Privacy policy

PRIVACY POLICY 13.11.2023

Data Controller

Koppanen Laura Kirsikka 3101553-9

info@laurakoppanen.com

+358407198681

Contact Person Responsible for the Register

Laura Koppanen

info@laurakoppanen.com

+358407198681

Register Name

Laura Koppanen Ceramics Studio Customer Register

Legal Basis and Purpose of Processing Personal Data

The purpose of the register is to facilitate the delivery of online shop orders, maintain customer communication, and manage and develop customer and business relationships. Personal data is used within the limits permitted and required by the Personal Data Act. The register is not disclosed to external parties. The email addresses of newsletter subscribers are used for sending newsletters, and the information provided by those filling out the contact form is used to respond to inquiries.

Content of the Register

The personal register includes the following information:

  • First and last name of the individual
  • Mailing address
  • Email address
  • Phone number
  • Information about processed orders

Order tracking information IP addresses of website visitors and cookies essential for the service's functionality are processed based on legitimate interest, ensuring data security and collecting statistics on site visitors, in cases where they may be considered personal data. Consent is separately requested for third-party cookies.

Regular Sources of Information

The data stored in the register is obtained from the customer through messages sent via online forms, email, phone calls, social media services, contracts, customer meetings, and other situations where the customer provides their information. Information about contacts from businesses and other organizations may also be collected from public sources such as websites, directory services, and other companies.

Regular Disclosures of Data and Transfer of Data Outside the EU or EEA

Register information is not generally disclosed to other parties. Personal data may be disclosed only to authorities if required by mandatory legislation. The data controller may use subcontractors in the processing of personal data. To process your order effectively, we store information necessary for the transaction, such as your address and phone number, and transmit it to other companies responsible for the order and payment (such as logistics companies like Posti, Matkahuolto, etc., and payment processors and/or banks). Your information will not be disclosed to third parties unrelated to the transaction.

Principles of Register Protection

Care and appropriate data system protection are observed in processing the register. When register information is stored on internet servers, their physical and digital security is appropriately ensured. The data controller ensures that stored information, server access rights, and other information critical for the security of personal data are treated confidentially and only by employees whose job description includes such tasks.

Right to Inspection and Right to Request Correction of Information

Every individual in the register has the right to check the information stored about them in the register and request the correction of any incorrect information or completion of any incomplete information. If a person wants to check the information stored about them or request corrections, the request should be sent in writing to the data controller. The data controller may request the requester to prove their identity if necessary. The data controller responds to the customer within the time frame set by the EU General Data Protection Regulation (usually within a month).

Other Rights Related to the Processing of Personal Data

Individuals in the register have the right to request the deletion of their personal data from the register ("right to be forgotten"). Registered individuals also have other rights according to the EU General Data Protection Regulation, such as the right to restrict the processing of personal data in certain situations. Requests should be sent in writing to the data controller. The data controller may request the requester to prove their identity if necessary. The data controller responds to the customer within the time frame set by the EU General Data Protection Regulation (usually within a month).

Cookies

Cookies are used on the website. A cookie is a small text file that the browser stores on the user's device. Cookies are used for the operation of the site, visitor traffic monitoring, and targeted advertising. Cookies do not contain personal information. Necessary cookies are mandatory for the site's operation. They do not collect user information and are not used for marketing. If you want to block cookies, change your browser settings. More information about managing cookies in your browser can be found at http://aboutcookies.org/. Blocking the use of cookies may prevent your device from being tracked when you visit websites. Blocking cookies may also disrupt the operation of some sites.