Independent outdoor planning notes for Finland—general information only; not professional, medical, or rescue advice. We are not a government agency or emergency channel. Life-threatening emergencies: call 112 (Finland / EU). About this site.
Logo mark for Radiantwyflora.world

Privacy policy

Controller: Radiantwyflora.world
Address: Kokokehon sisäänkäynti, Koskitie 19 A 1, 90500 Oulu, Finland
Y-tunnus (Business ID): FI10435606
Email: team@radiantwyflora.world
Phone: +358 50 300 3933

You are not generally required by law to provide personal data simply to read public pages. If you choose to contact us, providing accurate contact details is necessary for us to respond, but you should avoid sending sensitive categories of data (such as health data) unless we have agreed a secure channel and a lawful basis in advance.

This policy explains how we process personal data when you use this informational website. It applies when Finnish law and/or the EU General Data Protection Regulation (GDPR, Regulation (EU) 2016/679) apply to our processing. Finland’s national Data Protection Act (Tietosuojalaki, 1050/2018, as amended) supplements the GDPR with national rules (for example on certain processing by authorities and specific national provisions). Nothing in this policy limits rights that cannot be restricted under mandatory EU or Finnish law.

We aim to present our identity, contact details, and data practices clearly—whether you arrived through a search engine, a social link, or a paid advertisement—so that review by visitors, regulators, or advertising platforms can rely on the same public information.

What data we process and why

Website delivery and security

When you load pages, hosting infrastructure may automatically process technical data such as IP address, timestamp, requested URL, user agent string, and HTTP referrer. Purposes include delivering content, detecting abuse, and maintaining stability. Legal bases may include legitimate interests (GDPR Article 6(1)(f)) in securing the service and measuring basic technical reliability, balanced against your rights.

Contact form messages

If you email us or use the contact form, we process the identifiers and content you supply (typically name, email address, and message text). The purpose is to answer your question and keep a proportionate record of the conversation if needed. Legal bases may include: GDPR Article 6(1)(a) consent (where we ask you to tick a box before sending); Article 6(1)(b) steps at your request prior to entering into or performing a contract, where your message relates to a service we offer; and/or Article 6(1)(f) our legitimate interest in handling ordinary enquiries, balanced against your rights. This site is largely static: if the form is configured to open a confirmation page in the browser without a secure back-end, your data may not reach us as an email—do not use that path for confidential information; use email or another channel we confirm in writing.

Cookie and similar data

We separate strictly necessary storage from optional analytics and marketing categories. Details are provided in the cookie policy. Non-essential cookies and similar technologies are activated only with valid consent under Finnish implementation of the ePrivacy rules (see the Act on Electronic Communications Services) and, where they involve personal data, the GDPR.

Your rights

Where the GDPR applies, you may have the right to: access your personal data; rectify inaccurate data; erase data (“right to be forgotten”) in situations listed in the GDPR; restrict processing; object to processing based on legitimate interests (including profiling based on those interests, where applicable); data portability for data you provided, where processing is based on consent or contract and is carried out by automated means; and withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing before withdrawal. We do not carry out solely automated decision-making, including profiling, that produces legal or similarly significant effects on you within the meaning of GDPR Article 22.

To exercise your rights, contact us using the controller details at the top of this page. We will respond without undue delay and in any event within one month of receiving your request, unless the GDPR allows an extension (for example because the request is complex), in which case we will inform you of the extension and reasons.

You also have the right to lodge a complaint with a supervisory authority. In Finland the lead supervisory authority for private controllers is the Office of the Data Protection Ombudsman (Tietosuojavaltuutettu): tietosuoja.fi (street address Lintulahdenkuja 4, 00530 Helsinki; postal address PL 800, 00531 Helsinki, Finland). If you live or work in another EEA country, you may instead contact your local supervisory authority.

We are not required to appoint a data protection officer under GDPR Articles 37–39; privacy questions are handled using the contact details above.

Retention

Contact messages are retained only as long as needed to complete the conversation and for any follow-up obligations, typically up to 24 months, unless a longer period is required by applicable law (for example legal obligation under GDPR Article 6(1)(c) such as accounting or tax record rules in Finland) or a proportionate need to establish, exercise, or defend legal claims. Server logs are retained on a rolling basis according to hosting configuration, commonly between 30 and 180 days, unless longer retention is necessary for security investigations or another lawful purpose.

Processors and transfers

We use service providers (for example website hosting, email, or—if enabled—analytics or marketing tools) who process personal data on our instructions. We choose processors that give sufficient guarantees under GDPR Article 28 and we govern the relationship with a contract or other legal act where required.

If personal data is transferred outside the European Economic Area (EEA), we ensure a valid transfer mechanism under Chapter V GDPR (for example the European Commission’s standard contractual clauses, an adequacy decision, or another approved mechanism), together with any supplementary measures required by case law and guidance from the Finnish Data Protection Ombudsman and the European Data Protection Board.

Sources of data and automated decisions

Most personal data we process comes directly from you (for example when you write to us) or is generated when you use the site (technical logs). We do not buy or sell personal data lists for this website.

Security

We apply reasonable technical and organisational measures appropriate to the risk, including access limitation, transport encryption where supported by hosting, and staff instructions to minimise data use. No online transmission is completely risk-free.

Children

This site is intended for a general audience interested in outdoor planning in Finland. Information society services offered directly to a child are subject to specific rules under the GDPR and Finnish law where applicable. If you believe a child has provided personal data without appropriate authority, contact us and we will take reasonable steps to review and, where appropriate, delete the data in line with GDPR Article 8 and applicable national provisions.

Legal claims

Under GDPR Article 79, you may bring a judicial remedy against us before the courts of Finland (or, where applicable, before the courts of another Member State where you reside) if you consider that your rights have been infringed.

Updates

We may update this policy to reflect changes in processing or legal requirements. Material changes will be indicated by updating the “Last updated” date below.

Last updated: 14 May 2026

Return home Contacts