Skip to content

Personal data protection and privacy policy

This hereby privacy policy overview gives information about, how and why Smartfood Express OÜ (hereinafter Company) homepage visitor data (inc. request senders, order makers) collects, processes, shares. Privacy policy is based on the General Data Protection Regulation (GDPR), which can be found on the official website  Privacy policy purpose is to ensure the privacy of the client in accordance with the laws of the Republic of Estonia and the legislation of the European Union.

Any information about an identified or identifiable natural person is reflected as “personal data”. For example, the phone number, postal address, or email address. Also included in the “personal data” is the information collected by the Company- visit to the website, different social media channels and the use of our provided services.

By using the Company’s website, you agree to the use of cookies and the terms and conditions for processing personal data, which is outlined in our Privacy policy. Privacy policy and cookies on the website are valid from 01.01.2022. All data collected earlier requires verification and coordination of “personal data” and alignment with the clauses provided for in the GDPR  act.

Whose data does the Company processes

For questions about GDPR issues, write to us in the contacts section at the end of the page.

The company uses the data of those who have sent a request (for example a question via e-mail) about our service, placed an order for our service or has previously used the services or is still using the services. Collection and usage of the data of regular customers and the persons who have contacted us (including “old” as “inactive clients” data. Use data, which is collected from public sources (this also includes public information sent as a recommendation from a third party).

We process the personal data of the company’s customers, i.e., users of services in order to fulfill our contractual obligations. We use our customers’ personal data as well as the information we receive from them in order to provide existing customers (as well as potential ones) with a higher quality service and more accurate information. If the Company processes personal data for these purposes, the legal basis for processing the collected personal data is our legitimate interest in ensuring the correct and possibly higher quality provision of the service provided.

From the company’s marketing channels (including website, social media), we collect data about the events and operational uses of the channels. In addition, if possible, we collect data on the interests and goals of potential customers in order to increase the level of our customer communication, better understanding the real interests and goals of our customers and to provide a higher quality service, more accurate information and ensure (improve) the user-friendliness of the functionality of the Company’s website. When a company processes personal data for these purposes, the legal basis for processing is our legitimate interest in better understanding the customer’s needs to ensure a better service. 

EXAMPLE. The company processes data: about service requests; about reading newsletters sent by us and using outgoing links (referrals to some websites) contained in the letter, feedback sent by customers, in order to fix and improve quality of the service provided.

Company processes personal data for the purposes set out: creating and managing the customer base; providing new services to the client and supplementing (improvement) existing services; correct response to customers (including potential) requests; Analysis, improvement of the company’s services; Manage and better operate the company’s marketing channels, including the website.

How the company collects personal data

We collect personal data directly from data subjects with their consent, either by e-mail, through the customer portal, through provided information from the  client through an order, by receiving feedback from the request form (including agreeing to receive letters from us). In addition, we use automated data collection tools (e.g. google analytics, website analysis programs),  including cookies (storing website usage) and other tracking tools that contribute to better optimizing the user experience of the Company’s website and thereby ensure the high quality of the services offered and a convenient navigation of the website.

On the website, we use cookies and pixel tags that are optional for every visitor to the website and can be refused.

A cookie is a small-scale text file that the web server sends to the user’s web browser (such as Chrome, Safari, Firefox, Internet Explorer, Opera) that is stored on the hard drive of the user’s computer (usually under temporary files). Cookies allow us to remember the user’s preferences (e.g., font size used, language of communication, computer location, device information, most visited websites/addresses, etc.) in order to provide the customer with faster and “smarter” Web browser action. Web browsers are set to allow cookies by default, but the ability to manually change the settings has been left to ensure that the browser refuses cookies, blocks third-party cookies, and notifies the user of any cookies sent. If the last point is not activated, it is definitely recommended to do this in order to create an overview of the websites that store the user’s personal data.

Pixels are a small section of website code that allows cookies to be installed and read. Pixel tags start when, for example, a user opens an email and arrives on the website. It is then recorded that the user has opened the email or third-party cookies are being downloaded.

Cookies used by the company:

  • Session cookies (temporary cookies). Session cookies are temporary and disappear when you leave a website or close your browser. Session cookies may be used for certain functions of the website, to log in, and for a shopping cart. The purpose of use is to enable the use of our service.
  • Permanent cookies (if the visitor gives their consent, saved on the user’s computer after the closure of the browser), the purpose of which is to remember the customer’s choices on the Company’s websites. Persistent cookies may be used, for example, to recognize you as a repeat visitor to a website (e.g. Google Remarketing  or post marketing  to use the feature) and to tailor the content of the website to your needs or to collect statistical data.

Cookies are used on our websites to provide a better user experience for the visitor to the Company’s website. Cookies allow our web servers to recognize the Company’s website and automatically customize the content of the website (advertising displayed to the customer) to suit your needs if you continue to visit the site and also re-visit the page in the future. The use of cookies makes it easier to recognize the needs of website users. Cookies allow us to collect user statistics that help us measure and improve the performance of our website.

The cookies used by the company may be created by various service providers who help us to promote our online services. Examples of such providers are Google and Facebook – a closer look at them in the “more precise cookie use”.

Users of our websites are considered to have consented to cookies if cookies are enabled in their browser settings. If you do not agree with cookies, not all services and features of our website may be functioning correctly. You can always decide for yourself whether to enable cookies in your browser settings. If you do not want cookies, set up your browser so that it automatically disables cookies or informs you every time the website asks for permission to add a cookie. To make the necessary settings, please check out the help function of your browser.

More detailed use of cookies by the Company:

  1. Analytical cookies. Collect information about how the website is used – which content page is on and how long it stays; Which content pages are most used; what is searched for on the website, etc. Analytical cookies do not collect information to be able to directly identify the user of the website. Examples of analytical cookies are Google Analytics cookies. The company’s websites use Google Analytics data, which is collected primarily through services provided by Google Analytics and is subject to the Terms of Google Analytics. To protect improper use of the website, we may use the Google Invisible reCAPTCHA tool, which collects hardware and software data, such as device and app data and the results of service integrity checks, as well as unique online identifiers such as IP address, and sends that data to Google for analysis. By using this service („cookies” activated), you agree to the transfer of personal data to Google Analytics to verify the integrity of the service and to take only the measures necessary for the safe use of the website.
  2. Advertising cookies. Help to provide (display on some advertising networks) targeted advertisements for the user’s interests. For example, a Facebook Pixel code has been added to the Company’s website to help visitors display targeted ads on Facebook. If you no longer want to see an advertisement on Facebook, the Company’s website can be disabled under Facebook preference. You open and delete “advertisers you’ve interacted with,” and select all the websites whose advertising you don’t want to see in the future.

The user has the right to refuse to store cookies on the computer. The user must change the settings of their browser. Guides for setting up the most common web browsers:

Chrome: ;

Safari: ;

Firefox: ;

Opera: ;

Crome Explorer: ;

When blocking cookies, it must be considered that not all functions of the website may be available anymore. Cookies can also be activated manually in the web browser later.

Personal data processed by the company

Contact gifts: name, order address, email address, phone number.

The data arising during the execution of the request, feedback, customer contract form and sending the e-mail: company name, personal identification code/registry code, VAT exempt no, legal address, customer preferences in connection with the Company’s services, the data specified in the feedback form, the data forwarded in the request form, the data sent by e-mail to the Company’s contacts.

The company is the controller of personal data and transfers the personal data necessary for making payments to the processor Montonio Finance AS.

Automatically collected data: data obtained from the user’s web browser (e.g., type of web browser), type of device (device used to be on the website), language of communication, website address (incoming link to the Company’s website, which content pages the user studied, how long the user stayed on certain pages, the user’s IP address and other similar data on website statistics.

Data collected by sending e-mails (newsletters) sent by the company: data on which emails, when and how the user opened.

Other personal data: data that you have made publicly available or available to us on third-party social networks such as Facebook, Twitter, Google Plus, Instagram, etc.

Special types of personal data are not processed by the Company.

Sharing of personal data by the Company

The company does not share personal data with third parties (except under the conditions set out in the following section). All data is used only for customer communication and for product and service development purposes. We may share personal data in the following cases:  debt liability; State supervisory authorities and the Police; Public feedback with the customer’s consent.

Storage and security of your personal data

The company may send customers information about services, offers and news if the customer has provided us with their contact details or agreed to receive information from us. The customer receives the information until the customer asks for the last activities to be terminated or unsubscribes from the newsletter sender group.

The company retains personal data for as long as it is necessary to achieve the purpose of collecting it. The deadline for data retention also depends on the need to respond to requests from data subjects, solve various problems and the need to comply with legal document retention requirements. If the legislation does not require the storage of personal data and the Company does not need it, we will delete that personal data. In this case, we may use this personal data only for statistical purposes and only in pseudonymous (anonymized) form.

When it comes to personal data security, we try to do everything possible to prevent unauthorized access to the data. Reasonable safeguards have been put in place to protect the personal data collected and processed by the company with technical and physical restrictions. We ensure access to the data only in accordance with applicable legislation while protecting the confidentiality of personal data to the maximum extent.

If there are any questions about the storage or security of your personal data, please write to us in the contacts section at the end of the page.

Customer rights

The Client has the right to access the Client’s own personal data processed and stored by the Company and the right to demand correction of inaccuracies.

To opt out of the marketing notice received by the company, please follow the opt-out instructions in the marketing notice footer (Footer) or write a request and send an e-mail to the address in the contacts section at the end of the page.

The company must comply with several customer rights: with the right to correct, the client has the right to demand that the incorrect personal data related to him or her be corrected without further delay; The customer has the right to request the deletion of their data if certain additional conditions are met. The customer has the right to request the processing of their personal data.

If the processing of personal data is based on the customer’s consent, the client has the right to withdraw that consent at any given time.

If you have any questions about your rights or would like to apply one of the points below, please send a corresponding letter to the contacts at the end of the page. If the solution proposed by the Company does not satisfy you, you have the right to contact the Data Protection Inspectorate of the Republic of Estonia.

Other Settings

The Company may, from time to time, unilaterally amend these Terms and Conditions without notice in order to ensure that we comply with the law and/or generally accepted practices regarding cookies. The laws of the Republic of Estonia apply to this privacy policy.