Privacy Policy

1. Introduction and Data Controller

This Privacy Policy explains how Styxaroncharxrel ("we," "us," or "our") collects, uses, discloses, and protects your personal data when you visit our website styxaroncharxrel.world or use our services. We are committed to protecting your privacy and ensuring the security of your personal information in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable data protection laws.

Data Controller:

Styxaroncharxrel
Keilaranta 1, 02150 Espoo, Finland
Email: managers@styxaroncharxrel.world
Website: styxaroncharxrel.world

2. Personal Data We Collect

We may collect and process the following categories of personal data:

• Identity Data: Full name, title
• Contact Data: Email address, telephone number, postal address
• Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, device information
• Usage Data: Information about how you use our website, products, and services
• Transaction Data: Details about orders, payments, and delivery information
• Communication Data: Your preferences for receiving marketing communications and your communication preferences
• Consent Data: Records of consents you have given us

3. How We Collect Your Data

We collect personal data through:

• Direct interactions: When you fill out forms, place orders, subscribe to our newsletter, or contact us
• Automated technologies: As you navigate our website, we may automatically collect Technical Data through cookies, server logs, and similar technologies
• Third parties: We may receive Technical Data from analytics providers, advertising networks, and search information providers

4. Legal Basis for Processing

Under GDPR, we must have a valid legal basis to process your personal data. We rely on the following legal bases:

• Consent (Article 6(1)(a) GDPR): Where you have given clear consent for us to process your personal data for a specific purpose, such as marketing communications
• Contract (Article 6(1)(b) GDPR): Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract
• Legal Obligation (Article 6(1)(c) GDPR): Where processing is necessary for compliance with a legal obligation to which we are subject
• Legitimate Interests (Article 6(1)(f) GDPR): Where processing is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests

5. Purposes of Processing

We use your personal data for the following purposes:

• To process and fulfill your orders, including delivery and payment processing
• To manage your account and provide customer support
• To communicate with you about your orders, inquiries, and our services
• To send you marketing communications (with your consent)
• To improve our website, products, and services
• To analyze website usage and optimize user experience
• To comply with legal obligations and protect our legal rights
• To detect and prevent fraud and security threats

6. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements.

Retention periods vary depending on the type of data and purpose:

• Transaction data: Retained for 7 years for tax and accounting purposes
• Marketing consent data: Retained until consent is withdrawn
• Customer account data: Retained for the duration of your relationship with us plus 3 years
• Website analytics data: Retained for up to 26 months
• Communication records: Retained for up to 6 years

After the retention period expires, we will securely delete or anonymize your personal data.

7. Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

• Right of Access (Article 15): You have the right to request a copy of the personal data we hold about you
• Right to Rectification (Article 16): You have the right to request correction of inaccurate or incomplete personal data
• Right to Erasure (Article 17): You have the right to request deletion of your personal data in certain circumstances ("right to be forgotten")
• Right to Restriction of Processing (Article 18): You have the right to request that we restrict the processing of your personal data in certain circumstances
• Right to Data Portability (Article 20): You have the right to receive your personal data in a structured, commonly used, machine-readable format
• Right to Object (Article 21): You have the right to object to processing based on legitimate interests or for direct marketing purposes
• Right to Withdraw Consent (Article 7): Where processing is based on consent, you have the right to withdraw your consent at any time
• Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority (in Finland: Office of the Data Protection Ombudsman, tietosuoja.fi)

To exercise any of these rights, please contact us using the details provided above. We will respond to your request within one month, as required by GDPR.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:

• Encryption of data in transit using SSL/TLS protocols
• Secure storage of data with access controls and authentication
• Regular security assessments and updates
• Staff training on data protection and security
• Incident response procedures for potential data breaches

9. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission
• Binding Corporate Rules for transfers within corporate groups
• Adequacy decisions by the European Commission for specific countries

10. Third-Party Service Providers

We may share your personal data with trusted third-party service providers who assist us in operating our business. These may include:

• Payment processors for secure transaction handling
• Delivery and logistics partners for order fulfillment
• Analytics providers for website performance monitoring
• Email service providers for communications
• Customer support platforms

All third-party processors are contractually bound to process your data only as instructed by us and to implement appropriate security measures.

11. Cookies

Our website uses cookies and similar technologies. For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

12. Children's Privacy

Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete such information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the updated policy on this page with a new "Last updated" date. We encourage you to review this policy periodically.

14. Contact Us