• Home
  • Privacy Policy
Privacy Policy

This Privacy Policy sets out the policy adopted by Femto Systems towards visitors of the website www.femto-systems.com (the Site). This privacy policy explains what information is collected about you, how we use this information, how you can instruct us if you prefer to limit the use of the information and the procedures that we have in place to safeguard your privacy.

1. General provisions

1.1. Contact details of the Data Controller Femto Systems Ou (hereinafter “We”, “Ours”) process the personal data of its customers, partners, candidates to employees, shareholders, or other data subjects (hereinafter below you can read how we handle the data you submit to us.

1.2. If you have any questions regarding this Privacy Policy or requests regarding the processing of your personal data, please send us an email to: [email protected].

1.3. You can also at any time refuse to receive any information we send by sending an email to [email protected] exempt for the information needed for the direct cooperation purpose.

2. To whom is the privacy policy apply?

2.1. This Privacy Policy applies to all personal data Data controller processes regardless of the media (way) on which that data is stored or whether it relates to past or present employees, workers, customers, clients or supplier contacts, shareholders, website www.femto-systems.com  users, agents or any other Data subjects. The terms and conditions of the Privacy Policy apply to you every time you access the content and/or the service we provide, regardless of which device (computer, cell phone, tablet, TV, etc.) you are.

2.2. This Privacy Policy does not apply to references to other entities’ websites provided on the Website; therefore we recommend that you read the personal data processing rules applied on such websites.

3. Essential concepts of the privacy policy

Data controller – Femto Systems Ou

Websites managed by the Data Controller – https://femto-systems.com/

Terms and Conditions are the terms of the contract for our website visitors/customers regarding the use of the services provided by the Data Controller.

Processors. The Company also uses the services provided by third parties (such as third-party data centers, servers, website design, administration services, online traffic, and website analysis, statistics, direct marketing services, mailers, messengers, etc.) that may require access to your personal data to the appropriate extent. In this case, the Company ensures that the data processors comply with the obligations of confidentiality and adequate personal data protection. We also use dedicated service providers to send newsletters and other promotional or related information, as well as to collect and transfer analytical information on statistical use of such information we sent to you.

4. How do we obtain your data and on what legal basis do we process it?

4.1. Ways how personal data is obtained:

4.1.1. When you submit data to us through our websites;

4.1.2. By concluding both electronic (Term and Conditions) and paper service or other contracts;

4.1.3. During events/meetings, by submitting business cards or other personal data;

4.1.4. By email when contacting at our general email addresses: [email protected];

4.1.5. When you contact by email any of our employees;

4.1.6. When you agree to provide your data, for example by subscribing to a newsletter and etc.;

4.1.7. When you access your account through third-party accounts (Facebook, LinkedIn, Google);

4.1.8. When you agree to the installation of cookies on your device;

4.1.9. When the data came from publicly accessible sources to use for a legitimate purpose and under a legal basis.

4.2. Basics of lawful management:

4.2.1. Contract (sale/purchase of products/services);

4.2.2. Consent to receive offers and news from us and our affiliates. You may revoke your consent to process personal data at any time. Unless the Company has any other legal basis for processing personal data, the Company will terminate the processing of such personal data and destroy the data;

4.2.3. Legitimate interest is to respond to your queries, to provide the information you request, to improve our service quality, statistics, and analytics, personalized services, to protect the Company from possible losses due to business relationships with authorized persons while preventing money laundering and support for terrorist activities, etc.

4.2.4. Implementation of legal obligations (accounting, archiving, data breach notification, to protect the Company from possible losses due to business relationships with authorized persons while preventing money laundering and support for terrorist activities etc.).

5. Personal data processing purposes

5.1.1. For website administering purposes, we process data in the following cases:

  1. a) When you enter our company’s website and give consent for different cookies.

5.1.2. For the purpose of administering, the https://femto-systems.com/ account, we process the following of your personal data:

  1. a) Full name;
  2. b) Email address;
  3. c) IP address;
  4. d) Date and time of access;
  5. e) Visitors’ geo-location;
  6. f) Other relevant technical

5.1.3. For direct cooperation purposes your personal data can be processed in the following ways:

  1. a) Your connection technical information may be used in processes related to website matters, such as to show website usability.

5.2. Cooperation purpose

5.2.1. For cooperation purposes, we process data on these legal bases:

  1. a) On the basis of contract;
  2. b) On the basis of legitimate interests to manage contacts (e.g. to keep records of people we work with and wish to communicate), manage communication history for business continuity purposes, to protect the interests of the company, etc.);
  3. c) On the basis of compliance with a legal obligation;
  4. d) In special cases based on public interest.

5.2.2. For cooperation purposes, we process the following of your personal data related to the represented company details and other related employees personal data:

  1. a) Full company name;
  2. b) Company code,
  3. c) Address;
  4. d) E-mail address;
  5. e) Telephone number;
  6. f) employees’ full name;
  7. g) employees’ title;
  8. h) employees’ e-mail address;
  9. i) employees’ telephone number.

5.2.3. Your personal data for cooperation purposes can be processed in the following ways:

  1. a) You may be called by phone regarding the negotiations due to past, current of future cooperation matters;
  2. b) You may receive a letter regarding the cooperation related matters by e-mail;
  3. c) Other legal

5.3. Services provision purpose

5.3.1. For services provision purposes, we process data on these legal bases:

  1. a) in order to take steps at your request prior to entering into a contract;
  2. b) When the written or verbal agreement is made by both Parties;
  3. c) On the basis of legitimate interests to manage contacts (e.g. to keep records of people we work with and wish to communicate), manage communication history for business continuity purposes, to protect the interests of the company, etc.);
  4. d) On the basis of compliance with a legal obligation;
  5. e) In special cases based on public interest.

5.3.2. For the services provision purposes, we process the following of your personal data related to the represented company details and other related employees personal data:

  1. a) Full company name;
  2. b) Company code,
  3. c) Address;
  4. d) E-mail address;
  5. e) Telephone number;
  6. f) employees’ or representatives’ full name related to the performance of the agreement;
  7. g) employees’ or representatives’ title;
  8. h) employees’ or representatives’ e-mail address;
  9. i) employees’ or representatives’ telephone numbers.

5.3.3. Your personal data for services provision purposes can be processed in the following ways:

  1. a) When you may receive requirements due to agreement preparation by e-mail.
  2. b) When you may receive the request for needed information regarding the other type of agreement;
  3. c) When we communicate regarding the providing of services etc.

5.4. Direct marketing purpose

5.4.1. For direct marketing purposes, we process data on these legal bases:

  1. a) When we obtain your explicit consent to such processing (on the basis of your consent);
  2. b) When you are a customer of us who have not objected to the processing of personal data for the purposes of direct marketing, marketing of similar services or products where you have been duly notified of such processing beforehand (on the basis of our legitimate interest).

5.4.2. For the purpose of direct marketing, we process the following of your personal data:

  1. a) Full name;
  2. b) E-mail address;
  3. c) Telephone number.

5.4.3. Your personal data for direct marketing purposes can be processed in the following ways:

  1. a) You may receive a newsletter with our offers, promotions, products, and news by e-mail;
  2. b) You may receive invitations to events and similar information by e-mail;
  3. c) You may be called by phone with the invitation, commercial proposal, or offer. We inform you that you are free to opt-out of our newsletters or any other information sent by e-mail at any time. You may exercise this option by clicking on a corresponding link at the bottom of our e-mail.

5.5. Employees recruitment purpose

5.5.1. For employees recruitment purposes, we process data on these legal bases:

  1. a) When we obtain your explicit consent to such processing (on the basis of your consent).
  2. b) When we obtain your personal data from a data provider qualified to share your personal data information with potential employers on a consent basis.

5.5.2. For the purpose of employees recruitment, we process the following of your personal data:

  1. a) Full name;
  2. b) Contact details, including correspondence address, telephone number, and email address;
  3. c) Place of residence;
  4. d) Residential address;
  5. e) Citizenship;
  6. f) Work permit, visa, and information pertaining to these documents;
  7. g) Personal identification data;
  8. h) Licenses and records;
  9. i) Information about former workplaces (company name, position title, professional experience);
  10. j) References from former workplaces;
  11. k) Licenses or certificates of qualification related to the specifics of the work;
  12. l) Other work experience;
  13. m) Education information (training institutions, types of qualifications obtained, and dates of acquisition);
  14. n) Other information provided by the user of the Data Controller and required to provide the Services.

5.5.3. Your personal data for employees recruitment purposes can be processed in the following ways:

  1. a) You may be called due to a possible open job position offer;
  2. b) You may receive a recruitment offer due to your suitability for the open work position by e-mail.

5.6. Processing of personal data when you provide questions, requests, other information (queries)

5.6.1. For queries administration purposes, process data on these legal bases:

  1. a) On the basis of legitimate interests to manage contacts (e.g. to ensure the quality of the services we provide, manage communication history for business continuity purposes, to protect the interests of the company, etc.);
  2. b) On the basis of compliance with a legal obligation.

5.6.2. We process the following your personal data:

  1. a) Persons’ from whom the question/request was received name and surname;

5.6.3. Your personal data for the processing of personal data purpose can be processed in the following way:

  1. a) Regarding the Legitimate Interest.

6. How long we will retain your personal data?

6.1. We will retain your personal data for as long as necessary to achieve and fulfill the purposes set out in this Privacy Policy, taking into account the nature of the services provided to you and the contracts you enter into, unless longer storage of personal data and related documents is required by applicable laws and regulations and is necessary (e.g. mandatory time limits for accounting and others, etc.) or is required for the defense of the Data Controller’s legitimate interests in judicial or other public institutions.

6.2. We ensure and take all necessary measures to avoid storing outdated or unnecessary information about you and to keep your data up-to-date and accurate.

6.3. We will use your data for direct marketing purposes for 3 (three) years after you’re giving consent or after the end of the contractual relationship (direct marketing of similar services or products).

7. How do we protect your data?

7.1. We responsibly implement appropriate organizational and technical data security measures intended for the protection of personal data against accidental or unlawful destruction, alteration and disclosure as well as against any other unlawful processing. The security measures we implement include the protection of personnel, information, IT infrastructure, internal and public networks as well as office buildings and technical equipment.

7.2. We recommend that you additionally comply with the following minimum safeguards for personal data protection:

  1. a) Do not visit suspicious websites;
  2. b) Do not open links of uncertain origins;
  3. c) Update your software regularly;
  4. d) Independently take care of using antivirus protection.

7.3. Unfortunately, the transmission of any information on the Internet is not completely secure. Although we are endeavoring to protect your personal data, it is not possible to ensure the full security of personal data when you provide the data on the Website, therefore, you must assume the risks associated with the transfer of personal data to the Website.

7.4. In the event of personal data breach of security that could seriously jeopardize your rights or freedoms and determine the circumstances with which unauthorized access to personal data has been obtained, we will immediately inform you about it.

8. To whom is your data are disclosed?

8.1. Your personal data may only be accessed to a limited number of our employees and to our company’s IT service provider, and only to the extent necessary for the proper processing of your personal data, and subject to strict confidentiality requirements.

8.2. To achieve the purposes set out in this Privacy Policy, we may transfer or grant access to your data to the following data recipients/processors:

8.2.1. Certain technical data on your visits on the website (IP address, cookies, technical information of your browser, other information related to the browser’s activity and browsing the site) may be transmitted or made available to the website’s for statistics, analyses, and related purposes both for entities operating in the EU and outside the EU (e.g., when we use the Google Analytics service).

8.2.2. Within the interest and according to the order of data processors who provide services and process your data on our behalf (e.g. as third-party data centers, servers, website design, administration services, online traffic, and website analysis, statistics, direct marketing services, mailers, messengers, consultants, etc.). We note that our data processors process your data only on the basis of our explicit instructions, by committing to ensure the proper processing of data protection, organizational and technical measures compliant to confidentiality and security requirements, as specifically discussed in the agreements concluded between us and the service providers regarding the processing of data.

8.2.3. Entities entitled to receive information in accordance with legal requirements (e.g. courts, state and municipal authorities, banks, and other financial institutions etc.) only to the extent necessary for the proper performance of the requirements of the legislation in force.

8.2.4. However, we always transfer your data in accordance with the highest standards of personal data protection.

9. Data transfer outside the EU and EEA

9.1. Please note that in non-EEA states, personal data may be subject to less protection than within the EEA, but we carefully evaluate the conditions under which such data will be processed and stored after being transferred to the above-mentioned entities.

9.2. Please note that if the European Commission has determined that the third country, territory or one or more specified sectors in that third country or international organization concerned provides an adequate level of data protection, the transfer must take place in the same manner as in the EU. Please be informed that you can have access to the information as to the states in respect of which the decision of the European Commission has been taken, here: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu- countries_en.

9.3. In other cases, we take all necessary measures to ensure that your data is transferred to the recipient safely processing the data. The tools we use: a contract with a non-European recipient of personal data includes specific clauses for the secure processing of the data.

10. Social media

10.1. We own and administer social media accounts (Facebook, LinkedIn, YouTube, etc.). Article 26 (1) of the GDPR (Joint Data Controllers) applies to certain relations with administrators of those social networks.

10.2. All information you provide to us on social media (including messages, use of the Like and Follow fields, and other communications) is controlled by the social network administrator.

10.3. As the administrator of our social media accounts, we select the appropriate preferences based on our target audience, performance management and promotion goals. Giving the fact that social network may limit the ability to change certain essential privacy preferences, we cannot influence what information (including personal data) the social network administrator collects about you when you visit and use our social media account.

10.4. All such settings, both selected by us and set by the social network administrator, may affect the processing of your personal data when using social media, visiting our social media account or reading our posts or/and messages on the social network. Even if you only view our messages on social media, the social network administrator may receive certain personal information, such as what device you are using and your IP address.

10.5. Typically, a social network administrator processes your personal data (even when we do not collect it) for purposes set by the social network administrator in accordance with the social network administrator’s Privacy Policy. However, when you use the social network, communicate with us through the social media, visit our account on the social network or monitor our content therein, we receive information about you. The amount of data we receive depends on the preferences we choose, our agreements with the social network administrators for additional services, and the cookies set by the social network administrator.

10.6. We note that the data collected by Facebook, LinkedIn, YouTube, etc., is shared globally between these companies and their partners.

10.7. As far as we know, Facebook, LinkedIn and YouTube uses standard contract terms for data transfers, which are approved by the European Commission’s decisions on data transfers from the EEA to the United States and other countries.

10.8. We encourage you to read third-party privacy notices and contact social network administrators directly if you have any questions about how they use your personal data.

11. Rights granted to you

11.1. We guarantee the implementation of these rights and the provision of any related information at your request or in case of your query:

  1. a) Know (be informed) about the processing of your personal data;
  2. b) To get access to your personal data which are processed by the Data Controller;
  3. c) Request correction or addition, adjustment of your inaccurate, incomplete personal data;
  4. d) Require the destruction of personal data when they are no longer necessary for the purposes for which they were collected;
  5. e) Request the destruction of personal data if they are processed illegally or when you withdraw your consent to the processing of personal data or do not give such consent, when is necessary;
  6. f) Disagree with the processing of personal data or withdraw the previously agreed consent;
  7. g) Request to provide, if technically possible, the provision of your personal data in an easily readable format according to your consent or for performing the contract, or request the transfer of data to another data controller.

11.2. In order to exercise your rights, please send us an e-mail to: [email protected]. Upon receipt of your request, we may ask you to provide proof of identity, as well as any additional information required by us for the request, which we undertake to delete after identification.

11.3. Upon receipt of your request, we will respond to you within 30 (thirty) calendar days of receipt of your claim and the due date for submission of all documents necessary to prepare the answer.

11.4. If we think we need to, we will stop the processing your personal data, except for storage, until your application is resolved. If you have legally waived your consent, we will immediately terminate the processing of your personal data and within no more than 30 calendar days, except in the cases provided for in this privacy policy and in the cases provided for by law when further processing of your data is binding on us by the legislation in force, the legal obligations we are facing, court judgements or binding instructions from the authorities.

11.5. By refusing to comply with your requirement, we will clearly indicate the grounds for such refusal.

11.6. If you disagree with our actions or the response to your request, you can complain to the competent state authority – the State Data Protection Inspectorate. In all cases, we recommend that you contact us before making a formal complaint so that we can find the right solution.

12. Contact us

12.1. For more information about our privacy practices, please contact us by e-mail at [email protected] or by mail using the details provided below:
Femto systems OU
Kivi str. 5-402, Johvi, Estonia

13. How did I learn about the changes to this policy?

13.1. This Privacy Policy is reviewed at least once every two years. Once we update our Privacy Policy, we will notify you of the update by posting a notice on a specific website or social networking accounts. If you login or use our content and/or services after posting such notice, we will assume that you agree to the new requirements specified in the update notice.

13.2. This Privacy Policy applies from the date it is posted on the Website. Last review of the Privacy Policy: February 10, 2022.