Tietosuojakäytäntö

Last updated: 17 February 2026

1. Who We Are

Same Same Studio is operated by:

Pentikäinen Niko Aleksanteri

Business ID: FI32775775

Finland

Email: info@samesamestudio.fi

For the purposes of the General Data Protection Regulation (EU) 2016/679 ("GDPR"), we act as the Data Controller.

For any data protection related matters, you can contact us at info@samesamestudio.fi

2. Personal Data We Collect

We only collect personal data necessary to operate our online store, including:

Identification and contact data

  • Name
  • Billing and delivery address
  • Email address
  • Phone number (if provided)

Transaction data

  • Order details
  • Payment confirmation information processed by payment providers

Technical data

  • IP address
  • Browser and website usage data through cookies and analytics tools

3. Purpose of Processing Your Data

We use personal data to:

  • Process and deliver orders
  • Provide customer support
  • Comply with legal and accounting obligations
  • Prevent fraud and maintain website security
  • Improve website performance and user experience through analytics

4. Legal Basis for Processing

We process personal data based on:

  • Contract, when you place an order
  • Legal obligation, such as accounting and tax obligations under Finnish law
  • Legitimate interest, for fraud prevention and website security
  • Consent, analytics cookies and similar technologies

You may withdraw your consent at any time.

5. Third-Party Service Providers

We use trusted third-party services to operate our store, including:

  • Shopify (e-commerce platform)
  • Payment providers integrated into Shopify
  • Shipping providers
  • Accounting services
  • Google Analytics for website analytics

Where required, data processing agreements (DPAs) are in place with our service providers.

Some providers may process data outside the European Union. In such cases, appropriate safeguards are applied in accordance with the GDPR.

6. Data Retention

We retain personal data only as long as necessary:

  • Order data: typically six years in accordance with Finnish accounting law
  • Analytics data: according to configured retention settings

When data is no longer required, it is securely deleted or anonymized.

7. Your Rights

Under the GDPR, you have the right to:

  • Access your personal data
  • Request correction or deletion
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent at any time
  • Lodge a complaint with the Finnish Data Protection Ombudsman

Requests can be sent to:
info@samesamestudio.fi

8. Cookies

We use:

  • Strictly necessary cookies to ensure website functionality
  • Analytics cookies (e.g., Google Analytics) based on your consent

You can manage or withdraw consent at any time via cookie settings or your browser.

9. Data Security

We implement appropriate technical and organizational measures to protect personal data, including:

  • Encrypted connections (HTTPS)
  • Restricted access to personal data
  • Use of trusted service providers

All payments are processed securely via encrypted payment systems.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be available on this website.