Privacy Policy
Last updated: 05.08.2025
1. Introduction
GRAHMUR OÜ ("we", "our", or "us") is committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and protect personal data through our corporate website: https://grahmur.com. This website serves to inform visitors about our company, our products, and our services.
2. Data Controller Information
Data Controller:
GRAHMUR OÜ
Registry code: 17295519
Address: Helme tn 7a-8, Tallinn, Põhja-Tallinna Linnaosa, Harju maakond, 10614, Tallinn, Estonia
Email: support@grahmur.com
We are the legal controller of personal data collected through this website in accordance with the EU General Data Protection Regulation (GDPR) and the Estonian Personal Data Protection Act.
3. What Information We Collect
We collect the following information:
a) Automatically via the website:
IP address
Browser type and version
Date and time of visit
Pages visited
Basic cookies (strictly necessary for website functionality)
b) When you contact us:
Name (as entered by you)
Email address
Any other details you voluntarily include in your message
We do not use tracking, marketing, or third-party analytics cookies.
4. Legal Basis for Processing
We process your personal data under the following lawful bases:
Consent – when you voluntarily contact us via the contact form.
Legitimate Interest – to maintain and monitor website performance and security.
We do not process sensitive personal data or profile visitors in any way.
5. Purpose of Data Processing
We use your data solely to:
Ensure website functionality and security
Respond to your queries or messages
Monitor and improve the performance of our site
Prevent fraud or misuse
We do not use your data for marketing or share it with advertisers.
6. Data Retention
We retain:
Server logs for up to 90 days
Contact form submissions for up to 1 year or until your request is fulfilled (whichever comes first)
Data may be retained longer if required by applicable law.
7. Your Rights Under GDPR
You have the following rights:
Access – Request a copy of your personal data
Rectification – Request correction of incorrect data
Erasure – Request deletion ("right to be forgotten")
Restriction – Limit how we process your data
Objection – Object to processing under certain conditions
Data portability – Receive your data in a structured format
Lodge a complaint – With a supervisory authority
Supervisory Authority: Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon)
Website: https://www.aki.ee/en
To exercise any rights, contact us at: support@grahmur.com
8. Data Security
We implement appropriate security measures, including:
SSL encryption
Secure hosting environments
Access controls on stored data
Regular security updates
9. Third-Party Links
Our website may link to:
Subsidiary brands or apps (each with its own privacy policy)
Social media platforms
External websites
We are not responsible for the privacy practices of third-party sites.
10. International Data Transfers
If we use third-party service providers (e.g. email hosting, cloud services) outside the European Economic Area (EEA), we ensure data protection through:
Standard Contractual Clauses, or
EU-approved safeguards
Currently, we aim to use only EU-based services.
11. Children's Privacy
Our website is not intended for children under the age of 13. We do not knowingly collect data from children under this age. If you believe a child has submitted data, please contact us immediately.
12. Updates to This Policy
We may update this policy periodically. The most recent version will always be available on https://grahmur.com/privacy-policy. Changes take effect upon publication.
Last updated: 05 August 2025