Privacy statement

AICCI' services including marketing, sales and website services

Valid from 1 April 2020

Contact information of controller

Business ID: 20767006
Punasillantie 33
Tel. +358 (0)10 418 1440

Contact person in matters related to the register

Päivi Charpentier

Name of register

AICCI customer register

Purposes for which personal data in the register is processed

The register is maintained based on the customer relationship, the consent given by the Customer, the assignment the Customer has given to AICCI, as well as the fulfillment of AICCI’s legal obligations.

AICCI collects personal data in its customer register under legislation that binds AICCI for the following purposes:
Identification of the Customer’s identity and access management
– Verification of the signing authority of business customers
– Processing, delivery and archiving of orders and returns
– Communication-related to the orders, deliveries and returns, such as order and delivery confirmations
– Customer relationship management and development
– Measurement of customer satisfaction. It is measured to develop AICCI’s customer experience and to ensure service quality.
– Carrying out customer service tasks, processing customer feedback and developing customer service activities.
– Hosting customer events organized by AICCI
– Fulfilling the obligations according to the statutory and regulatory provisions concerning AICCI, as well as the fulfillment of responsibility
– For use in the quality control and development of the AICCI products and services
– Statistical purposes
– Communication with stakeholders

Data content of the register

Personal data submitted by the customer or user of online services to AICCI at various times, such as during a product order or newsletter subscription, may include the following:

 Customer information:
First and last name
– Date of birth
– Street address
– Postcode
– City
– Email address
– Telephone

Identification unique to the registered Customer:
Business ID (business customers)
– Customer ID

Order and payment transaction information:
Information regarding the Customer’s orders and returns
– Information on payment transactions performed by the Customer

Data collected when delivering orders:
First and last name
– Business ID (business customers)

Customer ship information:
– Information necessary for implementing customer service
– Customer product reviews and favorite products
– Information provided by the Customer for measuring customer satisfaction
– Customer feedback
– Customer service contact history

Regular sources of personal data

The Customer’s data will mainly be collected from the Customer him- or herself when he or she is using Aicci’s services.

Personal data are also collected when the Customer conducts ordering and payment activities. If the order is intended as a gift or is to be delivered by a different person, the contact information of said person will be stored upon order.

Personal data are obtained upon registration and payment transactions in customer events from customers and on participants entered by the customer upon registration.

Determination of the period of storage of personal data

AICCI stores Customer’s personal data as long as is necessary for implementing the purposes defined in the paragraph “Personal data purposes of use and the legal basis for processing”. However, valid legislation, such as accounting laws or other exigent legislation, may require the storage of personal data even after the purpose of processing has expired. In such situations, storage times defined in applicable legislation shall apply.

Disclosure and transfer of personal data to third parties

The Customer’s data may be transferred to third parties associated with the provision of the AICCI services in conjunction with technical implementation, data processing, maintenance, customer service and the packaging and delivery of orders.

The Customer’s data will not be disclosed for direct marketing purposes.

Transfer of personal data outside the EU or the European Economic Area

AICCI will not transfer personal data outside the EU or European Economic Area other than as required by the customer’s presence outside the EU and the related processing or delivery of the product order. However, some AICCI’s partners who process personal data on behalf of AICCI have stated that in certain situations they may transfer such data outside the EU or EEA. We have ensured that the level of information security is also protected in such situations by standard contractual clauses drafted by the EU or under data protection legislation. Our website utilises tools whose service providers may be located outside the EU or EEA. An example of such a service provider is Google Analytics. If such tools are used, a sufficient level of protection will be ensured by securing data transfer with protective measures following data protection legislation.

Use of cookies

Under the Information Society Code (917/2014), the cookie files used on AICCI Ltd’s website are used in a manner that does not infringe on the privacy of website users. Cookies are used, for example, for measurement and research purposes to determine the type and volume of use of the service and to develop websites. Cookies are also used for targeted communications. Website users may block the acceptance of cookies using their internet browser settings, but this may cause reduced site functionality. AICCI cannot guarantee the functionality of the site if cookies are disabled.

Register information security

All personal data is collected in databases that are secured by firewalls, passwords and other technical means. The physical databases are located in locked and controlled facilities. Access to personal data in the register is restricted within AICCI’s organisation to those who require access and to third parties who are involved in the provision of services as AICCI’s subcontractors. Login requires a personal username and password, which are granted and administered by AICCI. Personal data will be transferred in encrypted form over the public network in the background systems of the online shop. Persons processing personal data in the register are bound by a nondisclosure agreement.

Right to access data

Data subjects have the right to access and review their data stored in the customer register. Requests for access must be made in writing, signed and delivered either via email to The access request must include the data subject’s first and last name, personal identification number, address information and phone number. A reply to the request for access will be sent via email or mail.

Right to rectify inaccurate or outdated information

A Customer personal data can be requested by contacting Furthermore, data subjects, have the right to request the erasure or partial erasure of their data, unless storage is required under legal obligations. Requests for the erasure of data may be submitted to

Right to transfer data between controllers

Insofar as data subjects have provided and consented to the processing of their data by AICCI, they have the right to receive a copy of such data primarily in a machine-readable format and the right to transfer said data to another controller.

Right to file a complaint to supervisory authorities

Data subjects have the right to file a complaint to the competent supervisory authority if they find AICCI to have acted in violation of the applicable legislation on data protection.