Reemet

reemetlogo 01
Menu

Privacy Policy

How we handle your data

REEmet Technologies OÜ is committed to protecting your privacy. This policy explains what personal data we collect, why we collect it, and how you can exercise your rights under the GDPR.

Last updated: 1 May 2026

This Privacy Policy describes how REEmet Technologies OÜ (“REEmet”, “we”, “us”, or “our”) collects, uses, stores, and shares personal data when you visit reemet.com, contact us, or otherwise interact with our business. We process personal data in accordance with the EU General Data Protection Regulation (GDPR, Regulation 2016/679) and the Estonian Personal Data Protection Act (Isikuandmete kaitse seadus).

1. Who we are (Data Controller)

The data controller responsible for your personal data is:

REEmet Technologies OÜ
Registry code: 17327024
Registered address: Läike tee 1, Peetri 75312, Rae vald, Estonia
Email: privacy@reemet.com
Phone: +372 5329 2353

For all privacy-related questions or to exercise your rights, please contact us at privacy@reemet.com.

2. What personal data we collect

We collect personal data in the following situations:

a) When you contact us (via email, contact form, or phone): your name, email address, phone number, company name, job title, and the content of your message.

b) When you visit our website: technical data including IP address, browser type and version, operating system, referring URL, pages visited, time spent on pages, and approximate location (country/city level only).

c) When you engage with us as a business partner, supplier, customer, or investor: business contact details, signatory information, contract data, banking information necessary for payments, and other information required for our commercial relationship.

d) When you apply for a position: CV, cover letter, work history, qualifications, and any other information you choose to share with us.

We do not collect special categories of personal data (race, religion, health data, etc.) unless strictly necessary and with your explicit consent.

3. Legal basis for processing

We process your personal data on the following legal bases under Article 6 of the GDPR:

Consent (Art. 6(1)(a)): when you voluntarily submit a contact form or sign up for communications. You may withdraw consent at any time.

Performance of a contract (Art. 6(1)(b)): when processing is necessary to enter into or perform a contract with you (e.g., supply agreements, partnership contracts, employment).

Legal obligation (Art. 6(1)(c)): when we must process data to comply with Estonian or EU law (e.g., accounting records, tax obligations, anti-money-laundering requirements).

Legitimate interests (Art. 6(1)(f)): for website analytics, security, fraud prevention, and B2B business development — balanced against your rights and freedoms.

4. How we use your data

We use personal data for the following purposes:

  • Responding to your enquiries and providing requested information.
  • Establishing and managing business relationships with partners, suppliers, customers, and investors.
  • Negotiating, executing, and fulfilling contracts.
  • Managing recruitment processes.
  • Complying with our legal obligations (accounting, tax, KYC/AML where applicable).
  • Improving our website and services through analytics.
  • Protecting our website against fraud, abuse, and security threats.
  • Sending occasional updates about REEmet — only with your prior consent.

5. Who we share your data with

We may share your personal data with the following categories of recipients:

Service providers (data processors) who help us operate our business — for example: web hosting providers, email services, cloud storage, accounting software, customer relationship management (CRM) systems, and analytics providers. All processors are bound by GDPR-compliant data processing agreements.

Professional advisors such as lawyers, accountants, auditors, and consultants — bound by confidentiality.

Public authorities when required by law (e.g., tax authorities, regulators, courts).

Business partners in connection with specific projects (e.g., research consortia, joint grant applications) — only with your knowledge.

We do not sell personal data to third parties under any circumstances.

6. International data transfers

Most of our data processing takes place within the European Economic Area (EEA). Where we use service providers outside the EEA (for example, certain cloud services), we ensure that transfers are protected by appropriate safeguards, such as the European Commission’s Standard Contractual Clauses (SCCs) or an adequacy decision under Article 45 of the GDPR.

You may request a copy of the safeguards in place by contacting privacy@reemet.com.

7. How long we keep your data

We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by law. Typical retention periods:

  • Contact form submissions and email enquiries: up to 24 months from last contact.
  • Business relationships (active): for the duration of the relationship plus 7 years (Estonian Accounting Act).
  • Recruitment data (unsuccessful candidates): up to 12 months, then deleted unless you consent to longer storage.
  • Website analytics data: up to 14 months.
  • Server logs: up to 12 months for security purposes.

After retention periods expire, data is securely deleted or anonymised.

8. Your rights under the GDPR

As a data subject, you have the following rights:

  • Right of access — request a copy of the personal data we hold about you.
  • Right to rectification — correct inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”) — request deletion of your data, subject to legal retention obligations.
  • Right to restrict processing — limit how we use your data.
  • Right to data portability — receive your data in a structured, machine-readable format.
  • Right to object — object to processing based on legitimate interests, including direct marketing.
  • Right to withdraw consent — at any time, where processing is based on consent.
  • Right to lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) — see Section 12 below.

To exercise any of these rights, contact us at privacy@reemet.com. We will respond within one month, as required by Article 12 of the GDPR.

9. How we protect your data

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, alteration, or disclosure. These include:

  • SSL/TLS encryption for data in transit.
  • Access controls and authentication for our systems.
  • Regular security updates and vulnerability assessments.
  • Confidentiality obligations for all employees and processors.
  • Backup and recovery procedures.

While we take reasonable steps to protect your data, no method of transmission or storage is 100% secure. We will notify the relevant supervisory authority and affected individuals of any data breach in accordance with Articles 33 and 34 of the GDPR.

10. Cookies and tracking

Our website uses cookies and similar technologies. For detailed information, please see our Cookie Policy.

11. Children's privacy

Our website and services are intended for business users and are not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided personal data to us, please contact privacy@reemet.com and we will promptly delete it.

12. Supervisory authority

If you believe that our processing of your personal data infringes the GDPR, you have the right to lodge a complaint with the Estonian Data Protection Inspectorate:

Andmekaitse Inspektsioon
Tatari 39, 10134 Tallinn, Estonia
Email: info@aki.ee
Phone: +372 627 4135
Web: aki.ee

You may also contact the supervisory authority in the EU Member State of your habitual residence, place of work, or place of the alleged infringement.

13. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. The “Last updated” date at the top of this page indicates when the policy was last revised. For material changes, we will provide additional notice.

14. Contact us

For any questions about this Privacy Policy or our data practices:

REEmet Technologies OÜ
Läike tee 1, Peetri 75312, Rae vald, Estonia
Email: privacy@reemet.com
Phone: +372 5329 2353