1. Data controller
The data controller for personal data processed through RMT.GG is RMT Technologies OÜ (trading as RMT.GG).
Tornimäe tn 5 10145 Tallinn, Kesklinna linnaosa, Harju maakond Estonia
Registry code: 17535722 (Estonian Commercial Register: https://ariregister.rik.ee/est/company/17535722)
For privacy-related requests, contact us at [email protected].
2. Data we collect
We may collect: account and profile data (e.g. email, username, locale); transaction and wallet data; order and listing content; messages sent through the Platform; technical data (IP address, device/browser type, logs); cookies and similar technologies; and support communications.
3. Legal bases for processing (GDPR)
Where the GDPR applies, we rely on: performance of a contract (providing the marketplace); legitimate interests (security, fraud prevention, service improvement, analytics where allowed); consent (where required, e.g. certain marketing or non-essential cookies); and legal obligations (tax, accounting, law enforcement requests).
4. How we use your data
We use data to operate accounts, process orders and payments, facilitate chat, prevent abuse, personalize the experience, communicate service messages, comply with law, enforce our terms, and improve the Platform.
6. International transfers
We may process data in the European Economic Area and other regions where we or our providers operate (e.g. Cloudflare, hosting). Where data is transferred outside the EEA, we use appropriate safeguards such as Standard Contractual Clauses or adequacy decisions where required.
7. Retention
We retain data as long as your account is active and as needed to provide the service. After closure, we may retain certain records (e.g. invoices, dispute logs) for legal, tax, and accounting periods required by law.
9. Your rights
Depending on your location, you may have rights to access, rectify, erase, restrict processing, object, data portability, and withdraw consent. You may lodge a complaint with a supervisory authority.
To exercise rights, contact us using the details below. We may need to verify your identity.
10. Security
We implement technical and organizational measures appropriate to the risk, including access controls and encryption in transit where applicable. No method of transmission or storage is 100% secure.
11. Children
The Platform is not directed at children under 16 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children.
12. Changes to this Policy
We may update this Policy and will post the revised version with an updated date. Significant changes may require additional notice where required by law.
13. Contact
For privacy questions or requests: [email protected]
You may also contact the data protection authority in your country.