Privacy Policy
This Privacy Policy describes how we collect, use, store and protect your personal data when you use the website Shimvornxep.world and when you contact us. It applies in accordance with the EU General Data Protection Regulation (GDPR), the Finnish Data Protection Act (Tietosuojalaki), and other applicable data protection law in Finland.
Data controller
The data controller responsible for your personal data is the operator of Shimvornxep.ddd. You can contact us at: Korkeavuorenkatu 2, 00140 Helsinki, Finland; phone +358 9 655 069; or via the contact form and email address published on the website. We will respond to your requests within the time limits set by the GDPR (generally one month).
What data we collect
Data you provide: When you contact us (by form, email or phone), we may collect your name, email address, phone number, and the content of your message. If you place an order or make an enquiry about a product, we may also process information related to that order or enquiry.
Technical and usage data: When you visit our website, we may automatically collect your IP address, browser type, device type, and information about how you use the site (e.g. pages visited). We may use cookies and similar technologies as described in our Cookie Policy. If you have given consent, our advertising partners (e.g. Google Ads) may also collect and process data in accordance with their own policies.
Purposes and how we use your data
We use your data to: (1) respond to your enquiries and provide customer support; (2) process and fulfil orders where applicable; (3) improve our website and services; (4) comply with legal obligations (e.g. accounting, tax, or regulatory requirements); (5) with your consent, carry out analytics and advertising (including interest-based advertising and ad measurement). We do not sell your personal data to third parties. For information on how Google uses data in advertising, see Google's advertising policy.
Legal basis (EU/EEA and Finland)
We process your data only when we have a valid legal basis: (1) Consent – for non-essential cookies, analytics and marketing communications, where you have given clear consent; (2) Contract – to perform a contract with you or to take steps at your request before entering into a contract (e.g. processing your order or enquiry); (3) Legitimate interests – to operate and secure our website, communicate with you, and defend our rights, where these interests are not overridden by your rights; (4) Legal obligation – where we must process data to comply with Finnish or EU law.
Sharing and recipients
We may share your data with: (1) service providers who help us run the website or process orders (e.g. hosting, email delivery), under strict confidentiality and only for the purposes we specify; (2) advertising or analytics partners, only when you have consented to the use of relevant cookies; (3) authorities when required by law. We do not transfer your data outside the EU/EEA unless we use a service that does so, in which case we ensure appropriate safeguards (e.g. standard contractual clauses or an adequacy decision) are in place.
Your rights
Under the GDPR you have the right to: Access – obtain a copy of your personal data; Rectification – have inaccurate data corrected; Erasure – have your data deleted in certain circumstances; Restriction – limit how we use your data in certain cases; Data portability – receive your data in a structured, machine-readable format where applicable; Object – object to processing based on legitimate interests or to direct marketing; Withdraw consent – at any time, where processing is based on consent. To exercise any of these rights, contact us using the details above. You also have the right to lodge a complaint with a supervisory authority. In Finland, the supervisory authority is the Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto): tietosuoja.fi.
Security and retention
We take appropriate technical and organisational measures (such as secure connections, access controls and staff training) to protect your data against unauthorised access, loss or alteration. We retain your data only for as long as necessary for the purposes described in this policy or as required by Finnish or EU law (e.g. accounting records may be kept for several years). When data is no longer needed, we delete or anonymise it.
Children
Our website is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it promptly.
Updates
We may update this Privacy Policy from time to time to reflect changes in our practices or in the law. The current version is always on this page. We encourage you to check this page periodically. Last update: 2026.