Register statement | Small Design Shop

Register statement

Privacy and Cookie Policy

Our customers privacy and data security is very important for us. To run our business and keep our customers informed our new products and events, we need to collect personal information. In order to be confident that your personal information is safe, we will transparently explain how we collect and use your personal information in this leaflet.

Small Design Helsinki Oy collects personal information for customer relationship management and the development of our business. In this register and privacy statement, we’ll tell you how we are collecting information and how to store it. Providing your personal information is need in order of ordering our products.

This Register and Privacy statement applies only to the Register and operation of Small Design Helsinki Oy. We also use third party services which are decribed in detail in the section of third party services.

Register and Privacy Statement

Register owner

Small Design Helsinki Oy (VAT FI28813863)
Kiviportintie 38 B
FI-00950 Helsinki
Finland

e-mail: info@smalldesign.fi

The person in charge of registry issues

Laura Seise, info@smalldesign.fi

Legal basis and the use of peronal data

The processing of personal data is based on the customer relationship or agreement, the consent or other legitime interest.

Providing personal data is a prerequisite for a contractual relationship. Therefore, you can not order or purchase our products unless you disclose your personal information. You may also give consent of processing your personal information for example by subscribing to a newsletter even if you are not yet customer.

The purpose of processing personal information is to manage and maintain customer relationship, marketing, market analysis and business development.

Data content of the register

We collet the following information

  • Customer-provided or personaly identifying inforation such as the person name, contact information (phone number, email address, address), date of birth, or personal identity number.
  • Registration information such as username, password or any other unique identifyer
  • Possible permissions
  • Contractual information such as billing and payment information, product and order information, customer feedback and contact information.
  • Information related to communication and access to services, such as browsing and paging information, network IP address, cookies and IDs / profiles on social media services.

We mainly collect information directly from the user, but we may get more information from our partner agencies, such as a credit provider. We collect information about using our services on our website using cookies.

The information contained in the register is maintained as long as the customer relationship can be considered valid and within reasonable tme after its expiry. In addition, some data can be kept longer in order to meet the obligations of legislation such as the accounting act.

Regular sources of information

We mainly collect information directly from the user, but we also collect information about the use of online and electronic services technically, third-party analytics services such as Google Analytics, public data sources or public contact information service providers.

Regular transfer of information or transfer information outised the EU/EEA territory

The information in the register is used for Small Design Helsinki Oy’s operations. We do not regularly disclose information to third parties. However, transferring information is possible for justified use.

We also use third-party services that collect information on their own servers and some data also passes EU / EEA outside the area. You can read more about these services in section third-party services.

Principles of registry protection

Careful handling of the registry is ensured and data processed by the information systems is adequately protected. When keeping records on Internet servers, the physical and digital security of their hardware is handled appropriately. The controller shall ensure that stored data, server access rights and the other critical data related to the security of personal data are processed confidentially and only by the persons whose job description it belongs.

Our site uses an SSL-protected connection.

The right of inspection and the right to demand correction

Everyone in the register has right to check their own records stored in the register and to request rectification.

The request shall be submitted to the registry administrator either in writing or electronically and must be sufficiently identified to ensure identity.

Other rights related to the processing of personal information

The person on the register has:

  • the right to request the deletion of his / her data from the register. Please note that we can only delete this information if we do not have statutory obligations to continue processing your personal data.
  • the right to withdraw his / her consent of the processing of personal data.
  • the right to prohibit the use of personal information for marketing purposes, such as direct marketing, distance selling or market research.

The request shall be submitted to the registry administrator either in writing or electronically and must be sufficiently identified to ensure identity.

Third Party Services

We use third-party services, which store information on their own servers. This Registry and Privacy Statement applies only to our own register, but we want to inform you transparently about the services we use that you may encounter on our site. All non-Eu third-party service providers are certified Privacy Shield, which are bound by the EU data protection regulation by singing the Privacy Shield agreement.

The payout for the online payment is Paytrail and Paypal. These services collect payment and identification information and delivers customer contact information also for our customer service. Learn more about Paytrail’s privacy practices at https://www.paytrail.com/en/data-privacy-notice and about Paypal’s privacy practices at https://www.paypal.com/fi/webapps/mpp/ua/privacy-full

When sending newsletters, we use the MailChimp service. When you subscribe to a newsletter, your email will be saved to the MailChimp server through which newsletters will be sent. For more information about MailChimp Privacy Policy visit at https://mailchimp.com/legal/

In commenting, we use Disqus service. If you comment on texts in our blog, you use Disqus and the information you enter is stored on their server. You can read their Privacy Policies at https://help.disqus.com/terms-and-policies

We use third-party services that use cookies. In this case, cookie information will be shared with a third-party services, such as Google and Oracle. This information goes outside the EU / EEA area. Read more about Cookie Policy under section Cookies.

Cookies

Our site use cookies. So when you visit our site, we may send a cookie to your computer. Cookies are small text files that collect common internet log information and visitor behavior information. This information is used to monitor the use of the website and to generate statistical reports about site behavior.

You may want to prevent your browser accepting cookies and removing cookies from your computer. However, if you do not accept cookies, you will not be able to access all of your browser’s features , and our site may not work properly. For more information about cookies and preventing their use, visit http://www.youronlinechoices.eu

We use also third-party services, such as Google Analytics and AddThis, that use cookies for analytics data. To see their Privacy Policies, visit:
https://policies.google.com/technologies/partner-sites?hl=en
http://www.addthis.com/privacy/privacy-policy

The information used in the analysis is anonymous whenever possible.

Created on 18th of May 2018