Privacy policy

Registry and Data Protection Statement

This is Napapiirin Järvilomat’s Registry and Data Protection Statement in accordance with the EU General Data Protection Regulation (GDPR). Last updated on July 14, 2025.

  1. Data Controller

Napapiirin Järvilomat, Luukonniemi 147, 97520 Raanujärvi, Finland Info@napapiirinjarvilomat.fi

  1. Contact Person for Registry Matters

Jaana Tuovinen, info(a)napapiirinjarvilomat.fi, +358 40 966 1632

  1. Name of the Register

Customer Register

  1. Legal Basis and Purpose of Personal Data Processing

We collect and process personal data primarily for the following purposes: to fulfill contractual obligations, to comply with legal obligations, and to pursue our legitimate interests. The purpose of processing personal data is to communicate with customers, implement marketing activities, and adhere to legislation.

We process personal data such as name, contact information, and accommodation dates to receive, confirm, and manage bookings. As an accommodation provider, we also have a legal obligation to collect and store traveler information (e.g., name, date of birth, and nationality). Our legitimate interest covers maintaining customer relationships, collecting feedback, and developing our services.

The data is not used for automated decision-making.

  1. Data Content of the Register

The data stored in the register includes: name, phone number, email address, address, personal identity code, language, country, city, and other information related to the customer relationship.

  1. Disclosure of Data

Data is not regularly disclosed to third countries or international organizations. Data may be published to the extent agreed upon with the customer.

  1. Principles of Register Protection

The processing of the customer register is carried out diligently, and data is handled appropriately. Register data is always processed and stored in a secure location and is handled with due care. The data controller ensures that only personnel whose job description requires it have access to the data.

Personal data is stored in our register only as long as it is necessary for our business operations or to maintain customer relationships, including the fulfillment of warranty and liability obligations. We securely delete the data when the storage basis ceases to exist, unless otherwise required by legislation.