Privacy Policy

Privacy Policy for Poplab.io

Effective Date: January 26, 2025

1. Introduction

Poplab OÜ (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (poplab.io) or use our services. We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and Estonia’s Personal Data Protection Act (PDPA).

2. Data Controller

  • Name: Poplab OÜ
  • Address: Sepapaja 6, Tallinn 15551, Estonia
  • Registry Code: 14772137
  • VAT Number: EE102178351
  • Contact Email: info@poplab.io
  • Responsible Person: Dorian Tireli, Founder and Product Designer

Dorian Tireli, as the responsible person, oversees the data protection practices of Poplab OÜ and ensures compliance with GDPR and Estonian data protection laws. If you have any questions about this Privacy Policy or the processing of your personal data, please contact us.

3. What Data We Collect

We may collect the following types of personal data:

  • Contact Information: Name, email address, phone number.
  • Usage Data: IP address, browser type, operating system, pages visited, time spent on pages.
  • Marketing Preferences: Information provided through forms or surveys.
  • Cookies and Tracking Technologies: Data collected via cookies for analytics and marketing purposes (e.g., Google Analytics and HubSpot).

4. How We Use Your Data

We process personal data for the following purposes:

  • To provide and improve our design services.
  • To communicate with you regarding inquiries or projects.
  • To analyze website traffic and user behavior using Google Analytics and HubSpot.
  • To send marketing communications (only with your explicit consent).
  • To comply with legal obligations.

5. Legal Basis for Processing

We process personal data based on the following legal grounds:

  • Consent: For marketing communications and analytics tracking.
  • Contractual Necessity: To fulfill agreements with clients.
  • Legal Obligations: To comply with applicable laws.
  • Legitimate Interests: For improving our services and ensuring website security.

6. Cookies

We use cookies to enhance user experience and gather analytics data. You can manage or disable cookies through your browser settings. For more details, see our Cookie Policy.

7. Data Sharing

We may share your data with:

  • Service providers like Google Analytics and HubSpot for analytics and marketing purposes.
  • Regulatory authorities if required by law.
  • Third parties involved in delivering our services (e.g., subcontractors).

8. International Data Transfers

As we use HubSpot, which may involve data transfers outside the EU/EEA (e.g., to the U.S.), we ensure compliance with GDPR by implementing Standard Contractual Clauses (SCCs) or obtaining explicit user consent.

9. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy or as required by law.

10. Your Rights

Under GDPR, you have the following rights:

  • Right to access your personal data.
  • Right to rectification of inaccurate data.
  • Right to erasure (“right to be forgotten”).
  • Right to restrict processing.
  • Right to object to processing.
  • Right to data portability.
  • Right to withdraw consent at any time.

To exercise these rights, contact us at [Insert contact email].

11. Security Measures

We implement technical and organizational measures to protect your data, including encryption, access controls, and secure storage systems.

12. Complaints

If you believe we have violated your privacy rights, you may lodge a complaint with the Estonian Data Protection Inspectorate (DPI) at info@aki.ee.