Procedure for customer data processing

Medical Management OÜ (hereinafter “BALTIC LASERS”)
Registry code: 12273223
Address: Raua tn 32-37, Kesklinna linnaosa, 10120 Tallinn, Harju maakond, Estonia

Valid since 25.05.2018.

The General Data Protection Regulation (GDPR), adopted by the European Parliament on December 17, 2015, entered into force on May 25, 2018, and replaced the EU Directive on Data Protection 95/46 / EC.

When you use the BALTIC LASERS services, we ask you to provide us with information, including personal data, which we need to give you, our services.

To do so, you must consent to the processing of personal data.

Personal data (hereinafter also data) is the data that you can directly or indirectly associate with you as a private person.

We treat the personal information that you provide to the BALTIC LASERS with utmost respect and accuracy.

The BALTIC LASERS will use your personal information only to fulfil its obligations while providing you services on the basis of this procedure.

The procedure is applied to the processing of customer data of all BALTIC LASERS clients, including with respect to customer data that was generated before the present procedure came into force.

The BALTIC LASERS ensures the confidentiality of customer data by applying the necessary organizational, physical and information technology security measures.

The BALTIC LASERS processes customer data, mainly providing services of certified medical equipment selling and training in modern methods of medicine and aesthetics.

The BALTIC LASERS has the right to transmit customer data in accordance with the requirements of the law. The BALTIC LASERS has the right to transfer customer data to other companies belonging to the same consolidation group as the BALTIC LASERS, which can process customer data for the purposes specified in this procedure.

Upon termination of the contract, the BALTIC LASERS will continue processing the customer data if it is necessary to fulfil the obligation provided for in a legal act or to save the data for resolving the dispute arising from the contract concluded with the client. The BALTIC LASERS stores and processes customer data as long as it is necessary to fulfil the purposes of processing customer data or to fulfil its obligations under the law and the contract.

The BALTIC LASERS processes customer data with the consent of the client for marketing campaigns, lotteries and drawings, studying consumer behaviour and satisfaction, and also for offering and advertising the services of the BALTIC LASERS and its partners to the client.

The customer always has the right to prohibit the processing of his data for the study of consumer behaviour or for direct marketing and data transfer to third parties, who want to use them for studying consumer behaviour or for direct marketing.

We draw your attention to the fact that we cannot guarantee and are not responsible for whether another person is able to accept your personal data.

The customer may request information about himself and demand corrections from BALTIC LASERS to his data if they have changed or are inaccurate for another reason. The client must apply a relevant request (if necessary – in a form that allows written proceedings) to the BALTIC LASERS.

The BALTIC LASERS responds to the claims submitted within the time period stipulated in legal acts, but no later than within one month from the date of receipt of a claim. If, before drawing up a response, there is a need to more carefully ascertain and verify the circumstances, the BALTIC LASERS may extend the period for response.

The client may request BALTIC LASERS to terminate processing of its data, except for cases when the right and duty of data processing is derived from the legislation, or when it is necessary to execute the contract or to ensure such execution.

Disagreements related to the processing of customer data are primarily resolved through negotiations. In case of failure, the client can contact the Data Protection Inspectorate or file a complaint with the competent court.