prepared this privacy policy, which covers the collection, use, disclosure, transfer and storage of customer data. Our activities on the Internet are in accordance with all laws of the Republic of Estonia and relevant European Union legislation.

The controller of personal data of the online store jumek.ee is Jumek AS (registration code: 10299448), Komsi village, 68229 Otepää parish, Valga County, tel. +372 5340 9981, e-mail info@jumek.ee .

What personal data is processed?

• name, phone number and email address
• delivery address
• bank account number
• cost of goods and services and payment-related data (purchase history)

Use of collected personal information

Personal data is used to manage customer orders and deliver goods. Purchase history data (purchase date, product, quantity, customer details) is used to compile an overview of purchased goods and services and to analyze customer preferences.
Personal data such as e-mail, telephone number and customer name are processed to resolve issues related to the provision of goods and services.

The bank account number is used to refund payments to the customer.
The IP address or other network identifiers of the online store user are processed to provide the online store as an information society service and to produce web usage statistics.

Legal basis

The processing of personal data is carried out for the purpose of fulfilling the contract concluded with the customer. The processing of personal data is carried out to fulfill a legal obligation (e.g. accounting and resolving consumer disputes).

Recipients to whom personal data is transferred

Personal data is transferred to the online store's customer support to manage purchases and purchase history and resolve customer issues.

The name, telephone number and email address are forwarded to the transport service provider chosen by the customer. If the goods are delivered by courier, the customer's address is also forwarded in addition to the contact details.

Personal data may be transferred to information technology service providers if necessary
to ensure the functionality or data hosting of the online store.

Security and data access

Personal data is stored on Telia's servers located in a member state of the European Union or a country that is a party to the European Economic Area. Data may be transferred to countries that have been deemed adequate by the European Commission to provide adequate data protection and to US companies that have joined the Privacy Shield framework.

Access to personal data is available to online store employees, who can view personal data in order to resolve technical issues related to the use of the online store and provide customer support services.

The online store implements appropriate physical, organizational and information technology security measures to protect personal data from accidental or unlawful destruction, loss, alteration or unauthorized access and disclosure.

The transfer of personal data to the online store's authorized processors (e.g., transportation service providers and data hosting) takes place on the basis of contracts concluded between the online store and the authorized processors. The authorized processors are required to ensure appropriate safeguards when processing personal data.

You can access and make corrections to your personal data through customer support.

Withdrawal of consent

If the processing of personal data is based on the client's consent, the client has the right to withdraw the consent by notifying customer support by e-mail.

Storage

When closing an online store customer account, personal data will be deleted, unless such data needs to be retained for accounting purposes or to resolve consumer disputes.

If a purchase is made in the online store without a customer account, the purchase history is retained.
three years.

In the case of disputes related to payments and consumer disputes, personal data will be retained until the claim is satisfied or the statute of limitations expires. Personal data required for accounting purposes will be retained for seven years.

Deletion

To delete personal data, you must contact customer support by email. The deletion request will be responded to no later than within 10 working days and the period for which the data will be deleted will be specified.

Transfer

A request for the transfer of personal data submitted by e-mail will be responded to within 10 working days at the latest. Customer support will verify the identity of the person and inform you of the personal data that is subject to transfer.

Direct marketing communications

The email address and phone number will be used to send direct marketing messages if the customer has given their consent. If the customer does not wish to receive direct marketing messages, they must select the appropriate link in the footer of the email or contact customer support.

If personal data is processed for direct marketing purposes (profiling), the customer has the right to object at any time to both the initial and further processing of their personal data, including profiling related to direct marketing, by informing customer support by e-mail.

Dispute resolution

Disputes related to the processing of personal data are resolved through customer support (info@jumek.ee). The supervisory authority is the Estonian Data Protection Inspectorate (info@aki.ee).