Privacy Policy of RuneVire Calligraphy

At RuneVire Calligraphy, we value your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our site, participate in our courses, workshops, or engage with our services. We adhere to the General Data Protection Regulation (GDPR) and other applicable Finnish data protection laws.

1. Contact Information of the Data Controller

The data controller for the processing of your personal data is RuneVire Calligraphy.

• Company Name: RuneVire Calligraphy
• Address: 315 Kalevankatu, Floor 2, 00100 Helsinki, Uusimaa, Finland
• Phone: +358 9 612 3457

2. Information We Collect

We may collect and process various types of personal data depending on your interaction with our site and services:

• Personal Identifiers: Your name, email address, postal address, and phone number when you register for a course, workshop, commission a custom piece, or subscribe to our newsletters.
• Payment Information: Details necessary to process payments for courses, workshops, and custom commissions. We use secure third-party payment processors, and we do not store your full payment card details on our servers.
• Interaction Data: Information you provide when you communicate with us, such as inquiries, feedback, or support requests.
• Usage Data: Information about how you access and use our site, including your IP address, browser type, operating system, referring URLs, pages viewed, and the dates/times of your visits. This helps us understand how our site is used and improve your experience.
• Course and Workshop Participation Data: Information related to your enrollment in and participation in our traditional and modern calligraphy courses, personalized workshops, and corporate team-building events.
• Custom Commission Details: Specific requirements and preferences for custom calligraphy commissions.

3. How We Use Your Information

We use the collected information for various purposes, primarily based on legitimate interests, contractual necessity, or consent:

• To Provide and Manage Services: To deliver our calligraphy courses, workshops, corporate events, and custom commissions, process your registrations and payments, and communicate with you about your participation.
• To Communicate With You: To respond to your inquiries, provide customer support, and send you important notices related to our services.
• For Marketing and Promotional Purposes: To send you newsletters, updates about new courses, workshops, services, or special offers that may be of interest to you, where you have provided consent.
• To Improve Our Site and Services: To analyze how our site and online resources are used, understand user preferences, and enhance the quality and range of our offerings.
• For Security and Fraud Prevention: To protect our site, services, and users from fraudulent or illegal activities.
• To Comply with Legal Obligations: To meet legal and regulatory requirements, such as tax and accounting obligations in Finland.

4. Legal Basis for Processing Personal Data (GDPR)

We rely on the following legal bases for processing your personal data:

• Performance of a Contract: When processing is necessary for the performance of a contract with you (e.g., enrolling in a course, fulfilling a custom commission).
• Legitimate Interests: When processing is necessary for our legitimate interests, provided these do not override your fundamental rights and freedoms (e.g., improving our services, marketing activities).
• Consent: When you have given explicit consent for specific processing activities (e.g., subscribing to marketing newsletters). You have the right to withdraw your consent at any time.
• Legal Obligation: When processing is necessary to comply with a legal obligation (e.g., accounting or tax laws).

5. Disclosure of Your Information

We do not sell, trade, or rent your personal data to third parties. We may share your information in the following limited circumstances:

• Service Providers: We may share data with trusted third-party service providers who assist us in operating our site, conducting our business, or serving our users (e.g., payment processors, web hosting, analytics providers). These service providers are contractually obligated to keep your information confidential and use it only for the purposes for which we disclose it to them.
• Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency).
• Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred as part of the transaction. We will notify you via email and/or a prominent notice on our site of any such change.

6. International Data Transfers

RuneVire Calligraphy operates primarily in Finland. If we transfer your personal data to countries outside the European Economic Area (EEA), we will ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission, to protect your data in accordance with GDPR requirements.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The retention period for different types of data may vary based on business needs and legal obligations.

8. Your Data Protection Rights (GDPR)

Under GDPR, you have the following rights concerning your personal data:

• Right to Access: You have the right to request copies of your personal data we hold.
• Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data under certain conditions.
• Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions.
• Right to Object to Processing: You have the right to object to our processing of your personal data under certain conditions.
• Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the contact details provided in Section 1. We will respond to your request within one month.

9. Security of Your Data

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, accidental loss, disclosure, alteration, or destruction. We regularly review our security procedures and update them as necessary.

10. Links to Other Websites

Our site may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We encourage you to review this Privacy Policy periodically for any changes.

12. How to Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

• RuneVire Calligraphy
• 315 Kalevankatu, Floor 2
• 00100 Helsinki, Uusimaa
• Finland

13. Complaining to a Supervisory Authority

If you are unsatisfied with our response or believe that we have not complied with data protection laws, you have the right to lodge a complaint with the relevant data protection supervisory authority in Finland. The contact information for the Finnish Data Protection Ombudsman is available on their website.