Last updated: 2 November 2025

Privacy Policy

We respect your privacy. This policy explains what personal data we collect on imprint.ee, how we use it, and your rights under the EU General Data Protection Regulation (GDPR).

1) Who we are

Data controller: Imprint OÜ — reg. code: 14223399 · VAT: EE101956338. Location: Tallinn, Estonia. Contact: info@imprint.ee.

2) What we collect

When you use our site or contact us, we may process:

Contact form data: name, email, subject (optional), message, privacy consent. Anti-spam includes a honeypot and a time-gate timestamp.
Technical meta sent with forms to help support and debug: user agent, referrer, and UTM parameters (if present).
Scheduling: if you book via Calendly, they collect the details you submit; we receive booking notifications.
Messaging: if you message our Telegram bot, Telegram processes your account details; we receive your chat content.
Orders & licensing from external stores (e.g., Etsy) to fulfill purchases and licenses.
Hosting & security logs (minimal): standard server logs (e.g., IP address, user-agent) for reliability and abuse prevention.

We do not run analytics cookies on our site at this time.

3) Why we use your data (purposes)

To reply to inquiries and provide quotes or support.
To deliver services and digital products you request.
To schedule meetings and manage communications.
To maintain security and reliability (e.g., basic fraud/spam prevention).
To meet accounting and tax record-keeping obligations.

4) Legal bases

Consent — when you tick the privacy checkbox or submit optional info.
Legitimate interests — to respond to requests, run our business, and prevent abuse.
Contract — where processing is necessary to perform or prepare a contract with you.
Legal obligation — for invoicing, accounting and tax retention requirements.

5) How we protect data (security)

Encryption in transit (HTTPS) across our site and form endpoints.
Access controls and least-privilege permissions in Google Workspace and connected tools.
Two-factor authentication on administrator accounts where available.
Periodic access reviews and routine removal of stale data.

6) Storage and retention

Form submissions are processed via Google Apps Script and may be stored in Google Sheets/email. We keep personal data only as long as needed for the purposes above, typically:

General inquiries: up to 12 months.
Client/project records & invoices: up to 7 years (accounting/tax).
Template purchase records: as required by tax/licensing obligations.

We delete or anonymize data when it’s no longer required.

8) International transfers

Some providers may process data outside the EU/EEA. When this occurs, transfers rely on appropriate safeguards such as SCCs or an adequacy decision.

9) Cookies

We aim to keep cookies to a minimum and currently do not use analytics cookies. Third-party services you choose to use (e.g., Calendly) may set their own cookies on their domains. You can control cookies via your browser settings.

10) Your rights

Under GDPR you can request to:

access, correct, or delete your personal data,
restrict or object to processing,
receive a copy of your data (portability),
withdraw consent at any time (where processing is based on consent).

To exercise these rights, email info@imprint.ee. You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon).

11) Children & sensitive data

Our site and services are intended for business users. We do not knowingly collect personal data from children.
We do not seek to collect special categories of personal data (e.g., health, biometric, political opinions). Please avoid sending such data.

12) Contact

For any privacy questions, contact info@imprint.ee.

13) Changes

We may update this policy from time to time. We will post the revised version on this page with the updated date above.