Privacy + GDPR Policy

At the Office of Displaced Designers (ODD), we are committed to protecting the privacy and personal data of our partners, volunteers, and program participants. As a small Estonian non-profit association bound by EU legislation on GDPR (General Data Protection Regulation), we adhere to strict guidelines to ensure compliance and safeguard individual rights.

Collection and Use of Personal Information:

  • We collect personal information only when necessary for legitimate purposes, such as conducting background checks on partners and processing applications from volunteers and program participants.

  • Personal information collected may include but is not limited to names, contact details, professional backgrounds, relevant qualifications and other information relating to identity and personal requirements.

  • In accordance with applicable laws and regulations, we use personal information solely for the purposes for which it was collected.

Data Security and Confidentiality:

  • We implement appropriate technical and organisational measures to protect personal information from unauthorised access, disclosure, alteration, or destruction.

  • Access to personal information is restricted to authorised personnel who require it for legitimate purposes only.

Data Retention and Disposal:

  • We retain personal information only for as long as necessary to fulfil the purposes for which it was collected or as required by law.

  • Personal information that is no longer needed is securely disposed of to prevent unauthorised access or misuse.

Rights of Individuals:

  • Individuals have the right to access, correct, or request deletion of their personal information held by ODD.

  • Individuals have the right to withdraw consent for the processing of their personal information at any time, where applicable.

Third-party Disclosure:

  • We do not disclose personal information to third parties unless required by law or with explicit consent from the individual concerned.

  • When engaging third-party service providers that process personal information on our behalf, we ensure they comply with GDPR requirements and provide adequate protection for personal data.

Updates to Privacy Policy:

  • This Privacy and GDPR Policy may be updated periodically to reflect changes in legal or regulatory requirements or our organisational practices. Updates will be communicated appropriately.

By adhering to this Privacy and GDPR Policy, ODD strives to maintain the trust and confidence of our partners, volunteers, and program participants while fulfilling our obligations under GDPR and other applicable privacy laws.


Date of Adoption: [5th April 2024]

Next Review Date: [10th January 2025]