Privacy Policy

Tervise Paradiis OÜ is committed to protecting your privacy and adhering to all applicable laws and regulations regarding any personal data we may collect about you when you visit our websites veekeskus.eu, spa.ee, spatervis.ee, terviseparadiis.ee, spasport.ee. By using our website, you agree to the collection and use of your data in accordance with this Privacy Policy.

Through this Privacy Policy, we aim to explain what data we collect, how we use it, and what your rights are regarding the protection of your data. This policy applies solely to our website and its visitors and does not apply to data collected through other channels.

Your data controller is Tervise Paradiis OÜ

Company registration number: 10559955

We collect and process information in accordance with the European Union General Data Protection Regulation (GDPR), which came into effect on 25.05.2018.

Data Collection and Usage

What data we collect

The information we collect includes both the data you knowingly and actively provide when using our services or participating in our campaigns, as well as any information your devices automatically send when accessing our products and services.

The data we collect consists of information you have consciously shared with us while using our services or campaigns, and information your devices automatically transmit to us.

Your personal data may reach us in the following ways:

  • When you place an order on the veekeskus.eu online store
  • When you register as a user on the veekeskus.eu online store
  • When you contact us via phone, email, or online chat
  • When you purchase a product on an installment plan and sign a leasing agreement
  • When you browse the website veekeskus.eu
  • When you provide personal data of another person who will receive the goods
  • When you make payments using internet banking or other electronic payment methods
  • When you book, purchase, or use our services during your stay at the hotel
  • When you comment, like, or share a post on our social media accounts
  • When you subscribe to our newsletter
  • When you comment on posts on our website
Types of Data Collected

Personal Data

We request personal information from you only when it is necessary to provide you with a service. By contacting us or visiting our website, you may share the following information with us:

  • First and last name
  • Personal identification code
  • Email address
  • Postal address, country, county, city
  • Phone number
  • Your purchase history and activities on our online store
  • Conversation history between you and us
  • Information about your web browser and IP address
  • Credit card details: such as card number, cardholder name, and expiration date
  • Data related to the visitor card: nationality, the names, birth dates, and nationalities of accompanying spouses and minors, as well as the duration of the accommodation service. Additionally, we may require the type of travel document, its number, and the issuing country. The collection of visitor card data is regulated by the Tourism Act.
  • Security camera recordings: if you visit areas in our hotels where surveillance cameras are used for security purposes.
  • Data from electronic access systems: if you pass through areas in our hotels where electronic access systems are used to ensure security and restricted access.
  • Personal preference data: such as information on purchased products, treatments, catering preferences, as well as selected packages and accommodations.
  • Health-related information: additional information about your health condition may be required when using medical services or treatment packages.

Log Files

Our website veekeskus.eu stores log files about its visitors. The information collected may include:

  • Type of device used
  • Internet Protocol (IP) address
  • Browser type
  • Internet Service Provider (ISP)
  • Date and time of website visit
  • Entry and exit pages and the number of clicks on the website

The information in log files is used for trend analysis, website administration, monitoring visitor activity on the website, and gathering demographic information. The data collected is not intended to, nor does it allow, identifying an individual.

Cookies

Like most websites, veekeskus.eu uses “cookies”. A cookie is essentially a text file stored on the user’s device when visiting a website. Cookies help store preferences, regional settings, service usage options, and more.

If you wish, you can disable the use of cookies in your browser settings; however, this may affect the quality of the service provided to you.

Cookies are divided into persistent and session cookies. Persistent cookies remain on your computer or mobile device even after you close your browser or computer. Session cookies are deleted immediately after closing the browser.

Cookies are categorized by their purpose:

Necessary cookies. Session cookies that are essential for using the services offered on our website. These cookies help authenticate users and prevent malicious use of user accounts. Without these cookies, we cannot provide the services you request.

Notification cookies. These cookies detect whether users have accepted the use of cookies on the website.

Functionality cookies. These cookies allow your browser to remember choices you make when using the website, such as saving your login information or language preferences. The purpose of these cookies is to provide you with a more personalized experience and prevent the need to re-enter your preferences.

How We Use the Data

The information we collect may be used for various purposes, including:

  • Maintaining, managing, developing, personalizing, and expanding our website
  • Collecting statistics to offer better services and/or promotions, as well as understanding and analyzing visitor behavior on our website
  • Identifying you via phone, message, or email
  • Sending you information and requesting feedback about our services
  • Preventing fraud and protecting our website
  • Enabling communication with you through social media accounts
  • Accessing conversation history to provide quicker and more relevant advice
  • Improving the quality of our service and providing more efficient browsing solutions
  • Developing new products and services or enhancing existing ones
  • Shipping/delivering goods, processing orders, issuing invoices, completing purchases via bank links, confirming orders, or processing refunds
  • Offering products and services that may interest you based on your previous orders
  • Facilitating and speeding up interactions when you contact us
  • Processing visitor card data to fulfill legally mandated requirements. If you do not provide this information, we may not be able to offer you accommodation services.
  • Handling credit card data needed when using your card to pay for ordered services or incurred expenses
  • Using security camera recordings, which may be shared with law enforcement in the event of security incidents
  • Tracking data from electronic access systems to provide the services you have requested
  • Using personal preference data to offer you the best possible service
  • Using health-related data to provide the most suitable medical services
  • For other purposes, such as data analysis, trend research, and evaluating the effectiveness of our marketing campaigns
When We May Share Your Data
  • We may share or transfer your personal data in connection with changes in company ownership, mergers, asset sales, financing, or acquisitions. We will notify you if your personal data is transferred and becomes subject to another privacy policy.
  • We may share your data with our partner companies, requiring them to comply with this Privacy Policy. These partners include our parent and subsidiary companies, joint venture partners, or other affiliated entities.
  • We may share your data with business partners to offer you certain products, services, or promotions.
  • We may disclose your personal data for any other purpose with your consent.
  • We are obligated to disclose your personal data if required by law. In good faith, we may also disclose your data to comply with legal obligations, protect our rights or property, prevent or detect potential misuse related to our services, and ensure the safety of our users.
Retention of Your Personal Data

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. We store and use your personal data to the extent required to comply with our legal obligations (such as retaining your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

The company also retains log files for internal analysis purposes. Log files are generally retained for a shorter period unless they are used to enhance security or improve the functionality of our services, or we are legally obligated to retain them for longer periods.

Processing of Children’s Data

None of our products or services are directed at children under the age of 13, and we do not knowingly collect data from children under 13 years of age. If we become aware that we have collected personal data from a child under 13, we will promptly delete that data from all of our databases.

Your Rights Regarding Data Protection

You always have the right not to share your data with us, with the understanding that this may affect your experience on our website. If you choose not to share your data, we will not treat you any differently because of it. By providing us with personal information, you understand that we collect, store, use, and disclose it in accordance with this Privacy Policy. You have the right to request details about the data we collect about you.

If we receive personal information about you from a third party, we will protect it in accordance with this Privacy Policy and the laws of the Republic of Estonia. If you share third-party data with us, you confirm that you have the right and permission to do so.

Even if you have previously given your consent to share your personal data with us for marketing purposes, you retain the right to change your mind at any time. You always have the right to opt-out of communication with us and request that we delete your data from our databases. Occasionally, we may request information to verify your identity. If you find that the data we have collected about you is inaccurate, outdated, incomplete, irrelevant, or misleading, please contact us via email at: . We will do our utmost to correct any inaccurate, incomplete, misleading, or outdated information.

If you believe that we have violated applicable data protection laws and wish to file a complaint, please contact us using the contact details provided in this document and include all relevant details regarding the alleged violation. We will investigate your complaint promptly and respond to you in writing, outlining the results of our investigation and the steps we will take to resolve your complaint. You also have the right to contact a regulatory authority or data protection agency.

GDPR Data Protection Rights

We want to ensure that you are fully aware of all your data protection rights. Every user of our website is entitled to the following:

  • Right of access – You have the right to request copies of your personal data.
  • Right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete information you believe is incomplete.
  • Right to erasure – Under certain conditions, you have the right to request the deletion of your personal data.
  • Right to restrict processing – Under certain conditions, you have the right to request that we restrict the processing of your personal data.
  • Right to object to processing – Under certain conditions, you have the right to object to the processing of your personal data.
  • Right to data portability – Under certain conditions, you have the right to request that we transfer the data we have collected to another organization, or directly to you.

Security of Your Data

The security of your personal data is important to us, but please remember that no method of transmitting information over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.

Tervise Paradiis OÜ takes all reasonably necessary measures to ensure that your data is processed securely and in accordance with this Privacy Policy and the laws of the Republic of Estonia. Your data will not be transferred to any organization or country unless there is a legitimate reason and adequate protection for your data is ensured.

Our website may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly recommend that you review the privacy policy of every site you visit.

We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party websites or services.

Privacy Policy Updates

We reserve the right to update this Privacy Policy as necessary. When we update the policy, we will revise the update date at the bottom of the document. By continuing to visit and use our website after any updates, you are deemed to have accepted the changes.

Last updated on 13/11/2024