Privacy Policy

This is the registry and privacy policy statement of Thai Organic Products 4U Oy, in accordance with the EU General Data Protection Regulation (GDPR). Created on 07.02.2025. The latest update was made on 07.02.2025.

1. Data Controller

Thai Organic Products 4U Oy

Business ID: 3502002-8

2. Contact Person Responsible for the Register

Raimo Seppänen

raimo@thaiop4u.fi

3. Name of the Register

Thai Organic Products 4U Oy Customer Data Register

4. Legal Basis and Purpose of Processing Personal Data

The legal basis for processing personal data under the EU General Data Protection Regulation is the voluntary consent of the individual.

The personal data collected in the register is used for establishing and managing customer relationships as well as for processing orders.

5. Register Data Content

The register contains the following data collected through the website checkout:

  • Email address
  • Country
  • First name
  • Last name
  • Address
  • Postal code
  • City
  • Phone number
  • Billing address (if applicable)

The website does not use visitor tracking plugins such as Google Analytics.

6. Regular Data Sources

The data source for the register is the website thaiop4u.fi.

7. Regular Data Disclosures and Transfers Outside the EU or EEA

Data is not regularly disclosed to third parties. However, some of the external service or software providers used by the company may store data outside the EU or the European Economic Area.

8. Principles of Register Protection

The processing of the register is conducted with care, and data processed via information systems is adequately protected. When register data is stored on Internet servers, appropriate measures are taken to ensure both physical and digital security.

The data controller ensures that stored data, server access rights, and other information critical to personal data security are handled confidentially and only by employees whose job descriptions require it.

9. Right to Access and Request Data Correction

Every person in the register has the right to check their stored data and request correction of incorrect or incomplete information. Requests must be sent in writing to the data controller. The data controller may require proof of identity. The data controller will respond within the timeframe specified in the EU Data Protection Regulation (usually within one month).

10. Other Rights Related to Personal Data Processing

Individuals have the right to request the deletion of their personal data (“right to be forgotten”). Additionally, they have other rights under the EU GDPR, such as the right to restrict processing under certain conditions. Requests must be sent in writing to the data controller, who may require proof of identity. The data controller will respond within the timeframe specified in the GDPR (usually within one month).

11. Use of Cookies

We use cookies on our website. A cookie is a small text file sent to and stored on the user’s computer, allowing website administrators to recognize returning visitors, facilitate logins, and compile visitor statistics. Cookies do not harm user devices or files. They enable us to provide personalized information and services.

Users can disable cookies, but this may affect the proper functioning of some website features. Essential cookies for site functionality cannot be disabled.