Privacy Policy
1. Objective
1.1. As the controller, Forest Reserves OÜ (registration code 11603960, hereinafter the Company) values your privacy and does everything reasonably expected of it to protect personal data. This privacy policy (hereinafter the Privacy Policy) describes how the Company processes (including collection, use, publication, storage, transmission, deletion, etc.) your personal data.
1.2. The Privacy Policy explains, among other things, the principles based on which the Company processes personal data and what your main rights are in relation to the processing of personal data.
1.3. The Privacy Policy applies to all natural persons (hereinafter the Client) who use the Company’s services and/or Website, enter into any contract with the Company, conduct pre-contractual negotiations with the Company, submit inquiries to the Company or with whom the Company has other communications.
1.4. When processing personal data, the Company is based on the general regulation on the protection of personal data (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)), on the Personal Data Protection Act in force in the Republic of Estonia (hereinafter PDPA) and other applicable legislation.
1.5. The Privacy Policy is part of all contracts of the Company. By visiting the Company’s Website, using the Company’s services, entering into any contracts with the Company, conducting pre-contractual negotiations with the Company, or contacting the Company, the provisions of the Privacy Policy apply to you.
2. Personal data to be collected and purposes of processing thereof
2.1. Personal data is any information about an identified or identifiable natural person that the Company processes within the purposes specified in clause 2.3 of the Privacy Policy.
2.2. The Company processes the following personal data:
2.2.1. Identification data – Client’s name, personal identification number, identity document data;
2.2.2. Contact information – e-mail address, telephone number, postal address;
2.2.3. the data of the Client’s immovable property
2.2.4. Transaction data – data on the declarations of intent related to the contract, the content of the transaction, invoices, and payment information, as well as data on the execution of the contract;
2.2.5. Other data that the Company may or must process to a reasonable extent and to the necessary extent within the scope of the purposes specified in point 2.3 of the Privacy Policy.
2.3. Generally, the Company collects personal data from the Clients themselves. In certain exceptional cases, the Company may also collect personal data from publicly available sources. For example, the Company may collect data from the land register in justified cases.
2.4. The Company processes the Client’s personal data primarily for the following purposes:
2.4.1. To identify the Client or their representative;
2.4.2. By providing services to the Client or concluding contracts to fulfill the necessary obligations for performing activities and provision of advice;
2.4.3. To conduct pre-contractual negotiations or exchange pre-contractual information;
2.4.4. For the exchange of information related to the provision of services, the conclusion of contracts and economic activity, for the documentation of business activities (including the forwarding of information to fulfill the obligations imposed on the Company by legislation);
2.4.5. To improve and develop the quality of customer service;
2.4.6. To prepare and issue invoices;
2.4.7. To carry out activities essential for the Company’s economic activity (for example, contacting the owner of neighboring immovable property in connection with carrying out work on the Company’s immovable property, determining access to the acquired immovable property or logging rights, etc.);
2.4.8. To prepare, present or defend the Company’s legal claims, including the forwarding of personal data to a legal or lawyer’s office and a debt collection company;
2.4.9. To contact the Client and respond to the Client’s inquiries.
3. Legal basis for the processing of personal data
3.1. The processing of personal data is usually based on a contract concluded with the Client, the Client’s consent, a legal obligation, or the Company’s legitimate interest, which outweighs the Client’s interests and fundamental rights and freedoms.
3.2. The Company deals with forest management and also provides corresponding services. The Company processes personal data mainly for the preparation, conclusion, and execution of immovable property transfer transactions, logging right transfer transactions, or other forest management service contracts. The legal basis for the processing is Article 6(1)(b) of the GDPR. The Company may also process personal data to resolve possible disputes arising from the contract. The transfer of personal data for the preparation and execution of the contract is a necessary requirement for the conclusion of the contract. Without providing the requested personal data, the Company cannot conclude contracts with you.
3.3. The Company processes your personal data in order to make offers to you if you have given your consent to receive offers (Article 6 paragraph 1 pa of GDPR). You have the right to withdraw the consent at any time. In this case, we will stop processing your data starting from the withdrawal of the consent.
3.4. The Company may also process your personal data on the basis of consent in other cases. The purpose of processing is specified in the course of the process of giving consent. Any consent given for processing is voluntary, and you have the right to withdraw the given consent at any time.
3.5. The Company processes your personal data in order to fulfill the obligations arising from the legislation (Article 6 (1)(c) GDPR). Obligations stem from, for example, the Accounting Act, the Law of Obligations Act, and other applicable legislation. For example, the Company has tax reporting and accounting obligations, for the fulfillment of which your personal data will be processed and used. Including your personal data may be forwarded to the tax authority and other authorities, as well as to the auditor or legal advisors.
3.6. The Company processes your personal data due to the legitimate interest of the Company (Article 6 (1)(f) of the GDPR), including both in the interest of business operations and in the interest of security (detection of fraud). For example, the Company has a legitimate interest in storing all transaction data during the expiration period of claims arising from the contract for the purpose of protecting its rights. The Company also has a legitimate interest in contacting the owner of the neighboring immovable property in connection with the execution of works on the Company’s immovable property. On the basis of legitimate interest, the Company may also collect data about the existing/acquired immovable property or immovable property bordering the logging right and their owners, including identifying possible access routes to the immovable property.
3.7. The Company processes personal data only to the extent that is minimally necessary to achieve the purposes of the processing.
4. Storage of personal data
4.1. Arising from legislation, the Company has both the right and the obligation to store the collected personal data. The Company does not store personal data longer than it is necessary to fulfill the Company’s obligations unless you have given your consent for longer storage and processing of the data.
4.2. The Company treats all personal data as confidential information. The Company ensures the processing and storage of your data in the territory of the European Union.
4.3. The Company ensures the security of personal data processing in accordance with current legislation, including GDPR and PDPA. The protection of personal data is additionally regulated in the Company’s daily economic activities by the Company’s internal security rules.
4.4. Taking into account the latest developments in science and technology and the costs of implementation, and taking into account the nature, scope, context, and purposes of personal data processing, the Company implements appropriate technical and organizational measures to ensure the level of security corresponding to the threat.
4.5. In general, the Company will store your personal data for five years from the last deadline regarding the execution of the contract. The Company may store personal data for ten years from the last deadline regarding the performance of the contract if there is a reasonable suspicion of an intentional violation of obligations. According to the law, we store the data contained in the accounting documents for seven years.
4.6. In the event that the Company transfers personal data to another responsible processor (e.g., notaries, courts, banks, Environmental Board, Tax and Customs Board, etc.), the data storage terms are determined by the recipient of the data.
5. Client’s rights
5.1. In the cases stipulated by law, the Client has the right to:
5.1.1. Request from the Company access to personal data concerning the Client;
5.1.2. Receive information from the Company about the scope and use of the Client’s data processing;
5.1.3. Request correction and deletion of personal data;
5.1.4. Restrict the processing of personal data;
5.1.5. Object to the processing of personal data;
5.1.6. Submit a complaint to the data protection supervisory authority (Estonian Data Protection Inspectorate, www.aki.ee) or go to court;
5.2. If the processing of personal data is based on the Client’s consent, then in addition to what has been stipulated in clause 4.1 of the Privacy Policy, the Client has the right to withdraw the given consent at any time, regardless of the reason. Withdrawal of consent does not affect the lawfulness of data processing based on prior consent. Please note that the withdrawal of consent only affects actions related to personal data processed on the basis of consent (e.g., sending an offer based on a client’s request). Despite the withdrawal of consent, the Company has the right to continue processing the Client’s personal data, the processing of which is subject to another legal basis, for example, if the data is necessary to file a legal claim against the Client or if the processing of the Client’s personal data is necessary to fulfill the Company’s legal obligation.
5.3. In order to exercise the rights specified in clauses 4.1 and 4.2 of the Privacy Policy, the Client must submit a corresponding notification in written form (the electronic form of the transaction in the sense of § 80 General Part of the Civil Code Act is considered equal to the written form) to the Company’s e-mail address info@forestreserves.ee.
6. Changes
6.1. The Company has the right to change, supplement or specify the Privacy Policy by informing about it through the Company’s Website, www.maa.ee, and at the same time publishing the new Privacy Policy.
6.2. In case of all questions about the Privacy Policy, data processing, and the Client’s rights, the Company asks to make a request to the e-mail info@forestreserves.ee. It is possible to send inquiries by post to the address Jaama tn 76-13, Tartu 50605.
6.3. This Privacy Policy is valid from 27.01.2022.
Terms of use of cookies
These principles for the use of cookies have been drawn up based on Regulation (EU) 2016/679 of the European Parliament and of the Council and regulate the use of cookies by Forest Reserves OÜ on the Website.
A cookie is a small text file that is automatically saved by the web browser on the device used by the User and which we use only to make the www.maa.ee Website and services work better and more efficiently.
1. Use of cookies
The purpose of cookies used by the Website is to ensure:
- Functioning of the Website according to your expectations.
- To remember your settings.
- To improve the speed and security of the Website.
- To share the content of the Website more easily on social media.
- To plan improvements and developments of the Website.
- To change offers and marketing messages to suit your needs.
2. Cookies in use
The Website may install the following cookies on the User’s or Visitor’s device:
2.1 Essential cookies
They allow the to use the functions of the Website and to remember the information entered in the forms even if the User moves to other sub-pages of the Website during the session.
Without such cookies, some Website services are not possible.
Strictly necessary cookies do not collect information for marketing purposes or remember which pages are viewed on the Internet.
2.2 Performance Cookies
Performance cookies collect information about the use of the Website and can be used to improve the functionality of the Website.
Performance cookies show which pages were visited most often, which pages of the Website encountered problems, etc.
Performance cookies do not collect personal information, and the information collected is anonymous.
2.3 Functionality cookies
Functionality cookies remember your choices and provide enhanced and personalized functions.
Such cookies remember the changes made but do not record activities on third-party websites.
2.4 Third-party cookies
Third parties (such as Google) may use their cookies or other methods to collect information about the content of our Website that you have visited. Third parties use the collected information to provide analysis of usage statistics and advertisements on topics of interest to you.
Forest Reserves OÜ cannot access or control these cookies that originate from third parties — the use of these cookies falls under the respective installer’s privacy policy. For this purpose, the Website visitors can separately familiarize themselves with the privacy policies of all third parties.
You can read the terms and conditions of Google cookies here: https://www.google.com/policies/technologies/cookies/
3. Managing and deleting cookies
Enabling essential cookies is a prerequisite for using the Website. Website visitors can delete and/or block cookies stored on their devices by changing the corresponding settings of their web browser.
If cookies are deleted or disabled, the Website may not work as planned, and/or some functionalities may not be available to users.
More information about how cookies work or how to disable cookies can be found on the Website www.allaboutcookies.org.