← back to home
Legal

Privacy Policy

Effective date: 11 November 2025 Last updated: 18 June 2026 GDPR · EU

We are committed to protecting your personal data in accordance with the EU General Data Protection Regulation (GDPR) and Estonian law. This policy explains what we collect, why, and the rights you have.

01 Data Controller

The controller responsible for your personal data is:

Company Trend IT OÜ
Registry code 12637197
VAT number EE101824907
Address Laki tn 32-205, 12915 Tallinn, Estonia
E-mail info@trendit.ee
Website https://trendit.ee

02 What Personal Data We Collect and Why

We collect only the data we need to deliver our services, meet our legal obligations, and communicate with you. The table below sets out each purpose, the data involved, the legal basis under GDPR Article 6, and how long we keep it.

Purpose Data we process Legal basis (Art. 6) Retention
Quotation & contract preparation Name, company, e-mail, phone, project description Contract performance / legitimate interest 3 years after last contact
Invoicing & accounting Name, company, address, e-mail, VAT number Legal obligation (accounting law) 7 years from end of financial year
Project delivery & communication E-mail, Telegram/Slack/Discord handle, sometimes wallet addresses (non-personal) Contract performance Duration of the project + 3 years
Technical support & maintenance Logs, IP addresses, error reports Legitimate interest Up to 12 months
Marketing & newsletter (consent only) E-mail address Consent (withdraw anytime) Until consent is withdrawn
Website analytics Anonymised IP, browser, pages visited (via Plausible / Umami — no cookies) Legitimate interest 24 months (anonymised)

We do not collect or process sensitive personal data (such as health, religion, or political opinions).

03 Cryptocurrency & Wallet Addresses

Public blockchain addresses and on-chain transaction data are not considered personal data under GDPR. However, if a wallet address can be linked to an identified individual, we treat it with the same care as other personal data and only process it when strictly necessary for the project.

04 Who We Share Your Data With

  • Hosting providers — EU-based: Zone.ee, Hetzner, netcup, DigitalOcean, AWS Frankfurt.
  • Accountants and accounting software — based in Estonia.
  • Communication tools — Google Workspace, WhatsApp, Telegram (all under a GDPR Data Processing Agreement).
  • Freelancers / sub-contractors — only when needed, under strict NDA + DPA.
  • Authorities — only if required by law.

We never sell your data, and we never transfer it outside the EEA without adequate safeguards (EU Standard Contractual Clauses).

05 Your Rights GDPR Art. 15–22

You have the right to:

  • Access your data.
  • Rectify inaccurate data.
  • Erase your data (“right to be forgotten”) where applicable.
  • Restrict processing.
  • Data portability.
  • Object to processing based on legitimate interest.
  • Withdraw consent at any time.

To exercise any right, write to info@trendit.ee. We will respond within 30 days.

06 Security

We use industry-standard measures to protect your data: encrypted connections (HTTPS/TLS), encrypted backups, access controls, two-factor authentication, and regular security updates.

07 Cookies & Tracking

We use only strictly necessary session cookies and privacy-friendly analytics (Plausible or Umami) that do not track you across sites and do not use cookies for analytics.

08 Children

Our services are not directed to persons under 18. We do not knowingly collect data from children.

09 Changes to This Policy

We may update this Privacy Policy from time to time. The latest version is always published on this page.

10 Contact & Complaints

For any questions or complaints, contact us at info@trendit.ee.

Supervisory authority

You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (www.aki.ee) or any EU supervisory authority.