Privacy policy

Sunset at Suomutunturi, drone image
Sunset at Suomutunturi, drone image

Privacy policy

Home page / Privacy policy

Suomutunturi Privacy Policy

This is the privacy statement of the website https://suomutunturi.fi, where we explain what information we collect and how we process it. We comply with current data protection legislation and the EU General Data Protection Regulation (GDPR). The website is operated by Suomu Rinteet Oy (business ID 2707717-1) and Wilderness Suomu Oy (business ID 2707715-5). Suomutunturi is the controller of the personal data collected through the website.

Privacy policy updated 14.7.2025

Controller

Suomu Rinteet Oy (business ID 2707717-1) and Wilderness Suomu Oy (business ID 2707715-5)
+358 207 199 120
Kotakuja 1, 98720 Suomutunturi
myynti@suomutunturi.fi

Questions about data protection?

For data protection issues, you can contact us by email at myynti@suomutunturi.fi or by post to the controller's address above.

Processing of personal data

We collect and process the following information:

Contact information: name, email address, phone number, organisation and any other information you provide when you fill in the contact form or contact us by email.

Technical and usage data: IP address, device identifier, browser type and version, time zone, pages visited, links clicked, time spent on pages, URL and other diagnostic data collected through server logs and cookies.

Grounds for processing personal data

We process data for the following purposes and on the legal grounds described below, within the scope of the EU General Data Protection Regulation (GDPR).

We process contact information, such as names and email addresses, in order to respond to contacts and to ensure quality customer service in an appropriate manner. The legal basis for processing is the data subject's consent (Article 6(1a) GDPR) or the performance of pre-contractual measures (Article 6(1b) GDPR).

Technical data and website usage data are processed to ensure the functionality and security of the website. This may include, for example, fraud prevention and error correction. The legal basis is the legitimate interest of the controller (Article 6(1f) GDPR), i.e. the smooth and secure operation of the website.

Data processing related to analytics and cookies uses technical data, usage data and cookie data. The purpose is to improve the functionality of the website and enhance the user experience. The processing is based on the data subject's consent (Article 6(1a) GDPR), which is requested via the cookie banner.

Cookie policy

Our website uses cookies to improve your experience. Some of these cookies are necessary for the functioning of the site and are activated automatically.

Cookies are small text files that a website stores on your device. Cookies are used to improve the performance of the website and to track visitor numbers. We divide cookies into essential functional cookies, statistical cookies, and advertising and marketing cookies. Only essential cookies are always enabled without your consent. Other cookies can be managed from our cookie banner at the bottom left of the site or through your browser settings.

Necessary cookies help make the website usable and ensure that it works properly. Necessary cookies allow basic functions such as page navigation and access to secure areas of the site. The website will not function properly without these cookies.

Statistical cookies help site owners understand how users interact with the site. Statistical cookies collect and report information anonymously.

Marketing cookies are used to track visitors to websites. The purpose is to show ads that are relevant and interesting to individual users, and therefore more valuable to publishers and third-party advertisers.

Disclosure of information

We will not sell or share your personal data unnecessarily. We will only share information in the following situations:

Regulatory requirements: We may disclose information to Finnish authorities or courts if required to do so by law.

External service providers (processors): we may disclose information to external service providers, such as website hosting and email service providers. These service providers process the data in accordance with specific instructions based on our contracts and comply with the EU General Data Protection Regulation (Article 28 GDPR).

Cookies: if you give your consent, Google Analytics processes anonymised usage data for analytics purposes.

International data transfers

Your personal data is stored on servers located in the European Economic Area. If data needs to be transferred outside the EEA (for example, to a service provider in the United States), we will ensure that adequate safeguards are in place. In such cases, we will ensure that the data is transferred in accordance with the European Commission's standard clauses and the EU equivalence decision (Articles 45-46 GDPR).

Data storage

We will only retain personal data for as long as necessary for the purposes described above. Data from contact forms will be kept for 12 months from the last exchange of messages, after which it will be deleted. Technical logs are kept for 14 days for security reasons. With the exception of analytical data, which is kept for 26 months.

Your rights in the processing of your personal data

Under the EU General Data Protection Regulation (GDPR), you have the following rights to your personal data:

  • Right of access - you can request confirmation and a copy of your data;
  • Right of rectification - you can request the correction of incorrect or incomplete information;
  • Right to be forgotten - you can request the deletion of your data ("right to be forgotten");
  • Restriction of processing - you can request the restriction of the processing of your data in certain circumstances;
  • Data portability - you can request your data in machine-readable form and transfer it to another controller;
  • Right to object - you can object to the processing of your data on the basis of your legitimate interests;
  • Withdrawal of consent - you can withdraw your consent at any time without affecting the lawfulness of the processing carried out before the withdrawal.

You can exercise your rights by contacting us by email: myynti@suomutunturi.fi. We may ask you to confirm your identity before processing your request.

Right of appeal

If you believe that your rights to the protection of your personal data have been infringed, you can lodge a complaint with the supervisory authority for data protection in Finland:

Office of the Data Protection Ombudsman
P.O. Box 800
00531 Helsinki
https://tietosuoja.fi

Automated decision making and profiling

We will not use your personal data for automated decision-making or profiling that would have legal or other significant effects.

Changes to the Privacy Policy

We may update this Privacy Policy to reflect legal requirements or changes in our practices. The most current and updated version is always available on this page. In the event of significant changes, we will inform you on our website or by email.

Follow us
Hotel Suomutunturi

+358 207 199 120
myynti@suomutunturi.fi
Kotakuja 1, 98720 Suomutunturi

Open during the day 08:00 - 22:00

Ski Rental

+358 207 199 110
vuokraamo@suomutunturi.fi

Sales

+358 207 199 121
myynti@suomutunturi.fi

Privacy policy