Privacy Policy

Ropee Oy (Business ID: 3279707-7), located in Liperi, Finland, operates the online store at Ropee.fi and processes personal data provided by customers in accordance with this policy. The purpose of data processing is to fulfill the requirements of purchase agreements, electronic orders, delivery management, and legal data retention obligations.

General Provisions

1. The data controller, in accordance with the General Data Protection Regulation (GDPR), is Ropee Oy, Business ID: 3279707-7, located in Liperi, Finland (hereinafter referred to as the "Data Controller").

2. Contact details of the Data Controller:
   Email: info@ropee.fi
   Phone: +358 45 271 8450

3. Personal data refers to any information related to an identified or identifiable natural person.

Source of Personal Data

1. The Data Controller processes personal data that the customer has voluntarily provided when placing an order at the online store Ropee.fi.

2. Only the personal identification and contact details necessary for fulfilling the purchase agreement are processed.

3. Personal data is processed for shipping, accounting, and communication purposes for the time required by law. Data is not disclosed to third parties or transferred outside of the EU unless required by law or international logistics.

Purpose of Data Processing

The Data Controller processes the customer's personal data for the following purposes:

1. Account registration on Ropee.fi as defined in Chapter 4, Article 2 of the GDPR

2. Fulfillment of an electronic order placed by the customer (name, address, email, phone number)

3. Compliance with legal obligations arising from the relationship between the customer and the Data Controller

4. Fulfilling the purchase agreement, which would not be possible without the collection of personal data

Data Retention Period

1. Personal data is retained for as long as necessary to fulfill the rights and obligations resulting from the contractual relationship between the customer and the Data Controller and for 3 years after the contract ends.

2. After the retention period, the Data Controller shall delete all personal data.

Recipients and Processors of Personal Data

Personal data may be processed by third-party processors acting on behalf of the Data Controller. These partners are essential for the operation of the online store and for the fulfillment of orders.

The Data Controller's partners include:

• Webnode AG (e-commerce platform)

• Logistics and delivery companies

• Google Analytics (website analytics)

Customer Rights

In accordance with the GDPR, the customer has the following rights:

1. Right to access personal data

2. Right to rectify personal data

3. Right to delete personal data

4. Right to object to data processing

5. Right to data portability

6. Right to withdraw consent to data processing, in writing or via email to: info@ropee.fi

7. Right to file a complaint with a supervisory authority if there is suspicion of GDPR violation

Data Security

1. The Data Controller undertakes all necessary technical and organizational precautions to protect personal data.

2. Technical measures include secure storage systems, password-protected computers, antivirus protection, and regular maintenance.

Final Provisions

1. By placing an electronic order on Ropee.fi, the customer confirms awareness and full acceptance of this privacy policy.

2. The customer consents to this policy by checking the corresponding box in the order form.

3. The Data Controller may update this policy at any time. The new version will be published on this page.

This policy is effective as of July 13, 2022