snow cleaning machine

Privacy Policy

Privacy Policy

Last updated: July 8th, 2025

This Privacy Policy explains how Nordic Adventures Oy collects, uses, protects, and otherwise processes your personal data. We are committed to transparency in our data practices and to safeguarding your privacy in accordance with the General Data Protection Regulation (GDPR) and other applicable privacy laws. Please read this policy carefully to understand our practices regarding your information.

1. Data Controller

Company: Nordic Adventures Oy (Business ID: 3087820-1)

Address: Leppiniementie 29, 97240 Rovaniemi, Finland

Phone: +358 40 744 2567

Email: hello@nordicadventures.fi

2. Data Protection Officer

Name: Alex Rudyuk

Address: Leppiniementie 29, 97240 Rovaniemi, Finland

Phone: +358 40 744 2567

Email: hello@nordicadventures.fi

3. Name of the Register

Customer, partner, and marketing register.

4. Purpose of Processing Personal Data and Legal Basis

We collect and process personal data to manage our customer and partner relationships, ensure smooth service delivery, and continuously improve our operations and services. The legal basis for data processing is primarily the performance of a contract (e.g., a customer or partner agreement), your explicit consent, compliance with a legal obligation, or our legitimate interests.

Data is processed for the following key purposes:

  • Booking and delivering program and accommodation services (Legal basis: Performance of a contract).
  • Verifying purchases made via our webshop (Legal basis: Performance of a contract).
  • Business planning and strategic product development (Legal basis: Legitimate interest).
  • Marketing communications, including newsletters and targeted advertising, always respecting your preferences (Legal basis: Consent or Legitimate interest, where applicable).
  • Improving user experience and functionality on our website (Legal basis: Legitimate interest).
  • Conducting market research and insightful analysis to better serve you (Legal basis: Legitimate interest).
  • Managing customer inquiries, comments, and feedback effectively (Legal basis: Performance of a contract or Legitimate interest).

5. Contents of the Register

The register may include various types of personal data to facilitate our services:

  • Contact details: full name, phone number, email address, accommodation name and address.
  • Nationality.
  • Ages of children (relevant for tour suitability and safety).
  • Allergies and specific dietary restrictions pertinent to the service provided.
  • Medical conditions relevant to the safe delivery of the service.
  • Credit card details (processed securely by third-party payment processors only if staying in our accommodation or for booking services).
  • Details of purchases, bookings, and invoicing records.
  • Customer messages, inquiries, and comments.
  • Materials willingly provided by customers (e.g., photos shared from tours).
  • Feedback, permissions, agreements, and any service-related restrictions.
  • Business ID and contact details of corporate customers and partners.

We kindly ask guests to inform us of any medical conditions, allergies, or dietary needs that may impact the safe and smooth delivery of our services.

Technical information that may be collected includes:

  • IP address, country or city of access.
  • Device type, browser used, operating system, and language settings.
  • Time and method of website use, including navigation paths.
  • Interactions with our customer service channels and partner platforms.

6. Use of Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your Browse experience, analyze website traffic, and personalize content.

What are Cookies?

Cookies are small text files stored on your device by your web browser. They enable a site or its service provider to recognize your browser and capture and remember certain information. Cookies are not personally identifiable to you but can be used to give you a more personalized web experience. Some information stored by cookies may be placed by other companies whose software we use on the site, which can also impact your experience on other websites you may visit after leaving ours.

How We Use Cookies

We use cookies for a variety of reasons, including to:

  • Help remember and process items in the shopping cart.
  • Keep track of advertisements and compile aggregate data about site traffic and site interactions to offer better site experiences and tools in the future.
  • Help us understand your preferences based on previous or current site activity, enabling us to provide improved services.
  • Provide essential functionality (e.g., booking process, security features).
  • Collect anonymous information about how visitors use our website (e.g., most visited pages, error messages) to improve website performance.
  • Remember choices you make (e.g., language preferences) to provide a more personalized experience.
  • Deliver advertisements more relevant to you and your interests, and to measure the effectiveness of advertising campaigns.

We may also use trusted third-party services that track this information on our behalf. These include:

  • Google Analytics: For understanding how you use the site and ways to improve your experience. For more information on Google Analytics cookies, please see the official Google Analytics page.
  • Google Ads: For serving relevant advertisements. Users may opt out of Google's ad personalization by visiting Google Ad Settings.
  • (If applicable) Woopra: For analytics to improve user experience and provide relevant recommendations. More information can be found on Woopra's official website and privacy policy.

Managing Your Cookie Preferences

You have full control over your cookie preferences. Our website's cookie consent tool (Finsweet Cookie Consent) allows you to accept or decline different categories of cookies, giving you granular control.

Most web browsers also allow you to control cookies through their settings. You can usually set your browser to notify you each time a cookie is being sent, giving you the chance to decide whether to accept it, or to block cookies altogether. Please note that blocking all cookies, especially strictly necessary ones, may impact the full functionality of our website and services.

7. Disclosure of Data

We only share personal data with our trusted partners and essential service providers when it is strictly necessary for delivering a booked service (e.g., transfer companies, accommodation providers, activity operators). Data is shared only to the extent required for operational purposes. In rare cases, we may share data with authorities if explicitly required by law or at the customer’s direct request.

8. Data Transfers Outside the EU/EEA

We do not regularly transfer personal data outside the European Union or European Economic Area, nor to international organizations. Should such a transfer become necessary (e.g., for specific service delivery involving partners outside the EU/EEA, or the use of certain international service providers), we will meticulously assess the security measures in place and ensure full compliance with GDPR regulations before any transfer takes place. This includes the use of standard contractual clauses (SCCs), reliance on adequacy decisions by the European Commission, or other legally recognized mechanisms to ensure data protection.

9. Data Security

Personal data is handled with utmost care and stored securely throughout its entire lifecycle. Access to personal data is strictly restricted based on user roles and requires unique passwords. Our data is safeguarded through secure physical and digital storage solutions, robust firewalls, and encryption protocols where appropriate. Our staff is thoroughly trained in data protection practices and is bound by strict confidentiality agreements. Our systems are hosted on secure, protected servers. Personal data is deleted or anonymized according to strict data protection protocols and retention schedules when it is no longer needed for the purpose for which it was collected.

10. Right of Access

You have the right to request access to your personal data stored in our register. Upon receiving a verified request, we will provide you with a copy of your data in a clear and understandable format. To do so, please submit a signed written request to our Data Protection Officer using the contact details provided above.

11. Right to Rectification and Erasure

We are committed to maintaining accurate and up-to-date information. If your personal data in our register is incorrect, incomplete, or outdated, we will promptly correct it upon your request. You also have the right to request the deletion of your personal data ("right to be forgotten") unless legal obligations require us to retain it for specific purposes (e.g., accounting, tax laws, or ongoing contracts).

12. Other Rights

In accordance with applicable data protection laws, you also have the right to:

  • Restrict processing of your data in certain circumstances.
  • Receive a copy of your data in a structured, commonly used, and machine-readable format (data portability).
  • Transfer your data to another controller if technically feasible.
  • Object to processing, including profiling and automated decision-making, in certain situations.
  • Withdraw your consent at any time, where processing is based on consent, without affecting the lawfulness of processing based on consent before its withdrawal.
  • Lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR. The relevant supervisory authority in Finland is the Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto).

13. Data Retention and Deletion

We store personal data for at least one year after the end of a customer or partner agreement, unless otherwise required by law (e.g., for accounting or tax purposes, which typically require longer retention periods). You may request the deletion of your data, which we will carry out unless legal retention rules or legitimate business interests apply. Personal data is deleted or anonymized according to strict data protection protocols and retention schedules when it is no longer needed for the purpose for which it was collected.

14. Customer Photos from Our Tours

On some of our tours, photos of customers may be included as part of the service, or available for purchase as an optional extra. For example, some Northern Lights tours may include free photos of customers with the Northern Lights, and some diving/snorkeling tours may offer photos for purchase.

These photos are shared with the customers electronically after the tour and are not made public; they are only shared with the customers who were on that specific tour. Nordic Adventures Oy strives to be GDPR compliant in this regard. Therefore, we generally store these photos for a maximum of two months after the tour, providing ample time for customers to download the photos they wish to keep. After this period, the photos are deleted.

15. Third Party Links

Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

16. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The latest version will always be made available on our website, clearly indicating the "Last updated" date. We encourage you to review this policy periodically.

Preferences

Privacy is important to us, so you have the option of disabling certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may impact your experience on the website. More information

Accept all cookies

These items are required to enable basic website functionality.

Always active

These items are used to deliver advertising that is more relevant to you and your interests.

These items allow the website to remember choices you make (such as your user name, language, or the region you are in) and provide enhanced, more personal features.

These items help the website operator understand how its website performs, how visitors interact with the site, and whether there may be technical issues.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.