← Back to Home

Privacy Policy

How we collect, use, and protect your personal data under GDPR.

Last Updated: January 2026

1. Introduction

Dolutech OÜ ("DolutechAI", "we", "us", or "our"), Registry Code 17414318, is a company registered in Estonia, European Union. We are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and Estonian data protection laws.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website dolutech.ai and use our services.

2. Data Controller

The data controller responsible for your personal data is:

Dolutech OÜ
Registry Code: 17414318
Address: Uus-Sadama tn 21-207, Kesklinna linnaosa, Tallinn, Harju maakond, 10120
Estonia, European Union
Email: [email protected]
WhatsApp (Preferred): +372 5193 1345
Official Registry: ariregister.rik.ee

3. Personal Data We Collect

We may collect the following categories of personal data:

3.1 Information You Provide

  • Contact Information: Name, email address, phone number, company name
  • Account Information: Username, password, preferences
  • Communication Data: Messages, support requests, feedback
  • Payment Information: Billing address, payment method details (processed by secure third-party processors)

3.2 Automatically Collected Information

  • Technical Data: IP address, browser type, operating system, device information
  • Usage Data: Pages visited, time spent, click patterns, referring URLs
  • Cookies and Similar Technologies: See our Cookie Policy for details

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance (Art. 6(1)(b)): To provide our services and fulfill our contractual obligations
  • Legitimate Interests (Art. 6(1)(f)): To improve our services, ensure security, and communicate with you
  • Consent (Art. 6(1)(a)): For marketing communications and non-essential cookies
  • Legal Obligation (Art. 6(1)(c)): To comply with applicable laws and regulations

5. How We Use Your Data

We use your personal data for the following purposes:

  • Providing and maintaining our services
  • Processing transactions and sending related information
  • Responding to your inquiries and providing customer support
  • Sending administrative information, updates, and security alerts
  • Marketing and promotional communications (with your consent)
  • Analyzing usage patterns to improve our services
  • Detecting, preventing, and addressing security issues
  • Complying with legal obligations

6. Data Sharing and Transfers

6.1 Third-Party Service Providers

We may share your data with trusted service providers who assist us in operating our business:

  • Cloud hosting providers (data stored within EU/EEA)
  • Payment processors (PCI-DSS compliant)
  • Analytics providers
  • Customer support tools

6.2 International Transfers

When we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place:

  • EU Commission adequacy decisions
  • Standard Contractual Clauses (SCCs)
  • Binding Corporate Rules where applicable

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Account Data: Duration of your account plus 3 years
  • Transaction Records: 7 years (legal requirement)
  • Marketing Consent: Until withdrawn
  • Technical Logs: 12 months

8. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of Access (Art. 15): Request a copy of your personal data
  • Right to Rectification (Art. 16): Correct inaccurate or incomplete data
  • Right to Erasure (Art. 17): Request deletion of your data ("right to be forgotten")
  • Right to Restriction (Art. 18): Restrict processing in certain circumstances
  • Right to Data Portability (Art. 20): Receive your data in a structured format
  • Right to Object (Art. 21): Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time without affecting prior processing

To exercise your rights, contact us at [email protected]. We will respond within 30 days.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption in transit (TLS 1.3) and at rest (AES-256)
  • Regular security assessments and penetration testing
  • Access controls and authentication mechanisms
  • Employee training on data protection
  • Incident response procedures

10. Cookies

We use cookies and similar technologies to enhance your experience. For detailed information, please refer to our Cookie Policy.

11. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or prominent notice on our website. Your continued use of our services after changes constitutes acceptance of the updated policy.

13. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with:

Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon)
Tatari 39, 10134 Tallinn, Estonia
Email: [email protected]
Website: www.aki.ee

14. Contact Us

For any questions about this Privacy Policy or our data practices, please contact us:

Dolutech OÜ
Registry Code: 17414318
Address: Uus-Sadama tn 21-207, Kesklinna linnaosa, Tallinn, Harju maakond, 10120
Estonia, European Union
Email: [email protected]
WhatsApp (Preferred): +372 5193 1345
Website: dolutech.ai
Official Registry: ariregister.rik.ee