Privacy policy - Luonnollisesti Oulujärvi

Register and Privacy Policy

This is a register and privacy policy of luonnollisesti.fi in accordance with the EU General Data Protection Regulation (GDPR).
Created 17.9.2025.

This Privacy Policy applies primarily to the content of the luonnollisesti.fi website. Johku booking system has their own separate privacy policy.

1. Registrar

Luonnollisesti Oulujärvi (2037034-0)
Rikulantie 10
87800 Kajaani

2. Contact person responsible for the register

Kaisa Rikula
050 340 3013

3. Name of the register

Luonnollisesti.fi site register

4. Purpose of processing personal data

Personal data may be processed for the following purposes:

Customer relationship management and customer liaison

5. Data content of the register

The information collected through the website mainly consists of tracking information through cookies. See sections 7 and 11 for more information. Personal data is not collected through the luonnollisesti.fi website, but is limited to the Johku booking system.

6. The register may contain the following information:

Personal data is stored in Johku booking system in electronic form.

7. Regular sources of information

Information about the customer is primarily obtained from the customer himself. In addition, we may receive information from the following sources:

From the visitor themself when visiting the site (see section 11. for a more detailed description)
From the visitor themself when they make purchase in Johku
The Site contains third party (partnership) cookies that are on the Site for measurement and tracking services. Third parties may place cookies on your terminal device when you visit the site. Cookies mainly collect technical information. The use of cookies on the site is indicated in a separate notice, which is subject to user acceptance.

For more information about cookies, please see our Cookie Policy.

8. Regular disclosures and transfers of data outside the EU or EEA

Data is not regularly disclosed to other parties. Data may be published to the extent agreed with the customer.
Data will not be regularly transferred or disclosed outside the EU or the European Economic Area, except for data collected by any third-party services described in Section 7.

9. Right of access and rectification

Every person in the register has the right to check the information stored in the register and to request that any inaccurate or incomplete information be corrected or completed. If a person wishes to check or request a correction of the data stored about him or her, the request must be sent in writing to the controller. The controller may, if necessary, ask the applicant to prove his or her identity. The controller will reply to the customer within the time limit laid down in the EU General Data Protection Regulation (as a general rule, within one month).

10. Principles for the protection of the register

Only those persons who are entitled to process customer data as part of their job are entitled to use the system containing personal data. Each user has their own user name and password for the system.