Privacy policy

We use the personal data contained in your memoranda, request for information, request for explanation or other request (for example, when exercising your rights relating to your personal data) to process your request and respond to you. If we have to send inquiries to a third party in order to respond to you, we will disclose your personal data only to the extent that is absolutely necessary.
If we need to disclose your or a third party’s restricted personal data in order to respond to you, we need to be sure of your identity. Therefore, you must sign your request in person or digitally.

The record of your request is visible under the Public Information Act in our document register. In the case of registered restricted documents, instead of the name or content of the document, only the initials of the sender or recipient are visible in the public document register. If you have sent us an inquiry that we are not competent to answer, we will pass it on to the necessary institution. We will inform you of forwarding of the request.

Access restrictions apply to correspondence with private persons. If somebody wants to see your correspondence and makes a request for information, we will check whether the requested document can be released in full or only partially. Access restrictions depend on the content of the document. Possible grounds for access restrictions are set out in section 35 of the Public Information Act.

Regardless of access restrictions, we will release documents to an authority or person who has a direct legal right to request them (e.g. an investigating authority, an extrajudicial body or a court).

Correspondence with private individuals (requests for information, memoranda, etc.) will be kept in the document management system for five years. Documents exceeding this deadline are destroyed.

We may process your personal data in the context of public procurement and the performance of a contract if you are named as a contact person, specialist, etc. in the tender or contract. In such cases, we will process your personal data to the extent necessary for the purposes stated by the tenderer involved in the procurement or the contracted partner in the performance of the contract. The same conditions apply if subcontracting is used for the performance of the contract.

In order to provide you with our services, manage customer relations and fulfil our promises to our existing or potential customers, we need your contact information for the following activities:

1. preparing and performing contracts with customers and providing them with the offers and information they request;
2. providing support to users of our services;
3. continuously improving our services through customer feedback;
4. invoicing, making payments and other financial transactions.

Contracts will be kept for 10 years from the termination of the contract. Contracts that have exceeded this deadline are destroyed and the information deleted.

Information on vacancies and internships is available on our website. 
When you apply for a job or an internship with us, we will use the information you provide only for the following purposes:

• to assess your application;
• to assess your qualifications and make decisions about recruitment;
• for communication purposes, such as providing information about possible dates for a job interview;
• to compile basic information to be used if you are recruited.

The personal data of the candidate will be processed by the employees involved in the recruitment process. Other employees do not have access to your personal data when you apply for a job.

Candidates’ personal data are collected when they submit the documents required in the call for applications, whereas:

• we proceed from the candidate’s own published information as well as public sources (including media, e.g. articles, recordings, social networks, blogs, public records, including criminal records, business records, court decisions);
• the candidate has the right to know what data RIT has collected about them;
• the candidate has the right to access the data collected by RIT and to provide explanations and objections;
• we will assume that the candidate has given their consent to the referees mentioned in the application documents to answer questions about the candidate, and that the referees have agreed that we may contact them for information;
• we will not disclose your details to other candidates, nor will we disclose details of other candidates to you.

The information of applicants is restricted information, which third parties (including competent agencies) may access only in cases stipulated by law. We keep the personal data of applicants for the purpose of resolving any legal disputes that may arise during the recruitment process until such a claim expires (after one year).

We keep correspondence on employment, personnel and other matters for five years. We keep internship, authorisation and employment contracts for ten years from the date of their termination. Documents exceeding the deadline are destroyed.
 

When you visit our office at Lõõtsa 8a, Tallinn, you will be welcomed by the person who invited you. Our employee has the right to ask you for identification to verify your identity. If necessary, you will be given a guest card that will give you access to the meeting room. You can move around the building with the person you are visiting.

We have 24-hour video surveillance in and around our office. Your movements in the building and on the premises (parking lots, areas adjacent to the building) are recorded for security reasons. Video recordings and door card logs are managed by the Tax and Customs Board. Video recordings are kept for 2 months and door card logs for 1 year.

Our Facebook page has the following settings:

• the page (including followers, comments and other reactions) is visible to everyone;
• only the administrator can publish posts on the page;
• all Facebook users can follow the page, comment on posts, share content created on the page and we will be notified of these activities;
• our working language is Estonian;
• the content of a poster’s message is automatically filtered, which means that Facebook will automatically block the publication of posts containing generally known offensive language (Profanity Filter setting – medium);
• Facebook users can contact us privately on the platform;
• everyone can link to our page and its public content (including #tagging);
• we receive the usage statistics collected by Facebook in an anonymous form. Facebook compiles these statistics by collecting your personal data. Read more on Facebook’s Privacy Policy and Cookies Policy.

Our LinkedIn page has the following settings:

• the page is visible to LinkedIn account holders;
• all LinkedIn users can follow the page, comment on posts and share content created on the page and we will be notified of these activities;
• our working language is Estonian;
• when you visit our page, data about you is collected by a third party and this is out of our control;
• we receive the statistics on visits in a non-personalised form.

In social media channels we follow the guidelines of the Estonian Newspaper Association’s agreement on good practice for online comments, according to which RIT has the right to block users or delete comments that do not comply with good practice on its managed pages.

We are the data controller of the website. Our website is administered by a data processor, the Government Office. Questions regarding data protection should be sent to [email protected].

In our public online pages, we automatically collect information about visitors, which is stored in log files. This information may include the user’s IP address, location, time of visit, type of browser used, information about the operating system, history of visits to pages and technical data, such as information about plug-ins used (Java etc.).

We generally process the data of our website visitors in a non-personalised form. We use the information collected to improve our website. It may also be necessary to use the visitor’s IP address to identify problems in the server of the Government Office, administer the website, analyse trends and get an overview of the activity of visitors to the website.

Our online environment also uses cookies. We use Google Analytics, a web analytics service provided by Google Inc. to help us collect information about how our website is used. We need this information to improve the user-friendliness of the website; for example, to highlight the information you are looking for.

Google Analytics cookies collect, among other things, the following data:

• IP address;
• the number of visitors to the website;
• the source of the visit (country);
• the pages viewed by visitors;
• the time a visitor spends on one page or another.

Information about your use of our website will be transmitted to and stored by Google on its servers. This information is used to compile general overviews of website usage, which do not include any personalised information about the user. For more information see Google’s privacy policy.

If you, as a user of our website, do not want the above-mentioned data about you to be transmitted to Google Analytics, you can opt out. To do this, you need to download and install this add-on to your browser.

In addition to Google Analytics, we may also use other web analytics services, such as React&Share, on our managed websites. For more information, see the React&Share privacy policy.