Online store is managed by Mistra-Autex AS, registry code 10060658, address Paju 2, 75203 Raasiku, Estonia.
These general principles lay down the principles for collecting, processing and using the personal data of the client in the provision of services by Mistra-Autex.
These general principles constitute general information about which data Mistra-Autex collects and processes for achieving the described goals.
Collection and use of personal data
Personal data are any data that are voluntarily provided by individuals and collected by Mistra-Autex in the provision of services, including the execution of transactions with the client and the delivery of goods. Personal data may be used also for direct marketing purposes for legitimate need or provided the client has given their consent.
This data may include the first name and surname of the person, the date of birth and e-mail address, and the address and telephone, if necessary. In case of bank transfers, the client’s account number and bank name.
Mistra-Autex does not use or disclose the client’s personal data without the client’s consent.
The collection of personal data can only take place with the consent of the client and in the following ways:
– The client provides their data on the link to the subscription to the newsletter at Mistra-Autex webshop.
– The client provides Mistra-Autex with their data in the webshop, by completing the new client registration form.
– Mistra-Autex will receive a confirmation from the respective service provider in case of the successful identity of the person and/or the payment order.
When authenticating through the ID-card or Mobiil-ID and signing statements or confirmations, the client is obliged to comply with the security requirements and recommendations provided by the respective developers. For this we recommend you to read more information at https://mobiil.id.ee and https://www.id.ee
Goal of the collection and processing of personal data
The collected personal data is used to inform clients about Mistra-Autex news, campaigns, offers and different events and also to execute transactions, including the delivery of goods.
Mistra-Autex AS is responsible for handling personal data and is forwarding data that is necessary for payments to authorized processor, EveryPay AS.
When requesting for card data, a secure SSL data and the security systems of MasterCard secureCode and Verified by Visa are used. Mistra-Autex cannot see the entered data. To execute the transaction the card owner will be transferred to the secure environment of EveryPay AS. During the payment the card owner enters their card data to the database located in EveryPay server and the data will be preserved also in EveryPay server.
Mistra-Autex collects, centralises and analyses data to receive information about the following:
– statistics on the opening of newsletters,
– statistics on the opening of links in the newsletters.
Personal data necessary for mediating the goods to the client will be sent to the courier company.
Mistra-Autex will not distribute, send, change or use any personal data entrusted to them in an unintended way, except when there is a special agreement with the client or if the need for disclosure comes from the legislation of the Republic of Estonia.
Client’s rights
The client may at any time request a copy of the data that Mistra-Autex has collected and the amendment or deletion of their personal data.
A client who does not wish to be included in Mistra-Autex newsletter list or who wishes their personal data to be deleted, can submit the respective application at any time, by sending it to info@mistra.ee.
The client has the right to transfer their personal data to another data controller. For this we ask you to send a written and signed request to Mistra-Autex at info@mistra.ee.
The client has the right to file a complaint with the Data Protection Supervision Authority regarding Mistra-Autex arrangements for data processing.
Personal data protection and security
All personal data of the client that was disclosed to Mistra-Autex in the subscription of a newsletter and execution of transactions with the client shall be regarded as confidential information.
Access to the personal data of a client is restricted to authorized parties who provide services to Mistra-Autex and current webshop (e.g. server and cloud service providers, postal and transport companies) are bound by an obligation of confidentiality. The authorized party is the company which media is used for managing Mistra-Autex newsletters.
Preservation of personal data
Mistra-Autex preserves the personal data of the client as long as it is necessary for achieving the goal of their collection, protecting the rights of Mistra-Autex and until it is required by law.
Collection and use of non-personal data
Non-personal data are data that cannot be directly linked to one specific person (age, sex, place of residence). Mistra-Autex uses cookies on current website, which function is to collect general statistics about the website traffic. Mistra-Autex does not follow the behaviour of individuals and website traffic.
A cookie is a text file that is sent and stored to the user’s computer by the websites the user visits. The cookie is stored in the file directory of the user’s web browser. If the client has visited the website earlier, the web browser reads the cookie and sends this data to the website or element that initially saved the cookie. More information on cookies can be found at www.aki.ee/et/kupsised
The user of the website has the right to disable the use of cookies. For this you must change your web browser settings.
Amendment of the general principles for processing personal data
By sending personal data to Mistra-Autex and using current website, the client has read and agreed with Mistra-Autex general principles for processing personal data. Mistra-Autex reserves the right to change these general principles. The notice of this will be posted to current website and valid general principles for processing personal data are always available on this website.
If you have any questions about the general principles for processing personal data or data processing, we ask you to contact Mistra-Autex, by sending an e-mail info@mistra.ee