The controller of personal data on the website of Mohni LS OÜ at https://www.mohni.eu (hereinafter referred to as the website) is Mohni LS OÜ (registry code 10809524) located at Laki 11a, 12915 Tallinn.
What personal data are processed?
- Name, address, telephone number and e-mail address
- Delivery address
- Bank details
- Cost of goods and services and payment details (purchase history)
- Customer support data
Why personal data are processed
Personal data are used to manage the customer’s orders and to deliver goods.
Purchase history details (date of purchase, goods, quantity and customer data) are used to prepare overviews of goods and services purchased and to analyse customer preferences.
Bank account details are used to refund payments to the customer.
Personal data such as the customer’s name, e-mail address and telephone number are processed in order to resolve issues relating to the provision of goods and services (customer support).
The IP addresses and other online identifiers of users of the website are processed for the provision of the store as an information society service and for web use statistics.
The processing of
personal data is conducted for the purpose of fulfilling the contract entered
into with the customer and for the fulfilment of legal obligations (e.g.
accounting or settlement of consumer disputes).
Recipients of personal data
Mohni LS OÜ is
the personal data controller. Personal data are forwarded to the website’s
customer support to manage purchases and purchase history and to resolve any
problems that customers may have. Personal data may be forwarded to IT service
providers if this is needed to ensure the functionality of the online store or
to host data.
Name, address, telephone number and e-mail address are forwarded to the transport service provider selected by the customer.
Mohni LS OÜ transmits the personal data necessary for making payments to the processor, Maksekeskus AS.
Security and access to data
The staff of the
website have access to personal data in order to resolve technical issues
related to the use of the website and to provide customer support.
The website takes appropriate physical, organisational and IT security measures to protect personal data against accidental or unlawful destruction, loss or alteration and unauthorised access and disclosure.
Personal data are forwarded to the data processors of the website (such as the providers of transport and data hosting services) and processed under contracts entered into between the website and the processors. The processors must ensure appropriate safeguards when processing personal data.
Access to and correction of personal data
Personal data can
be accessed and corrected in the user profile of the website. If a purchase is
made without a user account, personal data can be accessed via customer
Withdrawal of consent
If personal data
are processed on the basis of the customer’s consent, the customer has the
right to withdraw their consent by informing customer support thereof via
Personal data are
erased upon the closure of a customer account on the website, unless the
storage of the data is necessary for accounting purposes or for the resolution
of consumer disputes.
The purchase history of online purchases made without a customer account is stored for three years.
In the event of disputes concerning payments and consumer disputes, the personal data are stored until the claim is satisfied or until the end of the limitation period.
Personal data needed for accounting purposes are stored for seven years.
For the erasure
of personal data, customer support must be contacted via e-mail. Requests for
erasure are responded to within one month and the period of erasure is
Transfer of data
Requests to transfer personal data submitted via e-mail are responded to within one month. Customer support identifies the person and indicates which personal data are to be transferred.
Direct marketing messages
address and telephone number of the customer are used for sending direct
marketing messages if the customer has consented to receiving such messages. If
the customer does not wish to receive direct marketing messages, they should
select the relevant link at the footer of the e-mail or contact customer
Where personal data are processed for the purposes of direct marketing, the customer has the right to object to such processing (including profiling to the extent that it is related to such direct marketing, whether with regard to initial or further processing) at any time by notifying customer support thereof via e-mail.
A cookie is a
small text file which is automatically saved on the user’s device by the web
browser. Cookies are used in order to collect information about how the user
uses the website, with the purpose of providing the user with a better user
The website uses the following cookies:
- session cookies, whose
purpose is to enable the use of the website;
cookies, whose purpose is to remember the choices made by the customer on the
- first- and/or
third-party cookies, whose purpose is to show advertising and offers appropriate
to the user; and
analysis cookies, whose purpose is to optimise marketing communication.
The user may delete and/or block cookies saved on their devices by changing the relevant settings on their web browser. If cookies are not used, the website may not work as planned and/or some of its functions may become unavailable to the user. You can check and/or delete cookies as you wish. See more at aboutcookies.org.
In addition to website cookies, a number of trusted third-party cookies are also used. This allows the user to share pages on social networks and enables personalized and relevant advertising to be displayed. This way, these cookies allow advertisements to be displayed on various platforms of Google and Google's partner companies or Facebook.
Resolution of disputes
concerning the processing of personal data are settled in written form via
customer support (firstname.lastname@example.org).
The supervisory authority is the Estonian Data Protection Inspectorate (email@example.com).