Legal

Privacy Policy

Ravenoddity / Rongabutiik OÜ values your privacy and is committed to complying with all applicable laws and regulations regarding any personal data we may collect when you visit our website. By using our website, you agree that we collect and use your data in accordance with this Privacy Policy.

This policy explains what data we collect, how we use it, and what rights you have to protect your information. It applies only to our website and its visitors, and does not apply to data collected through other channels.

Data controller

Rongabutiik OÜ

Registration number: 16739693

Email: info@rongabutiik.ee

We collect and process personal data in accordance with the EU General Data Protection Regulation (GDPR), which came into force on 25 May 2018.

What Data We Collect

We collect information you actively provide to us when using our services, as well as information your devices send automatically when accessing our site.

Your personal data may reach us in the following ways:

  • When you place an order in our online store
  • When you register as a user on our website
  • When you contact us by phone, email, or online message
  • When you browse our website
  • When you provide personal details of another person who will receive your order
  • When you make a payment using online banking or another electronic payment method
  • When you comment on, like, or share a post on our social media channels
  • When you subscribe to our newsletter
  • When you submit an inquiry or portfolio request through our website

Personal Data

We only ask for personal information when it is necessary to provide you with a service. This may include:

  • First and last name
  • Email address
  • Postal address, country, county, city
  • Phone number
  • Your order history and activity on our store
  • Communication history between you and us
  • Information about your web browser and IP address

Log Files

Our website records log files about its visitors. This may include:

  • Device type
  • IP address
  • Browser type
  • Internet service provider (ISP)
  • Date and time of visit
  • Pages visited and clicks made

Log file information is used for trend analysis, site administration, and improving our services. This data does not identify individual persons.

Cookies

Like most websites, we use cookies. A cookie is a small text file stored on your device when you visit a website. Cookies help us remember preferences, regional settings, and service choices.

You may disable cookies in your browser settings, but this may affect the functionality of certain parts of our site.

Cookies are divided into:

  • Persistent cookies — remain on your device after you close your browser.
  • Session cookies — deleted when you close your browser.

By purpose, cookies are:

  • Necessary cookies — required to provide our services, including user authentication and security.
  • Notification cookies — record whether you have accepted our cookie notice.
  • Functional cookies — remember your preferences such as login details or language settings, to provide a more personalised experience.

We also use analytics cookies (such as those set by Google Analytics or Microsoft Clarity) to understand how visitors interact with our site. These tools collect anonymised data about page visits, session duration and navigation behaviour. No personally identifying information is passed to these services.

If you use our wishlist/favourites feature, we store a cookie on your device to remember your saved items between sessions. If you create an account, your favourites are saved to your account instead.

How We Use Your Data

We may use collected information for the following purposes:

  • Maintaining, managing, developing, personalising and expanding our website
  • Gathering statistics to improve our services and understand visitor behaviour
  • Identifying you when you contact us by phone, message or email
  • Sending you information about your order and requesting feedback
  • Preventing fraud and protecting our website
  • Processing orders, issuing invoices, handling payments and refunds
  • Shipping orders to you or a recipient you specify
  • Suggesting products or services that may interest you based on past orders
  • Complying with our legal obligations

When We May Share Your Data

We may share or transfer your personal data in the following circumstances:

  • In connection with a merger, acquisition, sale of assets or change of ownership of our company. We will notify you if your data becomes subject to a different privacy policy.
  • With partner companies who are required to comply with this Privacy Policy.
  • With business partners to provide you with specific products, services or promotions.
  • With your consent, for any other stated purpose.
  • When required by law, or in good faith to protect our rights, prevent fraud or ensure the safety of our users.

Payment processing: Payments are handled by Montonio Finance OÜ in their secure payment environment. We do not have access to your bank account details or card numbers.

Shipping: We share your name and delivery address with our logistics partners (Omniva, DPD, Smartpost, Unisend) solely for the purpose of delivering your order.

We do not sell your personal data to third parties.

Data Retention

We retain your personal data only for as long as necessary for the purposes described in this policy, or as required by law. Log files are generally kept for a shorter period unless required for security or legal compliance purposes.

Children's Data

None of our products or services are directed at children under the age of 13, and we do not knowingly collect data from children under 13. If we become aware that we are processing data from a person under 13, we will remove it from our systems.

Your Rights Under GDPR

As a resident of the European Union or European Economic Area, you have the following rights regarding your personal data:

  • Right of access — you may request a copy of the personal data we hold about you.
  • Right to rectification — you may request correction of inaccurate or incomplete data.
  • Right to erasure — in certain circumstances, you may request that we delete your personal data.
  • Right to restriction of processing — in certain circumstances, you may request that we limit how we use your data.
  • Right to object — in certain circumstances, you may object to our processing of your personal data.
  • Right to data portability — in certain circumstances, you may request that we transfer your data to you or a third party in a structured, machine-readable format.

To exercise any of these rights, please contact us at info@rongabutiik.ee. We will respond within 30 days.

If you believe we have violated applicable data protection law, you may also contact the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon, www.aki.ee) or the supervisory authority in your country of residence.

Data Security

The security of your personal data is important to us. While we take all reasonably necessary precautions to protect your data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Your data will not be transferred to any organisation or country without a valid reason and adequate security measures in place.

Links to Third-Party Websites

Our website may contain links to third-party sites that we do not own or operate. We strongly recommend reviewing the privacy policy of any site you visit. We have no control over third-party sites and accept no responsibility for their content, privacy practices or services.

Updates to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the date at the bottom of this document. Continued use of our website after an update constitutes your acceptance of the revised policy.

Last updated: June 2026