Privacy Policy

SUOMENVALO Workshops collects information about its customers and users of its online store so that it can provide its customers with the best possible user experience of their services. Customer data is used, for example, to provide secure service and to develop customer service quality and e-commerce.

According to the EU’s General Data Protection Regulation (GDPR), the holder of the personal data register is obliged to inform data subjects about the processing of their personal data. This statement fulfils the obligation to inform the GDPR. The Customer must accept the terms of this Privacy Policy to use the services of SUOMENVALO Workshops.

Register holder

Y-tunnus: 2811520–5
Pappilanniementie 191
87850 Paltaniemi, Finland

Person responsible for register affairs and contact person

Kimmo Koskela
+358 40 4131188

Name of the register

SUOMENVALO Workshops – customer register

Purpose of the processing of personal data (purpose of the use of the register)

The purpose of the register is to process and purchase orders from SUOMENVALO Workshops’s customers and to maintain the customer relationship. The data can be used to develop operations and for statistical purposes. Personal data is processed within the limits permitted by the Personal Data Act.

Information included in the register

The personal register may contain the following information:

  • person’s first and last name
  • e-mail address
  • mailing address
  • telephone number
  • company/organization
  • information about processed orders
  • payment information, including credit agreements and other billing information
  • delivery information
  • product reviews
  • online store browsing data

Purpose of the personal data register

Personal data register is used for the following purposes:

  • customer relationship management and maintenance
  • delivery, processing and archiving of purchase orders
  • improve customer experience
  • for analytics and statistical purposes
  • preventing abuses
  • to produce targeted content and marketing

Data retention and protection

The personal data register is protected from unauthorized access and the processing of the register is handled by circumspection. SUOMENVALO Workshops ensures that the stored data, server access rights and other data critical to the security of personal data are treated confidentially and only by the employees whose job description it belongs to.

The retention period of personal data is determined by its purpose of use and the obligations imposed by law.

Regular sources of information

Personal data is collected from the registrated persons. Personal data is also collected and updated, within the limits of applicable law, from public sources related to the realization of a customer relationship between the data controller and a data registered person, through which the data controller fulfils its obligations related to maintaining customer relationships.

Disclosure of personal data to third parties

Personal data will not be disclosed to third parties

Transfer of data outside the EU or EEA

Personal data contained in the register can be transferred outside the EU or EEA with the following third parties.

We share and disclose your information with the following third parties.

Rights of the data subject

A person in SUOMENVALO Workshops’s customer register has the rights to the following requirements:

  • registered person has right not to disclose their personal data
  • access to personal data, verification and modification of data
  • prohibition of direct marketing
  • blocking and deleting cookies
  • deleting, changing, or restricting the processing of data
  • object to the processing of personal data
  • withdrawal of consent
  • a right to lodge a complaint to the supervisory authority

The data controller is responsible to the customer within the time limit set in the EU General Data Protection Regulation (usually within one month).

Change of the information security statement

We reserve the right to change the information security statement in the event of changes in legislation or to improve the development of operations

Privacy policy

Who we are

Our website address is:


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.