Legal

Privacy Policy

Last updated: January 2026 · GDPR Compliant

1. Introduction

Vyromoveply ("we", "our") respects your privacy and is committed to protecting your personal data in line with the EU General Data Protection Regulation (GDPR) and Finnish data protection law.

2. Data We Collect

• Identification: name, date of birth (for 18+ verification).
• Contact: email, phone, address.
• Reservation: dates, room preferences, guest count.
• Payment: processed via certified PCI-DSS providers (we do not store card numbers).
• Technical: IP address, browser, cookies for analytics.

3. Lawful Basis

We process your data based on contract performance (your booking), legal obligation, legitimate interests, and consent (where applicable).

4. How We Use Data

• To process bookings and provide services.
• To communicate confirmations and updates.
• To improve our website and services.
• To comply with Finnish legal requirements.

5. Data Sharing

We do not sell personal data. We share data only with trusted processors (payment, hosting) under strict GDPR-compliant agreements.

6. Your Rights

Under GDPR, you have the right to: access, rectify, erase, restrict, or port your data, and to object to processing. Contact [email protected] to exercise these rights.

7. Data Retention

Booking data is retained for 7 years per Finnish accounting law. Marketing data is retained until you withdraw consent.

8. Security

We employ TLS encryption, access controls, and regular security audits to protect your information.

9. Contact

Data Protection Officer: [email protected] · Eteläranta 14, 00130 Helsinki, Finland.