Privacy Policy

Effective from: November 4, 2025

Data Controller

Mitrox Oy
Business ID: 3562179-8
Email: info@mitrox.io

1. Name of the Register

Customer, contact, and marketing register of Mitrox Oy.

2. Purpose of Processing Personal Data

Personal data is processed for the following purposes:

  • Managing and developing customer and contractual relationships
  • Implementing and improving websites and services
  • Processing orders and service requests
  • Providing customer support and communication
  • Marketing, newsletters, and campaigns (based on consent)
  • Fulfilling legal obligations

3. Data Categories

The register may contain the following information:

  • Name, company name, and contact details (email, phone, address)
  • Information provided through website contact forms
  • Information related to customer relationships and contracts
  • Billing and payment details
  • User consents and communication history
  • Technical data about website use (e.g. IP address, browser information, cookies)

4. Data Sources

Personal data is primarily collected:

  • From the data subject (e.g. contact forms, email, phone, contracts)
  • Through cookies and analytics tools (e.g. Google Analytics, Meta Pixel)
  • From public registers (e.g. Business Information System / YTJ)

5. Data Disclosure and Transfers

Personal data is not disclosed to third parties without consent, except:

  • When required by law or an authority order
  • When required for the technical implementation of services (e.g. hosting, analytics, payment providers)

If data is transferred outside the EU or EEA, Mitrox ensures that the receiving country offers an adequate level of data protection in accordance with the GDPR (e.g. through the EU-U.S. Data Privacy Framework or standard contractual clauses).

6. Data Retention

Personal data is retained only as long as:

  • Necessary for managing the customer relationship,
  • Required to meet legal obligations, or
  • Until the data subject withdraws consent for marketing.

After this, the data is securely deleted or anonymized.

7. Rights of the Data Subject

The data subject has the right to:

  • Access their personal data
  • Request rectification or erasure of data
  • Restrict or object to processing
  • Withdraw consent at any time
  • File a complaint with the Office of the Data Protection Ombudsman (www.tietosuoja.fi)

Requests can be sent to info@mitrox.io

8. Cookies and Analytics

Our website uses cookies to improve user experience and analyze traffic.

We use, among others:

  • Google Analytics (website usage statistics)
  • Meta Pixel (advertising targeting).

Users can control or block the use of cookies in their browser settings.

9. Data Security

Data is processed confidentially and protected by technical and organizational means:

  • SSL encryption on the website
  • restricted access to the register only for necessary personnel
  • regular backups and security updates.

10. Changes to the Privacy Policy

We reserve the right to update this policy if data protection or service practices change. The latest version is always available at https://mitrox.io