1. General provisions
1.1. This privacy policy regulates the principles regarding the collection, processing and storage of personal data. Personal data is collected, processed and stored by the controller of personal data Multiprits OÜ (hereinafter referred to as the data processor).
1.2. A data subject for the purposes of the privacy policy is a customer or other natural person whose personal data is processed by the data processor.
1.3. A customer, for the purposes of the privacy policy, is anyone who purchases goods or services from the data processor’s website.
1.4. The data processor complies with the data processing principles set out in legislation, including processing personal data lawfully, fairly and securely. The data processor is able to confirm that personal data has been processed in accordance with the provisions of legislation.
2. Collection, processing and storage of personal data
2.1. The personal data that the data processor collects, processes and stores is collected electronically, mainly via the website and email.
2.2. By sharing their personal data, the data subject grants the data processor the right to collect, organize, use and manage the personal data that the data subject directly or indirectly shares with the data processor when purchasing goods or services on the website, for the purposes specified in the privacy policy.
2.3. The data subject is responsible for ensuring that the data provided by him/her is accurate, correct and complete. Knowingly providing false data is considered a violation of the privacy policy. The data subject is obliged to immediately notify the data processor of any changes to the data provided.
2.4. The data processor is not liable for any damage caused to the data subject or third parties due to the provision of false information by the data subject.
3. Processing of customer personal data
3.1. The data processor may process the following personal data of the data subject:
3.1.1. First and last name;
3.1.2. Phone number;
3.1.3. Email address;
3.1.4. Delivery address;
3.1.5. Account number;
3.1.6. Payment card details;
3.2. In addition to the above, the data processor has the right to collect data about the client that is available in public registers.
3.3. The legal basis for the processing of personal data is Section 6(1)(a), (b), (c) and (f) of the General Data Protection Regulation:
a) the data subject has given consent to the processing of their personal data for one or more specific purposes;
b) the processing of personal data is necessary for the performance of a contract concluded with the participation of the data subject or for taking measures prior to entering into a contract at the request of the data subject;
c) the processing of personal data is necessary for compliance with a legal obligation of the controller;
f) the processing of personal data is necessary for the legitimate interests pursued by the controller or by a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.
3.4. Processing of personal data according to the purpose of processing:
3.4.1. Purpose of processing – security and safety
Maximum period for storing personal data – in accordance with the deadlines specified in the law
3.4.2. Purpose of processing – order processing
Maximum period for storing personal data – 1 year
3.4.3. Purpose of processing – ensuring the functioning of the e-shop services
Maximum period for storing personal data – 1 year
3.4.4. Purpose of processing – customer management
Maximum period for storing personal data – 1 year
3.4.5. Purpose of processing – financial activities, accounting
Maximum period for storing personal data – in accordance with the deadlines specified in the law
3.4.6. Purpose of processing – marketing
Maximum period for storing personal data – 1 year
3.5. The data processor has the right to share customers’ personal data with third parties, such as authorized data processors, accountants, transport and courier companies, companies providing transfer services. The data processor is the responsible processor of personal data. The data processor forwards the personal data necessary for making payments to the authorized processor Maksekeskus AS.
3.6. When processing and storing the personal data of the data subject, the data processor implements organizational and technical measures that ensure the protection of personal data against accidental or unlawful destruction, alteration, disclosure and any other unlawful processing.
3.7. The data processor retains the data of data subjects depending on the purpose of the processing, but not longer than 7 years.
4. Data subject rights
4.1. The data subject has the right to access and review their personal data.
4.2. The data subject has the right to receive information about the processing of his or her personal data.
4.3. The data subject has the right to supplement or correct inaccurate data.
4.4. If the data processor processes the data subject’s personal data based on the data subject’s consent, the data subject has the right to withdraw consent at any time.
4.5. To exercise your rights, the data subject can contact the e-shop customer support at multiprits@gmail.com
4.6. The data subject has the possibility to file a complaint to protect his/her rights to Data Protection Inspectorate
5. Final provisions
5.1. These data protection conditions have been drawn up in accordance with Regulation (EU) No 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), the Personal Data Protection Act of the Republic of Estonia, and the legislation of the Republic of Estonia and the European Union.
5.2. The data processor has the right to partially or completely change the data protection conditions by informing data subjects of the changes via the website www.mydiamond.ee
Cookie Policy
We want you to be able to use our website to its full functionality. We use Cookies to ensure the website works and provide the best possible user experience.
1. What are Cookies?
Cookies are small pieces of data stored in text files that are stored on your computer or other device when your browser loads a website. They are typically used to remember your identity and preferences during a single visit (hereinafter referred to as session cookies) or repeated visits (hereinafter referred to as persistent cookies).
Session cookies are temporary cookies that are used during your visit and expire when you close your browser.
Persistent cookies are used to remember your preferences on our website and remain on your desktop or smart device even after you close your browser or restart your computer. They ensure a consistent and productive experience for visitors to our website and users of our services.
Cookies may be set by the website (hereinafter referred to as first-party cookies) or by third parties, such as content producers or providers of advertising or analytics services on the website (hereinafter referred to as third-party cookies). These third parties recognize you when you visit our website or certain other websites.
2. What types of cookies do we use?
Necessary cookies – allow us to provide the best possible experience when visiting and browsing our website and using the features it offers.
Functionality cookies – allow us to manage our website and services according to the visitor’s choices.
Performance cookies – allow us and third-party services to collect data about how visitors use the website for statistical purposes. These cookies do not contain personal data such as names and email addresses and are used to help us improve the user experience of our website.
3. What are your choices regarding the use of cookies?
If you do not like certain types of cookies or cookies at all, you can change your browser settings to delete cookies that have already been created and not accept new cookies.
Please note: If you delete or do not accept cookies, this may prevent you from accessing certain features offered by our website and services.
4. Cookies used on this website
| Cookie | Description | Validity period |
| _ga | _ga cookie, set by Google Analytics, counts visitor, session and campaign data and also tracks page usage for page analytics reporting. The cookie stores information anonymously and assigns a randomly generated number to identify individual visitors. | 2 years |
| _gat | This cookie is set by Google Universal Analytics to limit the number of requests and thereby reduce data collection on pages with high traffic. | 10 minutes |
| _gid | The _gid cookie installed by Google Analytics stores information about how visitors use the website, while also compiling an analytics report on how the website is performing. The data collected includes the number of visitors, their source and the pages they visit anonymously. | 1 day |
| cookie_notice_accepted | This cookie indicates that the user has accepted the Cookie Policy. | 1 month |
| PHPSESSID, sbjs_migrations, sbjs_current_add | This cookie is specific to PHP applications. The cookie is used to store and identify the user’s unique session ID in order to manage the visitor’s session on the website. This cookie is a session cookie and is deleted when all browser windows are closed. | Session |