Privacy Policy

Cerberos.fi is committed to protecting its customers’ privacy and offers them the opportunity to influence how their data is processed.

This Privacy Policy informs our customers about the processing of their personal data. Customers must accept the terms of this Privacy Policy in order to use Cerberos.fi: our services.

The data we collect can be divided into data provided by the user, data observed from the use of online services, and data derived through analytics.
We use this information:

  • To provide an easy-to-use and secure service
  • To provide a good customer experience
  • To improve product recommendations and marketing
  • To develop customer service and the online store


DATA CONTROLLER AND CONTACT INFORMATION

The data controller for the personal data being processed is:

Apex Trading Oy (Business ID 3022072-5)
Ripusuontie 6 D
00660 HELSINKI

You can ask for more information about data protection and the processing of personal data by emailasiakaspalvelu@cerberos.fi

 

 

WHAT INFORMATION ABOUT ME MAY BE COLLECTED?

  • Information provided by the user or information that identifies the individual
    • Identification information, such as name
      • and personal identification number, to identify the customer when entering into a credit agreement
      • Passport details or equivalent information required by Customs when ordering tax-free products or services from outside Finland
    • Contact information, such as address, email address, and phone number
    • Payment information, including credit agreements and other billing information
    • Location data, with the customer’s consent, used to estimate delivery times
    • Email address and authentication credentials used for Google, Facebook, or Microsoft login
  • Data observed from the use of services and derived through analytics
    • Purchase history, e.g. Ordered products and their price information
    • Delivery information, such as the selected delivery method and delivery address
    • Product reviews
    • Online store usage- and browsing data, as well as device identification data
    • Product recommendations and other data and identifiers used for targeted content

Providing identification, contact, and payment information is mandatory when makingCerberos.fi : a purchase online.

The primary source of this data is the user themselves; however, we may also receive additional information from our partners, such as credit service providers. In accordance with the provisions of the General Data Protection Regulation, we will notify you of any personal data we receive from third parties during our first contact with you or within one month of receiving the personal data at the latest.


HOW IS MY PERSONAL INFORMATION USED?

Personal information is used

  • to
  • : Maintain customer relationships
  • Deliver orders, processing and archiving
  • Cerberos.fi: , to develop operations and services,
  • to improve the customer experience
  • , for analytics and statistical purposes
  • , to produce more personalized and targeted content and marketing
  • , to prevent misuse

, and to provide better customer service

. Data is processed Cerberos.fi: based on the customer Cerberos.fi: relationship ,Cerberos.fi : agreement, use of the website, the customer’Cerberos.fi : s separate explicit consent, or legal obligations.the customer relationship, the agreement, the use of the website, the customer’s separate explicit consent, or legal obligations.


HOW IS MY DATA STORED AND PROTECTED?

All personal data is protected against unauthorized access and against accidental or unlawful destruction, alteration, disclosure, transfer, or other unlawful processing.

Cerberos.fi We store customer data electronically. The technical security of our data centers and retail systems, as well as the security of our processes, is at a very high level, and these services are purchased from a major service provider. Our servers are protected against data breaches and denial-of-service attacks.

In the processing of personal data and technical solutions, we adhere to good data protection practices, including data consolidation, minimization, pseudonymization, anonymization, and encryption. The processing of personal data complies with the requirements of the EU General Data Protection Regulation (GDPR), which took effect on May 25, 2018.

All access to personal data is monitored in accordance with best practices.


WHO PROCESSES MY PERSONAL DATA?

OnlyCerberos.fi: our own employeeshave access to customer dataCerberos.fi: . Our staff is trained to handle data securely and ethically. Each member of our staff can only view customer data to the extent necessary for performing their job duties.

We use trusted contractual partners, which means that data may be transferred to a third party. Our agreements with all partners take into account the requirements set by the EU General Data Protection Regulation and other applicable legislation.

Company responsible for data processing:

Apex Trading Oy (Business ID 3022072-5)
Ripusuontie 6 D
00660   HELSINKI

 

HOW LONG WILL MY DATA BE STORED?

We will store your personal data only for as long as necessary to fulfill the purposes described in this privacy notice. In addition, certain data may be retained for a longer period to the extent necessary to fulfill legal obligations, such as those related to accounting and consumer transactions, and to demonstrate compliance with these obligations.

At the customer’s request, personal data concerning them may be deleted or anonymized Cerberos.fi : from our systems. The deletion and anonymization process is irreversible, and we cannot restore deleted customer accounts.

For certain types of data, legislation imposes obligations regarding longer-term data retention, such as for the following purposes:

  • The Accounting Act stipulates longer retention periods for data, regardless of whether the material contains personal data or not
  • . Fulfilling obligations related to consumer sales
  • . System log data is collected and stored as required by law, so that we can provide a lawful and secure online store for our customers
  • Taking adequate backups of the store’s databases and systems to secure data, correct errors, and ensure data security and continuity


WHAT RIGHTS DO I HAVE?

As a customer, you have the right

  • to:
    • Access your personal data, including the right to receive a copy of your personal data
    • Request the correction or deletion of your personal data
    • Under certain conditions, you may request that processing be restricted or object to the processing of your personal data

    . Furthermore, if the processing is based on separate consent, you have the right to withdraw your consent at any time. Please note that this does not affect the lawfulness of any data processing carried out prior to the withdrawal of your consent.

    You can submit a request to exercise your rights by contacting our customer service. The request must be sufficiently specific so that our customer service can verify your identity. We will notify you if we are unable to fulfill certain parts of your request, such as deleting all data that we are legally required to retain (e.g., credit information) or have the right to retain.

    If you notice that the processing is deficient or unlawful, you have the right to file a complaint  with the data protection authority. .


    HOW CAN I ACCESS THE INFORMATION STORED ABOUT ME IN THE SYSTEM?

    You can request Cerberos.fi: the data stored about you in our systems by contacting us via email asiakaspalvelu@cerberos.fi


    HOW CAN I CONTROL HOW MY DATA IS USED?

    Cerberos.fi is committed to providing its customers with opportunities to control how their data is processed.

    You can decide for yourself about targeted marketing and value-added services, and choose whether or not to receive various marketing messages. We are constantly developing our service, so features may be added, changed, or removed.

    You can also close your account at any time and requestCerberos.fi : that we delete your personal data by contacting our customer service.

    Note! In some cases, not all data can be deleted, and legislation may require us to retain certain information related to you.


    DO YOU SHARE MY PERSONAL DATA WITH THIRD PARTIES?

    We may share certain necessary information with third parties to ensure delivery and for marketing purposes. Your information is also shared with the credit provider when a credit decision is made.

    We also use customer data with third parties for analytics and personalization purposes. We utilize purchase behavior and browsing data with our partners so that we can better offer you products and offers that interest you. Data used for analytics and personalization purposes is anonymized or pseudonymized whenever possible. Only we are able to link the pseudonymized data used to your name.

    If necessary, we also disclose data to authorities. We always inform the customer of data requests as well, if permitted by law.

    We share data with the following third parties:

    • Analytics and statistics partners
    • Product recommendation and personalization partners
    • Email marketing partners, if the customer has consented to receive a weekly newsletter, communications based on browsing history, or product review requests
    • SMS partners, when sending text messages is permitted
    • To the shipping company, if the selected delivery method is pickup at a pickup point, nearest post office, or door-to-door delivery
    • To the payment processor when paying by credit card
    • To the credit provider, when the customer selects a credit company invoice or installment plan as the payment method
    • To the billing operator, whenCerberos.fi : “own invoice” is selected as the payment methodCerberos.fi :
    • To the product supplier, when ordering electronic licenses or direct delivery products
    • To some service companies, order-related information is forwarded in connection with service
    • When purchasing tax-free goods from Customs,
    • or when invoices become overdue and are transferred to a collection agency,

    Cerberos.fithe company ensures a high level of data security and protection when transferring and processing data, in accordance with the EU General Data Protection Regulation. The means of ensuring the level of data processing by third parties include standard contractual clauses approved by the European Commission, binding corporate rules (BCR), the EU-U.S. Privacy Shield, or other methods approved under the General Data Protection Regulation (GDPR).

    The customer may restrict the disclosure of data for marketing and analytics purposes.


    DO WE USE COOKIES ON THE STORE’S WEBSITE

    Cerberos.fi, AND WHAT ARE THEY?

    Cerberos.fi uses cookies and other similar technologies, such as browser local storage. Cookies are small text files exchanged between the browser on your device and the server. Cookies and other identifiers have a specified expiration time, after which the browser deletes the identifier. We use these technologies to perform functions, for personalization, and for analytics and targeted marketing.

    Functional cookies and local storage are used, for example, to customer identification, maintaining your login, delivery time estimates, and shopping cart functionality. For these functions, the use of cookies and local storage, and your consent to their use, is mandatory. Functional cookies and local storage variables set by the server remain in your browser for 15 minutes to 24 months, unless they are specifically deleted via your browser settings. Visiting the site resets cookies and local storage variables if your browser allows it.

    By personalizing the user experience, we can offer more product recommendations on our site that are of interest to our customers.

    The partners and technologies we use for analytics and targeted marketing, such as pixel tags and cookies, help us better understand our customers’ behavior and tell us which products, features, and services interest our customers. The data used is anonymized whenever possible. Otherwise, we treat data as personal data to the extent that the identifier contains information that can be used to identify a customer, such as an IP address. Identifiers that can be linked to a customer in any way are also treated as personal data. The validity period of identifiers ranges from 30 seconds to 24 months.

    We use Google Analytics, Google Tag Manager, Google AdWords, Google Display Network, and Google DoubleClick for analytics related to our website usage, popular products, trends, and sales, and, with your consent, also for targeted marketing. The data sent to Google is anonymized. Read more about how Google Analytics processes data.

    . In addition to the privacy settings in Account Management, you can opt out of identifiers used for targeted marketing by enabling your browser’s “Do Not Track” feature and setting your browser to reject third-party cookies.When logged into your customer account, the privacy settings in Account Management override your browser’s “Do Not Track” feature.


    CAN THIS PRIVACY POLICY BE CHANGED?

    Due to service developments and changes in legislation, we reserve the right to modify this privacy policy. Registered customers will be notified of significant changes to the Privacy Policy when the Terms of Service are updated.


    WHO CAN I CONTACT?

    You can contact us via email regarding questions related to privacy, data processing, and the Privacy Policyasiakaspalvelu@cerberos.fi