UUS SMM OÜ (Registration code: 16369196, address: Tallinn, Harjumaa, Estonia, website: www.buysite.ee, hereinafter "Website") Privacy Policy1. Definitions1.1
Processing of personal data means any activity involving a user's personal data – collection, processing, storage, correction, or deletion.
1.2
Users are all individuals who visit the website, use its services, or provide information to the website. This includes reading articles, ordering products or services, or contacting the Website via email.
1.3
Services are all paid and free products and services offered by the Website.
1.4
Client – any person who uses the Website’s service either as a Client or User.
1.5
Data – personal data, communication data, or other client-related information obtained in connection with service provision or use of the Website.
1.6
Anonymous data – information not linked to a specific client because identifying details have been removed.
1.7
Location data – information generated during service provision that indicates the geographical location of an end device (e.g., from telecom networks).
2. Principles of Data Protection2.1 The Website uses data only for the purposes for which it was collected and to the extent necessary to fulfill that purpose. Use complies with the Electronic Communications Act, the Personal Data Protection Act, and other laws. Data from different services may be combined if collected for the same purpose.
2.2 The Website values client privacy and applies necessary organizational, physical, and IT security measures to ensure the integrity, availability, and confidentiality of data.
2.3 Website employees are bound by confidentiality and data protection obligations and are responsible for compliance.
3. Client's Role in Ensuring Data Security3.1 Clients must use services securely and ensure their devices are protected. Login credentials and identification information (e.g., ID card or Mobile-ID) must be kept confidential.
3.2 The Website is not responsible for breaches caused by the client failing to meet the above obligations. Clients are liable for the consequences.
3.3 If a client allows others (e.g., family or employees) to use the services, they must ensure these users agree to the Privacy Policy.
4. Collection and Processing of Personal Data4.1 By using the Website, clients consent to data collection and processing under this Privacy Policy. Personal data may include name, phone number, email address, and preferred communication language.
4.2 The Website collects data through:
4.2.1 Service orders, registration, or information requests;
4.2.2 Service use by the client, required to fulfill a contract;
4.2.3 Other sources (e.g., public registries), when needed to fulfill a contract.
5. Use of Data for the Fulfillment and Ensuring of the Agreement5.1 The Website may use Data based on legal regulations without the Client’s separate consent for fulfilling or ensuring the fulfillment of the Agreement in the following cases:
5.1.1. To identify the Client and their representative;
5.1.2. To carry out actions necessary for providing Services or selling goods to the Client (including for the sale and delivery of Services and/or goods, and to transmit information about Services and goods to the Client);
5.1.3. To serve the Client and resolve malfunctions;
5.1.4. To offer and develop a web environment, its services and functionalities, and a high-level and personalized user experience (e.g., saving language preferences, etc.), and to communicate information related to the use and security of the web environment to the Client;
5.1.5. For calculating service fees related to the Agreement, preparing and sending notices and invoices to the Client;
5.1.6. To send notices related to the Agreement and/or Service by post that do not involve marketing use of Data (e.g., client newsletters, advertisements, offers, etc.);
5.1.7. To improve customer service, including measuring the quality, usage activity, or customer satisfaction of the web environment and Services, and for the development of Services and business operations;
5.1.8. For the maintenance or repair of the Client’s device ordered by the Client or acquired by the Website, and other after-sales services related to the device;
5.1.9. To ensure fulfillment of the Agreement (e.g., setting guarantees, signing surety agreements);
5.1.10. To protect the Website’s violated or disputed rights and for debt collection (including transferring Data related to contract violations and/or debt to collection service providers, lawyers, etc., authorized to process such Data by contract);
5.1.11. To assess the Client's creditworthiness and reliability (payment behavior), including for deciding on credit offers and terms of financing agreements;
5.1.12. In case of a breach of contract, to transmit the Client’s payment default data (debt overdue by more than 30 days — including debtor’s name, ID code, debt amount, date, and transaction type) to credit information companies authorized by the Website (e.g., AS Krediidiinfo, OÜ Krediidiregister).
5.2 The overview in section 5.1 is not exhaustive. The Website may use Data for purposes not mentioned in 5.1 if necessary for fulfilling or ensuring the fulfillment of the Agreement.
5.3 The Client cannot refuse the use of Data for the purposes listed in 5.1 when using the Service or web environment, as this would make it impossible to provide the Service or web environment.
5.4 The Website may use the following Data for the purposes listed in 5.1:
5.4.1. Client’s basic data: name, ID code, date of birth, ID document details, contact information of the Client or their authorized/contact person or User (e.g., communication numbers, address, email, language, field of activity, preferred channel), and information on the Client’s segment affiliation;
5.4.2. Data related to the client relationship: service usage (including financing products), contracts, orders, contacts, invoices, and related information, data entered in the e-store, usage data and cookie-based data, and payment discipline/debt information;
5.4.3. Details on service usage (including communication and location data), and data about the end devices used (browser, IP address, etc.).
5.5 The data listed in 5.4 is not final. The Website may reasonably process additional Data as needed for fulfilling or ensuring the Agreement.
6. Use of Data for Marketing Purposes6.1 Marketing use of Data means that the Website uses Data to:
6.1.1. Analyze the Client’s service or e-store usage preferences to identify needs and create personalized offers (hereinafter: marketing use);
6.1.2. Send personalized offers electronically (email, SMS, MMS).
6.2 The Client has provided or can provide consent for such marketing use and personalized offers when entering into the Client Agreement or another agreement, or by confirming consent in another way (e.g., online confirmation).
6.3 The terms in the Principles apply to such Consent. The Website will reference these Principles when obtaining Consent. The Client may refuse or withdraw Consent later via the website or in writing or reproducible format. Consent is valid until withdrawn or the end of the Agreement.
6.4 With Consent, the Website may use Data for the following marketing purposes:
- Identify expectations and needs;
- Develop new or improved services or e-store features;
- Create and deliver personalized direct marketing, campaign, or discount offers for Services and goods;
- Provide tailored content and advertising on the web environment.
6.5 The Website may use the following Data for marketing purposes with Consent:
- Name, date of birth, ID code, language, contact preferences (email, phone, etc.), address, and location data;
- Client segment affiliation;
- Purchase and service usage data (product type, price, delivery info, etc.);
- Creditworthiness and payment behavior data;
- Usage details (duration, quantity, method, time, etc.) and device information (browser, IP, etc.);
- Data submitted via the web environment;
- Cookie-based data;
- Publicly available information about the Client (interests, work, studies, etc.);
- Data received legally from third parties (e.g., AS Krediidiinfo).
7. Sending Personalized Offers Electronically7.1 The Client may opt out of electronic marketing offers (email, SMS, MMS) at any time via the website or by following the instructions in emails or messages.
7.2 Based on Consent or legal regulations, the Website may send offers to Users allowed by the Client to use the Services under the Agreement and to business client representatives without separate consent. These individuals can also opt out of marketing messages. Only the Client can withdraw marketing Consent.
8. Data Retention Period8.1 The Website retains Data for as long as necessary to fulfill the stated purpose or as required by law.
9. Client Rights Regarding Data Use9.1 The Client has the right to:
9.1.1. Request information about their Data and its use;
9.1.2. Request the termination, correction, closure, or deletion of Data under applicable laws;
9.1.3. Consent to or prohibit the use of their Data for direct marketing;
9.1.4. Contact the Data Protection Inspectorate or court if rights are violated;
9.1.5. Claim compensation for direct financial damage caused by rights violations under contract law.
10. Contacting the Website10.1 The Client may contact the Website with questions regarding the Principles or Data processing via phone at +372-5361-1957 or email at
uussmm.ou@gmail.com10.2 The Website offers a form for Data-related inquiries at the bottom of this Privacy Policy page.
11. Use of Cookies in the Web Environment11.1 Like most websites, this Website uses cookies — small text files stored on the user’s device. They help recognize users anonymously and improve user experience (e.g., saving preferences).
11.2 Cookies may include the user’s IP address, browser type, visited pages, visit time, and statistics.
11.3 Third-party services and cookies (e.g., Google Analytics, Facebook) may also be used to collect and analyze this data.
11.4 Cookies are not harmful, and browsers typically allow them by default, but users can manage or block them in browser settings.
11.5 Google Analytics may collect activity data without cookies. Users may install a blocking plugin available here:
https://tools.google.com/dlpage/gaoptout11.6 Blocking cookies may cause some site functions (e.g., image display) to malfunction. In such cases, it is recommended to clear browser cache and history.
Last updated: 15.07.2025