Privacy Policy
This Privacy Policy explains how Astrec Baltic OÜ (“Astrec”, “we”, “us”, or “our”) processes personal data in connection with the website https://www.astrec.com
Astrec is committed to processing personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).
1. Data Controller
Astrec Baltic OÜ
Vana Tartu mnt 79A
75312 Peetri, Rae vald
Estonia
Email: astrec@astrec.com
Phone: (+372) 658 00 50
2. What Data We Collect
We may collect and process the following personal data:
- name
- company name
- email address
- phone number
- any personal data included in your message or inquiry
- technical website usage data collected through analytics tools, where applicable and permitted
We do not intentionally collect special categories of personal data through this website and ask that you do not submit unnecessary sensitive personal data through website forms.
3. How We Collect Personal Data
We collect personal data when:
- you submit a contact form on our website
- you contact us by email or phone
- you otherwise communicate with us in connection with a business inquiry
- you use our website, including through analytics technologies, where such analytics are enabled on the basis of consent where required
We may also process personal data where necessary to operate specific website features, campaigns, landing pages, forms, or related business communications made available from time to time.
4. Why We Use Personal Data
We use personal data for the following purposes:
- to respond to inquiries and communicate with you
- to handle requests related to our products, services, or business activities
- to take steps prior to entering into a contract where your request relates to a potential business transaction
- to maintain related business records
- to operate, secure, and improve our website
- to analyse website traffic and usage patterns through analytics tools, where applicable and based on consent where required
Where we process personal data for contact handling, business communication, and related record-keeping, we do so because it is necessary for our legitimate interests or, where applicable, in order to take steps at your request before entering into a contract.
Where analytics or similar technologies require consent, we process related data only on the basis of that consent. Google states that in basic consent mode, Google tags are prevented from loading until the user interacts with the consent banner.
5. Cookies and Analytics
Our website may use cookies or similar technologies that are necessary for the operation of the site, as well as analytics technologies used to understand website traffic and improve the website.
Where required by law, non-essential analytics technologies are used only after the relevant user consent has been obtained.
You can find more information in our Cookie Policy or cookie banner settings, where applicable.
6. Where and How We Store Personal Data
Personal data submitted through our website may be processed and stored:
- in our website environment
- on Astrec’s own server infrastructure, including our Ubuntu-based server environment
- in our business email systems and related internal business records
We take reasonable technical and organisational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction.
7. How Long We Keep Personal Data
We keep personal data for as long as necessary to handle the relevant inquiry and maintain related business records.
We may retain personal data for a longer period where necessary:
- for pre-contractual or contractual purposes
- to comply with legal or regulatory obligations
- to establish, exercise, or defend legal claims
- to maintain necessary business documentation and records
8. Sharing of Personal Data
We do not sell personal data.
We may share personal data only where necessary, for example:
- with service providers supporting the operation, hosting, maintenance, or security of our website or IT systems
- with professional advisers where necessary
- with competent authorities where required by law
- with technology providers involved in website analytics or technical website functionality, where applicable
We require service providers processing personal data on our behalf to do so only under appropriate instructions and safeguards.
9. International Data Transfers
Some of our service providers or technical service environments may involve processing of personal data outside the European Union or European Economic Area.
Where this occurs, we seek to ensure that such transfers are subject to appropriate safeguards in accordance with applicable data protection law, such as adequacy decisions or standard contractual clauses where relevant. The European Commission states that transfers of personal data outside the EEA require specific safeguards, including tools such as adequacy decisions and Standard Contractual Clauses.
10. Your Data Protection Rights
Subject to applicable law, you may have the right to:
- request access to your personal data
- request correction of inaccurate personal data
- request deletion of personal data
- request restriction of processing
- object to processing
- request data portability, where applicable
- withdraw consent at any time, where processing is based on consent
Under the GDPR, individuals have these rights over their personal data, and organisations must provide clear information on how they can be exercised.
To exercise your rights, please contact us at:
Email: astrec@astrec.com
Phone: (+372) 658 00 50
11. Third-Party Websites
Our website may contain links to third-party websites or services. This Privacy Policy applies only to https://www.astrec.com. If you follow links to other websites, you should review their own privacy notices.
12. Complaints
If you believe that your personal data has been processed unlawfully, you have the right to lodge a complaint with the competent supervisory authority.
In Estonia, the supervisory authority is:
Andmekaitse Inspektsioon (Data Protection Inspectorate)
Tatari 39, 10134 Tallinn, Estonia
Email: info@aki.ee
Phone: +372 627 4135
The Estonian Data Protection Inspectorate identifies itself as Estonia’s national supervisory authority and lists these contact details on its official website.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
The latest version will be published on this page and will apply from the date of publication.
Version: March 2026