About the document

This page describes the requirements of Articles 10 and 24 of the Finnish Personal Data Act (523/1999) and Articles 12 and 13 of the EU General Data Protection Regulation (679/2016) (General Data Protection Regulation, GDPR), which apply in principle to all processing of personal data in the Service.

Company / Registry administrator

Name: Daylux Beauty Oy
Address: Kielotie 15d, Vantaa, 01300
Business ID: 2794763-2
E-mail: info@daylux.fi

Whose data is processed by the Service

Personal and business information of users visiting the Service is collected, processed, used and modified for the purposes of managing customer relationships, providing services, direct marketing, distance selling and customer contact. In addition, the data may be used for statistical and business development purposes.

Description of the personal data processed

Visiting users

The user’s IP address and metadata about the device on which the user is visiting the service.

Registered users

The register may contain information about users such as

  • Name
  • E-mail address
  • Phone number
  • Organisation
  • Language
  • User level (e.g. customer, employee, administrator)
  • Service usage data (messages, subscription data, purchases, )

Who else / Which systems process the data

  • Google Analytics
  • Mailchimp

User rights on data protection issues

Under the GDPR, you have the right to take the following actions with regard to your data. Such requests should be addressed directly to the contact person.

  • Right of access
  • Right to object
  • Right of withdrawal
  • Right of appeal
  • Direct marketing ban

For a more detailed description of the rights, see the article: https://eur-lex.europa.eu/legal-content/FI/TXT/?uri=OJ%3AL%3A2016%3A119% 3ATOC

General information about the use of cookies

A cookie is a small text file that an internet browser stores on a user’s device.

Cookies that enable or enhance the service

Some cookies are necessary for the smooth use of the service. These include cookies that allow you to log in or select a language. We also use cookies to improve our understanding of how customers use our sites. We collect statistical data on visitor numbers to ensure that the site meets the needs of our users. We track what devices, times and content our customers are searching for on the service.

User options to prevent the use of cookies

The user can set which cookies are allowed in the service from their browser. If this function is switched off, it is worth bearing in mind that cookies may be necessary for the proper functioning of some services.

Data protection

We use technical and organisational security measures to protect personal data against unauthorised access, disclosure, destruction or other unlawful processing.

Technical methods

Use of secure server solutions, firewalls, network traffic encryption techniques, encryption keys, data encryption and access monitoring.

Organisational methods

Use of secure equipment, appropriate access control, controlled allocation of access rights and monitoring of their use. Instruction of staff involved in the processing of personal data and careful selection of subcontractors. Binding all data processors to confidentiality agreements.

Regular disclosures of data

Information will not be disclosed outside the Service, except to third parties mentioned in this document, unless expressly required by law.

Transfer of data outside the EU or EEA

In principle, data will not be transferred outside the EU or EEA. In cases where data is transferred, we will also ensure that the partner is a Privacy Shield registered company or entity.

Data retention (Data retention policy)

We will only keep your data for as long as necessary to fulfil the purposes for which it is collected, in accordance with the applicable legislation.

More on:

Data Protection Ombudsman: http://www.tietosuoja.fi/fi/index.html

EU Regulation: https://eur-lex.europa.eu/legal-content/FI/TXT/?uri=OJ%3AL%3A2016%3A119% 3ATOC