Last updated: August 02, 2025
At freyaframes.eu, we value your privacy and are committed to protecting your personal data. This policy describes how we collect, use, store, share, and protect your information in compliance with the General Data Protection Regulation (GDPR) and Estonia’s Personal Data Protection Act (PDPA).
1. Who We Are
Charter Sailing OÜ
Address: Heltermaa mnt. 6, Kärdla, 92414, Estonia.
Email: we@freyaframes.eu
If you have any questions about this policy or your rights, contact our privacy lead at the above email.
2. What Data Do We Collect & Why
| Type of Data | Purpose(s) | Legal Basis |
|---|---|---|
| Name, contact details | Order processing, customer service | Contractual necessity |
| Payment info (via provider) | Payment processing | Contractual necessity |
| Order history | Account management, customer queries | Contractual necessity |
| Newsletters, marketing | Consent | |
| Site usage, analytics data | Improve site, advertising | Consent; Legitimate interest |
| Cookies & similar tech | Site functionality, analytics, marketing | Consent (see Cookie Policy) |
We may process additional data if you interact with us (support requests, reviews, etc.).
3. Lawful Bases for Processing
We process your personal data based on:
– Fulfillment of a contract (for orders and service delivery)
– Your explicit consent (for marketing, analytics, non-essential cookies)
– Our legitimate interests (improving services, preventing fraud), always weighing your rights and expectations
For users in Estonia, processing may also be based on relevant provisions of the Estonian Personal Data Protection Act (PDPA).
4. Cookies and Tracking Technologies
We use cookies and similar technologies for site functionality, analytics, and marketing.
Non-essential cookies are only set with your opt-in consent, which you can adjust via our cookie management tool.
5. How We Share Data
We share data only when necessary:
– With trusted service providers (e.g., payment processors, logistics, analytics)
– With authorities if legally required
Where possible, providers are within the EU/EEA. If data is transferred outside the EU/EEA (for example, to US-based software vendors), we use Standard Contractual Clauses or ensure adequate protection measures.
6. International Transfers
If personal data is transferred outside the EU/EEA, such as to cloud service providers or plugins, we ensure appropriate safeguards (such as the European Commission’s Standard Contractual Clauses). You may request further information by contacting us.
7. Marketing
If you consent, we may send you marketing communications or newsletters.
You can withdraw consent or opt out of direct marketing at any time by clicking “unsubscribe” in our emails or emailing us.
8. Automated Decision-Making & Profiling
We do not conduct automated decision-making or profiling that produces legal or similarly significant effects.
9. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly process data of minors under 13. If we become aware of such processing, we will promptly delete such data.
10. Your Rights
You have the right to:
– Access your personal data
– Rectify inaccurate data
– Erase your data (“right to be forgotten”)
– Restrict or object to processing
– Data portability
– Withdraw consent at any time (with effect for future processing)
– Lodge a complaint with the Estonian Data Protection Inspectorate (aki.ee)
To exercise your rights or find out more, contact we@freyaframes.eu.
11. Data Retention
We only keep your data as long as necessary for the purposes defined above, or as required by law (e.g., accounting retention periods).
12. Security
We take appropriate measures to protect your personal data against loss, misuse, and unauthorized access.
13. Changes to This Policy
We may update this policy occasionally. For material changes, we will notify you via email (if we have your address) or by a notice on our website.
Last updated: August 02, 2025