Privacy policy

New Rustic (legally known as Ükskomakaks OÜ) is committed to protecting the privacy of its clients and users. Accordingly, we have developed this privacy policy, which covers the collection, use, disclosure, transfer, and storage of customer data, as well as the terms for using cookies. Please take a moment to review our privacy principles and cookie usage terms before placing an order:

Privacy Policy

1. General Provisions

1.1. This privacy policy governs the principles of personal data collection, processing, and storage. Personal data is collected, processed, and stored by the data controller Ükskomakaks OÜ (hereinafter referred to as the "Data Controller").

1.2. In the context of this privacy policy, a data subject is a client or any other natural person whose personal data is processed by the Data Controller.

1.3. A client, within the meaning of this privacy policy, is anyone who purchases goods or services from the Data Controller’s website.

1.4. The Data Controller adheres to the principles of data processing established by legislation, including processing personal data lawfully, fairly, and securely. The Data Controller can confirm that personal data is processed in accordance with the applicable laws.

2. Collection, Processing, and Storage of Personal Data

Personal data refers to information that Ükskomakaks OÜ (hereinafter referred to as newrustic.ee) collects for the purpose of providing services, identifying a person, contacting the person for service delivery, resolving issues, or sending promotional content.

2.1. The personal data that the Data Controller collects, processes, and stores is primarily collected electronically, mainly through the website and email.

2.2. By sharing their personal data, the data subject grants the Data Controller the right to collect, organize, use, and manage personal data for the purposes defined in this privacy policy. This data is shared directly or indirectly when purchasing goods or services on the website.

2.3. The data subject is responsible for ensuring that the information provided is accurate, correct, and complete. Knowingly providing false information is considered a violation of the privacy policy. The data subject is obligated to notify the Data Controller immediately of any changes to the information provided.

2.4. The Data Controller is not liable for any damages to the data subject or third parties resulting from the data subject’s provision of incorrect information.

2.5. The collected personal data allows us to inform clients about product news, campaigns, and upcoming events. Clients who do not wish to receive our newsletters or notifications about products they may be interested in can remove themselves from the recipient list at any time. We also use collected personal data for delivering goods and fulfilling obligations to the client.

3. Processing of Clients’ Personal Data

3.1. The Data Controller may process the following personal data of the data subject:

  • 3.1.1. First and last name;
  • 3.1.2. Phone number;
  • 3.1.3. Email address;
  • 3.1.4. Delivery address.

3.2. In addition to the above, the Data Controller has the right to collect data about the client that is available in public registers.

3.3. The legal basis for processing personal data is Article 6(1) (a), (b), (c), and (f) of the General Data Protection Regulation (GDPR):

  • The data subject has given consent to the processing of their personal data for one or more specific purposes;
  • Processing is necessary for the performance of a contract to which the data subject is party or to take steps at the request of the data subject before entering into a contract;
  • Processing is necessary for compliance with a legal obligation to which the Data Controller is subject;
  • Processing is necessary for the legitimate interests of the Data Controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, especially when the data subject is a child.

3.4. The Data Controller has the right to share clients' personal data with third parties, such as authorized processors, accountants, transportation and courier companies, and companies providing payment transfer services. The Data Controller is the primary data controller. The Data Controller transmits personal data required for making payments to the authorized processor Maksekeskus AS.

3.5. When processing and storing the data subject’s personal data, the Data Controller applies organizational and technical measures to ensure the protection of personal data against accidental or unlawful destruction, alteration, disclosure, and any other unlawful processing.

3.6. All personal data that becomes known during the visit to the Ükskomakaks OÜ online store and through purchases is treated as confidential information. An encrypted data communication channel with banks ensures the security of the purchaser's personal data and bank details.

3.7. The Data Controller retains data subjects’ data in accordance with the requirements set out by the law. Data that Ükskomakaks OÜ is required to retain due to legal obligations (e.g., accounting data) will be retained in accordance with the requirements stipulated by the relevant laws.

4. Data Subject Rights

4.1. The data subject has the right to access their personal data and review it.

4.2. The data subject has the right to obtain information about the processing of their personal data.

4.3. The data subject has the right to rectify or correct inaccurate data.

4.4. If the Data Controller processes the data subject’s personal data based on the data subject’s consent, the data subject has the right to withdraw their consent at any time.

4.5. To exercise these rights, the data subject can contact Ükskomakaks OÜ at kristi@newrustic.ee.

4.6. The data subject also has the right to file a complaint with the Data Protection Inspectorate to protect their rights.

5. Final Provisions

Newrustic.ee is committed to protecting the personal data and privacy of clients and users. Newrustic.ee applies all necessary precautions (including administrative, technical, and physical measures) to safeguard collected personal data. Access to data modification and processing is restricted to authorized persons only.

5.1. These data protection terms have been prepared in accordance with the European Parliament and Council Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), the Estonian Personal Data Protection Act, and the legislation of the Republic of Estonia and the European Union.

5.2. By using our website, you acknowledge that you have read and agreed to these principles and terms. The Data Controller reserves the right to modify the data protection terms in whole or in part, by notifying the data subjects via the website www.newrustic.ee.

Cookie Usage Terms

The Ükskomakaks OÜ website uses cookies to ensure a better user experience, more effective marketing activities, and to gather usage statistics.

A cookie is a small text file that a web browser automatically saves to the user's device. Cookies are used to collect information about how the client uses the website to make the website more personalized and user-friendly. Cookie files are not harmful to the computer.

By using the website, you agree to the use of cookies for:

  • Collecting usage habits and statistical data;
  • Providing better customer service;
  • Remembering user preferences and settings;
  • Presenting offers and marketing communications tailored to the user’s needs;
  • Collecting necessary information for website development;
  • Logging in, personalizing the site, and filling out forms;
  • Making it easier to share content on social media.

There are two types of cookies:

  • Persistent cookies, which remain in the cookie file on the user's computer permanently. These may be used to recognize the user as a repeat visitor and to adjust the website content according to the user's needs or to collect statistical data.
  • Session cookies, which are temporary and disappear when the user leaves the website or closes their web browser. Session cookies may be used to enable certain website functions, such as requesting a service or product.

A user is considered to have agreed to cookies if their browser settings allow the storage of cookies. Web browsers often allow the default storage of cookie files on the user's device. The user may disable or delete cookies in their browser settings. More detailed instructions can be found in the browser’s user guide. Disabling cookies may result in the website not functioning correctly.