Privacy Policy

Privacy Policy

In alignment with our commitment to clarity, respect, and trust, Valmennus Paula Immo provides this privacy policy to inform you of your rights and how we handle your personal data with care. This statement fulfills our legal obligation to ensure transparency in accordance with the General Data Protection Regulation (GDPR).

Data Controller

Valmennus Paula Immo (Business ID FI26060036)
Oravanreitti 5, 90540 OULU, Finland

Contact Information Regarding the Register

Valmennus Paula Immo / Paula Immo
Oravanreitti 5, 90540 OULU, Finland
Phone: +358 40 737 2636
Email: info(at)paulaimmo.com

Who We Collect Data From

Our client and marketing register includes the personal data of our clients, potential clients, and their representatives—those who engage with our coaching, courses, digital products, newsletters, and services.

Why We Collect and Use Personal Data

We process personal data to fulfill our agreements, deliver purchased services and digital products, manage course or account access, process payments, provide customer support, stay in touch, share updates and inspiration, and ensure our services continue to meet your needs. We may also use data to support business planning, product development, newsletters, marketing, personalized service, and insights into how we can best support our clients.

Legal Basis for Processing

We process personal data based on:

  • Performance of a contract (to deliver purchased services or digital products)
  • Consent (for newsletters and marketing communications)
  • Legitimate interest (for business operations, service improvement, and customer relationship management)
  • Legal obligations (such as accounting requirements)

Purpose of Processing

Your data is handled thoughtfully and only for the purposes outlined here: to manage client relationships, deliver services and digital products, share information about our offerings, provide support, and keep you informed about resources available to you.

What Personal Data We Collect

We may collect your name and contact details (address, phone number, email address), business ID, role within your organization, details about services and digital products you have ordered, delivery and invoicing information, transaction records, product access history, inquiries and comments, user-generated content (such as photos), feedback, permissions, consents, and preferences.

Technical data gathered from website use may include your IP address and approximate location, service usage details and times, device information, operating system and software versions, browser type and language settings, interactions with our team, and information about how you arrived at or left our website. We also use cookies to enhance your experience.

Your Rights as a Data Subject

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate or incomplete data
  • Object to unlawful processing
  • Restrict direct marketing
  • Request erasure of your data where legally possible
  • Withdraw consent at any time where processing is based on consent
  • Request restriction of processing while disputes are resolved
  • Lodge a complaint with the Data Protection Ombudsman

Certain records may need to be retained due to legal obligations such as accounting laws, which may require storage for up to ten (10) years.

Where We Get Your Data

Most data is collected directly from you. We may also collect data through website interactions, analytics services, publicly available sources, or publicly available contact information providers.

Data Sharing

We do not regularly share personal data with outside parties except when necessary for legitimate operational purposes, legal compliance, or service delivery.

Data Processors

Personal data may be processed by trusted service providers assisting in operations, including:

  • Accounting service providers
  • Web hosting providers
  • Email marketing providers (e.g., Flodesk)
  • Payment processing providers (such as Stripe, PayPal, or similar platforms)
  • Course hosting or digital delivery platforms used to provide access to purchased materials
  • Cloud storage providers
  • Analytics and advertising providers such as Google and Meta
  • Video meeting providers such as Zoom

All processors are required to comply with applicable data protection regulations.

Transfer of Data Outside the EU

Data may be transferred outside the EU/EEA when necessary. In such cases, appropriate safeguards, including contractual protections and data processing agreements, are implemented to protect personal data.

Current service providers operating outside the EU/EEA may include:

  • Meta Platforms Inc. (Facebook Pixel)
  • Google (Google Analytics)
  • Flodesk Inc. (email services)
  • Paypal, Inc. (payment processor)
  • Stripe, Inc.(payment processor)
  • Zoom Video Communications, Inc. (video meetings and webinars)
  • Dropbox International Unlimited Company (cloud services)

How Long We Keep Your Data

Marketing data is retained until you withdraw consent, unsubscribe, or request deletion. Other personal data is retained only as long as necessary for service delivery, legal compliance, or legitimate operational purposes. Purchase data may be retained for accounting and tax compliance as required by Finnish law.

Cookies

Website visitors may clear or block cookies through browser or device settings. Disabling cookies may affect website functionality. Newsletter subscribers may unsubscribe at any time using the link provided in each marketing email.

Automated Decision-Making and Profiling

We do not use personal data for automated decision-making or profiling.

How We Protect Your Data

Manual records are stored securely and destroyed once digitized. Electronic records are stored on secure servers with restricted access, encryption, and regular backups. In the event of a data breach, we will notify authorities or affected individuals as required by law.