Privacy Policy
Last updated: April 2026
1. Who We Are
CAVIC Digital OÜ ("CAVIC Digital", "we", "us", "our") is a company registered in Estonia (registry code 17418436), headquartered in Tallinn, Estonia. We operate the website cavicdigital.com and publish digital and print content including books, educational materials, and technology-related resources.
Contact: info@cavicdigital.com
2. What This Policy Covers
This Privacy Policy explains how we collect, use, store, and protect personal data when you visit our website, purchase our products, subscribe to our communications, or otherwise interact with us.
This policy applies to all visitors and users regardless of location. We comply with the European Union General Data Protection Regulation (GDPR) as an EU-registered entity, and with the California Consumer Privacy Act (CCPA) for users located in California, United States.
3. Data We Collect
We may collect the following categories of personal data:
- Identity data: name, email address, and professional title when you voluntarily provide them through contact forms, purchases, or email subscriptions.
- Technical data: IP address, browser type, operating system, device information, and approximate geographic location as determined by IP address.
- Usage data: pages visited, time spent on pages, referral source, and interaction patterns on our website.
- Transaction data: purchase history and payment confirmation details when you buy our products through third-party payment processors. We do not store credit card numbers or full payment details on our systems.
- Communication data: messages you send us via email or contact forms, and your communication preferences.
4. How We Use Your Data
- To deliver products and services you have purchased or requested.
- To respond to inquiries and provide customer support.
- To send marketing communications (only with your explicit consent; you may unsubscribe at any time).
- To analyze website usage and improve our content and user experience.
- To comply with legal obligations and protect our legitimate interests.
5. Legal Basis for Processing (GDPR)
Under the GDPR, we process personal data based on one or more of the following legal bases:
- Consent: where you have given clear consent for us to process your data for a specific purpose.
- Contract: where processing is necessary for the performance of a contract with you (e.g., delivering a purchased product).
- Legitimate interest: where processing is necessary for our legitimate business interests, provided these do not override your fundamental rights.
- Legal obligation: where processing is necessary to comply with applicable law.
6. Your Rights Under GDPR
If you are located in the European Economic Area (EEA), you have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your data ("right to be forgotten").
- Restrict or object to processing of your data.
- Request data portability.
- Withdraw consent at any time.
To exercise any of these rights, contact us at info@cavicdigital.com. We will respond within 30 days.
7. Your Rights Under CCPA
If you are a California resident, you have the right to:
- Know what personal information we collect and how it is used.
- Request deletion of your personal information.
- Opt out of the sale of personal information. We do not sell personal information.
- Non-discrimination for exercising your privacy rights.
To exercise your CCPA rights, contact us at info@cavicdigital.com.
8. Cookies and Tracking
Our website uses cookies and similar technologies to enhance your experience. These include:
- Essential cookies: required for the website to function properly.
- Analytics cookies: used to understand how visitors interact with our website. We use privacy-respecting analytics to measure aggregate usage patterns.
You can control cookie preferences through your browser settings. Disabling certain cookies may affect website functionality.
9. Third-Party Services
We use third-party services for website hosting, analytics, email delivery, and payment processing. These providers process data on our behalf under contractual obligations to protect your data. We do not share personal data with third parties for their own marketing purposes.
10. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes described in this policy, or as required by law. When data is no longer needed, it is securely deleted or anonymized.
11. International Transfers
As an EU-registered company, we store data primarily within the European Economic Area. Where data is transferred outside the EEA (e.g., to service providers in the United States), we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.
12. Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
13. Children's Privacy
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly.
14. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when the most recent changes were made. We encourage you to review this policy periodically.