Estonian Holidays

Privacy policy

Last updated: 23 April 2026

In short

eestipühad.ee does not collect personal data, does not use Google Analytics, does not share data with ad networks or any other third parties. You can use the site freely without any cookie prompts.

If you send a message through the contact form, we forward it to us as an email — described below.

1. Data controller

Name: Peeter Link
Legal status: individual (not a company)
Location: Tallinn, Estonia
Contact for data protection matters: via the contact form at https://eestipühad.ee/en/about/

2. What data is collected

2.1 Automatic technical information (logs)
The site's technical infrastructure (Cloudflare) briefly logs the following for each visit: IP address, timestamp, URL requested, browser User-Agent, referrer. This data ensures security and service functionality (DDoS protection, load balancing, error resolution). Cloudflare's privacy policy defines retention. No user profiles are built from these logs; no marketing or analytics use.
2.2 Visit statistics (Cloudflare Web Analytics)
We use Cloudflare Web Analytics — server-based statistics that don't use cookies and don't store anything in your browser. Collected: visits per page, country (high-level from IP), browser type, referring page. Not stored: IP, unique user ID, browser fingerprints.
2.3 Contact form
When you send a message via the contact form, we collect: name (to address you), email (to reply), message content, IP address (briefly — anti-spam), Cloudflare Turnstile security check.
The message is forwarded via Cloudflare Email Routing to the data controller as an email. The reply goes to the email address you entered. The site itself does not store message content. The IP address is kept in Cloudflare KV for 24 hours (rate limiting), then automatically deleted.
2.4 What we do NOT collect
  • Google Analytics — not used
  • Google AdSense or other ad networks — not used
  • Facebook / Meta pixel — not used
  • Remarketing cookies — not used
  • Newsletter / subscription list — does not exist
  • User accounts / login — not present

3. Third parties

3.1 Cloudflare Inc.
Role: data processor (hosting, CDN, DDoS protection, web analytics, email routing, security check). Location: San Francisco, California, USA + EU servers. Privacy policy.
3.2 Cloudflare Email Routing
Role: forwarding contact form messages to the data controller as email. Receives: form content + sender IP. Retains: email passes through Cloudflare servers; no storage (routing only).
3.3 Cloudflare Turnstile
Role: bot protection on the contact form. How it works: analyzes browser behaviour in the background, blocks automated requests. Uses cookies: no (cookie-less CAPTCHA). More info.
3.4 Other third parties
None. No other external services are involved in the site's operation.

4. Your rights

Under GDPR (EU General Data Protection Regulation, Regulation 2016/679) you have the following rights:
  • Access — find out what data is held about you
  • Rectification — correct incorrect information
  • Erasure ("right to be forgotten")
  • Restriction of processing
  • Data portability
  • Objection to processing
  • Contesting automated decisions (not applicable — we don't make automated decisions)
To exercise these rights, contact us via the contact form. We respond within one month.

5. Cookies

The site itself does not set any cookies. No functional, analytics, or advertising cookies.
The browser may store a local cookie or LocalStorage item: user theme preference (light/dark). This info does not travel to the server.

6. Supervisory authority

The Estonian Data Protection Inspectorate (AKI) is the supervisory authority where you can file a complaint about data processing:
Website: https://www.aki.eeEmail: [email protected]Address: Tatari 39, Tallinn 10134, Estonia

7. Policy changes

When the privacy policy is updated, the "Last updated" date above will change. Significant changes are clearly described.
Policy history: first version published on 23 April 2026.