Privacy & Data Protection Policy

Green Tech Solutions ("we", "our", or "us") is dedicated to protecting your privacy while providing innovative circular economy and green technology solutions. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, visit our website, or interact with us.

As a company focused on sustainability, we apply the same principles of responsibility and care to data protection as we do to environmental protection. We comply with the General Data Protection Regulation (GDPR), the Estonian Personal Data Protection Act, and other applicable data protection laws.

We collect information necessary to provide our green technology services while minimizing data collection in line with our sustainability principles.

Personal Data

We may collect the following personal information:

• Contact Information: Name, email address, phone number, company details
• Professional Information: Job title, company size, industry sector
• Environmental Data: Waste generation patterns, carbon footprint metrics (for service provision)
• Technical Information: For IoT device monitoring and smart waste management services
• Financial Information: Payment details (processed securely through third-party providers)

Automatically Collected Data

When you visit our website, we may automatically collect:

• IP address, browser type and version
• Device information, operating system
• Pages visited, time spent on pages
• Referring website addresses

Environmental & Sustainability Data

For our circular economy services, we may process:

• Waste composition and generation data
• Carbon emission metrics
• Resource consumption patterns
• Recycling and recovery rates

Note: Environmental data is typically aggregated and anonymized to protect individual or company privacy while enabling sustainability improvements.

We use collected data exclusively for legitimate business purposes aligned with our mission of promoting circular economy solutions:

Purpose	Legal Basis	Sustainability Link
Providing green technology services	Performance of contract	Enabling waste reduction and resource efficiency
IoT device management and monitoring	Performance of contract	Optimizing waste collection routes to reduce emissions
Carbon footprint analysis and reporting	Legitimate interest & consent	Supporting climate action and transparency
Customer support and service improvement	Legitimate interest	Enhancing solution effectiveness for greater environmental impact
Research and development of new solutions	Legitimate interest	Advancing circular economy technologies
Compliance with environmental regulations	Legal obligation	Ensuring adherence to EU Green Deal and sustainability standards
Marketing communications (with consent)	Consent	Promoting sustainable practices and solutions

We prioritize data minimization and only share information when necessary for service provision or legal compliance:

Service Providers

We may share data with trusted partners who assist in delivering our services:

• Cloud Providers: For data storage using energy-efficient data centers
• Analytics Services: For improving service efficiency
• Payment Processors: For secure financial transactions
• IoT Platform Providers: For smart waste management systems

Regulatory & Compliance Sharing

We may disclose information to:

• Environmental Authorities: As required by EU and Estonian environmental regulations
• Government Agencies: For compliance with waste management and circular economy laws
• Auditors: For sustainability reporting verification

Research & Collaborative Projects

With explicit consent, anonymized environmental data may be shared with:

• Academic institutions for sustainability research
• Industry partners for circular economy initiatives
• EU-funded green innovation projects

We implement robust security measures to protect your data, aligned with our commitment to responsible resource management:

Technical Measures

• Encryption of data in transit and at rest
• Secure access controls and authentication
• Regular security assessments and updates
• Energy-efficient, secure data storage solutions

Organizational Measures

• Data protection training for all employees
• Clear data handling policies and procedures
• Regular privacy impact assessments
• Minimization of data collection and retention

Sustainability in Data Management

We extend our environmental commitment to data practices:

• Use of green data centers with renewable energy
• Data minimization to reduce storage energy consumption
• Efficient data processing to minimize computational resources
• Responsible data lifecycle management

Under GDPR and Estonian data protection laws, you have the following rights:

• Right to Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data under certain conditions
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Receive your data in a structured, commonly used format
• Right to Object: Object to our processing of your personal data
• Right to Withdraw Consent: Withdraw consent at any time where applicable
• Right to Environmental Data Transparency: Request information about how environmental data is used for sustainability improvements

To exercise these rights, please contact us using the information in the "Contact Us" section below.

As an Estonian company serving international clients, we may transfer data outside the European Economic Area (EEA). All such transfers comply with GDPR requirements:

• Use of EU-approved standard contractual clauses
• Transfers to countries with adequacy decisions
• Implementation of additional safeguards where needed
• Transparency about data transfer locations

For our IoT and monitoring services, data processing may occur in multiple locations to ensure optimal service delivery while maintaining data protection standards.

We retain personal data only as long as necessary for the purposes outlined in this policy:

• Client Data: Retained for the duration of our service agreement and 7 years thereafter for legal and tax purposes
• Environmental Data: Retained for analysis and reporting purposes, typically 10 years for compliance with environmental regulations
• Website Analytics: Retained for 26 months for service improvement
• Marketing Data: Retained until consent is withdrawn or after 3 years of inactivity

We regularly review our data retention practices and delete unnecessary data to minimize our digital environmental footprint.