Privacy Policy
Last Updated:
1. Introduction
Trixelarnlox is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website or use our services. We comply with the General Data Protection Regulation (GDPR) and Finnish data protection laws. By accessing or using our website, you acknowledge that you have read and understood this Privacy Policy.
2. Information We Collect
We collect various types of information to provide and improve our services to you. The categories of information we collect include:
Personal Identification Information: When you contact us through our website forms, register for workshops, or make inquiries, we may collect your name, email address, phone number, and any other information you voluntarily provide. This information is necessary for us to respond to your requests and provide the services you seek.
Technical Information: We automatically collect certain technical information when you visit our website, including your IP address, browser type and version, operating system, referring URLs, pages viewed, time spent on pages, and other diagnostic data. This information helps us understand how visitors use our website and allows us to improve functionality and user experience.
Cookies and Tracking Technologies: We use cookies and similar tracking technologies to track activity on our website and store certain information. Cookies are small data files stored on your device that help us recognize you and remember your preferences. You can control cookie settings through your browser preferences.
3. How We Use Your Information
We use the collected information for various legitimate business purposes, including:
Service Provision: To respond to your inquiries, process your requests, provide customer support, and deliver the products or services you have requested. This includes communicating with you about workshop registrations, product availability, and order status.
Website Improvement: To analyze how users interact with our website, identify areas for improvement, optimize user experience, and develop new features and functionality. We use analytics to understand visitor behavior and preferences.
Communication: To send you important information about our services, updates to our policies, promotional materials about products and workshops that may interest you, and responses to your questions. You can opt out of marketing communications at any time.
Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests. We may also use your information to enforce our terms and conditions, protect our rights and property, and ensure the safety of our users.
Security and Fraud Prevention: To detect, prevent, and address technical issues, fraudulent activities, and potential security threats to our website and services.
4. Legal Basis for Processing
Under GDPR, we process your personal data based on the following legal grounds:
Consent: When you provide explicit consent for us to process your personal data for specific purposes, such as subscribing to newsletters or submitting contact forms. You have the right to withdraw your consent at any time.
Contractual Necessity: When processing is necessary to fulfill a contract with you or to take steps at your request before entering into a contract, such as processing workshop registrations or product inquiries.
Legitimate Interests: When we have a legitimate business interest in processing your data, such as improving our services, conducting analytics, and ensuring website security, provided that your rights and interests do not override these interests.
Legal Obligation: When we are required to process your data to comply with legal obligations, such as tax laws, accounting requirements, or responding to lawful requests from authorities.
5. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. However, we may share your information in the following circumstances:
Service Providers: We may share your information with trusted third-party service providers who assist us in operating our website, conducting our business, or servicing you. These providers are contractually obligated to keep your information confidential and use it only for the purposes we specify. Examples include hosting providers, email service providers, and analytics services.
Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities, such as court orders, subpoenas, or government investigations. We will only disclose the minimum amount of information necessary to comply with such requests.
Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change and the choices you may have regarding your information.
Protection of Rights: We may disclose your information when we believe it is necessary to protect our rights, property, or safety, or the rights, property, or safety of others, including investigating potential violations of our terms and conditions.
6. Data Security
We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:
Encryption: We use SSL/TLS encryption to protect data transmitted between your browser and our servers. Sensitive information is encrypted both in transit and at rest.
Access Controls: We restrict access to personal information to employees, contractors, and service providers who need to know that information to process it on our behalf. All such individuals are subject to strict confidentiality obligations.
Regular Security Assessments: We conduct regular security audits and vulnerability assessments to identify and address potential security risks.
Secure Infrastructure: Our servers and databases are hosted in secure facilities with physical and electronic safeguards.
However, no method of transmission over the internet or electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
7. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. The retention period varies depending on the type of information and the purpose for which it was collected:
Contact Form Submissions: We retain contact form data for up to 3 years from the date of submission, unless you request earlier deletion or we need to retain it for legal purposes.
Workshop Registrations: Registration information is retained for the duration of the workshop and up to 2 years afterward for record-keeping and potential future communications.
Technical Data: Server logs and analytics data are typically retained for 12-24 months for security and analytical purposes.
When personal information is no longer needed, we securely delete or anonymize it in accordance with our data retention policies and applicable laws.
8. Your Rights Under GDPR
If you are a resident of the European Economic Area (EEA), you have certain data protection rights under GDPR:
Right of Access: You have the right to request copies of your personal data. We may charge a reasonable fee for additional copies.
Right to Rectification: You have the right to request correction of any information you believe is inaccurate or completion of information you believe is incomplete.
Right to Erasure: You have the right to request deletion of your personal data under certain conditions, such as when the data is no longer necessary for the purposes for which it was collected.
Right to Restrict Processing: You have the right to request restriction of processing your personal data under certain conditions, such as when you contest the accuracy of the data.
Right to Data Portability: You have the right to request transfer of your data to another organization or directly to you in a structured, commonly used, and machine-readable format.
Right to Object: You have the right to object to our processing of your personal data under certain conditions, particularly for direct marketing purposes.
Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.
To exercise any of these rights, please contact us using the information provided in the Contact section below. We will respond to your request within one month, though this period may be extended by two additional months in complex cases.
9. International Data Transfers
Your information may be transferred to and maintained on computers located outside of your country or jurisdiction where data protection laws may differ. If you are located outside Finland and choose to provide information to us, we transfer your data to Finland and process it there. By submitting your information, you consent to this transfer. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable laws.
10. Children's Privacy
Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from children without verification of parental consent, we will take steps to remove that information from our servers.
11. Third-Party Links
Our website may contain links to third-party websites, services, or applications that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We strongly advise you to review the privacy policy of every site you visit. This Privacy Policy applies only to information collected through our website.
12. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time. When we make changes, we will update the "Last Updated" date at the top of this page. If we make material changes to how we treat your personal information, we will notify you through a prominent notice on our website or by email. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website after any changes indicates your acceptance of the updated Privacy Policy.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Trixelarnlox
Aleksanterinkatu 52
00100 Helsinki, Finland
Phone: +358 9 1211
Email: managers@trixelarnlox.world
You also have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your habitual residence, place of work, or place of the alleged infringement if you believe that the processing of your personal data violates GDPR.
14. Cookie Policy
Our website uses cookies to distinguish you from other users and provide you with a better experience. Cookies are small text files that are placed on your device when you visit our website. We use the following types of cookies:
Essential Cookies: These cookies are necessary for the website to function properly and cannot be disabled. They include cookies that enable you to navigate the website and use its features.
Analytics Cookies: These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. This helps us improve the website's functionality and user experience.
Preference Cookies: These cookies remember your preferences and settings, such as language preferences and privacy settings, to provide a more personalized experience.
You can control and manage cookies through your browser settings. However, disabling certain cookies may affect the functionality of our website and limit your ability to use some features.
15. Data Protection Officer
We have appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure compliance with GDPR requirements. If you have any questions about how we handle your personal data or wish to exercise your rights, you may contact our DPO at the contact information provided above.