Privacy Policy
Data Protection Terms
The responsible data processor for personal data in the online store riverrope.com is Riverrope OÜ (registry code 16888128), located at Savi street 34, 80040, Pärnu, Pärnumaa.
Types of Personal Data Processed
The following personal data is processed:
- Name, telephone number, and email address
- Delivery address for goods
- Cost of goods and services, and related payment data (purchase history)
- IP address
Purposes of Personal Data Processing
Managing customer orders and delivering goods
Creating an overview of purchased goods and services, analyzing customer preferences, and resolving consumer disputes
Handling questions related to purchased goods and services (customer support). Providing invoices and notifying customers about goods reaching the pickup point.
The user’s IP address or other network identifiers are processed by the web store for providing information society services and for compiling web usage statistics.
The online store user’s IP address or other network identifiers are processed for the provision of the online store as an information society service and for online usage statistics.
Legal Basis
Processing of personal data is carried out for the performance of a contract with the customer, fulfillment of legal obligations (e.g., accounting), and based on the legitimate interests of the data controller.
Data processing is also based on the customer’s consent for direct marketing activities (newsletter).
Recipients of Personal Data
Personal data such as name, telephone number, and email address are shared with the chosen transport service provider for delivery purposes. In the case of courier delivery, the customer’s address is also shared.
Personal data may be shared with IT service providers, payment solution providers, and authorized processors to ensure website functionality and data hosting.
Security and Access to Data
Access to personal data is granted to employees of the online store for technical support and customer service purposes.
Appropriate physical, organizational, and technical security measures are implemented to protect data from accidental or unauthorized destruction, loss, alteration, or access.
Viewing and Correction of Personal Data
Data subjects can access and correct their personal data through their user profile or by contacting customer support.
Withdrawal of Consent
Customers have the right to withdraw their consent for processing personal data for direct marketing purposes by notifying customer support.
Retention Period
Personal data is deleted upon closing the customer account, except for data needed for accounting or dispute resolution purposes.
Personal data related to payment and consumer disputes is retained until the completion of claims or the expiration of the limitation period.
Data in accounting documents is retained for seven years.
Limitation, Objections, Deletion
Customers can request limitations on the processing of their personal data, object to data processing, or request deletion.
Dispute Resolution
Disputes related to data processing are resolved through customer support (info@riverrope.com). The supervisory authority is the Estonian Data Protection Inspectorate (info@aki.ee).
Use of Cookies
Cookies are used to enhance user experience on the website. By using the website, users consent to the use of cookies.