This is a combined privacy policy and information document in accordance with the Data Protection Act and the General Data Protection Regulation of the European Union (2016/679/EU). This privacy policy was created on April 21, 2021, and last updated on June 18, 2025.
DATA CONTROLLER
FeelHobby Oy
Höyläämötie 14
00380 Helsinki
www.feelhobby.com
Contact person for data protection matters:
Henri-Aleksi Pietiläinen
Customer, User, and Marketing Register of FeelHobby Oy ("Customer Register")
Personal data refers to information that can be associated with a specific person. This document provides detailed procedures concerning the collection, processing, and disclosure of personal data, as well as the rights of the user (the data subject). Whenever the customer register contains personal data, its processing complies with data protection laws and other applicable laws, regulations, directives, and official guidelines related to personal data processing.
When a customer registers for a service or purchases online courses offered by FeelHobby Oy.The purpose of the register is to maintain the Customer Register of the data controller regarding customers who have purchased products or services offered by FeelHobby Oy or registered as users of the services.The register is also used for FeelHobby Oy’s marketing and communication purposes.
The term "customer" will be used later in this document to refer to the individuals mentioned in section a).
If the legal basis or conditions mentioned above are exceeded, or if no other legal basis is provided, explicit consent will be requested from the customer for storing, processing, and retaining personal data.
If the data controller does not receive the necessary data listed in Table I, the service cannot be initiated or continued, nor can any other agreement be entered into or legal action be taken with the user.
To provide increased transparency in line with the General Data Protection Regulation (GDPR), the following Table I summarizes the purposes for which we process personal data, the types of data involved, and the legal basis used:
Table I:
Purpose of data collection
Data types
Legal basis
Retention time
Service provision & customer management
Name, DOB, email, account data, order confirmations
Contract - Necessity required to provide the service
24 months
Billing & collection
Payment method (via 3rd party), billing info
Contract - Necessity required to provide the service
24 months
Service development & protection
Technical logs, feedback, usage patterns
Contract – to improve and secure the service
24 months
Marketing & communication
Email, preferences, contact info
Consent – required before use
24 months
Targeted advertising
Browsing behavior, preferences
Consent – required for behavioral targeting
24 months
Analytics & statistics
Technical and usage data
Consent – required to improve performance and analytics
24 months
Legal compliance
Identification and transaction-related data such as name, contact details, payment records, order history, and correspondence
Contract - Necessity required to provide the service and comply with accounting, tax, legal claims, etc
24 months
Personalized recommendations
Content interaction data, usage behavior
Consent – required to improve UX
24 months
Cookie-based tracking / analytics
Device data, browser, location, IP address
Consent – required for non-essential cookies (GDPR + ePD)
24 months
Post-termination data storage
All data previously collected
Contract - required to handling post-termination reclamations
24 months
Returning customer data retrieval
All data previously collected
Consent - required to offer the best possible UX to returning customers by populating their re-opened account with previous data
24 months
FeelHobby Oy processes data to maintain the service and the customer register.
FeelHobby Oy may process the categories of data listed in Table I, column Data types.
We retain personal data only for as long as is necessary to fulfill the purposes outlined in this Privacy Policy, or to comply with applicable legal obligations.
When your use of the FeelHobby service ends — either through cancellation, termination, or account inactivity — we apply the following data retention rules:
Default retention period
By default, we retain personal data for a period of two (2) years following termination of the service. This retention period is based on:
Our contractual obligation to maintain the data for the purpose of handling possible reclamations, service disputes, or consumer protection claims in accordance with the terms of service agreed upon with the customer.
The typical statutory limitation periods under EU consumer protection and contract laws.
During this period, your data will not be used for marketing purposes unless you have given separate consent.
Extended retention by consent
At the point of retention time expiring, we offer you the option to consent to an extended data retention period of up to two (2) years. This allows us to:
Preserve your preferences, purchase history, and usage data in case you decide to return to the service in the future;
Ensure a seamless and personalized user experience should you choose to reactivate your account.
If you provide this consent, your data will be securely stored and made available for reactivation purposes only. You may withdraw this consent at any time by contacting us at [insert contact address/email].
Post-retention deletion
After the expiration of the applicable retention period all personal data will be:
Irreversibly anonymized, or
Securely deleted, unless a longer retention period is required by law (e.g., accounting or legal claim preservation).
You may also request earlier deletion of your personal data at any time, subject to legal or contractual limitations.
Personal data is collected using personal data forms filled out by the customer, during the use of the data controller’s services, or directly from the customer via the data controller's website contact forms, customer satisfaction surveys, and competitions.
Data based on consent is collected directly from the customer or, with their consent, from registers or sources maintained by authorities or third parties.
The data controller may disclose personal data within the limits allowed and required by applicable legislation and to implement the agreement between the parties or to fulfill a legitimate connection.
Data may also be transferred outside the European Union or the European Economic Area as permitted by law, for example, when using cloud services such as OneDrive, iCloud, Google Drive, or Dropbox.
Data may be disclosed to authorities as required by law.
The data controller may disclose data to third parties based on the user's separate written consent.
When outsourcing data management, personal data processing may also occur by the data processors’ subcontractors, but only on behalf of the data controller.
Only those employees of the data controller and subcontractors who need access to data to perform work-related tasks have access to personal data. Data is collected in service databases protected by firewalls, passwords, and other technical means. The databases are located in locked and guarded facilities, with access granted only to pre-defined individuals. User data is stored electronically.
When personal data is processed on behalf of the data controller by a subcontractor, the contracts between the data controller and the subcontractor ensure appropriate safeguards and compliance with data protection legislation.
The customer has the right to inspect the data stored about them in the Customer Register by submitting a written request to the data controller.
The customer has the right to transfer their own provided customer data to a third party in a structured, commonly used, and machine-readable format.
The customer has the right to rectify incorrect personal data, restrict processing, and request the deletion of data.
If data processing is based on consent, the consent can be withdrawn at any time by notifying the representative of the data controller mentioned in this policy.
The data controller does not perform profiling or use automated decision-making based on personal data.
We use cookies on our websites. By using our sites, you agree to the use of cookies.
Cookies enhance the user experience, remember personal settings, provide relevant content, ensure security, collect statistics, and measure advertising effectiveness.
You can clear cookies from your device's browser settings or disable them entirely, but this may affect the functionality of our services.
The data controller continuously develops its operations and may update this privacy policy as needed. Changes may also result from amendments to data protection legislation.
If changes include new purposes for personal data processing or significant modifications, the data controller will notify in advance and request consent if necessary.