We p rocess personal data only if there is a legal basis for it and only as long as necessary to achieve the objective of processing or to comply with legal obligations. The processor applies all relevant organizational, physical and technical security measures to protect the personal data that are at the University of Tartu disposal from unauthorized and non-compliant use, disclosure or damage.
Definitions and interpretation
- Data - collectively any information that we will collect and you submit to the University of Tartu via the Website. This definition incorporates, where applicable, the definitions provided in General Data Protection Regulation (GDPR);
- Cookies - a small text file placed on your computer by this Website when you visit certain parts of the Website and/or when you use certain features of the Website. Details of the cookies used by this Website are set out in the clause below (Cookies);
- the University of Tartu, we or us - the University of Tartu, Ülikooli 18, 50090 Tartu, Estonia;
- UK and EU Cookie Law - the Privacy and Electronic Communications (EC Directive) Regulations 2003 as amended by the Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011;
- User or you - any third party that accesses the Website and is not either (i) employed by the University of Tartu and acting in the course of their employment or (ii) engaged as a consultant or otherwise providing services to the University of Tartu and accessing the Website in connection with the provision of such services;
- the singular includes the plural and vice versa;
- a reference to a person includes firms, companies, government entities, trusts and partnerships;
- "including" is understood to mean "including without limitation";
- reference to any statutory provision includes any modification or amendment of it.
- We are committed to ensuring that any Data we receive is protected and handled in accordance with applicable data protection laws.
We may collect automatically the following Data:
- City and country;
- Device type;
- IP address;
- Web browser type and version;
- Operating system;
By your submission, we collect the following Data:
- First name and last name;
Our use of Data
- Processing of your Data is based on your consent.
- For purposes of the GDPR, the University of Tartu, (address: Ülikooli 18, 50090 Tartu, Estonia) is the “data controller” and the “data processor”.
- Your name and e-mail are used only for contacting you.
- Any Data you submit or we collect automatically will be deleted automatically after 24 months.
- All personal Data is stored securely in accordance with the principles of the GDPR. For more details on security see the clause below (Security).
- Any or all of the above Data may be required by us from time to time in order to provide you with the best possible service and experience when using our Website. Specifically, Data may be used by us for the following reasons:
- contacting you regarding your request;
- improvement of our products/services;
- solving technical issues;
- investigating and solving data breach occurrences;
- We do not sell, trade, or otherwise transfer to third parties your Data, unless we have prior written consent from you or we are required to do so under applicable law.
Links to other websites
- The data protection policy does not deal with the way how other persons process personal data. Nor does the policy cover the processing of personal data on external websites to which there are links on the portal’s web pages.
Changes in business ownership and control
- You have the right to receive a confirmation on whether or not we are processing your Personal Data.
- You have the right t o withdraw your consent at any time if the personal Data is processed on the basis of data subject’s consent. This does not affect the lawfulness of Data processing that occurred before the consent was withdrawn.
- You have the right to ask for a copy of any of your personal Data held by the University of Tartu (where such Data is held). The first copy is free of charge, the following copies may incur a small fee, which will not exceed 20 EUR.
- You have the right to request the erasure of your Data and if the processing of your Data is based on your consent, the right to withdraw your consent. If you request the erasure of your Data or withdraw your consent, we will delete the Data unless there are other legal grounds for the processing or unless we have a statutory obligation to store the Data. In any case, we will delete your Data after the retention period has ended.
- If you find out that the way we are processing your Data is against the law, you have the right to submit a claim to the Estonian Data Protection Inspectorate.
- Data security is of great importance to the University of Tartu and to protect your Data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure Data collected via this Website.
- If password access is required for certain parts of the Website, you are responsible for keeping this password confidential.
- We endeavor to do our best to protect your Personal Data. However, the transmission of information over the internet is not entirely secure and is done at your own risk. We cannot ensure the security of your Data transmitted to the Website.
- All Cookies used by this Website are used in accordance with current UK and EU Cookie Law.
- By using the Website you agree that the Website will automatically place strictly necessary Cookies on your computer.
- Before the Website places analytical/performance Cookies on your computer, you will be presented with a message bar requesting your consent to set those Cookies. By giving your consent to the placing of Cookies, you are enabling the University of Tartu to provide a better experience and service to you. You may, if you wish, deny consent to the placing of analytical/performance Cookies; however certain features of the Website may not function fully or as intended.
- This Website may place the following Cookies:
- Strictly necessary cookies - These are cookies that are required for the operation of our Website. These cookies expire after 48 hours.
- Analytical/performance cookies - They allow us to recognize and count the number of visitors and to see how visitors move around our Website when they are using it. This helps us to improve the way our Website works, for example, by ensuring that users are finding what they are looking for easily. For analytical and performance tracking we use Google Analytics services (https://analytics.google.com/analytics/web/). Two different cookies are used as analytical/performance cookies:
- “_ga” cookies which are used to identify unique users and expire after two years.
- “_gid” cookies which are used to identify the user and expire after 24 hours.
- You can choose to enable or disable Cookies in your internet browser. By default, most internet browsers accept Cookies but this can be changed. For further details, please consult the help menu in your internet browser.
- You can choose to delete Cookies at any time; however, you may lose any information that enables you to access the Website more quickly and efficiently including, but not limited to, personalization settings.
- It is recommended that you ensure that your internet browser is up-to-date and that you consult the help and guidance provided by the developer of your internet browser if you are unsure about adjusting your privacy settings.
Data Protection Regulation
- Your personal data will be protected and processed according to European GDPR regulation 2016/679.