Privacy Policy
When ordering a product, you will be asked to provide your personal contact information. By placing an order, you agree that we will store such information in accordance with Wallark Oy's privacy policy in order to fulfill our customer agreement with you. According to the Finnish Personal Data Act (1999:523) on personal data, you have the right to know what information Wallark has registered about you. If the information is incorrect, incomplete or irrelevant, you can request that your information be corrected and/or deleted. In such a case, please contact us by email.
PRIVACY POLICY
Privacy policy in accordance with the EU General Data Protection Regulation (GDPR, 2016/679). The privacy policy also includes the information in the register description in accordance with Section 10 of the Personal Data Act (523/1999).
Wallark Oy is committed to protecting the privacy of its customers and follows good data protection practices in all its operations. In this privacy policy, we explain what personal data we may collect from you when you order our products or contact us through our website, and for what purposes we may use such data. The customer must accept the terms of this privacy policy before ordering from the online store.
1. Data Controller
Wallark Oy (“WallArk”)
Business ID: 2891294-1
Lönnrotinkatu 39 b 12
00180 Helsinki
Tel. +358 40 169 2442
2. Entity responsible for registry matters
You can ask more about data protection and the processing of personal data by email:
info@wallark.com
3. Register name
WallArk online store customer register
4. Purpose of the register
The register is used for the following purposes:
- Customer relationship management, such as order processing, delivery, warranty matters and invoicing
- Online store development, management and user experience improvement
- Customer communications, marketing and marketing targeting
The requirements of the EU General Data Protection Regulation are taken into account in the processing of personal data, and personal data is only processed based on the customer relationship between the customer and Wallark, the agreement, use of the website, the customer's express consent, or legal obligations.
5. Information contained in the register
The WallArk online store customer register contains the following information provided by the users themselves:
- First and last name
- Phone number
- Delivery information
- Payment/invoicing information
- Information on possible marketing permits and bans
- Product reviews
In addition, the register contains the following information observed from the use of the service or derived through analytics:
- Purchase history, including ordered products and their price information
- Terminal device identification data (IP addresses)
- Online store usage and browsing data
- Information collected through cookies (for example, how the customer came to the online store)
6. Regular sources of information
The data in the register consists mainly of information provided by the customer themselves on our websites. Personal data can also be collected separately via forms on the controller's website, at events and campaigns, and by telephone during customer service calls.
7. Transfer of data to third parties
WallArk discloses information to third parties, e.g. in payment transactions, deliveries and certain marketing purposes, in order to provide the service. Such third parties include:
- Transport companies, such as Posti and Matkahuolto
- Payment intermediaries when paying by card
- Credit intermediaries when paying by invoice or installments
- Email marketing partners like Klaviyo
- A recording application for sales and conversion optimization, such as Lucky Orange
These third parties are not allowed to use the information provided for their own purposes under any circumstances and are only provided with information that is relevant to the provision of the service. We do not disclose, sell or rent your information to third parties.
In addition, WallArk has the right/obligation to disclose personal data to authorities to fulfill their requests for information.
8. Transfer of data outside the EU or the European Economic Area
WallArk's online store partner uses servers located outside the EU (Canada/USA) to store the register data. Otherwise, WallArk does not transfer the register data outside the European Union or the European Economic Area unless it is necessary for the implementation of the service. If data is transferred outside the EU/EEA, an adequate level of personal data protection is ensured in accordance with applicable legislation.
9. Principles of register protection
The databases related to the register are protected against external data breaches by firewalls, passwords and other technical means. The databases and their backups are located in locked premises. Only identified employees of the controller and companies acting on its behalf and on its behalf have access to the information contained in the register with personal access rights granted by the controller.
10. Rights of the data subject
Data subjects have the following rights:
- The right to inspect personal data concerning oneself
- Right to rectification of data
- Right to restriction of processing (for example, the right to object to marketing)
- Right to object to processing
- The right to withdraw consent (for example, the right to withdraw consent to marketing)
- Right to lodge a complaint with a supervisory authority
In order to exercise the rights of the data subject, a request for inspection, prohibition, etc. must be sent to the email address of the party responsible for the registration matters and must be in writing and signed. Regarding inspection requests, the data controller may charge a reasonable fee for providing the information if the data subject exercises his or her right to inspect more than once a year.
It should also be noted that in certain cases, the exercise of the data subject's rights may be restricted by official regulations/legislation that impose requirements, for example, for the retention of accounting documents.
11. Data retention
We will only retain your personal information for as long as necessary to fulfill the purposes described in this privacy policy. The Finnish Accounting Act imposes obligations for longer-term storage of information.
12. Use of cookies
A cookie is a small text file that the browser stores on the user's terminal device. Cookies contain a unique identifier that can be used to identify users. Our online service uses cookies to provide our service as user-friendly and of the highest quality as possible, and to further develop it. The user cannot be identified using cookies alone.
There are two types of cookies, permanent and temporary (session cookies). Permanent cookies are stored as a file on your computer or mobile device, but never for longer than 12 months. Session cookies are stored temporarily and disappear when you end your browsing session. You can easily delete cookies from your computer or mobile device using your browser. You can find instructions on how to use and delete cookies in the "Help" section of your browser. You can turn off cookies or choose to receive information each time a new cookie is sent to your computer or mobile device. NOTE! If you turn off cookies, you will not be able to take advantage of all the features of the website.
13. Changes to the Privacy Policy
Due to the development of services and changes in legislation, we reserve the right to change the privacy policy. Registered customers will be notified of significant changes to the privacy policy when the terms are updated.