top of page
Privacy Policy

​

This page describes the requirements pursuant to Sections 10 and 24 of the Finnish Personal Data Act (523/1999) and Articles 12 and 13 of the EU General Data Protection Regulation (679/2016, GDPR), which are generally applied to all personal data processing in this service.

​

Data Controller

​

Company / Register Owner:

  • Name: T2e Finland Oy

  • Business ID: 3430125-8

  • Address: Saarenkärjenkatu 15 D 22, 33300 Tampere, Finland

Contact Person:

​

Whose Data Is Collected?

​

We collect, process, use, and modify personal and company data of visitors to the service for purposes such as customer relationship management, service delivery, direct marketing, remote sales, and customer communications. Data may also be used for statistical analysis and business development.

​

Categories of Personal Data Processed

​

Visitors:

  • IP address

  • Metadata related to the device used to access the service

  • Gender, age, country, time of visit, and site navigation path

Registered Users:

  • Full name

  • Email address

  • Phone number

  • Preferred language

  • Service usage data (messages, order history, purchases)

​

Third Parties / Systems Involved in Data Processing

​

We ensure that all our service providers comply with data protection legislation. Regularly used service providers include:

  • Wix

  • Shopify

  • ActiveCampaign

​

User Rights Regarding Personal Data

​

Under the GDPR, users have the right to exercise the following actions regarding their personal data. All requests must be directed to the contact person listed above.

  • Right to access

  • Right to object

  • Right to erasure ("right to be forgotten")

  • Right to lodge a complaint

  • Right to object to direct marketing

​

Data Security

​

We use both technical and organizational measures to protect personal data against unauthorized access, disclosure, destruction, or other unlawful processing.

​

Technical Measures:

  • Use of secure server solutions

  • Firewalls

  • Encryption of web traffic and data

  • Secure key management

  • Monitoring of system access

​

Organizational Measures:

  • Use of secure devices

  • Access control

  • Controlled assignment and monitoring of user permissions

  • Staff training

  • Careful selection of subcontractors

  • All data processors are bound by confidentiality agreements

​

Regular Data Disclosures

​

Data will not be disclosed outside of the service unless explicitly mentioned in this document or required by law.

  • Analytics cookies (e.g., Google Analytics) are used to improve website performance

  • Targeting/Advertising cookies (e.g., Facebook, Google) are used for cost-effective advertising. These do not contain identifiable personal data.

​

Data Transfers Outside the EU/EEA

​

As a rule, personal data is not transferred outside the EU or EEA. In cases where such transfers occur, we ensure an adequate level of data protection through one of the following mechanisms:

  • Use of the European Commission’s Standard Contractual Clauses (SCCs)

  • The data processor is a certified participant in the Trans-Atlantic Data Privacy Framework (TADPF)

​

Data Retention

​

We retain user data only as long as necessary to fulfill the purposes described above, and always in accordance with applicable laws and regulations.

bottom of page