Veradys OÜ is committed to protecting the personal data of the users of its website. This Privacy Policy describes, in a transparent manner, what data we collect, why we collect it, how we use it, and what rights you have in relation to that data.
1. Data controller
- Controller
- Veradys OÜ
- Registered office
- Gonsiori 31, 10147 Tallinn, Estonia
- Registration code
- 14706287
- VAT number
- EE102196210
- Contact (privacy)
- finance@veradys.com
Veradys OÜ has not formally designated a Data Protection Officer, as it is not legally required to do so under Article 37 of the GDPR. For any matter related to the processing of your personal data, please contact finance@veradys.com.
2. What data we collect and why
Veradys OÜ only collects personal data that you voluntarily provide through the contact form available on this website. We do not use analytics cookies, tracking pixels or profiling technologies.
2.1 Data collected through the contact form
| Category | Data collected | Purpose | Legal basis |
|---|---|---|---|
| Identifying data | Full name, job title, company | To identify you and respond appropriately to your enquiry | Article 6(1)(b) GDPR — steps at your request prior to entering into a contract |
| Contact data | Corporate email address | To send our response | Article 6(1)(b) GDPR |
| Context of the enquiry | Engagement focus selected, brief context message | To prepare a qualified and relevant response | Article 6(1)(b) GDPR |
| Technical metadata | Submission timestamp, IP address (temporarily, for spam prevention only) | To protect the form against automated abuse | Article 6(1)(f) GDPR — legitimate interest in the security of our systems |
The provision of the data indicated above is voluntary, but necessary to respond to your enquiry. If you do not provide it, we will not be able to contact you back.
3. Who has access to your data
Your personal data is accessed only by authorised personnel of Veradys OÜ involved in the response to your enquiry. Additionally, the following processors may have technical access to the data strictly for the purposes described:
| Processor | Role | Data region |
|---|---|---|
| Netlify, Inc. | Hosting of the website and storage of form submissions | United States (with Standard Contractual Clauses in place) |
| Zoho Corporation | Email service provider for finance@veradys.com | European Union |
All processors have been selected for their compliance with the GDPR and operate under data processing agreements that guarantee an adequate level of protection. Transfers of data outside the European Economic Area are carried out, where applicable, on the basis of adequacy decisions or Standard Contractual Clauses approved by the European Commission.
Veradys OÜ does not share your personal data with any third party for commercial, advertising or profiling purposes.
4. How long we keep your data
We retain the personal data you provide through the contact form for the period strictly necessary to respond to your enquiry and, where applicable, for the duration of any subsequent professional relationship that may result from it.
In the absence of a subsequent professional relationship, data will be automatically deleted or anonymised within 24 months from the date of the last interaction, except where a longer retention period is required by applicable law (for example, commercial, accounting or tax obligations).
5. Your rights
Under the GDPR, you are entitled to exercise the following rights in relation to your personal data:
- Right of access — to obtain confirmation as to whether your data is being processed and, if so, a copy of such data.
- Right to rectification — to correct inaccurate or incomplete data.
- Right to erasure ("right to be forgotten") — to request the deletion of your data when its processing is no longer necessary.
- Right to restriction of processing — to limit the processing of your data in specific circumstances.
- Right to data portability — to receive your data in a structured, commonly used format.
- Right to object — to oppose the processing of your data on grounds relating to your particular situation.
- Right to withdraw consent — where processing is based on consent, to withdraw it at any time without affecting the lawfulness of processing prior to such withdrawal.
To exercise any of these rights, please send a written request to finance@veradys.com, together with a copy of an identification document. We will respond within a maximum of one month from the receipt of the request.
If you consider that the processing of your personal data does not comply with applicable legislation, you have the right to lodge a complaint with the competent supervisory authority, which in our case is the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon), Tatari 39, 10134 Tallinn, Estonia — www.aki.ee/en. Users resident in other Member States of the European Union may also lodge a complaint with their national supervisory authority.
6. Security
Veradys OÜ applies the technical and organisational measures necessary to ensure the security, integrity and confidentiality of personal data, in accordance with Article 32 of the GDPR. This includes encrypted HTTPS transmission (TLS 1.3), access restrictions, regular backups and logical separation of environments.
Despite these measures, no information transmitted over the Internet can be considered absolutely secure. Veradys OÜ undertakes to report any personal data breach, where legally required, within the timeframes established by Article 33 of the GDPR.
7. Changes to this Policy
Veradys OÜ reserves the right to modify this Privacy Policy in order to adapt it to legislative, jurisprudential or operational developments. The date of last update is indicated at the top of this document. Substantial changes will be communicated through a visible notice on the website.
8. Applicable law
This Privacy Policy is governed by Regulation (EU) 2016/679 (GDPR), the Estonian Personal Data Protection Act (Isikuandmete kaitse seadus) and any other applicable regulations on the protection of personal data.