Northeast Deal
← Back to homepage

Privacy Policy

This Privacy Policy explains how Northeast Deal collects, uses, stores and protects personal data when you visit our website, contact us, or communicate with us in relation to our business activities.

Effective date: 23 March 2026 Applies to website visitors, enquiries and business contacts

Important: Northeast Deal acts as the data controller for the personal data described in this policy.

Data Controller

Northeast Deal

Vahtra tn 2a-41
Narva linn
21003
Estonia

Privacy Contact

Email: info@northeast-deal.com

For privacy-related requests, rights requests, or complaints about how your personal data is handled.

1. What personal data we may collect

Depending on how you interact with us, we may collect:

  • Identity data, such as your name.
  • Contact data, such as your email address, phone number, company name, job title, and correspondence details.
  • Technical data, such as IP address, browser type, device information, language settings, referral source, and basic website usage data.
  • Communication data, such as messages you send to us and records of our correspondence.
  • Marketing preference data, such as whether you wish to receive business updates from us, where permitted by law.

2. How we collect personal data

We may collect personal data:

  • directly from you when you contact us by email or through a contact form;
  • when you communicate with us in the course of a business relationship;
  • automatically through your use of the website, including server logs and essential website technologies;
  • from publicly available professional or business sources where relevant to a legitimate business enquiry or relationship.

3. Why we process personal data and our legal bases

We process personal data only where we have a valid legal basis under the GDPR. This may include:

  • To respond to enquiries and communicate with you — our legitimate interests in operating and managing our business, or taking steps at your request before entering into a contract.
  • To provide services or manage business relationships — performance of a contract or steps prior to entering into a contract.
  • To maintain website security, prevent misuse, and troubleshoot issues — our legitimate interests in protecting our website, systems, and business.
  • To comply with legal, tax, accounting, or regulatory obligations — compliance with a legal obligation.
  • To send marketing communications — your consent where required, or our legitimate interests where permitted by applicable law.

4. Recipients of personal data

We may share personal data with trusted service providers and professional advisers where necessary for the purposes described above, for example:

  • website hosting or IT support providers;
  • email and communication providers;
  • professional advisers such as lawyers, accountants, or auditors;
  • public authorities or regulators where disclosure is legally required.

We do not sell personal data.

5. International transfers

If personal data is transferred outside the European Economic Area, we will only do so where there is an adequate level of protection under applicable law or appropriate safeguards are in place, such as the European Commission’s Standard Contractual Clauses, together with any supplementary measures required by law.

6. Data retention

We keep personal data only for as long as necessary for the purpose for which it was collected, including for legal, accounting, tax, contractual, or dispute-resolution requirements. Retention periods may vary depending on the nature of the relationship and the legal obligations that apply.

7. Your rights under the GDPR

Subject to the conditions and limits set by law, you may have the right to:

  • request access to your personal data;
  • request correction of inaccurate or incomplete personal data;
  • request erasure of your personal data;
  • request restriction of processing;
  • object to processing based on legitimate interests;
  • request data portability where applicable;
  • withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at info@northeast-deal.com.

8. Complaints

You also have the right to lodge a complaint with the competent supervisory authority. In Estonia, this is the Data Protection Inspectorate (Andmekaitse Inspektsioon).

9. Cookies and similar technologies

Our website may use essential technologies needed for the website to function properly. Where non-essential analytics or similar technologies are used, they should be activated only in line with applicable consent requirements.

You can also manage cookies through your browser settings. This Privacy Policy should be read together with any separate cookie notice or consent banner used on the website.

10. Data security

We use appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. However, no system can be guaranteed to be completely secure.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be published on this page together with its effective date.

Northeast Deal
Vahtra tn 2a-41, Narva linn, 21003, Estonia
Email: info@northeast-deal.com

Last updated: 23 March 2026