This policy explains the what, how, and why of the information we collect when you visit our websites, or when you use our Services. We truly respect your privacy and we are fully committed to protect your personal information and use it properly. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this data protection statement. This policy describes how we may collect and use your personal information, and your rights and choices available for you as visitors such information.
These definitions should help you understand this policy. When we say “we,” “us,” “our,” and “Tunto,” we are referring to Tunto Design Oy, a Finnish limited company (Ltd) located in Järvenpää. We design and manufacture high end LED and OLED design lighting solutions offered through the URL www.tunto.com (we’ll refer to it as the “Website”) that allows you to browse our products, services, and to order our products online in our webshop "Service". As a website visitor and/ or customer of the webshop ("Service)", you’re a “visitor” according to this agreement (or “you”).
Questions & Concerns
If you have any questions or comments, or if you want to update, delete, or change any Personal Information we may hold, or you have a concern about the way in which we have handled any privacy matter, please use our contact form to send us a message. You may also contact us by postal mail or email at:
Tunto Design Oy
Attn. Privacy Officer
Information We Collect
Web beacons: For our E-mail marketing (newsletter) we're using MailChimp which is a marketing automation platform. This marketing tool uses web beacons in our newsletter processing. When we send emails to Members, we may track behavior such as who opened the emails and who clicked the links. This allows us to measure the performance of our email campaigns and to improve our content for our subscribers. To do this, MailChimp includes single-pixel gifs, also called web beacons, in emails we send.
How do we Store, Share & Disclose your Personal Information?
Our company is hosted on the Wix.com platform. Wix.com provides us with an online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases, and the general Wix.com applications. They store your data on secure servers behind a firewall.
All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
Cookies and Tracking
Google AdWords: We may use the "Custom Audiences" remarketing feature of Google Inc. ("Google"). The remarketing tag of Google AdWord was implemented on this website. You can opt-out of Google Analytics for Display Advertising and customize the Google Display Network ads by visiting the Google Ads Settings page: http://www.google.com/settings/ads Google also recommends installing the Google Analytics Opt-out Browser Add-on - https://tools.google.com/dlpage/gaoptout - for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics. For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: google.com/intl/en/policies/privacy/
Google Analytics: We may use the "Google Analytics" analyzing feature of Google Inc. ("Google"). The analytics tag of Google Analytics was implemented on this website. You can opt-out of Google Analytics for analyzing the Google Network by visiting the Google Ads Settings page: http://www.google.com/settings/ads Google also recommends installing the Google Analytics Opt-out Browser Add-on - https://tools.google.com/dlpage/gaoptout?hl=en - for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics.For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: google.com/intl/en/policies/privacy/
Hotjar Analytics: We may use the "Hotjat-Heatmap" analyzing feature of Hotjat Inc. ("Hotjar"). You can opt-out of Hotjar Analytics by visiting the Hotjar Ads Settings page: https://www.hotjar.com/opt-out
Public Information and Third Party Websites
(a) Social media platforms and widgets. Our Website may include social media features, such as the Facebook Like button, Facebook Share button. These features may collect information about your IP address and which page you are visiting on our Website, and they may set a cookie to make sure the feature functions properly. Social media features and widgets are either hosted by a third party or hosted directly on our Website. We also maintain presences on social media platforms including Facebook, , Instagram, YouTube, and Pinterest. Any information, communications, or materials you submit to us via a social media platform is done at your own risk without any expectation of privacy. We cannot control the actions of other users of these platforms or the actions of the platforms themselves. Your interactions with those features and platforms are governed by the privacy policies of the companies that provide them.
We may disclose Personal Information to the following types of third parties for the purposes described in this policy:
Service Providers. Sometimes, we share your information with our third-party Service Providers, who help us provide and support our Services. For example, it is necessary to provide your Address to our shipping partners to be able to deliver your ordered goods. Then we may share your Personal Information with a Service Provider for that purpose. Just like with the other third parties we work with, these third-party Service Providers enter into a contract that requires them to use your Personal Information only for the provision of services to us and in a manner that is consistent with this policy. Examples of Service Providers include payment processors, delivery services.
Communication From Us
Newsletter: On our homepage, you have the possibility to sign up to our newsletter. By subscribing to our newsletters, social media accounts or public events and providing us with your e-mail address, you expressly agree to receive promotional content, messages through such means. Accordingly, we shall be entitled to send you promotional content or messages by e-mail. If you wish not to receive such promotional messages, you may notify us at any time via firstname.lastname@example.org follow the “link marked “unsubscribe” to opt-out, that is provided at the bottom of every newsletter you will receive from us. We'll immediately remove you from our database.
Contact Form: On our website, you have the possibility of filling in the contact form with your Data to send us directly a message. The personal data we collect is first name, last name, e-mail address, and your message. If you click the checkbox for "express approval" and press send, you expressly agree to receive messages through such Means. Accordingly, we shall be entitled to send you messages by e-mail.
We may contact you to notify you of your order, troubleshoot your order, settle a dispute, collect fees due, express your opinion through surveys or questionnaires, to send updates about our company, or if it is necessary to contact you to enforce our user agreement, applicable national laws and any agreement we have made with you. For these purposes, we can contact you by e-mail, telephone, SMS, and mail.
Safeguarding Your Payment Information
Our credit card processing vendor uses security measures to protect your information both during the transaction and after it is complete. All confidential information and transactions will be encrypted when you place an order from our webshop. The transmission of sensitive payment information (such as a credit card number) through the purchase forms is protected by an industry standard SSL/TLS encryptedconnection; and our provider regularly maintain a PCI DSS (Payment Card Industry Data Security Standards) certification.which is the industry standard for Internet encryption, used by banks to secure online transactions.
In other words, the transactions are processed confidentially and transferred by an encrypted SSL connection. Our payment provider Wirecard AG is the leading specialist for payment processing and issuing. Wirecard AG utilizes a fraud detection software (Wirecard Fraud Prevention Suite) which makes online payments more secure than ever.
Law Enforcement, Legal Requests, and Duties
Tunto may disclose or otherwise allow others access to your Personal Information pursuant to a legal request, such as a subpoena, legal proceedings, search warrant or court order, or in compliance with applicable laws, if we have a good faith belief that the law requires us to do so, with or without notice to you.
Withdraw Consent or Make Changes
If you don’t want us to process your data anymore, please contact us at email@example.com or send us a mail to: (see below). We will give you access to any Personal Information we may hold about you within 2 working days of any request for that information. You may request to access, correct, amend or delete information we hold about you. Unless it is prohibited by law, we will remove any Personal Information about you from our servers and files at your request. There is no charge for you to access, request or update your Personal Information.
Tunto Design Oy
Attn. Privacy Officer