- Home
- Privacy Policy
Privacy Policy
This policy describes how Flexluminous handles personal data when you visit this website or contact us. We aim to keep our processing limited, transparent, and easy to understand.
Last reviewed on todayFlexluminous publishes general informational and educational content about evening routines and reflection. Protecting the limited personal data we handle is important to us, and this Privacy Policy sets out how we do so in accordance with the EU General Data Protection Regulation (GDPR) and applicable Finnish data protection law.
1. Who we are (data controller)
The data controller responsible for your personal data is:
- Name: Flexluminous
- Address: Urho Kekkosen katu 1, 00100 Helsinki, Finland
- Telephone: +358 40 567 0939
- Website: flexluminous.world
If you have any questions about this policy or about how we handle your information, you can reach us using the details above or through our contact page.
2. Scope of this policy
This policy applies to personal data processed through this website, including data you submit using the contact form and information collected automatically through cookies and similar technologies. It does not apply to third-party websites that may be linked from our pages; those services operate under their own privacy notices, which we encourage you to read.
By using this website, you acknowledge that you have read and understood this policy. Where we rely on your consent, you remain free to withdraw it at any time, as explained below.
3. The personal data we collect
We deliberately keep data collection to a minimum. Depending on how you interact with the site, we may process the following categories of information.
3.1 Information you provide directly
- Contact details: the name and email address you enter into the contact form.
- Message content: the text of any enquiry you choose to send us.
- Consent records: a record that you ticked the consent box and the time it was submitted.
3.2 Information collected automatically
- Technical data: basic information such as browser type and approximate region, where analytics cookies are permitted.
- Usage data: aggregated, non-identifying statistics about which pages are read, again only where you allow analytics cookies.
We do not ask for, and request that you do not send, special categories of data such as health information. Our content is informational only and we have no need for sensitive personal data.
4. Purpose and legal basis for processing
We only process personal data where we have a valid legal basis under Article 6 of the GDPR. The table below summarises our main processing activities.
- Responding to enquiries: we use your contact details and message to reply to you. Legal basis: your consent, and our legitimate interest in answering questions about our content.
- Site analytics: we use aggregated statistics to understand how our content is read and to improve it. Legal basis: your consent, given through the cookie banner.
- Security and maintenance: we keep our website running safely and reliably. Legal basis: our legitimate interest in operating a secure service.
- Legal compliance: where required, we process data to meet legal obligations. Legal basis: compliance with a legal obligation.
5. How and with whom we share data
We do not sell personal data, and we do not share it for unrelated purposes. We may share limited information with trusted service providers who help us operate the website, such as hosting and analytics providers. These providers act as processors on our instructions and are bound by appropriate confidentiality and data protection terms.
We may also disclose information where we are required to do so by law, or to protect the rights, safety, and property of our readers and of Flexluminous.
6. How long we keep your data
We retain personal data only for as long as necessary for the purpose for which it was collected.
- Enquiry messages: kept for up to twenty-four months after our last correspondence, then deleted, unless a longer period is required by law.
- Consent records: kept for as long as needed to demonstrate that consent was given, in line with our accountability obligations.
- Analytics data: retained in aggregated form for up to fourteen months, after which it is removed or further anonymised.
When data is no longer needed, we delete it securely or anonymise it so that it can no longer be linked to you.
7. How we protect your data
We apply reasonable technical and organisational measures designed to protect personal data against unauthorised access, loss, or misuse. These include serving the website over encrypted HTTPS connections, limiting access to data on a need-to-know basis, and reviewing our practices periodically.
No method of transmission or storage is completely secure, and we cannot guarantee absolute security. We do, however, take our responsibilities seriously and respond promptly to any issue we become aware of.
8. Your rights under the GDPR
If you are located in the European Economic Area, you hold a number of rights regarding your personal data. You may:
- request access to the personal data we hold about you;
- ask us to correct inaccurate or incomplete data;
- request that we erase your data where there is no overriding reason to keep it;
- ask us to restrict or object to certain processing;
- request a copy of your data in a portable format;
- withdraw consent at any time, without affecting processing carried out before withdrawal.
To exercise any of these rights, please contact us using the details in section 12. We will respond within the timeframes required by law. If you believe your rights have not been respected, you may lodge a complaint with the Finnish Data Protection Ombudsman (Tietosuojavaltuutetun toimisto).
9. International data transfers
We aim to keep personal data within the European Economic Area. Where a service provider processes data outside this area, we ensure that appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.
10. Children's privacy
Our website and content are intended for a general adult audience. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so that we can remove it.
11. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices or in the law. When we do, we will revise the review date shown at the top of this page. We encourage you to revisit this page periodically to stay informed.
12. How to contact us
If you have any questions, requests, or concerns about this Privacy Policy or your personal data, please write to Flexluminous, Urho Kekkosen katu 1, 00100 Helsinki, Finland, call +358 40 567 0939, or use our contact form. We are glad to help and will respond as soon as we reasonably can.
This policy is provided for general information. It reflects our current practices and does not constitute legal advice. For advice on your specific situation, please consult a qualified professional.