Privacy Policy

 

Last Updated: September 21, 2025

 

At Zeniith International Investments OÜ (“we,” “our,” “us”), your privacy and the confidentiality of your information are of the highest importance. This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with the General Data Protection Regulation (GDPR), UK GDPR, Canadian PIPEDA, and U.S. state privacy laws including the California Consumer Privacy Act (CCPA/CPRA).

 

By using our services or website, you agree to the terms described in this Policy.

 

 

1. Information We Collect

 

We may collect and process the following categories of information:

 

• Personal Identifiers: Name, email address, phone number, billing details, address, ID numbers (if legally required).

• Professional Information: Employment details, investment-related information you share during valuation services.

• Financial Information: Payment information processed via trusted third-party providers.

• Technical Data: IP address, browser type, device identifiers, cookies, and usage data.

• Communications: Information from consultations, forms, and correspondence.

 

We do not knowingly collect information from children under 18.

 

 

2. How We Use Your Information

 

We use your personal information only for legitimate business and legal purposes, including:

 

• Providing, improving, and customizing valuation services and reports.

• Communicating with you regarding services, updates, and support.

• Processing payments, invoicing, and account administration.

• Complying with legal, regulatory, and professional obligations.

• Detecting, preventing, and addressing fraud, security, or technical issues.

• Marketing our services (with your consent, where required).

 

 

3. Legal Basis for Processing (GDPR/UK GDPR)

 

We process your personal data under one or more of the following lawful bases:

 

• Consent (where you have given it).

• Contract performance (to deliver our services).

• Legal obligations (e.g., accounting, tax, regulatory compliance).

• Legitimate interests (to operate securely and efficiently, provided your rights are not overridden).

 

 

4. Sharing of Information

 

We do not sell your personal data. We may share data only with:

 

• Trusted service providers (e.g., cloud hosting, secure payment processors, communication tools).

• Legal and regulatory authorities (where required by law).

• Professional advisers (accountants, auditors, legal counsel under confidentiality obligations).

 

All third parties must provide adequate safeguards for your data.

 

 

5. International Data Transfers

 

As an Estonian entity operating in Canada with clients worldwide, your personal data may be transferred outside the European Economic Area (EEA). Where this occurs, we implement safeguards such as Standard Contractual Clauses (SCCs) or other lawful mechanisms to protect your data.

 

 

6. Data Retention

 

We retain personal data only as long as necessary for the purposes described in this Policy, including legal, accounting, or reporting requirements. Retention periods are reviewed regularly.

 

 

7. Your Rights

 

Depending on your jurisdiction, you may have the following rights:

 

 

Under GDPR/UK GDPR:

 

• Access, rectify, or erase your personal data.

• Restrict or object to processing.

• Data portability.

• Withdraw consent at any time.

• File a complaint with the Estonian Data Protection Inspectorate or your local authority.

 

 

Under CCPA/CPRA (California residents):

 

• Request disclosure of categories and specific pieces of personal data collected.

• Request deletion of your data.

• Opt-out of the sale or sharing of personal data (we do not sell personal data).

• Non-discrimination for exercising your privacy rights.

 

 

Under PIPEDA (Canada):

 

• Access and correct personal data.

• Withdraw consent, subject to legal and contractual restrictions.

• Expect accountability and transparency in how your data is handled.

 

 

8. Cookies and Tracking

 

Our website uses cookies and similar technologies for:

 

• Site functionality and performance.

• Analytics and service improvement.

 

You may disable cookies in your browser settings, but certain features may not function properly.

 

 

9. Data Security

 

We employ administrative, technical, and organizational safeguards to protect your personal data against unauthorized access, disclosure, alteration, or destruction. While no method of transmission or storage is 100% secure, we apply industry-standard protections.

 

 

10. Children’s Privacy

 

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal information from minors.

 

 

11. Changes to This Policy

 

We may update this Privacy Policy from time to time. The most current version will always be posted on our website with a revised “Last Updated” date.

 

 

12. Contact Information

 

For any privacy-related inquiries or to exercise your rights, please contact us at:

 

Zeniith International Investments OÜ

Business Registry Code: 17197739

Email: info@zeniithinvestments.com

Registered Office: Harju maakond, Tallinn, Kesklinna linnaosa, Narva mnt 5, 10117, Estonia