Pepe Unlimited Oy (2950462-4), Mannarintie 62, 45370 Valkeala, Finland
Data Protection Officer, firstname.lastname@example.org
Name of register:
Pepe Unlimited Oy's customer register
PIIIA.com's customer register
Purposes and legitimate grounds for the processing of personal data:
Our legal grounds for processing personal data are:
- - to perform our contractual obligations towards our customers;
- - with the consent of the individuals concerned;
- - to pursue our legitimate interests; and/or
- - to comply with legal obligations.
The purposes of the processing of personal data by us are:
- - customer relationship management and development;
- - implementation of services;
- - development of customer service, activity and websites;
- - implementation of opinion polls and market research;
- - after sales marketing using Facebook, Google and email marketing tools;
- - marketing of products and services;
- - data statistics and analysis; and/or
- - providing of business partner and affiliate advertising.
To enable us to administer and fulfil our obligations under law, we process the data we have. This includes data processed for complying with our bookkeeping obligations and providing information to relevant authorities.
We may process the data for the prevention of fraud, misuse of our Services and terms, and for data, system and network security.
The users joined the email list accept that the company may send newsletters or other direct marketing material by email.
The users accept that our websites, social media pages and our other communication, such as newsletters, may include commercial content or advertising.
Personal data processed:
We may collect and process the following types of personal data: User-Provided Data, Automatically Collected Information and Information from Other Sources.
- - First name;
- - Last name;
- - Email address;
- - Postal address, Postal code, Postal district and Country;
- - Phone number;
- - Social media profiles;
- - Other personal data users provide themselves;
- - Order information, such as Payment information, Order information, Changes of orders and Payment history;
- - Business customers personal - and/or business data (Business ID or VAT number, Email address, Postal address, Postal code, Postal district and Country);
- - Subscribing to a newsletter;
- - Permits and consents;
- - Registration information: Email address and Password; and/or
- - Information that users provide when communicating with us: Contacts, Emails, Forms, Meetings, Feedback and ratings, Comments and Raffle and contest answers.
We aim to inform which information is necessary for the use of our Services and which information is additional that you choose to give us. Without necessary personal information, we may not be able to provide you with all the requested services.
Automatically Collected Information:
- - Usage data, for example Clicked links, Websites and pages visited, and Timing of activities;
- - Information relating to the technical device used, such as Device and device information, Country, IP address, Browser type and version and Operating system; and/or
- - Other cookie information (you can learn more about our Cookies Policy below).
We may also process personal data provided by third parties or that is available from public sources.
Information from Other Sources:
- - Information from our Technical partners, service providers and partners, who assist us to provide our services and features;
- - Information from Advertisers or other Ad partners; and/or
- - Information shared publicly, like on social media platforms and services and the information about the use of our own content on social media.
Sources of data:
The personal data is received from the individual, for example, in connection with registration, in contracts, use of services, sent through the websites, by email, by phone, through social media services, meetings and other situations where the individual discloses their information, and in connection with raffles, contests and campaigns.
Information Sharing and Disclosure:
We may share personal data outside of our company in the following situations:
- - To the general public;
- - At the user’s request or consent;
- - To service providers and partners;
- - With advertisers or other ad partners;
- - For legal reasons and To comply with the law; and/or
- - To purchasers of our business.
To the general public: Publicly available information can be seen by anyone, on or off our Services. This includes any information you share with a public audience and content you share on our Services. Questions or comments from users submitted through public forums such as Pepe Unlimited Oy's and PIIIA.com's social media pages may be also shared publicly.
At the user’s request or consent: Users' information can be shared at the user’s request or consent for example if a user requests a service through a promotional offering made by a Third party, we may share certain data with those third parties.
To service providers and partners: We may use third party service providers (such as IT service -, payment processing service -, printing service - and delivery service providers) to enable us to provide our Services, to improve our Services and to administer related activities on our behalf. We may share your information with these third parties only for those limited purposes. The third parties we use, have their own privacy policies. Please read their privacy policies on their websites.
With advertisers or other ad partners: We provide advertisers with reports about the kinds of people seeing their ads and how their ads are performing, but we don’t share information that personally identifies you unless you give us permission.
For legal reasons and To comply with the law: We share information with law enforcement or in response to legal requests in that kind of circumstances.
Transfer to countries outside Europe:
We store your personal data primarily within the European Union and the European Economic Area. However, we have service providers and operations in several geographical locations. As such, we and our service providers may transfer your personal data to, or access it in, jurisdictions outside the European Economic Area or the User’s domicile. We ensure that possible transfers if the Users’ personal data receive an adequate level of protection.
We don’t store your personal data longer than is legally permitted and necessary for the purposes of providing our Services or the relevant parts thereof. We may retain certain information for legitimate business purposes or as required by law. Once the data is no longer necessary, we delete or anonymise it as soon as reasonably possible.
Image files and all the other materials customer provide to us to fulfil orders will be removed from our system within 45 days of order delivery. In some cases, such as Piiiabook -bespoke photo books, we save digital copies of the orders for a period of 24 months. This is in order to be able to offer customer to order more copies of the same product.
If the order has been uncompleted (for example if the order is unpaid) for 6 months, we reserve the right to permanently delete all the materials provided, all the unfinished digital products and/or all the products that have been waiting delivery.
We use reasonable administrative, technical and physical security measures to help safeguard your information. To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is protected from unauthorised, alteration, disclosure, or destruction of information we hold.
Right to access & Right to correct:
Every person that has provided their information has the right to review the data concerning them and to demand the rectification of potentially erroneous information or completion of incomplete information. If an individual wishes to review the data concerning them or demand rectification, the request must be sent, in writing (by email), to the controller of the registry. If required, the data controller may ask the requester to provide proof of their identity. The data controller will respond to the customer within the timeframe set in the GDPR (generally within one month).
Other privacy rights:
Data subjects may also ask us to delete the users's personal data from our systems (”The right to the erasure of their data and to be forgotten”). According to the General Data Protection Regulation (GDPR), data subjects have also the right to object, the right to restrict the processing and the right to data portability.
These rights may be used by sending a letter or an e-mail to us on the addresses set out above. We may request the provision of additional information necessary to confirm the identity of the data subject. The data controller will respond to the customer within the timeframe set in the GDPR (generally within one month).
The Data Controller may refuse to realise the request on the basis of grounds set out in applicable legislation. Such as erasing all the information, if we have legal obligation or right to preserve.
The user has the right to prohibit us from using the User’s personal data for direct marketing by contacting us at email@example.com.
Links to other websites:
Our websites, contents, products and services (free ones as well), social media communication and our newsletters may contain links to third-party sites and/or third-party advertising. We cannot control or be held responsible for third parties’ privacy practices and content. The Company is not responsible for the provision of third-party products, services, or material, data or other content generated by third-party.
If the user moves to a linked site, they must understand they are leaving our Services and they must familiarise themselves with the other sites privacy principles, cookies policy and privacy policies to find out how they collect and process their personal data by themselves. Our websites may contain embedded content (such as videos) from other sites, and opening or using of those is comparable to users visiting third-party sites by themselves.
PIIIAshop -web shop:
Our company has its own PIIIAshop -web shop to sell our products and services. You can check out more at: https://shop.piiia.com/en. PIIIAshop -web shop has its own, separate customer register.
In addition to paying by bank transfer or PDF invoice (sent by email), payment method used is PayPal. We recommend that you read their privacy policies (https://www.paypal.com/webapps/mpp/ua/privacy-full) to understand how they handle privacy policies. Customer's online bank payments or credit card information are not saved on the company's system.
We share customer's personal information also with distribution suppliers (Posti / Finnish Postal Service or Matkahuolto) in connection with the deliveries of the orders. All of our third-party service providers are resposible of their own privacy practices and policies by themselves.
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
Age of Consent:
Our Services are not directed to minors. By using our site, You must be at least 18 years of age or older to use our Sites and Services. Minors may only use our services with the involvement, supervision, and approval of a parent or legal guardian.
We do not knowingly collect personal data from minors or under the applicable age limit. If you are under the Age Limit, please do not provide any personal data to us.
We use various technologies to collect and store information when the users visit our Services, including cookies. Those allow us to provide our products and services, to enchance user experience, to analyse the use of our services to improve our Services and to target ads. Those can for example be functional and service cookies, analysis cookies and marketing targeting cookies.
The third parties we use, might have their own cookies or other tracking technologies to deliver to your device. We recommend that you read their privacy policies to understand how they handle privacy policies. You can find those on their websites. We use third party services such as Google Analytics (https://support.google.com/analytics/answer/6004245), Google Ads (https://policies.google.com/privacy) and Facebook (https://facebook.com/about/privacy).
Our Services may also contain third-party links that deliver third-party cookies or other tracking technologies to your device for their own needs. The user of the site has to personally approve every site’s cookies. In case the user doesn't approve, they have to stop using the site in question immediately.