Privacy Policy

Last updated: March 15, 2026

Atbion OÜ ("Atbion", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website atbion.com and use our services.

1. Information We Collect

We collect information you provide directly to us, such as when you create an account, fill out a contact form, subscribe to our newsletter, or communicate with us. This may include:

  • Full name
  • Email address
  • Password (encrypted)
  • Messages and communications
  • Any other information you choose to provide

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process and complete transactions
  • Send you technical notices and support messages
  • Respond to your comments, questions, and requests
  • Monitor and analyze trends, usage, and activities
  • Detect, investigate, and prevent security incidents

3. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Contractual necessity — to provide our services to you
  • Legitimate interests — to improve and secure our services
  • Consent — for marketing communications and cookies
  • Legal obligation — to comply with applicable laws

4. Data Recipients and Third-Party Services

We share your personal data with the following categories of recipients to operate our services:

  • Amazon Web Services (AWS) — cloud hosting and infrastructure (EU-West-1 region). AWS acts as a data processor under Standard Contractual Clauses (SCCs).
  • MongoDB Atlas — database services. Data is stored in AWS EU-West-1. MongoDB Inc. acts as a data processor under SCCs.
  • Google reCAPTCHA — fraud prevention on forms. Google may process data in the United States under the EU-US Data Privacy Framework.

Some of our service providers may process data outside the European Economic Area (EEA). In such cases, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission or adequacy decisions.

5. Cookies

We use cookies and similar tracking technologies on our website. For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Account data is retained while your account is active and for 30 days after deletion.

7. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you.

8. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of access — request a copy of your personal data
  • Right to rectification — correct inaccurate data
  • Right to erasure — request deletion of your data
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

To exercise any of these rights, please contact us at hello@atbion.com.

9. Supervisory Authority

If you believe that our processing of your personal data violates data protection laws, you have the right to lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon):

Andmekaitse Inspektsioon
Tatari 39, Tallinn 10134, Estonia
Email: info@aki.ee
Website: www.aki.ee

10. Contact Us

If you have any questions about this Privacy Policy, please contact us:

Atbion OÜ
Ahtri tn 12, Kesklinna linnaosa
Tallinn 15551, Harju maakond, Estonia
Email: hello@atbion.com