Privacy Policy

 

Last updated: March 2025

This Privacy Policy explains how Foilone Oy (“we,” “us,” or “our”) collects, uses, stores, and protects your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable Finnish data protection laws.

1. Who We Are

Foilone Oy

Business ID: 3157554-4

Vuorimiehentie 2, 02150 Espoo, Finland

Email: mathias@foil.one

We are the data controller for the personal data you provide via our website and services.

2. What Personal Data We Collect

We may collect and process the following types of personal data:

  • Full name
  • Email address
  • Phone number
  • Billing address
  • Payment details (via Stripe)
  • IP address
  • Website usage and behavioral data (via cookies and analytics)
3. How We Collect Your Data

We collect personal data through:

  • WooCommerce checkout and order forms
  • Contact and preorder forms
  • Newsletter sign-up forms
  • Cookies and tracking technologies (e.g., Google Analytics)
4. Why We Process Your Data

We process your personal data to:

  • Process preorders and fulfill your requests
  • Communicate with you about your order or inquiry
  • Send marketing communications (with your consent)
  • Analyze website usage to improve our services
  • Fulfill our legal obligations (e.g., accounting and record-keeping)
5. Legal Basis for Processing

We process your personal data based on:

  • Contractual necessity (e.g., to process your preorder)
  • Legal obligations (e.g., tax and accounting compliance)
  • Legitimate interest (e.g., website analytics)
  • Consent (for marketing and newsletter subscriptions)
6. Sharing of Data

We may share your data with trusted third-party service providers:

  • Stripe – for secure payment processing
  • Google Analytics – for website usage analysis
  • Accounting software providers – for invoicing and financial compliance

These third parties may process data outside the EU, but only in accordance with GDPR and through appropriate safeguards (e.g., standard contractual clauses or adequacy decisions).

7. International Data Transfers

Your personal data may be transferred outside the EU/EEA, for example to Stripe or Google Analytics, solely for automated and functional purposes. We ensure that such transfers are protected under appropriate legal safeguards.

8. Data Retention

We retain your data:

  • As long as necessary to fulfill the purpose for which it was collected
  • As required by law (e.g., 6–10 years for accounting purposes)
  • Until you request deletion, where legally permissible
9. How We Protect Your Data

We use industry-standard security measures, including:

  • Secure HTTPS connection (SSL encryption)
  • Access controls and secure data storage
  • Trusted third-party service providers
10. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to processing or restrict it
  • Withdraw consent (e.g., unsubscribe from marketing)
  • Lodge a complaint with the Finnish Data Protection Ombudsman (tietosuoja.fi)

To exercise your rights, contact us at mathias@foil.one.

11. Marketing and Communication

We only send marketing emails or newsletters with your explicit consent. You can unsubscribe at any time using the link in our emails or by contacting us directly.

12. Cookies

Our website uses cookies for basic functionality, analytics, and improved user experience. You can control or disable cookies through your browser settings.

13. Updates to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date.