Your email and message when you send a signal, our correspondence with you, and basic technical logs from your visit.
To reply, evaluate fit, run the lab, keep records, and protect the website.
No special-category data, payment data, passwords, or confidential datasets through this public site.
No analytics, no advertising pixels, no marketing cookies. If that ever changes, we will update this page first.
Who is responsible.
V is operated by V OÜ, an Estonian private limited company. We are the controller of personal data processed through v.ee and any V-controlled subdomains that link to this policy.
For privacy questions or requests, email [email protected]. If we appoint a separate data protection officer in future, we will update this page.
The data we handle.
The data map is short. Most of what V handles is the message you choose to send and our correspondence with you. The rest is technical operating data and, if a collaboration starts, the records that come with running it.
Please do not send special-category data, government identity documents, payment-card data, passwords, or confidential datasets through this public site unless we have agreed a secure channel first. If you do, we will treat the material as ordinary correspondence and may delete it.
Our reasons.
GDPR requires a legal basis for every use of personal data. Ours are simple.
Most of what V does — replying to signals, evaluating whether a collaboration fits, running the website securely, and keeping reasonable records — happens under our legitimate interest in running a credible lab and responding to people who reach out (Article 6(1)(f) GDPR).
When you send a request that could lead to a contract, we also rely on Article 6(1)(b) — steps before a contract or performing one. For invoices, taxes, and accounting, we rely on legal obligations under Estonian and EU law (Article 6(1)(c)).
We rely on your consent (Article 6(1)(a)) only where the law requires it, for example for optional email updates. You can withdraw consent at any time without affecting processing carried out before the withdrawal.
How we use intelligence.
V uses internal AI-assisted tools to triage inbound signals, summarise correspondence, draft replies, and connect a message to prior context. These tools support human review. They do not, on their own, make decisions about you with legal or similarly significant effects through v.ee.
If you would prefer a message not to be processed through AI-assisted tooling, say so in the message. We may still need to process basic contact and correspondence data to respond and to comply with the law.
How long we keep it.
When a retention period expires, we delete or anonymise the data, except where the law requires us to keep it longer.
What you can ask for.
Under GDPR, you have the right to:
- Ask what personal data we hold about you.
- Ask us to correct data that is wrong or incomplete.
- Ask us to delete data where the law allows deletion.
- Ask us to restrict or object to certain processing.
- Receive portable data where portability applies.
- Withdraw consent at any time, where processing is based on consent.
We respond to verified requests as soon as reasonably practicable, normally within one month. We may need to verify your identity before acting on certain requests, and we may decline or limit a request where the law permits — for example, where it would breach a legal obligation, undermine the rights of others, or jeopardise an ongoing matter.
If you are unhappy.
If you are unhappy with the way in which your personal data has been processed, you may, in the first instance, contact us at [email protected]. We will look into it.
If you remain dissatisfied, you have the right to apply directly to the Estonian supervisory authority — Andmekaitse Inspektsioon — for a decision. The supervisory authority can be contacted at aki.ee/en/inspectorate.