Personal data protection
Privacy Policy
Maaportaal OÜ, registry code 14619329, address Maakri 23a, Tallinn 10145 (hereinafter Portal Administrator) manages the portals www.metsaoksjon.ee / www.maaportaal.ee (hereinafter collectively Portal), through which users sell forest immovables, felling rights of standing timber, and felled timber, and provide other auxiliary services in online auctions.
The Portal Administrator processes personal data of clients of the Portal observing the general principles of processing of personal data established by Postimees Group (available at: https://www.postimees.ee/tingimused/#isikuandmed ) and the additional terms and conditions set out in this Privacy Policy.
The Portal Administrator collects and processes the following data (hereinafter Personal Data):
- Registration data: given name, surname, personal ID code, country, e-mail address, telephone number, address, client status;
- Auction data: data concerning the object of the auction;
- Data of additional services: given name, surname, e-mail address, telephone number;
- Data on the use of the Portal: e.g. planned and pending transactions, enquiries and searches made in the Portal;
- Data collected upon intermediating insurance contracts: name, e-mail address, telephone number, object data and market value.
The Portal Administrator has access to all data submitted by the Client via the Portal, incl. personal data, except for data provided to apply for a loan. The Portal Administrator allows its loan providing partner to collect via the Portal data of clients who wish to obtain a small from the loan providing partner. In spite of the fact that the data are submitted into the Portal, the Portal Administrator does not save said data. Data submitted to apply for a loan are automatically forwarded to the loan provider who is an independent controller of such data in the meaning of the General Data Protection Regulation.
Client account data cannot be viewed by other clients of the Portal. Client data are disclosed to the client being the seller only when such client’s bid has proved to be the highest bid. In other cases the seller will not learn the data of purchases who have submitted their bids.
Disclosure of Personal Data to the Portal Administrator is voluntary, but could be essential for the provisions of the services of the Portal.
When joining the Portal as a Seller, forest owners grant the Portal Administrator their consent to examine the inventory data of the forest connected with their property, which are entered in the state register for the accounting of forest resource (hereinafter Forest Register). The Portal Administrator does not disclose or transfer the above referred data to third persons, unless this is mandatory under law, or if disclosure of the respective data is necessary for the provision of the service to the Seller (e.g. publication of the forest inventory data in a sales offer).
The Portal Administrator processes the Personal Data of clients registered in the Portal for providing a service to the client, or ensuring that the client is provided the service and/or based on the consent given by the client. Any personal data (such as the given name, surname, e-mail address, telephone number) provided by clients not registered in the Portal in connection with using an auxiliary service, are processed by the Portal Administrator subject to the client’s consent. Clients may withdraw their consent for the processing of their Personal Data at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
The Portal Administrator uses any collected Personal Data only for purposes set forth in law or this Privacy Policy, inter alia for the following purposes: provision of Portal services, incl. auxiliary services; intermediation of insurance contracts; provision of customer support; sending newsletters, provided that the client has granted their prior consent for the same, and for improving the Portal and any services and functionalities offered thereby.
The Portal Administrator, being the controller of Personal Data shall be responsible for the security of Personal Data.
The Portal Administrator may transmit collected Personal Data to third persons, such as insurers, providers of legal services, providers of cloud services, providers of advertising and marketing services, providers of website analytics services, web and software developers. The Portal Administrator transfers Personal Data to third parties to the extent that they are required to provide the service. The Client may not-opt out from sharing the data with third parties. The Portal Administrator has taken all measures at their disposal to ensure that the above referred third parties safeguard confidentiality and security of Personal Data.
The Portal Administrator shall not retain collected Personal Data longer than is reasonably necessary to obtain the purpose for which such data were collected or processed, observing any legislation applicable to periods of retention of personal data. Personal Data of clients registered in the Portal will be deleted at the latest when the relationship of the client with the Portal Administrator has ended. In order to end the client relationship, the client shall submit the Portal Administrator a request in the representative office of the latter. Having received the respective application, the Portal will delete the client's Personal Data from their database.