Privacy policy

1. Registrar
Name:                              Murtolan HamppuFarmi Oy
Y ID:                        2016296-8 
Address:                       Murtolantie 150 
Postal code:                 32300 
Post office:           Mellilä 
Telephone number:             0405665219 
E-mail address: t2>
2. Person handling registry matters
Company:                             Murtolan HamppuFarmi Oy 
Name:                              Ville Virtanen 
Address:                  Murtolantie 150
Postal code:                 32300 
Post office:            Mellilä 
Telephone number:              0405665219 
E-mail address:    
4. Purpose of use of the register
Collected personal data is used: Stored personal data is used to manage customer relations, to manage contacts, for marketing purposes and for other purposes related to online services.

5. Basis for data collection and processing
The customer's data is collected and processed with the customer's consent.

6. Data content of the register 
Name, Address, Email address, Telephone number, Content of the order   

7. Data storage period
Personal data is stored as long as it is needed to implement the contract with the customer or to develop customer service.
8. Regular sources of information
Information is collected in the register: The registrar registers the information about the user of the online store that the user himself provides when using the website. Data is also collected using the Google Analytics analytics tool.

9. Regular data disclosures and data transfer outside the EU or the European Economic Area
Data is not regularly disclosed to other parties. Information can be published to the extent agreed with the customer. Murtolan HamppuFarmi Oy uses the MailChimp email service for direct marketing and communication. Users' first name, last name and email address are transferred to MailChimp. MailChimp is a US company, in which case personal data is transferred outside the European Union. However, personal data is protected as required by the Personal Data Act and MailChimp belongs to the list of companies certified by the Privacy Shield framework between the USA and the EU.

10. Use of cookies
On our pages, we use so-called cookie function, i.e. cookies. A cookie is a small text file that can be sent to the user's computer and stored there, which enables the website administrator to identify visitors who visit the website frequently, to facilitate the login of visitors to the website, and to enable the compilation of composite information about the visitors. With the help of this feedback, we are able to constantly improve the content of our pages. Cookies do not damage users' computers or files. We use them in such a way that we can offer our customers information and services according to the individual needs of each. If the user visiting our pages does not want us to receive the above-mentioned information with the help of cookies, most browser programs enable the cookie function to be turned off. This is usually done through the browser settings.However, it is good to take into account that cookies may be necessary for the proper functioning of some of the pages we maintain and the services we offer   

 11. Registry Security
Data is transferred over an SSL secured connection. Electronic information is protected by a firewall, usernames and passwords. Only those persons employed by the data controller who need the data in their duties have access to the data.

12. Rights of the registered person
The registered person has the right to check what information about him has been stored in the personal data register. A written inspection request must be sent signed to the person responsible for registry matters. The right of inspection is free of charge once a year at most. The registered person has the right to demand the correction or deletion of incorrect or outdated data or the transfer of data from one system to another. He also has the right to limit or object to the processing of his data in accordance with Articles 18 and 21 of the EU Data Protection Regulation. The registered person has the right to withdraw the previously given consent to data processing or to file a complaint with the supervisory authority about matters related to the processing of their personal data. The registrant also has the right to deny the use of their data for direct marketing purposes..