✈️ Europe just got hotter 🔥 Lower shipping rates 💛 €15 Sweden, Denmark and Germany · €18 for the rest of EU · €35 worldwide ❤️
Your cart

Privacy policy

 

Taiga Colors

GENERAL DATA PROTECTION REGULATION

Updated: 1.3.2020

Our company records and processes personal data as required by the EU Data Protection Regulation GDPR.

The content of this privacy statement may be changed by publishing a new version online. Therefore, we recommend that you review our Privacy Statement regularly.

 

Data controller:

Company name: Kuuretki

Business ID: FI18703118

Address: c/o Taiga Colors, Vuorikatu 16, Porvoo, Finland

Telephone: +358 40 569 4098

 

Person responsible for the register:

Name: Jutta Kuure

Email: jutta.kuure@taigacolors.fi

Name of the register:

Register for customer information and customer relations

 

Grounds for processing

The retention of information contained in the register is based on either the customer relationship with our company, the consent of the individual to record the information, or the legitimate interest of our company to collect information in the context of our business.

We collect and store information about potential new customers based on customer relationships or business activities. Collecting new potential customer data is related to only business-related data and we collect the data ourselves.

 

Purpose of Use of Personal Information

We process personal information for customer relationship management, analysis, and marketing.

Our business is based on legitimate business, so we also comply with EU legislation on the storage of personal data:

 

-          The information we store about a person is lawful, reasonable, and transparent with respect to processing.

-          Information has a purpose-related nature - for example, the information we collect about individuals is only for a specific purpose. We will not disclose your information to third parties unless there is heavy reason to do so.

-          We minimize the information we store - we only store what is necessary.

-          We strive to keep our information accurate.

-          We limit the retention of information - the information has a defined lifetime, after which it is either automatically or routinely deleted unless there is a legal reason for retention.

-          We store intact and reliable information, for example backed up by backups.

 

Contents of the register (fields of personal data forms)

First and last name

Contact information

Other textual information related to the customer relationship

Marketing permission or prohibition

Information collected through cookies

We record a minimum amount of customer relationship information, typically including a person's unique name, possibly company, and contact information such as email and phone number. Customers also have  purchase history.

 

Data sources

Mainly information provided by the person himself, for example, when buying from an online store or subscribing to a newsletter. In addition, for business purposes, we may use names such as those picked from the media and the web, which we can contact in a business sense, to acquire new customers.

 

Disclosure and transfer of information

Information may be disclosed, at the controller's discretion, to our partners within the limits allowed by applicable law, unless the data subject has opposed disclosure. Disclosure of information to partners is for purposes that support the registry's mission statement.

We will make limited disclosures of personal information to other parties - this in practice means:

We use MailChimp for email marketing. Only the name, company and email address are stored.

 

Disclosure of information outside the EU or the EEA

 

Information will not be disclosed to parties operating outside the territory of the Member States of the European Union or the European Economic Area.

Information is provided to services that are located outside the territory of the Member States of the European Union or the European Economic Area. The transfer of data is subject to the requirements of data protection law and we share these services with the principles of data minimization and risk mitigation.

 

Registry protection

Only identified employees of the controller and of companies acting on behalf of and for the account shall have access to the information contained in the register.

 

The right of inspection

Individuals have the opportunity to check their own information in the registry by contacting our customer service or registry contact.