Punch Club is committed to protect privacy of their customers and users. Therefore, we observe the following principles of privacy policy, which govern collection, use, disclosure, transmission and storage of customer data. Our activities on the Internet comply with all accepted practices, as well as relevant EU legislation and laws of the Republic of Estonia. Please take a moment to review our principles.

PRIVACY POLICY

Collection and use of personal data
Personal data means any data, which can be directly or indirectly associated with you as an individual, that Punch Club collects and processes for the performance of contracts concluded with individuals or contacting them, as well as to fulfil their obligations stemming from law.

Personal data can be collected in any of the following ways:

  • when you provide us your contact information (incl. your name, personal ID code, postal address, telephone number, e-mail address, the preferred method of communication) on our website or otherwise (e.g. in our office, at meetings or customer events);
  • through cookies, when you visit our website;
  • when making a purchase in our webshop to store personal contact information or purchase preferences (Punch Club may ask you to provide personal information and personal information on a voluntary basis in certain areas of the website. Required personal information may include name, address, zip code, email );

Collection of other data
We also collect non-personal data, i.e. data that cannot be directly linked to a particular individual (gender, age, language preference, location). We may also collect data about how customers interact with our website. These data are combined and used to provide customers information that is more relevant for them, and to learn about which parts of the website, products, and services attract the most interest. In this Privacy Policy such combined data are regarded as non-personalised data.

Use and storage of collected personal data
We may use the collected personal data to display customers news about our products, campaigns and upcoming events. Customers who do not wish to be in our newsletter mailing list or receive direct marketing messages, may remove themselves from the mailing lists at any time.

We may also use collected personal data to fulfil commitments that we may have assumed towards customers.

By agreeing with the terms and conditions of the privacy policy the customer gives their consent for automated processing of their data. You may revoke your consent at any time by sending us a request in a format reproducible in writing. Such requests and consents do not have retroactive effect.

To ensure better customer service we may disclose information about individual users to a third party who provides services to us and has assumed contractual obligations to keep any shared information confidential. A third party may be, for instance, our partner whom we have engaged to produce, design or translate the content of the website.

We retain clients’ personal data for as long as this is necessary for the purposes they were collected. The storage period depends on the need to respond to customers’ enquiries. We retain data, that we are obliged to retain pursuant to law (e.g. accounting data), in accordance with the requirements prescribed by law.

Personal data security
We take all precautions (incl. administrative, technical, and physical measures) to protect customers’ personal data. Only authorised persons are provided access to alteration and processing of personal data.

If you suspect that your personal data are treated contrary to what is described in this Privacy Policy, or if there is any risk that your data have leaked to unauthorised parties, please notify us immediately. This is the only way that we can minimise any potential damages.

Customers have the right to request termination of the processing of their data, information about the way their data are used, and transmission of the data in a commonly used format either to themselves or to a third party. In order to avoid misuse of customer data and rights, requests may only be submitted in a format that makes it possible to identify the person submitting the request (signed digitally or personally at the company’s office). We have the right to respond to such requests within 30 days.

Security
Any personal data, that you provide while visiting our website or entering into contracts with us, are considered confidential information.

Terms and conditions of, and amendments to privacy policy
By starting to use our website you confirm that you have read these principles, terms and conditions, and agree with them. We reserve the right to amend the general terms and conditions of this privacy policy, if necessary, by notifying customers thereof by e-mail, but we make our best effort to ensure that our privacy policy is kept updated and available for you on our website.

The controller in charge of processing customers’ personal data is Punch Club OÜ. Should you have any questions or concerns about the privacy policy or data processing, you are kindly asked to contact us at info@punch.club

You may always contact the Data Protection Inspectorate or a court to seek protection to your personal data. The Data Protection Inspectorate is a national authority that may also be contacted for advice or assistance related to protection of personal data