Data Protection Policy

Privacy Policy

Last updated: 15 May 2026

This Privacy Policy explains how Menetray OÜ processes the personal data you provide through this website.

1. Who is the controller of your data?

  • Name: Menetray OÜ
  • Registered in: Estonia (EU)
  • Registry code: 14900865
  • Registered address: Harju maakond, Tallinn, Lasnamäe linnaosa, Sepapaja tn 6, 15551, Estonia
  • Email: [email protected]

We have not appointed a Data Protection Officer (DPO) as we are not legally required to do so.

2. What data do we collect and for what purpose?

Through the contact form on this website we collect: your name, email address, subject and message. We process this data for the sole purpose of replying to your enquiry about our Drupal development services and, where applicable, preparing a commercial proposal.

We do not create profiles and we do not take automated decisions about you.

3. How long do we keep your data?

  • If your enquiry does not lead to a contractual relationship, we will keep your data for a maximum of 12 months from the last contact, and then delete it.
  • If a contractual relationship begins, we will keep your data for the duration of that relationship and for the statutory retention periods that apply afterwards (typically 5 to 7 years for accounting and tax obligations).

4. What is the legal basis for processing?

The legal basis is the application of pre-contractual measures taken at your request (Article 6(1)(b) GDPR). Providing your data is not a legal or contractual obligation; however, if you do not provide it we will not be able to reply to you.

5. Who has access to your data?

We do not sell or share your personal data with third parties for their own purposes. Your data may be processed on our behalf by the following categories of service providers (processors), under written contracts that comply with Article 28 GDPR:

  • Web hosting and infrastructure provider (EU-based).
  • Email service provider.
  • Backup and security services.

All processors are located in the European Economic Area (EEA) or, where data is transferred outside the EEA, transfers are made under an adequacy decision of the European Commission or under the Standard Contractual Clauses approved by the European Commission.

We may also disclose your data when required by law, by a competent authority or by a court order.

6. What are your rights?

Under the GDPR you have the right to:

  • Access your personal data.
  • Request its rectification or erasure.
  • Restrict or object to its processing.
  • Receive your data in a portable format.
  • Withdraw any consent (where consent is the legal basis).

To exercise any of these rights, please contact us by email at [add contact email]. We will reply within one month.

You also have the right to lodge a complaint with the competent data protection supervisory authority. For users in the European Union, this is normally the authority of your country of residence. The lead supervisory authority for Menetray OÜ is the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon, https://www.aki.ee).

7. Security

We apply appropriate technical and organisational measures to protect your data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.

8. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest version. Material changes will be highlighted on this page.

9. Contact

For any question about this Privacy Policy or about how we handle your personal data, please contact us at [email protected]

¿Necesitas un experto en Drupal?

Desarrollador Drupal senior, freelance, especializado en lo más complejo: migraciones, sitios multilingüe, plataformas SaaS e integración con Stripe. Uso IA para reducir tiempos y costes de entrega, con revisión experta en cada línea de código.

Sin agencias, sin intermediarios. Contacto directo con quien hace el trabajo.

CUÉNTAME SOBRE TU PROYECTO