Give us a call

Privacy Policy

Last updated: November 13, 2025

1. Introduction

Merindorf OÜ (registry code 11057500, hereinafter “we”, “us” or “Merindorf”) respects your privacy and is committed to protecting your personal data. This privacy policy describes how we collect, use, store, and protect your personal data in accordance with the European Union General Data Protection Regulation (GDPR) and Estonian Personal Data Protection Act.

2. Data Controller

Merindorf OÜ
Registry code: 11057500
Address: A. H. Tammsaare tee 47, Kristiine linnaosa, 11316 Tallinn, Harju maakond
Email: merindorf@merindorf.ee
Phone: +37255541294

3. Personal Data We Collect

We may collect and process the following personal data:

3.1. Through Contact Forms and Inquiries

  • First and last name
  • Email address
  • Phone number
  • Company name and job title
  • Project or service description
  • Other information you voluntarily provide

3.2. Website Usage Data

  • IP address
  • Browser type and version
  • Pages visited and visit time
  • Referring URL (where you came from)
  • Device type and operating system

3.3. Cookies

Our website may use cookies and similar technologies to improve user experience and analyze website usage. For more information about cookies, please refer to our Cookie Policy.

4. Purposes of Data Processing

We process your personal data for the following purposes:

  • Service provision: Responding to your inquiries, preparing quotations, project management, and providing consultations
  • Contract fulfillment: Executing design work and consultations
  • Communication: Contacting you about project progress or answering your questions
  • Website improvement: Analyzing user experience and improving services
  • Legal obligations: Fulfilling accounting and tax obligations
  • Marketing: With your consent, sending newsletters and informing you about our services (you can withdraw consent at any time)

5. Legal Basis for Data Processing

We process your personal data based on the following legal grounds:

  • Consent: You have given clear consent for processing your data for a specific purpose
  • Contract performance: Data processing is necessary to fulfill a contract between you and us
  • Legitimate interest: Data processing is necessary for our or a third party’s legitimate interests
  • Legal obligation: Data processing is necessary to comply with legal obligations

6. Data Sharing

We do not sell or rent your personal data to third parties. We may share your data in the following situations:

  • Service providers: Trusted partners who help us operate our website or conduct business, provided these parties agree to keep this information confidential
  • Legal requirements: When required by law or when we believe in good faith that such action is necessary to comply with the law
  • Business transactions: In the event of a sale, merger, or acquisition of a business unit, your personal data may be transferred to the new owner

7. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes described in this privacy policy or as required by law:

  • Customer contact information: 3 years after last communication
  • Project-related documents: 7 years in accordance with accounting laws
  • Marketing consents: Until consent is withdrawn
  • Website logs: 12 months

8. Data Security

We have implemented appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction:

  • Secure SSL connection on the website
  • Encrypted data storage
  • Limited access to personal data only for authorized employees
  • Regular security audits and system updates
  • Employee training in data protection

9. Your Rights

Under GDPR, you have the following rights:

  • Right of access: You have the right to obtain information about the processing of your personal data and request a copy
  • Right to rectification: You have the right to request correction of inaccurate or incomplete data
  • Right to erasure: In certain cases, you may request the deletion of your data (“right to be forgotten”)
  • Right to restriction of processing: You have the right to request restriction of processing your data
  • Right to data portability: You have the right to receive your data in a structured, commonly used, and machine-readable format
  • Right to object: You have the right to object to the processing of your data
  • Right to withdraw consent: If data processing is based on consent, you may withdraw it at any time

To exercise your rights, please contact us using the contact information provided above.

10. Filing a Complaint

If you believe your data has been processed unlawfully, you have the right to file a complaint with the supervisory authority:

Estonian Data Protection Inspectorate
Address: Väike-Ameerika 19, 10129 Tallinn, Estonia
Email: info@aki.ee
Phone: +372 627 4135
Website: www.aki.ee

11. International Data Transfers

Your personal data is primarily processed and stored in Estonia within the European Economic Area. If data is transferred outside the EEA, we ensure that appropriate safeguards are in place in accordance with GDPR.

12. Changes to Privacy Policy

We may update this privacy policy from time to time. We will notify you of any significant changes by posting the new privacy policy on our website and noting the date of the change. We recommend that you periodically visit this page to stay informed of any changes.

13. Contact Information

If you have questions about this privacy policy or the processing of your personal data, please contact us:

Merindorf OÜ
Address: A. H. Tammsaare tee 47, Kristiine linnaosa, 11316 Tallinn, Harju maakond
Email: merindorf@merindorf.ee
Phone: +37255541294

We will respond to your inquiries within 30 days of receiving your request.

MERINDORF OÜ

Comprehensive infrastructure solutions since 2007
© 2025 Merindorf OÜ. All rights reserved.