Data Protection Statement

This is the Data Protection Statement in accordance with the GDPR regarding the processing of personal data for the Experience Pyhä customer and marketing register.

1. Controller

Experience Pyhä Ltd.
Huhanniemi 1
98530 Pelkosenniemi
Finland

2. Contact

3. Name of register

Customer and Marketing Register

4. Justification and purpose for processing of personal data

The processing of personal data is required to maintain Experience Pyhä’s relationship with consumer and corporate customers, to fulfil contractual obligations, or based on the data subject’s express consent or other reasonable cause.

Personal data is gathered during:

• Room, program, or table bookings
• Billing processes

Legal Basis for Processing:

• Fulfilment of contractual obligations
• Legitimate interests (e.g., marketing communications, business development)
• Data subject’s consent (when required)

Purpose of Processing:

• Fulfilling bookings and contractual obligations
• Communicating with data subjects
• Marketing communications
• Business and product development
• Improving customer service and website experience
• Payment processing and billing
• Maintaining customer relationships
• Promoting Experience Pyhä’s services

Special Categories of Data:

• Dietary information: Used solely for preparing and serving meals.
• Health-related data (e.g., allergies, physical impairments): Used only to provide requested services.

5. Content of register

The register may include:

• Personal Information: Name, date of birth, nationality
• Contact Information: Phone number, address, email address, business ID
• Booking Information: Booking details, payment method, billing information, overdue payments
• Service Usage Data: Special requests, feedback, complaints
• Marketing Preferences: Opt-in/opt-out status for marketing communications
• Profiling Data: Comments on services, interest data

6. Source of data

Data is collected from:

1. The data subject: In person, by phone or via email
2. Third-party booking services or sites
3. Travel agencies or tour operators
4. Employers or organizations booking services on behalf of the data subject
5. Public data sources and contact information providers

7. Sharing of data

• General Rule: Data is not shared with third parties.
• Exceptions:
  • When booking third-party services (e.g., program activities, transportation).
  • When using third-party booking channels via the experiencepyha.fi website.
  • When submitting contact requests via the website.
• Legal Requests: Data may be shared with authorities upon valid legal requests.

8. Sharing of data outside the EU or EEA

No data is transmitted outside the EU or EEA.

9. Data Protection and Retention

Physical Data is stored securely and disposed of when no longer needed. Electronic Data is protected on servers and accessible only by authorized personnel.

Retention Period: Customer and Marketing Register data is stored indefinitely. Other personal data is retained only as long as necessary, unless legal obligations (e.g., accounting laws) require longer retention.

10. Data Subject Rights

You have the right to inspect your data and request corrections to inaccurate information. To make a request, submit a signed request either in writing or electronically to the contact provided above.

11. Cookies and Tracking Technologies

We use cookies to improve the functionality of our website, track user behavior, and provide a better user experience. The following cookies may be set:

Cookies

Provider / Domain	Expiration	Description
Google LLC / .experiencepyha.fi	1 year 1 month	Tracks visitor numbers and user activity on the site (e.g., Google Analytics).
Meta Platforms Inc. / .experiencepyha.fi	3 months	Used for ad targeting and measuring ad effectiveness.
experiencepyha.fi	1 year 1 month	Improves website performance and remembers user preferences (e.g., language settings).

12. Updates to This Statement

Experience Pyhä reserves the right to update this Data Protection Statement based on changes in legislation or services.

Last Updated: 18 December 2024